Ahoj, prosím o preventivní kontrolu, notebook začal poslední dobou víc topit a častěji je slyšet větráček. Díky za pomoc!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-12-2019
Ran by User (administrator) on User (LENOVO 20FB002UMC) (04-01-2020 14:13:56)
Running from C:\Users\User\Desktop
Loaded Profiles: User (Available Profiles: User)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe
() [File not signed] C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\87.4.138\QtWebEngineProcess.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\ZOOM\tpfsm.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(LENOVO -> Lenovo.) C:\Windows\System32\TpShocks.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7822312 2015-04-20] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [TpShocks] => C:\windows\system32\TpShocks.exe [555688 2015-08-21] (LENOVO -> Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [296664 2017-05-12] (Lenovo -> Lenovo Group Limited)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [70672 2016-06-23] (LENOVO -> Lenovo)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [602968 2017-03-15] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [OneLinkManager] => C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe [1083904 2015-05-30] () [File not signed]
HKLM-x32\...\Run: [PWMTRV] => C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6422696 2016-04-14] (LENOVO -> Lenovo Group Limited)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe [299520 2017-05-11] (Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation)
HKLM-x32\...\Run: [FrReminder] => C:\Users\User\AppData\Roaming\Lenovo\FrReminder\fr_setsched.cmd [ ]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6268224 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SafeQ Client] => C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe [260096 2013-12-11] () [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: E - E:\Install.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {5c4b32fb-e4e1-11e7-a664-54ee75af747f} - D:\setup_mafia_czech_1.3_(16073).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {9ce027ce-f762-4612-87f1-d301e187c33c} - Q:\LenovoQDrive.cmd
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c79e-e55d-11e7-9168-54ee75af747f} - D:\setup_fallout_3_1.7.0.3_(12034).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c7a0-e55d-11e7-9168-54ee75af747f} - E:\Install.exe
HKU\S-1-5-18\...\Run: [script_fcbd] => "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat"
HKLM\Software\...\AppCompatFlags\Custom\Game.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Setup.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}: [DatabasePath] -> C:\windows\AppPatch\Custom\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb [2017-10-31]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{A324AC4C-2605-40C1-BF3C-926BD2A25975}] -> C:\windows\system32\SynaCP.dll [2016-12-28] (Synaptics Inc. -> Synaptics Incorporated.)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2017-06-05]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05340752-FD04-4293-9F07-B94C5A792DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {1C942F93-0422-42EA-85DB-FFF4E01BA3AF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {28F96966-2B9A-48B8-8A11-6B1D05E6C2EA} - System32\Tasks\DiskUpdate => C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe [6656 2009-02-10] () [File not signed]
Task: {40D0B1CC-8D6E-4063-858F-FEA3D19371DF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {43EDC2DA-5C41-4974-8066-2A634D1C90AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {4488F59D-F020-4B63-B012-B0860D5C33F5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1373592 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {4698E014-4E09-400D-9153-A473AAF15E5C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {6F718FCC-4BAB-4E7F-BC66-6694A6CB8FDD} - System32\Tasks\RtsCM => C:\windows\RtsCM64.exe [223488 2016-05-25] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
Task: {717908FB-2159-47F8-ABE2-40283D326423} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10197784 2017-06-09] (Lenovo -> Lenovo)
Task: {776DCC09-5B1A-46B5-8143-30BAB470D36A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D92D178-8F65-4834-A6BF-82BA5128ABE8} - System32\Tasks\TVT\LaunchFR => C:\Program Files (x86)\Lenovo\Factory Recovery\FRReminder.exe [641024 2015-12-23] (TODO: <Company name>) [File not signed]
Task: {83C54BD6-A612-44CB-997C-54962C799616} - System32\Tasks\Lenovo\Lenovo PowerENGAGE Update => C:\Program Files (x86)\Lenovo Registration\lenovoreg.exe [552992 2015-01-09] (Leader Technologies Inc -> Aviata Inc)
Task: {862CF1CC-D970-409B-8968-4F3BCAAC4C04} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {93790208-B065-42CA-AB59-72AF6ACCDC8D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1444144 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {98E01697-FB34-43F8-A366-BA243AC542D7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1373592 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {98E094E5-9356-44A6-8A56-7731E39C8B43} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [3649704 2016-04-14] (LENOVO -> Lenovo Group Limited)
Task: {A0A40578-9361-4EE9-80C6-29B30F7430EC} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10197784 2017-06-09] (Lenovo -> Lenovo)
Task: {A823BE12-E32F-46FB-A307-AF03418940AC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [112984 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8EB625B-554A-4AEA-B1EF-408C1668C68D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {A93A142D-EB62-4A50-9530-9DD16B022E2F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4321688 2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {ACDD387B-6A0C-442F-A4E3-F3FB44EC7DEE} - System32\Tasks\Lenovo\Lenovo PowerENGAGE => C:\Program Files (x86)\Lenovo Registration\lenovoreg.exe [552992 2015-01-09] (Leader Technologies Inc -> Aviata Inc)
Task: {BC6474EB-2872-4D7D-A335-C5E404406834} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [112984 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {C30854CF-C327-48D5-B763-D81F2670BD9E} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {C395EAC9-6E38-4463-B040-8E2C5A7027D8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {C3BC12F5-6F90-4A08-B784-3AE34CD6BCD6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4321688 2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C70991CD-A9B5-4D75-91A2-0CFFF27034CE} - System32\Tasks\TVT\updateFrReminder => "C:\Users\User\AppData\Roaming\Lenovo\FrReminder\deleteUpdateReminder.cmd"
Task: {C83C4799-2009-4DEE-BC2A-A9B71BA05173} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA95D6EA-1BCB-4677-8D12-866A6685DD96} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321240 2017-06-09] (Lenovo -> Lenovo)
Task: {D47A2F71-D51C-4D80-BB9E-506840453844} - System32\Tasks\{958E9137-2257-4798-BFA9-C64F899A7AD0} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\strongholdcrusader_cz.exe" -d "C:\Users\User\Desktop"
Task: {D4B424A7-17C1-42DE-B6B5-9072B59FE76D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {DE82BB68-A0CE-4F96-9776-4F2BF93C3450} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3462915178-2026758371-2574779644-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {E436B607-8CCE-4227-8910-4A1BA2C7E1C6} - System32\Tasks\{CD37E19B-3E47-423A-BAC9-14831EB5EC54} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\Jagged_Alliance_2_(1999)_CZ.exe" -d "C:\Users\User\Desktop"
Task: {F8DDC19A-6CD8-44C7-9268-4811EA080B70} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1831744 2016-12-06] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {FDC08773-2106-4C70-8BFF-7AF42C0E9AFF} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264984 2017-06-09] (Lenovo -> )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.4.1
Tcpip\..\Interfaces\{08515082-EA50-4059-BB11-2250C54A7D5C}: [DhcpNameServer] 172.168.127.2
Tcpip\..\Interfaces\{F3E7B4FC-8600-49F6-AE06-2EDF5B4FD544}: [DhcpNameServer] 192.168.4.1
Internet Explorer:
==================
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17prewin10.msn.com/?pc=LCTE
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17prewin10.msn.com/?pc=LCTE
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> DefaultScope {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {538793D5-659C-4639-A56C-A179AD87ED44} hxxps://vpn.cd.cz/CACHE/stc/1/binaries/vpnweb.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3462915178-2026758371-2574779644-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS -> Unity Technologies ApS)
Chrome:
=======
CHR HomePage: Default -> hxxp://start.facemoods.com/?a=ddrnw
CHR StartupUrls: Default -> "hxxp://www.yessearches.com/?mode=nnnb&ptid=cos ... AXIsCHIsA0.."
CHR Session Restore: Default -> is enabled.
CHR Notifications: Default -> hxxps://web.icq.com
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2020-01-04]
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-22]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-22]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-21]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-21]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-22]
CHR Extension: (Cestujlevne.com notifikátor) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\genojieiefkacjcapigbigafhebnmdfp [2019-01-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-18]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11345992 2019-11-28] (Microsoft Corporation -> Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2016-12-23] (Lenovo -> Lenovo)
R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [181584 2019-01-25] (Conexant Systems LLC -> Conexant Systems, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [51024 2019-12-17] (Dropbox, Inc -> Dropbox, Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [326160 2016-04-14] (LENOVO -> Lenovo.)
S3 EHttpSrv; C:\Program Files\ESET\ESET Endpoint Antivirus\ehttpsrv.exe [41160 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [1566424 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [2685640 2015-02-17] (ESET, spol. s r.o. -> ESET)
S3 eshasrv; C:\Program Files\ESET\ESET Endpoint Antivirus\eshasrv.exe [183496 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [125032 2015-06-26] (Intel Corporation - pGFX -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\windows\system32\igfxCUIService.exe [341936 2017-06-02] (Intel(R) pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [870248 2019-06-07] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [790376 2019-06-07] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [538088 2019-08-14] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [169176 2017-05-12] (Lenovo -> Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [114632 2015-07-14] (LENOVO -> Lenovo Group Limited)
S3 LenovoProdRegManager; C:\Program Files (x86)\Lenovo Registration\EngageService.exe [293416 2015-01-09] (Leader Technologies Inc -> Aviata, Inc.)
S2 LPlatSvc; C:\windows\system32\LPlatSvc.exe [892760 2018-12-25] (Lenovo -> Lenovo.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [271128 2017-06-09] (Lenovo -> Lenovo)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [311584 2019-05-14] (Intel Corporation -> )
R2 SAService; C:\windows\system32\SAsrv.exe [416576 2016-12-06] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [251432 2018-11-01] (Synaptics Incorporated -> Synaptics Incorporated)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4110624 2019-05-14] (Intel Corporation -> Intel® Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 btmaudio; C:\windows\System32\drivers\btmaud.sys [87864 2015-04-08] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmaux; C:\windows\System32\DRIVERS\btmaux.sys [141800 2015-04-02] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmhsf; C:\windows\System32\DRIVERS\btmhsf.sys [1445688 2014-11-20] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-12-19] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-12-19] (Disc Soft Ltd -> Disc Soft Ltd)
R3 e1dexpress; C:\windows\System32\DRIVERS\e1d62x64.sys [533496 2017-02-01] (Intel(R) INTELND1617 -> Intel Corporation)
R1 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [243464 2015-02-02] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [177032 2015-02-02] (ESET, spol. s r.o. -> ESET)
R2 epfwwfpr; C:\windows\System32\DRIVERS\epfwwfpr.sys [159992 2015-02-02] (ESET, spol. s r.o. -> ESET)
R3 HID_PCI; C:\windows\System32\DRIVERS\HID_PCI.sys [47896 2015-11-06] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R0 iaStorF; C:\windows\System32\DRIVERS\iaStorF.sys [32240 2016-06-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 ibtusb; C:\windows\System32\DRIVERS\ibtusb.sys [233200 2015-06-17] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 ISH; C:\windows\System32\DRIVERS\ISH.sys [135448 2015-11-08] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R3 ISH_BusDriver; C:\windows\System32\DRIVERS\ISH_BusDriver.sys [71448 2015-11-08] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R3 MEIx64; C:\windows\System32\DRIVERS\TeeDriverx64.sys [251968 2019-08-14] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 NETwNs64; C:\windows\System32\DRIVERS\Netwsw04.sys [3470536 2019-05-17] (Intel Corporation -> Intel Corporation)
R0 PMDRVS; C:\windows\System32\DRIVERS\pmdrvs.sys [44160 2018-12-25] (Lenovo -> Lenovo.)
S3 pmxdrv; C:\windows\system32\drivers\pmxdrv.sys [43632 2019-10-06] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 RTSPER; C:\windows\System32\DRIVERS\RtsPer.sys [777944 2016-05-25] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\windows\System32\DRIVERS\rtsuvc.sys [3119360 2016-05-25] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 rtux64w7; C:\windows\System32\DRIVERS\rtux64w7.sys [275200 2015-06-05] (Realtek Semiconductor Corp -> Realtek )
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [42536 2018-11-01] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 SynaMetSMI; C:\windows\System32\DRIVERS\SynaSmi.sys [39736 2016-12-28] (Synaptics Inc. -> Windows (R) Win 7 DDK provider)
S3 vpnva; C:\windows\System32\DRIVERS\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
R3 XtuAcpiDriver; C:\windows\System32\DRIVERS\XtuAcpiDriver.sys [54168 2017-04-18] (Intel Corporation -> Intel Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-04 14:13 - 2020-01-04 14:14 - 000039335 _____ C:\Users\User\Desktop\FRST.txt
2020-01-04 14:13 - 2020-01-04 14:14 - 000000000 ____D C:\FRST
2020-01-04 14:12 - 2020-01-04 14:12 - 002272256 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2019-12-27 16:50 - 2019-12-27 16:50 - 000013928 _____ C:\Users\User\Desktop\[TreZzoR]Stranger Things.2016.S01E05.720p.WEBRip.x264-SKGTV[ettv] .torrent
2019-12-26 23:21 - 2019-12-26 23:21 - 000011628 _____ C:\Users\User\Desktop\[TreZzoR]Stranger Things.2016.S01E04.720p.WEBRip.x264-SKGTV[ettv] .torrent
2019-12-25 15:22 - 2019-12-25 15:22 - 000002012 _____ C:\Users\User\Desktop\DaVinci Resolve Project Server.lnk
2019-12-25 15:22 - 2019-12-25 15:22 - 000001992 _____ C:\Users\User\Desktop\Resolve.lnk
2019-12-25 15:20 - 2019-12-25 15:22 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2019-12-25 15:20 - 2019-12-25 15:20 - 000000000 ____D C:\Program Files\Blackmagic Design
2019-12-25 15:13 - 2019-12-25 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2019-12-25 11:14 - 2015-07-11 14:15 - 000429568 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2019-12-24 18:18 - 2019-05-19 01:33 - 000000000 ____D C:\Users\User\Desktop\Jakub Jan Ryba – Česká Mše Vánoční 1993
2019-12-24 03:10 - 2019-11-14 12:34 - 003187712 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2019-12-24 03:10 - 2019-09-10 03:02 - 006135296 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-12-24 03:10 - 2019-09-10 01:09 - 007082496 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-12-24 03:10 - 2018-11-18 03:44 - 000243200 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2019-12-24 03:10 - 2018-11-18 03:44 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2019-12-24 03:10 - 2014-12-11 18:47 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2019-12-19 11:43 - 2013-10-02 03:22 - 000056832 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys
2019-12-19 11:43 - 2013-10-02 03:11 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2019-12-19 11:43 - 2013-10-02 03:08 - 000012800 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2019-12-19 11:43 - 2013-10-02 02:48 - 000056832 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll
2019-12-19 11:43 - 2013-10-02 02:48 - 000018944 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2019-12-19 11:43 - 2013-10-02 02:29 - 000062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2019-12-19 11:43 - 2013-10-02 02:10 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll
2019-12-19 11:43 - 2013-10-02 01:15 - 001057280 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2019-12-19 11:43 - 2013-10-02 01:14 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\MsRdpWebAccess.dll
2019-12-19 11:43 - 2013-10-02 01:14 - 000017920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wksprtPS.dll
2019-12-19 11:43 - 2013-10-02 00:58 - 000053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2019-12-19 11:43 - 2013-10-02 00:31 - 001147392 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2019-12-19 11:43 - 2013-10-02 00:08 - 000855552 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2019-12-19 11:43 - 2013-10-01 23:34 - 001068544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2019-12-19 11:29 - 2019-12-19 11:29 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_XtuAcpiDriver_01011.Wdf
2019-12-19 11:29 - 2012-08-23 15:10 - 000019456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys
2019-12-19 11:29 - 2012-08-23 15:08 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbGD.sys
2019-12-19 11:29 - 2012-08-23 12:12 - 000192000 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpendp_winip.dll
2019-12-19 11:29 - 2012-08-23 11:51 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\kbdgeoqw.dll
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZEL.DLL
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZE.DLL
2019-12-19 11:20 - 2015-12-16 19:48 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZE.DLL
2019-12-19 11:20 - 2015-12-16 19:48 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\kbdgeoqw.dll
2019-12-19 11:20 - 2015-12-16 19:48 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZEL.DLL
2019-12-19 01:12 - 2019-12-19 01:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-12-18 16:01 - 2019-12-18 16:01 - 000686422 _____ C:\Users\User\Desktop\Vyúčtování_Hegrova.pdf
2019-12-17 20:30 - 2019-12-17 20:30 - 000051024 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2019-12-17 20:30 - 2019-12-17 20:30 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2019-12-12 11:10 - 2019-12-12 19:09 - 000000000 ____D C:\Users\User\Desktop\Praha - photoshoot
2019-12-11 12:21 - 2019-12-06 06:27 - 000492032 _____ (Microsoft Corporation) C:\windows\system32\EOSNotify.exe
2019-12-11 12:21 - 2019-11-28 04:33 - 000710072 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-12-11 12:21 - 2019-11-28 04:32 - 004061616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-12-11 12:21 - 2019-11-28 04:32 - 003967416 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-12-11 12:21 - 2019-11-28 04:32 - 001320248 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-12-11 12:21 - 2019-11-28 04:32 - 000627664 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-12-11 12:21 - 2019-11-28 04:32 - 000264120 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-12-11 12:21 - 2019-11-28 04:32 - 000155576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-12-11 12:21 - 2019-11-28 04:32 - 000097208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-12-11 12:21 - 2019-11-28 04:31 - 005554104 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-12-11 12:21 - 2019-11-28 04:31 - 001671504 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001010176 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000834048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000555520 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:04 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-12-11 12:21 - 2019-11-28 04:03 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-12-11 12:21 - 2019-11-28 04:00 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-12-11 12:21 - 2019-11-28 04:00 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-12-11 12:21 - 2019-11-28 04:00 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-12-11 12:21 - 2019-11-28 03:59 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-12-11 12:21 - 2019-11-28 03:58 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-12-11 12:21 - 2019-11-28 03:57 - 003233280 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-12-11 12:21 - 2019-11-28 03:57 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-12-11 12:21 - 2019-11-28 03:57 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:56 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-12-11 12:21 - 2019-11-28 03:56 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-12-11 12:21 - 2019-11-28 03:53 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-12-11 12:21 - 2019-11-28 03:53 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-12-11 12:21 - 2019-11-28 03:51 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-12-11 12:21 - 2019-11-23 08:48 - 000390752 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-12-11 12:21 - 2019-11-23 07:57 - 000341896 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-12-11 12:21 - 2019-11-21 03:16 - 000580096 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-12-11 12:21 - 2019-11-21 03:16 - 000496640 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-12-11 12:21 - 2019-11-21 01:48 - 000629984 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2019-12-11 12:21 - 2019-11-19 21:56 - 025753088 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-12-11 12:21 - 2019-11-19 21:44 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-12-11 12:21 - 2019-11-19 21:44 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-12-11 12:21 - 2019-11-19 21:31 - 002910720 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-12-11 12:21 - 2019-11-19 21:30 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-12-11 12:21 - 2019-11-19 21:29 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-12-11 12:21 - 2019-11-19 21:29 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-12-11 12:21 - 2019-11-19 21:29 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-12-11 12:21 - 2019-11-19 21:22 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-12-11 12:21 - 2019-11-19 21:21 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-12-11 12:21 - 2019-11-19 21:19 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000797184 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-12-11 12:21 - 2019-11-19 21:18 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-12-11 12:21 - 2019-11-19 21:17 - 005500928 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-12-11 12:21 - 2019-11-19 21:10 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-12-11 12:21 - 2019-11-19 21:07 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-12-11 12:21 - 2019-11-19 21:01 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-12-11 12:21 - 2019-11-19 21:00 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-12-11 12:21 - 2019-11-19 21:00 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-12-11 12:21 - 2019-11-19 20:56 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-12-11 12:21 - 2019-11-19 20:56 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-12-11 12:21 - 2019-11-19 20:54 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-12-11 12:21 - 2019-11-19 20:52 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-12-11 12:21 - 2019-11-19 20:43 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-12-11 12:21 - 2019-11-19 20:41 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-12-11 12:21 - 2019-11-19 20:41 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-12-11 12:21 - 2019-11-19 20:39 - 002132992 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-12-11 12:21 - 2019-11-19 20:39 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-12-11 12:21 - 2019-11-19 20:36 - 015445504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-12-11 12:21 - 2019-11-19 20:26 - 004859392 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-12-11 12:21 - 2019-11-19 20:15 - 001566720 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-12-11 12:21 - 2019-11-19 20:04 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-12-11 12:21 - 2019-11-19 09:17 - 020290048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-12-11 12:21 - 2019-11-19 09:11 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-12-11 12:21 - 2019-11-19 08:59 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-12-11 12:21 - 2019-11-19 08:58 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-12-11 12:21 - 2019-11-19 08:58 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-12-11 12:21 - 2019-11-19 08:57 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-12-11 12:21 - 2019-11-19 08:56 - 002304000 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-12-11 12:21 - 2019-11-19 08:53 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-12-11 12:21 - 2019-11-19 08:52 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-12-11 12:21 - 2019-11-19 08:50 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000662528 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-12-11 12:21 - 2019-11-19 08:40 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-12-11 12:21 - 2019-11-19 08:36 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-12-11 12:21 - 2019-11-19 08:36 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-12-11 12:21 - 2019-11-19 08:35 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-12-11 12:21 - 2019-11-19 08:33 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-12-11 12:21 - 2019-11-19 08:33 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-12-11 12:21 - 2019-11-19 08:31 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-12-11 12:21 - 2019-11-19 08:30 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-12-11 12:21 - 2019-11-19 08:26 - 004112384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-12-11 12:21 - 2019-11-19 08:24 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-12-11 12:21 - 2019-11-19 08:23 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-12-11 12:21 - 2019-11-19 08:23 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-12-11 12:21 - 2019-11-19 08:22 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-12-11 12:21 - 2019-11-19 08:20 - 013838336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-12-11 12:21 - 2019-11-19 08:05 - 004387840 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-12-11 12:21 - 2019-11-19 08:01 - 001331712 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-12-11 12:21 - 2019-11-19 08:00 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-12-11 12:21 - 2019-11-15 03:32 - 000311008 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 001425920 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 001330176 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000479232 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscms.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000215040 _____ (Microsoft Corporation) C:\windows\SysWOW64\icm32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2019-12-11 12:21 - 2019-11-15 03:25 - 000385248 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 002072576 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 001574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000517632 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\WcsPlugInService.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000035840 _____ (Microsoft Corporation) C:\windows\system32\printfilterpipelineprxy.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000623104 _____ (Microsoft Corporation) C:\windows\system32\mscms.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000250880 _____ (Microsoft Corporation) C:\windows\system32\icm32.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2019-12-11 12:21 - 2019-11-15 03:06 - 000748544 _____ (Microsoft Corporation) C:\windows\system32\printfilterpipelinesvc.exe
2019-12-11 12:21 - 2019-11-15 03:04 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2019-12-11 12:21 - 2019-11-15 02:59 - 000034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2019-12-11 12:21 - 2019-11-15 02:59 - 000033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\WcsPlugInService.dll
2019-12-11 12:21 - 2019-11-15 02:58 - 000123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2019-12-11 12:21 - 2019-11-15 02:48 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2019-12-11 12:21 - 2019-11-15 02:45 - 000327680 _____ (Microsoft Corporation) C:\windows\system32\services.exe
2019-12-11 12:21 - 2019-11-05 22:25 - 000162016 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-12-11 12:21 - 2019-10-26 01:17 - 001717760 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-12-10 16:41 - 2019-12-26 17:32 - 000000000 ____D C:\Users\User\Desktop\Byt foto
2019-12-08 22:27 - 2019-12-15 20:42 - 000000000 ____D C:\Users\User\Desktop\Loghtroom tutorial
2019-12-06 09:13 - 2019-12-06 09:13 - 000120510 _____ C:\Users\User\Desktop\darkovy-poukaz-cena-V26308F61.pdf
2019-12-06 09:13 - 2019-12-06 09:13 - 000120510 _____ C:\Users\User\Desktop\darkovy-poukaz-cena-V1BB14C6D.pdf
2019-12-06 09:13 - 2019-12-06 09:13 - 000120509 _____ C:\Users\User\Desktop\darkovy-poukaz-cena-VAE01801A.pdf
2019-12-06 09:13 - 2019-12-06 09:13 - 000120509 _____ C:\Users\User\Desktop\darkovy-poukaz-cena-V4B5783E2.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-04 14:10 - 2016-11-18 16:30 - 000000918 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-01-04 13:55 - 2009-07-14 04:20 - 000000000 ____D C:\windows\tracing
2020-01-02 22:10 - 2016-12-14 16:19 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2020-01-02 21:25 - 2019-10-19 08:54 - 000000000 ____D C:\Users\User\AppData\Roaming\uTorrent
2020-01-02 21:06 - 2016-09-25 18:17 - 000668792 _____ C:\windows\system32\perfh005.dat
2020-01-02 21:06 - 2016-09-25 18:17 - 000141420 _____ C:\windows\system32\perfc005.dat
2020-01-02 21:06 - 2009-07-14 06:13 - 001583226 _____ C:\windows\system32\PerfStringBackup.INI
2020-01-02 21:06 - 2009-07-14 04:20 - 000000000 ____D C:\windows\inf
2019-12-28 14:35 - 2019-11-04 21:57 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2019-12-27 14:19 - 2009-07-14 05:45 - 000032208 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-12-27 14:19 - 2009-07-14 05:45 - 000032208 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-12-26 17:31 - 2019-11-03 21:00 - 000001104 _____ C:\Users\User\Desktop\Adobe Lightroom Classic CC.lnk
2019-12-26 12:10 - 2016-11-18 16:30 - 000000914 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2019-12-25 15:14 - 2019-11-01 18:14 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2019-12-25 13:47 - 2019-07-17 11:12 - 000000000 ____D C:\windows\rescache
2019-12-25 11:06 - 2018-02-22 13:32 - 000196608 _____ C:\windows\system32\Ikeext.etl
2019-12-25 11:06 - 2016-11-17 10:59 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2019-12-25 11:06 - 2016-09-25 18:06 - 000000000 ____D C:\ProgramData\Validity
2019-12-25 11:06 - 2009-07-14 06:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-12-24 03:17 - 2019-09-19 11:14 - 000000412 __RSH C:\ProgramData\ntuser.pol
2019-12-24 03:17 - 2009-07-14 05:45 - 000431256 _____ C:\windows\system32\FNTCACHE.DAT
2019-12-24 03:01 - 2016-09-25 17:51 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-12-22 21:00 - 2018-02-16 18:23 - 000002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-12-19 11:55 - 2009-07-14 04:20 - 000000000 ____D C:\windows\PolicyDefinitions
2019-12-19 11:42 - 2009-07-14 06:32 - 000000000 ____D C:\windows\system32\WinBioPlugIns
2019-12-19 11:28 - 2016-09-25 17:40 - 000000000 ____D C:\Program Files\Intel
2019-12-19 01:12 - 2016-11-18 16:30 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-12-18 10:32 - 2015-10-22 16:36 - 001558876 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-12-18 10:29 - 2017-01-15 16:40 - 000000000 ____D C:\windows\system32\MRT
2019-12-18 10:10 - 2017-01-15 16:40 - 129221664 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-12-16 07:59 - 2019-10-05 13:01 - 000004128 _____ C:\windows\system32\Tasks\CCleaner Update
2019-12-15 15:46 - 2016-09-25 18:15 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-12-15 15:45 - 2016-09-25 18:15 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-12-14 12:42 - 2018-02-16 18:22 - 000003388 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-12-14 12:42 - 2018-02-16 18:22 - 000003260 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-12-11 12:43 - 2016-11-17 10:59 - 000000000 ____D C:\Users\User
==================== Files in the root of some directories ========
2017-03-06 15:19 - 2017-03-06 15:19 - 000007609 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
2017-08-15 08:04 - 2017-08-15 08:04 - 000000000 _____ () C:\Users\User\AppData\Local\{50C0C264-FFDB-41F0-962A-12C712663B44}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-01-02 20:26
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-12-2019
Ran by User (04-01-2020 14:15:01)
Running from C:\Users\User\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-11-17 09:59:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3462915178-2026758371-2574779644-500 - Administrator - Disabled)
Guest (S-1-5-21-3462915178-2026758371-2574779644-501 - Limited - Disabled)
User (S-1-5-21-3462915178-2026758371-2574779644-1000 - Administrator - Enabled) => C:\Users\User
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Endpoint Antivirus 6.1.2222.1 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Endpoint Antivirus 6.1.2222.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_8_2) (Version: 8.2 - Adobe Systems Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{7999800f-411b-4d04-aadd-32b576d84592}) (Version: 21.20.1 - Intel Corporation)
Apowersoft Online Launcher version 1.7.5 (HKLM-x32\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.5 - APOWERSOFT LIMITED)
Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.62.54 - Conexant)
Connect2 (HKLM-x32\...\Connect2_is1) (Version: 4.2.0.3818 - Lenovo)
Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited)
DaVinci Resolve (HKLM\...\{5913037B-95C8-4A27-8F37-026BBC7B5AF1}) (Version: 16.1.2026 - Blackmagic Design)
DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{74ADC138-4768-4C5D-8123-B17527E513B5}) (Version: 1.3.1.0 - Blackmagic Design)
Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 87.4.138 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
ESET Endpoint Antivirus (HKLM\...\{0165402B-C509-49BA-ACC1-2EDB9BB3C493}) (Version: 6.1.2222.1 - ESET, spol. s r.o.)
ESET Remote Administrator Agent (HKLM\...\{A0E7525A-7F3D-407B-80DD-E992D2745203}) (Version: 6.1.365.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Integrated Camera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.10586.11196 - Realtek Semiconductor Corp.)
Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1933.12.0.1301 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 21.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4678 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.56.87.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{05817e4d-5f15-49b4-afec-7edb31fc7dd6}) (Version: 1.56.87.0 - Intel Corporation) Hidden
Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.4.43 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 18.1.1525.1421) (HKLM\...\{302600C1-6BDF-4FD1-1504-148929CC1385}) (Version: 18.1.1504.0518 - Intel Corporation)
Intel® Integrated Sensor Solution (HKLM-x32\...\{755abcd0-2942-482b-a27d-22921a5849f0}) (Version: 3.0.14.3056 - Intel Corporation)
ISS_Drivers_x64 (HKLM\...\{7E28859E-AD3D-4FC2-8D70-E345F8C87722}) (Version: 3.0.14.3056 - Intel Corporation) Hidden
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.81.00.07 - Lenovo)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.20 - Lenovo)
Lenovo Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.1.22.0 - Lenovo)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.18 - Lenovo) Hidden
Lenovo PowerENGAGE (HKLM-x32\...\{15B15395-FF53-44E1-ADAD-FCC279E3CA10}) (Version: 2.51.0040 - Lenovo Inc.)
Lenovo Scaling Utility (HKLM\...\Lenovo Scaling Utility) (Version: 3.10 - Lenovo)
Lenovo Solution Center (HKLM\...\{06913C0C-88EB-42AF-9D94-3E9136CEE9BC}) (Version: 3.6.002.003 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0088 - Lenovo)
Lenovo Touch Fingerprint Software (HKLM\...\{F2E59F3D-B840-402D-9397-FF71B92355DF}_is1) (Version: 1.00.11 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0009.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 2016 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.10 - Lenovo Group Limited)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21290 - Realtek Semiconduct Corp.)
Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 7.18.602.2015 - Realtek)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.140 - Synaptics Incorporated)
Synaptics WBF Fingerprint Reader Drivers (HKLM\...\{3EAF1BE2-2B6B-4A18-BCDD-E7FC39883570}) (Version: 5.1.311.26 - Synaptics Incorporated)
ThinkPad OneLink Plus Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.10.11 - Lenovo)
Thinkpad USB Ethernet Adapter Driver (HKLM-x32\...\{D8102684-7BA1-4948-88B9-535F84E6E588}) (Version: 7.18.602.2015 - Lenovo)
ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.26.85 - Lenovo)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Unity Web Player (HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileCoAuthLib64.dll => No File
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\system32\igfxDTCM.dll [2017-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-12-19 12:01 - 2019-12-19 12:01 - 000366592 _____ ( ) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\97071a9704bb9412ec68751638269445\Interop.CxHDAudioAPILib.ni.dll
2019-12-19 12:01 - 2019-12-19 12:01 - 000018944 _____ ( ) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\d492c49ec7c96de6d2ae55f632940304\Interop.CxUtilSvcLib.ni.dll
2016-09-25 17:50 - 2016-04-14 06:08 - 000107008 ____N () [File not signed] C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.DLL
2017-06-15 12:05 - 2013-08-15 10:30 - 000005632 _____ () [File not signed] C:\Program Files (x86)\Y Soft\SafeQ Client\Client\cs-CZ\SafeQ Client.resources.dll
2011-03-10 15:14 - 2011-03-10 15:14 - 000015360 _____ () [File not signed] C:\windows\System32\KOAYXJ_L.DLL
2017-06-15 12:04 - 2013-12-11 09:19 - 000911360 _____ () [File not signed] C:\windows\System32\SafeQCairoLib64.dll
2017-06-15 12:04 - 2013-12-11 09:19 - 004077568 _____ () [File not signed] C:\windows\System32\SAFEQVS64.DLL
2017-01-19 08:15 - 2016-10-04 15:51 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2014-01-27 12:32 - 2014-01-27 12:32 - 000017408 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\windows\System32\KOFYQJ1L.DLL
2003-03-18 21:12 - 2003-03-18 21:12 - 001047552 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MFC71U.DLL
2003-03-18 20:14 - 2003-03-18 20:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MSVCP71.dll
2003-02-21 04:42 - 2003-02-21 04:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MSVCR71.dll
2019-03-27 22:34 - 2019-03-27 22:34 - 000130560 _____ (Microsoft Corporation) [File not signed] C:\windows\Microsoft.Net\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2016-09-25 18:15 - 2016-09-25 18:15 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2016-09-25 18:15 - 2016-09-25 18:15 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2017-06-15 12:05 - 2014-01-27 12:32 - 000083968 _____ (Monotype Imaging Inc.) [File not signed] C:\windows\system32\spool\PRTPROCS\x64\KOFYQJ1P.dll
2016-12-01 16:37 - 2015-11-12 14:33 - 000312320 _____ (Xerox Corporation) [File not signed] C:\windows\system32\spool\DRIVERS\x64\3\Xerox\Language Data\V5.0\cs\x2txtVH.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\sharepoint.com -> hxxps://arrivagroup-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2017-09-26 13:55 - 000000828 _____ C:\windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Lenovo\Touch Fingerprint Software\;C:\Program Files (x86)\Common Files\Lenovo;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files (x86)\Lenovo\Access Connections\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\UCRT\;C:\Program Files\Intel\UCRT\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.4.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{E15A7E75-68B8-4560-8A34-1B069C0ABBF5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{3DCA92CC-0285-4F06-85E0-571B9CC424A9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{6773A2C6-6A23-49F4-BBD3-0503B2CCFC43}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [{A11E7015-9EFD-436F-8690-F8F681B4CF17}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [TCP Query User{B0C53834-D02B-42A5-A74C-DD2537156BB6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [UDP Query User{8DBD8F48-21B6-427E-AE99-B37B0547C5F9}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [{6F82152E-592C-4C37-BBB4-0B9DA2B6E5E1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{C0890717-0836-4730-B6ED-C70B52EE04BD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{2328F931-C54F-4BB7-80D0-79AB5796C223}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{EC000FB9-BA84-4CF7-9EF0-E928AACEB663}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{56BB9ABE-8F2B-4EE4-B13C-55851A1CFACC}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{6EBED7C8-9E91-4297-B1AF-E112C5589613}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{B5263E3C-0E01-4734-88A9-C0D2A82A31E7}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [{9452C8AF-9427-4CE8-81E5-FD3FC4872AAC}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [{73D05B18-6AE0-4026-A2FE-AED7CF88F25B}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [TCP Query User{7907BFC8-ECA4-44E3-98AF-C364008D2244}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [UDP Query User{166DA7BE-F59C-4F65-8C71-DFAE2796C240}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{EBB2161B-0900-455E-9D02-BFFF7367F1F3}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{3C46BBBE-5408-4222-B4A1-998BCE3708B8}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{B12F8A01-C359-4188-96F8-DA079C326818}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{75509381-A825-4067-807F-BC07B7CBFA46}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{86D7BA4B-5B61-4BA3-A1B5-A41D712A74DB}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{D6FB86DD-30B6-4605-82E7-13F7D9A9272B}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{6A8ED8C4-4985-4FE3-A6B8-24D76EE23D45}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{2CA9505A-6310-4D67-8081-41DA60DE2C51}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{6E9370EF-C8C7-4DCB-A9E9-9C2598ACEAB1}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [TCP Query User{06F61F08-6B47-4115-B130-787D0904AD78}C:\users\User\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\User\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{E2EFE2BF-F2F5-4B67-917A-84DF49CA9BBC}C:\users\User\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\User\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{44702919-8EDB-4C89-8EC0-0290067D59AB}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{8B6AA8D0-D65E-40B2-84CE-BBA716C397B1}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{6349C3E6-1B6E-4AA9-B579-0E718925E461}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{613973F3-6588-402E-9607-410E60E58F5B}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{584D30D9-0335-47FA-B120-02DD75FF5247}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [UDP Query User{8274EB7D-3C17-4360-BAAE-233F37139C80}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [{A44351A7-2560-407E-8DF7-9E1D65429472}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FD9DA047-279D-4D15-B84A-CE7EEC8E68B2}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{2097082B-7E2A-4E3B-9793-66D8BABED76F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E7912B3C-3EFA-47F4-820B-CDB8F5299B51}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{8D826799-3DD3-431C-8F74-E229AE6C17EE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{099F3126-26F2-45D2-98BF-4642C9F49976}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe () [File not signed]
FirewallRules: [{06313568-4EB5-49FD-97A2-62969C121FB6}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{BB772583-14EF-4D7B-AD0F-AEEA8B25C9BB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{D5395935-A15C-4742-85EE-5C813124ECC5}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{E1618C00-764A-40D4-B7C0-5A66F2FFE54C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe No File
FirewallRules: [{FEA0883E-049C-4380-8754-0884EF827D0A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe No File
FirewallRules: [{DA04E61C-DCBB-47DD-BBE7-B6AF4DEE7345}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{5A7CACCC-314A-4B70-86E8-0B54EF88F404}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/04/2020 02:06:53 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/28/2019 02:35:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RtsCM64.exe, verze: 1.0.0.88, časové razítko: 0x5728543d
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24540, časové razítko: 0x5ddf3f5f
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000bf232
ID chybujícího procesu: 0x1244
Čas spuštění chybující aplikace: 0x01d5bb0afa74fe41
Cesta k chybující aplikaci: C:\windows\RtsCM64.exe
Cesta k chybujícímu modulu: C:\windows\SYSTEM32\ntdll.dll
ID zprávy: e87d58b0-2976-11ea-8df6-54ee75af747f
Error: (12/27/2019 06:42:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LogonUI.exe, verze: 6.1.7601.17514, časové razítko: 0x4ce79f70
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.24540, časové razítko: 0x5ddf3fa2
Kód výjimky: 0x80004004
Posun chyby: 0x000000000000b87d
ID chybujícího procesu: 0x12c8
Čas spuštění chybující aplikace: 0x01d5bcd9c414a4b0
Cesta k chybující aplikaci: C:\windows\system32\LogonUI.exe
Cesta k chybujícímu modulu: C:\windows\system32\KERNELBASE.dll
ID zprávy: 390096f0-28d0-11ea-8df6-54ee75af747f
Error: (12/25/2019 11:06:08 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (12/25/2019 11:06:08 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (12/25/2019 11:06:08 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (12/24/2019 03:17:37 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (12/24/2019 03:17:37 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0
System errors:
=============
Error: (01/01/2020 10:01:09 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/26/2019 03:44:37 AM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/26/2019 03:00:50 AM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/25/2019 07:07:11 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/25/2019 11:06:22 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom
Error: (12/25/2019 11:05:42 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070308): Aktualizace zabezpečení systému Windows 7 pro systémy na platformě x64 (KB3075226).
Error: (12/25/2019 11:05:42 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070308): Aktualizace systému Windows 7 pro systémy na platformě x64 (KB2923545).
Error: (12/25/2019 11:05:34 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2018-05-30 08:40:15.267
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{72075FD7-E8C0-45DB-AE8D-90584B55ABFD}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2017-10-31 09:09:04.509
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{5C876C4F-6444-4702-B8A9-76F38B60F403}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-07-06 12:56:42.583
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.271.442.0
Předchozí verze podpisu:1.269.1075.0
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:1.1.15000.2
Předchozí verze modulu:1.1.14901.4
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2018-07-06 12:56:42.583
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.15000.2
Předchozí verze modulu:1.1.14901.4
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2018-03-07 09:07:46.811
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2018-02-16 18:13:39.903
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2017-04-04 18:13:25.299
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
CodeIntegrity:
===================================
Date: 2017-04-03 14:02:42.733
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-04-03 14:02:42.730
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-27 14:02:42.334
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-27 14:02:42.332
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: LENOVO N1FET59W (1.33 ) 12/19/2017
Motherboard: LENOVO 20FB002UMC
Processor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Percentage of memory in use: 87%
Total physical RAM: 8063.59 MB
Available physical RAM: 1036.68 MB
Total Virtual: 16125.32 MB
Available Virtual: 6761.66 MB
==================== Drives ================================
Drive c: (Windows7_OS) (Fixed) (Total:224.57 GB) (Free:4.97 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:13.68 GB) (Free:3.73 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: E18CAEFD)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Diky za odpověď, zasílám níže:
# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build: 12-17-2019
# Database: 2020-01-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-08-2020
# Duration: 00:00:03
# OS: Windows 7 Professional
# Cleaned: 3
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Deleted http://start.facemoods.com/?a=ddrnw
Deleted http://www.yessearches.com/?mode=nnnb&p ... AXIsCHIsA0..
Deleted yessearches
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4920 octets] - [08/01/2020 18:02:02]
AdwCleaner[S01].txt - [4981 octets] - [08/01/2020 18:04:43]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build: 12-17-2019
# Database: 2020-01-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-08-2020
# Duration: 00:00:03
# OS: Windows 7 Professional
# Cleaned: 3
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Deleted http://start.facemoods.com/?a=ddrnw
Deleted http://www.yessearches.com/?mode=nnnb&p ... AXIsCHIsA0..
Deleted yessearches
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4920 octets] - [08/01/2020 18:02:02]
AdwCleaner[S01].txt - [4981 octets] - [08/01/2020 18:04:43]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-01-2020
Ran by User (administrator) on N-USER (LENOVO 20FB002UMC) (08-01-2020 23:22:48)
Running from C:\Users\User\Desktop
Loaded Profiles: User (Available Profiles: User)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe
() [File not signed] C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\88.4.172\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\88.4.172\QtWebEngineProcess.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\ZOOM\tpfsm.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(LENOVO -> Lenovo.) C:\Windows\System32\TpShocks.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7822312 2015-04-20] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [TpShocks] => C:\windows\system32\TpShocks.exe [555688 2015-08-21] (LENOVO -> Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [296664 2017-05-12] (Lenovo -> Lenovo Group Limited)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [70672 2016-06-23] (LENOVO -> Lenovo)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [602968 2017-03-15] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [OneLinkManager] => C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe [1083904 2015-05-30] () [File not signed]
HKLM-x32\...\Run: [PWMTRV] => C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6422696 2016-04-14] (LENOVO -> Lenovo Group Limited)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe [299520 2017-05-11] (Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation)
HKLM-x32\...\Run: [FrReminder] => C:\Users\User\AppData\Roaming\Lenovo\FrReminder\fr_setsched.cmd [ ]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6261760 2020-01-07] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SafeQ Client] => C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe [260096 2013-12-11] () [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: E - E:\Install.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {5c4b32fb-e4e1-11e7-a664-54ee75af747f} - D:\setup_mafia_czech_1.3_(16073).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {9ce027ce-f762-4612-87f1-d301e187c33c} - Q:\LenovoQDrive.cmd
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c79e-e55d-11e7-9168-54ee75af747f} - D:\setup_fallout_3_1.7.0.3_(12034).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c7a0-e55d-11e7-9168-54ee75af747f} - E:\Install.exe
HKU\S-1-5-18\...\Run: [script_fcbd] => "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat"
HKLM\Software\...\AppCompatFlags\Custom\Game.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Setup.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}: [DatabasePath] -> C:\windows\AppPatch\Custom\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb [2017-10-31]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{A324AC4C-2605-40C1-BF3C-926BD2A25975}] -> C:\windows\system32\SynaCP.dll [2016-12-28] (Synaptics Inc. -> Synaptics Incorporated.)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2017-06-05]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05340752-FD04-4293-9F07-B94C5A792DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {1C942F93-0422-42EA-85DB-FFF4E01BA3AF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {28F96966-2B9A-48B8-8A11-6B1D05E6C2EA} - System32\Tasks\DiskUpdate => C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe [6656 2009-02-10] () [File not signed]
Task: {40D0B1CC-8D6E-4063-858F-FEA3D19371DF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {43EDC2DA-5C41-4974-8066-2A634D1C90AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {4488F59D-F020-4B63-B012-B0860D5C33F5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1373592 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {4698E014-4E09-400D-9153-A473AAF15E5C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {6F718FCC-4BAB-4E7F-BC66-6694A6CB8FDD} - System32\Tasks\RtsCM => C:\windows\RtsCM64.exe [223488 2016-05-25] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
Task: {717908FB-2159-47F8-ABE2-40283D326423} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10197784 2017-06-09] (Lenovo -> Lenovo)
Task: {776DCC09-5B1A-46B5-8143-30BAB470D36A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D92D178-8F65-4834-A6BF-82BA5128ABE8} - System32\Tasks\TVT\LaunchFR => C:\Program Files (x86)\Lenovo\Factory Recovery\FRReminder.exe [641024 2015-12-23] (TODO: <Company name>) [File not signed]
Task: {83C54BD6-A612-44CB-997C-54962C799616} - System32\Tasks\Lenovo\Lenovo PowerENGAGE Update => C:\Program Files (x86)\Lenovo Registration\lenovoreg.exe [552992 2015-01-09] (Leader Technologies Inc -> Aviata Inc)
Task: {862CF1CC-D970-409B-8968-4F3BCAAC4C04} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {93790208-B065-42CA-AB59-72AF6ACCDC8D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1444144 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {98E01697-FB34-43F8-A366-BA243AC542D7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1373592 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {98E094E5-9356-44A6-8A56-7731E39C8B43} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [3649704 2016-04-14] (LENOVO -> Lenovo Group Limited)
Task: {A0A40578-9361-4EE9-80C6-29B30F7430EC} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10197784 2017-06-09] (Lenovo -> Lenovo)
Task: {A823BE12-E32F-46FB-A307-AF03418940AC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [112984 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8EB625B-554A-4AEA-B1EF-408C1668C68D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {A93A142D-EB62-4A50-9530-9DD16B022E2F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4321688 2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {ACDD387B-6A0C-442F-A4E3-F3FB44EC7DEE} - System32\Tasks\Lenovo\Lenovo PowerENGAGE => C:\Program Files (x86)\Lenovo Registration\lenovoreg.exe [552992 2015-01-09] (Leader Technologies Inc -> Aviata Inc)
Task: {BC6474EB-2872-4D7D-A335-C5E404406834} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [112984 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {C30854CF-C327-48D5-B763-D81F2670BD9E} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {C395EAC9-6E38-4463-B040-8E2C5A7027D8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {C3BC12F5-6F90-4A08-B784-3AE34CD6BCD6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4321688 2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C70991CD-A9B5-4D75-91A2-0CFFF27034CE} - System32\Tasks\TVT\updateFrReminder => "C:\Users\USER\AppData\Roaming\Lenovo\FrReminder\deleteUpdateReminder.cmd"
Task: {C83C4799-2009-4DEE-BC2A-A9B71BA05173} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA95D6EA-1BCB-4677-8D12-866A6685DD96} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321240 2017-06-09] (Lenovo -> Lenovo)
Task: {D47A2F71-D51C-4D80-BB9E-506840453844} - System32\Tasks\{958E9137-2257-4798-BFA9-C64F899A7AD0} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\strongholdcrusader_cz.exe" -d "C:\Users\User\Desktop"
Task: {D4B424A7-17C1-42DE-B6B5-9072B59FE76D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {DE82BB68-A0CE-4F96-9776-4F2BF93C3450} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3462915178-2026758371-2574779644-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {E436B607-8CCE-4227-8910-4A1BA2C7E1C6} - System32\Tasks\{CD37E19B-3E47-423A-BAC9-14831EB5EC54} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\Jagged_Alliance_2_(1999)_CZ.exe" -d "C:\Users\User\Desktop"
Task: {F8DDC19A-6CD8-44C7-9268-4811EA080B70} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1831744 2016-12-06] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {FDC08773-2106-4C70-8BFF-7AF42C0E9AFF} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264984 2017-06-09] (Lenovo -> )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.4.1
Tcpip\..\Interfaces\{08515082-EA50-4059-BB11-2250C54A7D5C}: [DhcpNameServer] 172.168.127.2
Tcpip\..\Interfaces\{F3E7B4FC-8600-49F6-AE06-2EDF5B4FD544}: [DhcpNameServer] 192.168.4.1
Internet Explorer:
==================
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17prewin10.msn.com/?pc=LCTE
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17prewin10.msn.com/?pc=LCTE
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> DefaultScope {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {538793D5-659C-4639-A56C-A179AD87ED44} hxxps://vpn.cd.cz/CACHE/stc/1/binaries/vpnweb.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3462915178-2026758371-2574779644-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS -> Unity Technologies ApS)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Notifications: Default -> hxxps://web.icq.com
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2020-01-08]
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-22]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-22]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-21]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-21]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-22]
CHR Extension: (Cestujlevne.com notifikátor) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\genojieiefkacjcapigbigafhebnmdfp [2019-01-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-18]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-08]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11345992 2019-11-28] (Microsoft Corporation -> Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2016-12-23] (Lenovo -> Lenovo)
R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [181584 2019-01-25] (Conexant Systems LLC -> Conexant Systems, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [44552 2020-01-07] (Dropbox, Inc -> Dropbox, Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [326160 2016-04-14] (LENOVO -> Lenovo.)
S3 EHttpSrv; C:\Program Files\ESET\ESET Endpoint Antivirus\ehttpsrv.exe [41160 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [1566424 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [2685640 2015-02-17] (ESET, spol. s r.o. -> ESET)
S3 eshasrv; C:\Program Files\ESET\ESET Endpoint Antivirus\eshasrv.exe [183496 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [125032 2015-06-26] (Intel Corporation - pGFX -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\windows\system32\igfxCUIService.exe [341936 2017-06-02] (Intel(R) pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [870248 2019-06-07] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [790376 2019-06-07] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [538088 2019-08-14] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [169176 2017-05-12] (Lenovo -> Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [114632 2015-07-14] (LENOVO -> Lenovo Group Limited)
S3 LenovoProdRegManager; C:\Program Files (x86)\Lenovo Registration\EngageService.exe [293416 2015-01-09] (Leader Technologies Inc -> Aviata, Inc.)
S2 LPlatSvc; C:\windows\system32\LPlatSvc.exe [892760 2018-12-25] (Lenovo -> Lenovo.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [271128 2017-06-09] (Lenovo -> Lenovo)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [311584 2019-05-14] (Intel Corporation -> )
R2 SAService; C:\windows\system32\SAsrv.exe [416576 2016-12-06] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [251432 2018-11-01] (Synaptics Incorporated -> Synaptics Incorporated)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4110624 2019-05-14] (Intel Corporation -> Intel® Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 btmaudio; C:\windows\System32\drivers\btmaud.sys [87864 2015-04-08] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmaux; C:\windows\System32\DRIVERS\btmaux.sys [141800 2015-04-02] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmhsf; C:\windows\System32\DRIVERS\btmhsf.sys [1445688 2014-11-20] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-12-19] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-12-19] (Disc Soft Ltd -> Disc Soft Ltd)
R3 e1dexpress; C:\windows\System32\DRIVERS\e1d62x64.sys [533496 2017-02-01] (Intel(R) INTELND1617 -> Intel Corporation)
R1 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [243464 2015-02-02] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [177032 2015-02-02] (ESET, spol. s r.o. -> ESET)
R2 epfwwfpr; C:\windows\System32\DRIVERS\epfwwfpr.sys [159992 2015-02-02] (ESET, spol. s r.o. -> ESET)
R3 HID_PCI; C:\windows\System32\DRIVERS\HID_PCI.sys [47896 2015-11-06] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R0 iaStorF; C:\windows\System32\DRIVERS\iaStorF.sys [32240 2016-06-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 ibtusb; C:\windows\System32\DRIVERS\ibtusb.sys [233200 2015-06-17] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 ISH; C:\windows\System32\DRIVERS\ISH.sys [135448 2015-11-08] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R3 ISH_BusDriver; C:\windows\System32\DRIVERS\ISH_BusDriver.sys [71448 2015-11-08] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R3 MEIx64; C:\windows\System32\DRIVERS\TeeDriverx64.sys [251968 2019-08-14] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 NETwNs64; C:\windows\System32\DRIVERS\Netwsw04.sys [3470536 2019-05-17] (Intel Corporation -> Intel Corporation)
R0 PMDRVS; C:\windows\System32\DRIVERS\pmdrvs.sys [44160 2018-12-25] (Lenovo -> Lenovo.)
S3 pmxdrv; C:\windows\system32\drivers\pmxdrv.sys [43632 2019-10-06] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 RTSPER; C:\windows\System32\DRIVERS\RtsPer.sys [777944 2016-05-25] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\windows\System32\DRIVERS\rtsuvc.sys [3119360 2016-05-25] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 rtux64w7; C:\windows\System32\DRIVERS\rtux64w7.sys [275200 2015-06-05] (Realtek Semiconductor Corp -> Realtek )
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [42536 2018-11-01] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 SynaMetSMI; C:\windows\System32\DRIVERS\SynaSmi.sys [39736 2016-12-28] (Synaptics Inc. -> Windows (R) Win 7 DDK provider)
S3 vpnva; C:\windows\System32\DRIVERS\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
R3 XtuAcpiDriver; C:\windows\System32\DRIVERS\XtuAcpiDriver.sys [54168 2017-04-18] (Intel Corporation -> Intel Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-08 23:22 - 2020-01-08 23:23 - 000035546 _____ C:\Users\User\Desktop\FRST.txt
2020-01-08 23:12 - 2020-01-08 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-01-08 17:59 - 2020-01-08 18:05 - 000000000 ____D C:\AdwCleaner
2020-01-08 17:59 - 2020-01-08 17:59 - 008237744 _____ (Malwarebytes) C:\Users\User\Desktop\adwcleaner_8.0.1.exe
2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2020-01-07 14:21 - 2020-01-07 14:21 - 000044552 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2020-01-07 12:56 - 2020-01-07 12:56 - 000104954 _____ C:\Users\User\Desktop\TTEU-2019-227912.pdf
2020-01-05 14:06 - 2020-01-05 17:14 - 000000000 ____D C:\Users\User\Desktop\nájemní smlouva
2020-01-04 14:45 - 2020-01-04 14:51 - 000000000 ____D C:\Users\User\AppData\Roaming\YouTubeByClick
2020-01-04 14:44 - 2020-01-04 14:49 - 000001987 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\YouTube By Click CZ.lnk
2020-01-04 14:44 - 2020-01-04 14:45 - 000000000 ____D C:\Program Files\YouTube By Click CZ
2020-01-04 14:13 - 2020-01-08 23:23 - 000000000 ____D C:\FRST
2020-01-04 14:12 - 2020-01-08 23:21 - 002573312 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2019-12-25 15:22 - 2019-12-25 15:22 - 000002012 _____ C:\Users\User\Desktop\DaVinci Resolve Project Server.lnk
2019-12-25 15:22 - 2019-12-25 15:22 - 000001992 _____ C:\Users\User\Desktop\Resolve.lnk
2019-12-25 15:20 - 2019-12-25 15:22 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2019-12-25 15:20 - 2019-12-25 15:20 - 000000000 ____D C:\Program Files\Blackmagic Design
2019-12-25 15:13 - 2019-12-25 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2019-12-25 11:14 - 2015-07-11 14:15 - 000429568 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2019-12-24 18:18 - 2019-05-19 01:33 - 000000000 ____D C:\Users\User\Desktop\Jakub Jan Ryba – Česká Mše Vánoční 1993
2019-12-24 03:10 - 2019-11-14 12:34 - 003187712 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2019-12-24 03:10 - 2019-09-10 03:02 - 006135296 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-12-24 03:10 - 2019-09-10 01:09 - 007082496 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-12-24 03:10 - 2018-11-18 03:44 - 000243200 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2019-12-24 03:10 - 2018-11-18 03:44 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2019-12-24 03:10 - 2014-12-11 18:47 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2019-12-19 11:43 - 2013-10-02 03:22 - 000056832 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys
2019-12-19 11:43 - 2013-10-02 03:11 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2019-12-19 11:43 - 2013-10-02 03:08 - 000012800 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2019-12-19 11:43 - 2013-10-02 02:48 - 000056832 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll
2019-12-19 11:43 - 2013-10-02 02:48 - 000018944 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2019-12-19 11:43 - 2013-10-02 02:29 - 000062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2019-12-19 11:43 - 2013-10-02 02:10 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll
2019-12-19 11:43 - 2013-10-02 01:15 - 001057280 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2019-12-19 11:43 - 2013-10-02 01:14 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\MsRdpWebAccess.dll
2019-12-19 11:43 - 2013-10-02 01:14 - 000017920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wksprtPS.dll
2019-12-19 11:43 - 2013-10-02 00:58 - 000053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2019-12-19 11:43 - 2013-10-02 00:31 - 001147392 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2019-12-19 11:43 - 2013-10-02 00:08 - 000855552 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2019-12-19 11:43 - 2013-10-01 23:34 - 001068544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2019-12-19 11:29 - 2019-12-19 11:29 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_XtuAcpiDriver_01011.Wdf
2019-12-19 11:29 - 2012-08-23 15:10 - 000019456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys
2019-12-19 11:29 - 2012-08-23 15:08 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbGD.sys
2019-12-19 11:29 - 2012-08-23 12:12 - 000192000 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpendp_winip.dll
2019-12-19 11:29 - 2012-08-23 11:51 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\kbdgeoqw.dll
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZEL.DLL
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZE.DLL
2019-12-19 11:20 - 2015-12-16 19:48 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZE.DLL
2019-12-19 11:20 - 2015-12-16 19:48 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\kbdgeoqw.dll
2019-12-19 11:20 - 2015-12-16 19:48 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZEL.DLL
2019-12-18 16:01 - 2019-12-18 16:01 - 000686422 _____ C:\Users\User\Desktop\Vyúčtování_Hegrova.pdf
2019-12-12 11:10 - 2019-12-12 19:09 - 000000000 ____D C:\Users\User\Desktop\Praha - photoshoot
2019-12-11 12:21 - 2019-12-06 06:27 - 000492032 _____ (Microsoft Corporation) C:\windows\system32\EOSNotify.exe
2019-12-11 12:21 - 2019-11-28 04:33 - 000710072 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-12-11 12:21 - 2019-11-28 04:32 - 004061616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-12-11 12:21 - 2019-11-28 04:32 - 003967416 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-12-11 12:21 - 2019-11-28 04:32 - 001320248 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-12-11 12:21 - 2019-11-28 04:32 - 000627664 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-12-11 12:21 - 2019-11-28 04:32 - 000264120 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-12-11 12:21 - 2019-11-28 04:32 - 000155576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-12-11 12:21 - 2019-11-28 04:32 - 000097208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-12-11 12:21 - 2019-11-28 04:31 - 005554104 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-12-11 12:21 - 2019-11-28 04:31 - 001671504 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001010176 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000834048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000555520 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:04 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-12-11 12:21 - 2019-11-28 04:03 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-12-11 12:21 - 2019-11-28 04:00 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-12-11 12:21 - 2019-11-28 04:00 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-12-11 12:21 - 2019-11-28 04:00 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-12-11 12:21 - 2019-11-28 03:59 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-12-11 12:21 - 2019-11-28 03:58 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-12-11 12:21 - 2019-11-28 03:57 - 003233280 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-12-11 12:21 - 2019-11-28 03:57 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-12-11 12:21 - 2019-11-28 03:57 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:56 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-12-11 12:21 - 2019-11-28 03:56 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-12-11 12:21 - 2019-11-28 03:53 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-12-11 12:21 - 2019-11-28 03:53 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-12-11 12:21 - 2019-11-28 03:51 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-12-11 12:21 - 2019-11-23 08:48 - 000390752 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-12-11 12:21 - 2019-11-23 07:57 - 000341896 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-12-11 12:21 - 2019-11-21 03:16 - 000580096 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-12-11 12:21 - 2019-11-21 03:16 - 000496640 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-12-11 12:21 - 2019-11-21 01:48 - 000629984 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2019-12-11 12:21 - 2019-11-19 21:56 - 025753088 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-12-11 12:21 - 2019-11-19 21:44 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-12-11 12:21 - 2019-11-19 21:44 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-12-11 12:21 - 2019-11-19 21:31 - 002910720 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-12-11 12:21 - 2019-11-19 21:30 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-12-11 12:21 - 2019-11-19 21:29 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-12-11 12:21 - 2019-11-19 21:29 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-12-11 12:21 - 2019-11-19 21:29 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-12-11 12:21 - 2019-11-19 21:22 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-12-11 12:21 - 2019-11-19 21:21 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-12-11 12:21 - 2019-11-19 21:19 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000797184 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-12-11 12:21 - 2019-11-19 21:18 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-12-11 12:21 - 2019-11-19 21:17 - 005500928 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-12-11 12:21 - 2019-11-19 21:10 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-12-11 12:21 - 2019-11-19 21:07 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-12-11 12:21 - 2019-11-19 21:01 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-12-11 12:21 - 2019-11-19 21:00 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-12-11 12:21 - 2019-11-19 21:00 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-12-11 12:21 - 2019-11-19 20:56 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-12-11 12:21 - 2019-11-19 20:56 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-12-11 12:21 - 2019-11-19 20:54 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-12-11 12:21 - 2019-11-19 20:52 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-12-11 12:21 - 2019-11-19 20:43 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-12-11 12:21 - 2019-11-19 20:41 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-12-11 12:21 - 2019-11-19 20:41 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-12-11 12:21 - 2019-11-19 20:39 - 002132992 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-12-11 12:21 - 2019-11-19 20:39 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-12-11 12:21 - 2019-11-19 20:36 - 015445504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-12-11 12:21 - 2019-11-19 20:26 - 004859392 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-12-11 12:21 - 2019-11-19 20:15 - 001566720 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-12-11 12:21 - 2019-11-19 20:04 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-12-11 12:21 - 2019-11-19 09:17 - 020290048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-12-11 12:21 - 2019-11-19 09:11 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-12-11 12:21 - 2019-11-19 08:59 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-12-11 12:21 - 2019-11-19 08:58 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-12-11 12:21 - 2019-11-19 08:58 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-12-11 12:21 - 2019-11-19 08:57 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-12-11 12:21 - 2019-11-19 08:56 - 002304000 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-12-11 12:21 - 2019-11-19 08:53 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-12-11 12:21 - 2019-11-19 08:52 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-12-11 12:21 - 2019-11-19 08:50 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000662528 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-12-11 12:21 - 2019-11-19 08:40 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-12-11 12:21 - 2019-11-19 08:36 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-12-11 12:21 - 2019-11-19 08:36 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-12-11 12:21 - 2019-11-19 08:35 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-12-11 12:21 - 2019-11-19 08:33 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-12-11 12:21 - 2019-11-19 08:33 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-12-11 12:21 - 2019-11-19 08:31 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-12-11 12:21 - 2019-11-19 08:30 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-12-11 12:21 - 2019-11-19 08:26 - 004112384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-12-11 12:21 - 2019-11-19 08:24 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-12-11 12:21 - 2019-11-19 08:23 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-12-11 12:21 - 2019-11-19 08:23 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-12-11 12:21 - 2019-11-19 08:22 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-12-11 12:21 - 2019-11-19 08:20 - 013838336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-12-11 12:21 - 2019-11-19 08:05 - 004387840 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-12-11 12:21 - 2019-11-19 08:01 - 001331712 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-12-11 12:21 - 2019-11-19 08:00 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-12-11 12:21 - 2019-11-15 03:32 - 000311008 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 001425920 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 001330176 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000479232 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscms.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000215040 _____ (Microsoft Corporation) C:\windows\SysWOW64\icm32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2019-12-11 12:21 - 2019-11-15 03:25 - 000385248 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 002072576 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 001574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000517632 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\WcsPlugInService.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000035840 _____ (Microsoft Corporation) C:\windows\system32\printfilterpipelineprxy.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000623104 _____ (Microsoft Corporation) C:\windows\system32\mscms.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000250880 _____ (Microsoft Corporation) C:\windows\system32\icm32.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2019-12-11 12:21 - 2019-11-15 03:06 - 000748544 _____ (Microsoft Corporation) C:\windows\system32\printfilterpipelinesvc.exe
2019-12-11 12:21 - 2019-11-15 03:04 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2019-12-11 12:21 - 2019-11-15 02:59 - 000034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2019-12-11 12:21 - 2019-11-15 02:59 - 000033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\WcsPlugInService.dll
2019-12-11 12:21 - 2019-11-15 02:58 - 000123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2019-12-11 12:21 - 2019-11-15 02:48 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2019-12-11 12:21 - 2019-11-15 02:45 - 000327680 _____ (Microsoft Corporation) C:\windows\system32\services.exe
2019-12-11 12:21 - 2019-11-05 22:25 - 000162016 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-12-11 12:21 - 2019-10-26 01:17 - 001717760 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-12-10 16:41 - 2019-12-26 17:32 - 000000000 ____D C:\Users\User\Desktop\Byt foto
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-08 23:12 - 2016-11-18 16:30 - 000000918 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-01-08 23:12 - 2016-11-18 16:30 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-01-08 23:12 - 2009-07-14 04:20 - 000000000 ____D C:\windows\inf
2020-01-08 18:14 - 2009-07-14 05:45 - 000032208 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-01-08 18:14 - 2009-07-14 05:45 - 000032208 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-01-08 18:12 - 2019-11-04 21:57 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2020-01-08 18:10 - 2016-09-25 18:17 - 000668792 _____ C:\windows\system32\perfh005.dat
2020-01-08 18:10 - 2016-09-25 18:17 - 000141420 _____ C:\windows\system32\perfc005.dat
2020-01-08 18:10 - 2009-07-14 06:13 - 001583226 _____ C:\windows\system32\PerfStringBackup.INI
2020-01-08 18:06 - 2018-02-22 13:32 - 000065536 _____ C:\windows\system32\Ikeext.etl
2020-01-08 18:06 - 2016-11-18 16:30 - 000000914 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-01-08 18:06 - 2016-11-17 10:59 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2020-01-08 18:06 - 2016-09-25 18:06 - 000000000 ____D C:\ProgramData\Validity
2020-01-08 18:06 - 2009-07-14 06:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-01-08 18:01 - 2009-07-14 04:20 - 000000000 ____D C:\windows\tracing
2020-01-07 21:13 - 2019-10-19 08:54 - 000000000 ____D C:\Users\User\AppData\Roaming\uTorrent
2020-01-06 19:00 - 2016-12-14 16:19 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2019-12-26 17:31 - 2019-11-03 21:00 - 000001104 _____ C:\Users\User\Desktop\Adobe Lightroom Classic CC.lnk
2019-12-25 15:14 - 2019-11-01 18:14 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2019-12-25 13:47 - 2019-07-17 11:12 - 000000000 ____D C:\windows\rescache
2019-12-24 03:17 - 2019-09-19 11:14 - 000000412 __RSH C:\ProgramData\ntuser.pol
2019-12-24 03:17 - 2009-07-14 05:45 - 000431256 _____ C:\windows\system32\FNTCACHE.DAT
2019-12-24 03:01 - 2016-09-25 17:51 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-12-22 21:00 - 2018-02-16 18:23 - 000002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-12-19 11:55 - 2009-07-14 04:20 - 000000000 ____D C:\windows\PolicyDefinitions
2019-12-19 11:42 - 2009-07-14 06:32 - 000000000 ____D C:\windows\system32\WinBioPlugIns
2019-12-19 11:28 - 2016-09-25 17:40 - 000000000 ____D C:\Program Files\Intel
2019-12-18 10:32 - 2015-10-22 16:36 - 001558876 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-12-18 10:29 - 2017-01-15 16:40 - 000000000 ____D C:\windows\system32\MRT
2019-12-18 10:10 - 2017-01-15 16:40 - 129221664 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-12-16 07:59 - 2019-10-05 13:01 - 000004128 _____ C:\windows\system32\Tasks\CCleaner Update
2019-12-15 20:42 - 2019-12-08 22:27 - 000000000 ____D C:\Users\User\Desktop\Loghtroom tutorial
2019-12-15 15:46 - 2016-09-25 18:15 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-12-15 15:45 - 2016-09-25 18:15 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-12-14 12:42 - 2018-02-16 18:22 - 000003388 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-12-14 12:42 - 2018-02-16 18:22 - 000003260 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-12-11 12:43 - 2016-11-17 10:59 - 000000000 ____D C:\Users\User
==================== Files in the root of some directories ========
2017-03-06 15:19 - 2017-03-06 15:19 - 000007609 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
2017-08-15 08:04 - 2017-08-15 08:04 - 000000000 _____ () C:\Users\User\AppData\Local\{50C0C264-FFDB-41F0-962A-12C712663B44}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-01-02 20:26
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-01-2020
Ran by User (08-01-2020 23:24:08)
Running from C:\Users\User\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-11-17 09:59:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3462915178-2026758371-2574779644-500 - Administrator - Disabled)
Guest (S-1-5-21-3462915178-2026758371-2574779644-501 - Limited - Disabled)
User (S-1-5-21-3462915178-2026758371-2574779644-1000 - Administrator - Enabled) => C:\Users\User
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Endpoint Antivirus 6.1.2222.1 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Endpoint Antivirus 6.1.2222.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_8_2) (Version: 8.2 - Adobe Systems Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{7999800f-411b-4d04-aadd-32b576d84592}) (Version: 21.20.1 - Intel Corporation)
Apowersoft Online Launcher version 1.7.5 (HKLM-x32\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.5 - APOWERSOFT LIMITED)
Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.62.54 - Conexant)
Connect2 (HKLM-x32\...\Connect2_is1) (Version: 4.2.0.3818 - Lenovo)
Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited)
DaVinci Resolve (HKLM\...\{5913037B-95C8-4A27-8F37-026BBC7B5AF1}) (Version: 16.1.2026 - Blackmagic Design)
DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{74ADC138-4768-4C5D-8123-B17527E513B5}) (Version: 1.3.1.0 - Blackmagic Design)
Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 88.4.172 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
ESET Endpoint Antivirus (HKLM\...\{0165402B-C509-49BA-ACC1-2EDB9BB3C493}) (Version: 6.1.2222.1 - ESET, spol. s r.o.)
ESET Remote Administrator Agent (HKLM\...\{A0E7525A-7F3D-407B-80DD-E992D2745203}) (Version: 6.1.365.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Integrated Camera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.10586.11196 - Realtek Semiconductor Corp.)
Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1933.12.0.1301 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 21.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4678 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.56.87.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{05817e4d-5f15-49b4-afec-7edb31fc7dd6}) (Version: 1.56.87.0 - Intel Corporation) Hidden
Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.4.43 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 18.1.1525.1421) (HKLM\...\{302600C1-6BDF-4FD1-1504-148929CC1385}) (Version: 18.1.1504.0518 - Intel Corporation)
Intel® Integrated Sensor Solution (HKLM-x32\...\{755abcd0-2942-482b-a27d-22921a5849f0}) (Version: 3.0.14.3056 - Intel Corporation)
ISS_Drivers_x64 (HKLM\...\{7E28859E-AD3D-4FC2-8D70-E345F8C87722}) (Version: 3.0.14.3056 - Intel Corporation) Hidden
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.81.00.07 - Lenovo)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.20 - Lenovo)
Lenovo Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.1.22.0 - Lenovo)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.18 - Lenovo) Hidden
Lenovo PowerENGAGE (HKLM-x32\...\{15B15395-FF53-44E1-ADAD-FCC279E3CA10}) (Version: 2.51.0040 - Lenovo Inc.)
Lenovo Scaling Utility (HKLM\...\Lenovo Scaling Utility) (Version: 3.10 - Lenovo)
Lenovo Solution Center (HKLM\...\{06913C0C-88EB-42AF-9D94-3E9136CEE9BC}) (Version: 3.6.002.003 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0088 - Lenovo)
Lenovo Touch Fingerprint Software (HKLM\...\{F2E59F3D-B840-402D-9397-FF71B92355DF}_is1) (Version: 1.00.11 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0009.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 2016 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.10 - Lenovo Group Limited)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21290 - Realtek Semiconduct Corp.)
Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 7.18.602.2015 - Realtek)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.140 - Synaptics Incorporated)
Synaptics WBF Fingerprint Reader Drivers (HKLM\...\{3EAF1BE2-2B6B-4A18-BCDD-E7FC39883570}) (Version: 5.1.311.26 - Synaptics Incorporated)
ThinkPad OneLink Plus Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.10.11 - Lenovo)
Thinkpad USB Ethernet Adapter Driver (HKLM-x32\...\{D8102684-7BA1-4948-88B9-535F84E6E588}) (Version: 7.18.602.2015 - Lenovo)
ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.26.85 - Lenovo)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Unity Web Player (HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.)
YouTube By Click CZ v.2.2.121 - 01.12.2019 (HKLM-x32\...\YouTube By Click CZ v.2.2.121 - 01.12.2019) (Version: v.2.2.121 - 01.12.2019 - Libbi)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileCoAuthLib64.dll => No File
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\system32\igfxDTCM.dll [2017-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-12-19 12:01 - 2019-12-19 12:01 - 000366592 _____ ( ) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\97071a9704bb9412ec68751638269445\Interop.CxHDAudioAPILib.ni.dll
2019-12-19 12:01 - 2019-12-19 12:01 - 000018944 _____ ( ) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\d492c49ec7c96de6d2ae55f632940304\Interop.CxUtilSvcLib.ni.dll
2016-09-25 17:50 - 2016-04-14 06:08 - 000107008 ____N () [File not signed] C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.DLL
2017-06-15 12:05 - 2013-08-15 10:30 - 000005632 _____ () [File not signed] C:\Program Files (x86)\Y Soft\SafeQ Client\Client\cs-CZ\SafeQ Client.resources.dll
2011-03-10 15:14 - 2011-03-10 15:14 - 000015360 _____ () [File not signed] C:\windows\System32\KOAYXJ_L.DLL
2017-06-15 12:04 - 2013-12-11 09:19 - 000911360 _____ () [File not signed] C:\windows\System32\SafeQCairoLib64.dll
2017-06-15 12:04 - 2013-12-11 09:19 - 004077568 _____ () [File not signed] C:\windows\System32\SAFEQVS64.DLL
2017-01-19 08:15 - 2016-10-04 15:51 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2014-01-27 12:32 - 2014-01-27 12:32 - 000017408 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\windows\System32\KOFYQJ1L.DLL
2003-03-18 21:12 - 2003-03-18 21:12 - 001047552 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MFC71U.DLL
2003-03-18 20:14 - 2003-03-18 20:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MSVCP71.dll
2003-02-21 04:42 - 2003-02-21 04:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MSVCR71.dll
2019-03-27 22:34 - 2019-03-27 22:34 - 000130560 _____ (Microsoft Corporation) [File not signed] C:\windows\Microsoft.Net\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2016-09-25 18:15 - 2016-09-25 18:15 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2016-09-25 18:15 - 2016-09-25 18:15 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2017-06-15 12:05 - 2014-01-27 12:32 - 000083968 _____ (Monotype Imaging Inc.) [File not signed] C:\windows\system32\spool\PRTPROCS\x64\KOFYQJ1P.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\sharepoint.com -> hxxps://arrivagroup-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2017-09-26 13:55 - 000000828 _____ C:\windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Lenovo\Touch Fingerprint Software\;C:\Program Files (x86)\Common Files\Lenovo;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files (x86)\Lenovo\Access Connections\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\UCRT\;C:\Program Files\Intel\UCRT\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.4.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{E15A7E75-68B8-4560-8A34-1B069C0ABBF5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{3DCA92CC-0285-4F06-85E0-571B9CC424A9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{6773A2C6-6A23-49F4-BBD3-0503B2CCFC43}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [{A11E7015-9EFD-436F-8690-F8F681B4CF17}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [TCP Query User{B0C53834-D02B-42A5-A74C-DD2537156BB6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [UDP Query User{8DBD8F48-21B6-427E-AE99-B37B0547C5F9}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [{6F82152E-592C-4C37-BBB4-0B9DA2B6E5E1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{C0890717-0836-4730-B6ED-C70B52EE04BD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{2328F931-C54F-4BB7-80D0-79AB5796C223}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{EC000FB9-BA84-4CF7-9EF0-E928AACEB663}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{56BB9ABE-8F2B-4EE4-B13C-55851A1CFACC}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{6EBED7C8-9E91-4297-B1AF-E112C5589613}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{B5263E3C-0E01-4734-88A9-C0D2A82A31E7}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [{9452C8AF-9427-4CE8-81E5-FD3FC4872AAC}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [{73D05B18-6AE0-4026-A2FE-AED7CF88F25B}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [TCP Query User{7907BFC8-ECA4-44E3-98AF-C364008D2244}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [UDP Query User{166DA7BE-F59C-4F65-8C71-DFAE2796C240}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{EBB2161B-0900-455E-9D02-BFFF7367F1F3}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{3C46BBBE-5408-4222-B4A1-998BCE3708B8}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{B12F8A01-C359-4188-96F8-DA079C326818}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{75509381-A825-4067-807F-BC07B7CBFA46}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{86D7BA4B-5B61-4BA3-A1B5-A41D712A74DB}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{D6FB86DD-30B6-4605-82E7-13F7D9A9272B}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{6A8ED8C4-4985-4FE3-A6B8-24D76EE23D45}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{2CA9505A-6310-4D67-8081-41DA60DE2C51}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{6E9370EF-C8C7-4DCB-A9E9-9C2598ACEAB1}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [TCP Query User{06F61F08-6B47-4115-B130-787D0904AD78}C:\users\User\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\User\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{E2EFE2BF-F2F5-4B67-917A-84DF49CA9BBC}C:\users\User\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\User\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{44702919-8EDB-4C89-8EC0-0290067D59AB}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{8B6AA8D0-D65E-40B2-84CE-BBA716C397B1}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{6349C3E6-1B6E-4AA9-B579-0E718925E461}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{613973F3-6588-402E-9607-410E60E58F5B}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{584D30D9-0335-47FA-B120-02DD75FF5247}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [UDP Query User{8274EB7D-3C17-4360-BAAE-233F37139C80}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [{A44351A7-2560-407E-8DF7-9E1D65429472}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2097082B-7E2A-4E3B-9793-66D8BABED76F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E7912B3C-3EFA-47F4-820B-CDB8F5299B51}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{8D826799-3DD3-431C-8F74-E229AE6C17EE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{099F3126-26F2-45D2-98BF-4642C9F49976}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe () [File not signed]
FirewallRules: [{06313568-4EB5-49FD-97A2-62969C121FB6}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{BB772583-14EF-4D7B-AD0F-AEEA8B25C9BB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{D5395935-A15C-4742-85EE-5C813124ECC5}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{E1618C00-764A-40D4-B7C0-5A66F2FFE54C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe No File
FirewallRules: [{FEA0883E-049C-4380-8754-0884EF827D0A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe No File
FirewallRules: [{DA04E61C-DCBB-47DD-BBE7-B6AF4DEE7345}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{5A7CACCC-314A-4B70-86E8-0B54EF88F404}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
FirewallRules: [{E337C171-0B6B-47B2-B580-2F50844C4AC4}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/08/2020 06:06:10 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:06:10 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:06:10 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:01:00 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:01:00 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:01:00 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/05/2020 11:14:31 AM) (Source: LSC.Services.SystemService) (EventID: 0) (User: )
Description: Službu nelze spustit. Neplatný popisovač
Error: (01/04/2020 02:06:53 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
System errors:
=============
Error: (01/08/2020 06:06:27 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom
Error: (01/08/2020 06:05:43 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (01/08/2020 06:05:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\windows\System32\IWMSSvc.dll
Error: (01/08/2020 06:05:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\windows\System32\IWMSSvc.dll
Error: (01/08/2020 06:05:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\windows\System32\IWMSSvc.dll
Error: (01/08/2020 06:05:35 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\windows\System32\IWMSSvc.dll
Error: (01/08/2020 06:05:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error: (01/08/2020 06:05:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMI Performance Adapter byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Windows Defender:
===================================
Date: 2018-05-30 08:40:15.267
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{72075FD7-E8C0-45DB-AE8D-90584B55ABFD}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2017-10-31 09:09:04.509
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{5C876C4F-6444-4702-B8A9-76F38B60F403}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-07-06 12:56:42.583
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.271.442.0
Předchozí verze podpisu:1.269.1075.0
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:1.1.15000.2
Předchozí verze modulu:1.1.14901.4
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2018-07-06 12:56:42.583
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.15000.2
Předchozí verze modulu:1.1.14901.4
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2018-03-07 09:07:46.811
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2018-02-16 18:13:39.903
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2017-04-04 18:13:25.299
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
CodeIntegrity:
===================================
Date: 2017-04-03 14:02:42.733
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-04-03 14:02:42.730
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-27 14:02:42.334
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-27 14:02:42.332
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: LENOVO N1FET59W (1.33 ) 12/19/2017
Motherboard: LENOVO 20FB002UMC
Processor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Percentage of memory in use: 54%
Total physical RAM: 8063.59 MB
Available physical RAM: 3684.43 MB
Total Virtual: 16125.32 MB
Available Virtual: 11563.88 MB
==================== Drives ================================
Drive c: (Windows7_OS) (Fixed) (Total:224.57 GB) (Free:17.21 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:13.68 GB) (Free:3.73 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: E18CAEFD)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by User (administrator) on N-USER (LENOVO 20FB002UMC) (08-01-2020 23:22:48)
Running from C:\Users\User\Desktop
Loaded Profiles: User (Available Profiles: User)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe
() [File not signed] C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\88.4.172\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\88.4.172\QtWebEngineProcess.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\ZOOM\tpfsm.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(LENOVO -> Lenovo.) C:\Windows\System32\TpShocks.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7822312 2015-04-20] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [TpShocks] => C:\windows\system32\TpShocks.exe [555688 2015-08-21] (LENOVO -> Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [296664 2017-05-12] (Lenovo -> Lenovo Group Limited)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [70672 2016-06-23] (LENOVO -> Lenovo)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [602968 2017-03-15] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [OneLinkManager] => C:\Program Files (x86)\Lenovo\OneLink Plus Dock\onelinkpromgn.exe [1083904 2015-05-30] () [File not signed]
HKLM-x32\...\Run: [PWMTRV] => C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6422696 2016-04-14] (LENOVO -> Lenovo Group Limited)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe [299520 2017-05-11] (Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation)
HKLM-x32\...\Run: [FrReminder] => C:\Users\User\AppData\Roaming\Lenovo\FrReminder\fr_setsched.cmd [ ]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6261760 2020-01-07] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SafeQ Client] => C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe [260096 2013-12-11] () [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\Run: [ownCloud] => C:\Program Files (x86)\ownCloud\owncloud.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: E - E:\Install.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {5c4b32fb-e4e1-11e7-a664-54ee75af747f} - D:\setup_mafia_czech_1.3_(16073).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {9ce027ce-f762-4612-87f1-d301e187c33c} - Q:\LenovoQDrive.cmd
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c79e-e55d-11e7-9168-54ee75af747f} - D:\setup_fallout_3_1.7.0.3_(12034).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c7a0-e55d-11e7-9168-54ee75af747f} - E:\Install.exe
HKU\S-1-5-18\...\Run: [script_fcbd] => "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat"
HKLM\Software\...\AppCompatFlags\Custom\Game.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Setup.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}: [DatabasePath] -> C:\windows\AppPatch\Custom\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb [2017-10-31]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{A324AC4C-2605-40C1-BF3C-926BD2A25975}] -> C:\windows\system32\SynaCP.dll [2016-12-28] (Synaptics Inc. -> Synaptics Incorporated.)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2017-06-05]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05340752-FD04-4293-9F07-B94C5A792DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {1C942F93-0422-42EA-85DB-FFF4E01BA3AF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {28F96966-2B9A-48B8-8A11-6B1D05E6C2EA} - System32\Tasks\DiskUpdate => C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe [6656 2009-02-10] () [File not signed]
Task: {40D0B1CC-8D6E-4063-858F-FEA3D19371DF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {43EDC2DA-5C41-4974-8066-2A634D1C90AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {4488F59D-F020-4B63-B012-B0860D5C33F5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1373592 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {4698E014-4E09-400D-9153-A473AAF15E5C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {6F718FCC-4BAB-4E7F-BC66-6694A6CB8FDD} - System32\Tasks\RtsCM => C:\windows\RtsCM64.exe [223488 2016-05-25] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
Task: {717908FB-2159-47F8-ABE2-40283D326423} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10197784 2017-06-09] (Lenovo -> Lenovo)
Task: {776DCC09-5B1A-46B5-8143-30BAB470D36A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D92D178-8F65-4834-A6BF-82BA5128ABE8} - System32\Tasks\TVT\LaunchFR => C:\Program Files (x86)\Lenovo\Factory Recovery\FRReminder.exe [641024 2015-12-23] (TODO: <Company name>) [File not signed]
Task: {83C54BD6-A612-44CB-997C-54962C799616} - System32\Tasks\Lenovo\Lenovo PowerENGAGE Update => C:\Program Files (x86)\Lenovo Registration\lenovoreg.exe [552992 2015-01-09] (Leader Technologies Inc -> Aviata Inc)
Task: {862CF1CC-D970-409B-8968-4F3BCAAC4C04} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {93790208-B065-42CA-AB59-72AF6ACCDC8D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1444144 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {98E01697-FB34-43F8-A366-BA243AC542D7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1373592 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {98E094E5-9356-44A6-8A56-7731E39C8B43} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [3649704 2016-04-14] (LENOVO -> Lenovo Group Limited)
Task: {A0A40578-9361-4EE9-80C6-29B30F7430EC} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10197784 2017-06-09] (Lenovo -> Lenovo)
Task: {A823BE12-E32F-46FB-A307-AF03418940AC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [112984 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8EB625B-554A-4AEA-B1EF-408C1668C68D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24671608 2019-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {A93A142D-EB62-4A50-9530-9DD16B022E2F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4321688 2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {ACDD387B-6A0C-442F-A4E3-F3FB44EC7DEE} - System32\Tasks\Lenovo\Lenovo PowerENGAGE => C:\Program Files (x86)\Lenovo Registration\lenovoreg.exe [552992 2015-01-09] (Leader Technologies Inc -> Aviata Inc)
Task: {BC6474EB-2872-4D7D-A335-C5E404406834} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [112984 2019-12-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {C30854CF-C327-48D5-B763-D81F2670BD9E} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {C395EAC9-6E38-4463-B040-8E2C5A7027D8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {C3BC12F5-6F90-4A08-B784-3AE34CD6BCD6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4321688 2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C70991CD-A9B5-4D75-91A2-0CFFF27034CE} - System32\Tasks\TVT\updateFrReminder => "C:\Users\USER\AppData\Roaming\Lenovo\FrReminder\deleteUpdateReminder.cmd"
Task: {C83C4799-2009-4DEE-BC2A-A9B71BA05173} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA95D6EA-1BCB-4677-8D12-866A6685DD96} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321240 2017-06-09] (Lenovo -> Lenovo)
Task: {D47A2F71-D51C-4D80-BB9E-506840453844} - System32\Tasks\{958E9137-2257-4798-BFA9-C64F899A7AD0} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\strongholdcrusader_cz.exe" -d "C:\Users\User\Desktop"
Task: {D4B424A7-17C1-42DE-B6B5-9072B59FE76D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {DE82BB68-A0CE-4F96-9776-4F2BF93C3450} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3462915178-2026758371-2574779644-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {E436B607-8CCE-4227-8910-4A1BA2C7E1C6} - System32\Tasks\{CD37E19B-3E47-423A-BAC9-14831EB5EC54} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\Jagged_Alliance_2_(1999)_CZ.exe" -d "C:\Users\User\Desktop"
Task: {F8DDC19A-6CD8-44C7-9268-4811EA080B70} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1831744 2016-12-06] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {FDC08773-2106-4C70-8BFF-7AF42C0E9AFF} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264984 2017-06-09] (Lenovo -> )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.4.1
Tcpip\..\Interfaces\{08515082-EA50-4059-BB11-2250C54A7D5C}: [DhcpNameServer] 172.168.127.2
Tcpip\..\Interfaces\{F3E7B4FC-8600-49F6-AE06-2EDF5B4FD544}: [DhcpNameServer] 192.168.4.1
Internet Explorer:
==================
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17prewin10.msn.com/?pc=LCTE
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17prewin10.msn.com/?pc=LCTE
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> DefaultScope {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {538793D5-659C-4639-A56C-A179AD87ED44} hxxps://vpn.cd.cz/CACHE/stc/1/binaries/vpnweb.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3462915178-2026758371-2574779644-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS -> Unity Technologies ApS)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Notifications: Default -> hxxps://web.icq.com
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2020-01-08]
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-22]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-22]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-21]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-21]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-22]
CHR Extension: (Cestujlevne.com notifikátor) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\genojieiefkacjcapigbigafhebnmdfp [2019-01-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-18]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-08]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11345992 2019-11-28] (Microsoft Corporation -> Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2016-12-23] (Lenovo -> Lenovo)
R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [181584 2019-01-25] (Conexant Systems LLC -> Conexant Systems, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [44552 2020-01-07] (Dropbox, Inc -> Dropbox, Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [326160 2016-04-14] (LENOVO -> Lenovo.)
S3 EHttpSrv; C:\Program Files\ESET\ESET Endpoint Antivirus\ehttpsrv.exe [41160 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [1566424 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [2685640 2015-02-17] (ESET, spol. s r.o. -> ESET)
S3 eshasrv; C:\Program Files\ESET\ESET Endpoint Antivirus\eshasrv.exe [183496 2015-02-16] (ESET, spol. s r.o. -> ESET)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [125032 2015-06-26] (Intel Corporation - pGFX -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\windows\system32\igfxCUIService.exe [341936 2017-06-02] (Intel(R) pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [870248 2019-06-07] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [790376 2019-06-07] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [538088 2019-08-14] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [169176 2017-05-12] (Lenovo -> Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [114632 2015-07-14] (LENOVO -> Lenovo Group Limited)
S3 LenovoProdRegManager; C:\Program Files (x86)\Lenovo Registration\EngageService.exe [293416 2015-01-09] (Leader Technologies Inc -> Aviata, Inc.)
S2 LPlatSvc; C:\windows\system32\LPlatSvc.exe [892760 2018-12-25] (Lenovo -> Lenovo.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [271128 2017-06-09] (Lenovo -> Lenovo)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [311584 2019-05-14] (Intel Corporation -> )
R2 SAService; C:\windows\system32\SAsrv.exe [416576 2016-12-06] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [251432 2018-11-01] (Synaptics Incorporated -> Synaptics Incorporated)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4110624 2019-05-14] (Intel Corporation -> Intel® Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 btmaudio; C:\windows\System32\drivers\btmaud.sys [87864 2015-04-08] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmaux; C:\windows\System32\DRIVERS\btmaux.sys [141800 2015-04-02] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmhsf; C:\windows\System32\DRIVERS\btmhsf.sys [1445688 2014-11-20] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-12-19] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-12-19] (Disc Soft Ltd -> Disc Soft Ltd)
R3 e1dexpress; C:\windows\System32\DRIVERS\e1d62x64.sys [533496 2017-02-01] (Intel(R) INTELND1617 -> Intel Corporation)
R1 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [243464 2015-02-02] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [177032 2015-02-02] (ESET, spol. s r.o. -> ESET)
R2 epfwwfpr; C:\windows\System32\DRIVERS\epfwwfpr.sys [159992 2015-02-02] (ESET, spol. s r.o. -> ESET)
R3 HID_PCI; C:\windows\System32\DRIVERS\HID_PCI.sys [47896 2015-11-06] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R0 iaStorF; C:\windows\System32\DRIVERS\iaStorF.sys [32240 2016-06-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 ibtusb; C:\windows\System32\DRIVERS\ibtusb.sys [233200 2015-06-17] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 ISH; C:\windows\System32\DRIVERS\ISH.sys [135448 2015-11-08] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R3 ISH_BusDriver; C:\windows\System32\DRIVERS\ISH_BusDriver.sys [71448 2015-11-08] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel)
R3 MEIx64; C:\windows\System32\DRIVERS\TeeDriverx64.sys [251968 2019-08-14] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 NETwNs64; C:\windows\System32\DRIVERS\Netwsw04.sys [3470536 2019-05-17] (Intel Corporation -> Intel Corporation)
R0 PMDRVS; C:\windows\System32\DRIVERS\pmdrvs.sys [44160 2018-12-25] (Lenovo -> Lenovo.)
S3 pmxdrv; C:\windows\system32\drivers\pmxdrv.sys [43632 2019-10-06] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 RTSPER; C:\windows\System32\DRIVERS\RtsPer.sys [777944 2016-05-25] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\windows\System32\DRIVERS\rtsuvc.sys [3119360 2016-05-25] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 rtux64w7; C:\windows\System32\DRIVERS\rtux64w7.sys [275200 2015-06-05] (Realtek Semiconductor Corp -> Realtek )
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [42536 2018-11-01] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 SynaMetSMI; C:\windows\System32\DRIVERS\SynaSmi.sys [39736 2016-12-28] (Synaptics Inc. -> Windows (R) Win 7 DDK provider)
S3 vpnva; C:\windows\System32\DRIVERS\vpnva64-6.sys [52592 2016-02-29] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
R3 XtuAcpiDriver; C:\windows\System32\DRIVERS\XtuAcpiDriver.sys [54168 2017-04-18] (Intel Corporation -> Intel Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-08 23:22 - 2020-01-08 23:23 - 000035546 _____ C:\Users\User\Desktop\FRST.txt
2020-01-08 23:12 - 2020-01-08 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-01-08 17:59 - 2020-01-08 18:05 - 000000000 ____D C:\AdwCleaner
2020-01-08 17:59 - 2020-01-08 17:59 - 008237744 _____ (Malwarebytes) C:\Users\User\Desktop\adwcleaner_8.0.1.exe
2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2020-01-07 14:21 - 2020-01-07 14:21 - 000044552 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2020-01-07 12:56 - 2020-01-07 12:56 - 000104954 _____ C:\Users\User\Desktop\TTEU-2019-227912.pdf
2020-01-05 14:06 - 2020-01-05 17:14 - 000000000 ____D C:\Users\User\Desktop\nájemní smlouva
2020-01-04 14:45 - 2020-01-04 14:51 - 000000000 ____D C:\Users\User\AppData\Roaming\YouTubeByClick
2020-01-04 14:44 - 2020-01-04 14:49 - 000001987 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\YouTube By Click CZ.lnk
2020-01-04 14:44 - 2020-01-04 14:45 - 000000000 ____D C:\Program Files\YouTube By Click CZ
2020-01-04 14:13 - 2020-01-08 23:23 - 000000000 ____D C:\FRST
2020-01-04 14:12 - 2020-01-08 23:21 - 002573312 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2019-12-25 15:22 - 2019-12-25 15:22 - 000002012 _____ C:\Users\User\Desktop\DaVinci Resolve Project Server.lnk
2019-12-25 15:22 - 2019-12-25 15:22 - 000001992 _____ C:\Users\User\Desktop\Resolve.lnk
2019-12-25 15:20 - 2019-12-25 15:22 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2019-12-25 15:20 - 2019-12-25 15:20 - 000000000 ____D C:\Program Files\Blackmagic Design
2019-12-25 15:13 - 2019-12-25 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2019-12-25 11:14 - 2015-07-11 14:15 - 000429568 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2019-12-24 18:18 - 2019-05-19 01:33 - 000000000 ____D C:\Users\User\Desktop\Jakub Jan Ryba – Česká Mše Vánoční 1993
2019-12-24 03:10 - 2019-11-14 12:34 - 003187712 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2019-12-24 03:10 - 2019-09-10 03:02 - 006135296 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-12-24 03:10 - 2019-09-10 01:09 - 007082496 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-12-24 03:10 - 2018-11-18 03:44 - 000243200 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2019-12-24 03:10 - 2018-11-18 03:44 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2019-12-24 03:10 - 2014-12-11 18:47 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2019-12-19 11:43 - 2013-10-02 03:22 - 000056832 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys
2019-12-19 11:43 - 2013-10-02 03:11 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2019-12-19 11:43 - 2013-10-02 03:08 - 000012800 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2019-12-19 11:43 - 2013-10-02 02:48 - 000056832 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll
2019-12-19 11:43 - 2013-10-02 02:48 - 000018944 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2019-12-19 11:43 - 2013-10-02 02:29 - 000062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2019-12-19 11:43 - 2013-10-02 02:10 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll
2019-12-19 11:43 - 2013-10-02 01:15 - 001057280 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2019-12-19 11:43 - 2013-10-02 01:14 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\MsRdpWebAccess.dll
2019-12-19 11:43 - 2013-10-02 01:14 - 000017920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wksprtPS.dll
2019-12-19 11:43 - 2013-10-02 00:58 - 000053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2019-12-19 11:43 - 2013-10-02 00:31 - 001147392 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2019-12-19 11:43 - 2013-10-02 00:08 - 000855552 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2019-12-19 11:43 - 2013-10-01 23:34 - 001068544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2019-12-19 11:29 - 2019-12-19 11:29 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_XtuAcpiDriver_01011.Wdf
2019-12-19 11:29 - 2012-08-23 15:10 - 000019456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys
2019-12-19 11:29 - 2012-08-23 15:08 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbGD.sys
2019-12-19 11:29 - 2012-08-23 12:12 - 000192000 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpendp_winip.dll
2019-12-19 11:29 - 2012-08-23 11:51 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\kbdgeoqw.dll
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZEL.DLL
2019-12-19 11:20 - 2015-12-16 19:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZE.DLL
2019-12-19 11:20 - 2015-12-16 19:48 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZE.DLL
2019-12-19 11:20 - 2015-12-16 19:48 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\kbdgeoqw.dll
2019-12-19 11:20 - 2015-12-16 19:48 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZEL.DLL
2019-12-18 16:01 - 2019-12-18 16:01 - 000686422 _____ C:\Users\User\Desktop\Vyúčtování_Hegrova.pdf
2019-12-12 11:10 - 2019-12-12 19:09 - 000000000 ____D C:\Users\User\Desktop\Praha - photoshoot
2019-12-11 12:21 - 2019-12-06 06:27 - 000492032 _____ (Microsoft Corporation) C:\windows\system32\EOSNotify.exe
2019-12-11 12:21 - 2019-11-28 04:33 - 000710072 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-12-11 12:21 - 2019-11-28 04:32 - 004061616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-12-11 12:21 - 2019-11-28 04:32 - 003967416 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-12-11 12:21 - 2019-11-28 04:32 - 001320248 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-12-11 12:21 - 2019-11-28 04:32 - 000627664 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-12-11 12:21 - 2019-11-28 04:32 - 000264120 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-12-11 12:21 - 2019-11-28 04:32 - 000155576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-12-11 12:21 - 2019-11-28 04:32 - 000097208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-12-11 12:21 - 2019-11-28 04:31 - 005554104 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-12-11 12:21 - 2019-11-28 04:31 - 001671504 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 001010176 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000834048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000555520 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 04:04 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-12-11 12:21 - 2019-11-28 04:03 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-12-11 12:21 - 2019-11-28 04:00 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-12-11 12:21 - 2019-11-28 04:00 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-12-11 12:21 - 2019-11-28 04:00 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-12-11 12:21 - 2019-11-28 03:59 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-12-11 12:21 - 2019-11-28 03:58 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-12-11 12:21 - 2019-11-28 03:58 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-12-11 12:21 - 2019-11-28 03:57 - 003233280 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-12-11 12:21 - 2019-11-28 03:57 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-12-11 12:21 - 2019-11-28 03:57 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:57 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-12-11 12:21 - 2019-11-28 03:56 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-12-11 12:21 - 2019-11-28 03:56 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-12-11 12:21 - 2019-11-28 03:53 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-12-11 12:21 - 2019-11-28 03:53 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-12-11 12:21 - 2019-11-28 03:52 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-12-11 12:21 - 2019-11-28 03:51 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-12-11 12:21 - 2019-11-28 03:51 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-12-11 12:21 - 2019-11-23 08:48 - 000390752 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-12-11 12:21 - 2019-11-23 07:57 - 000341896 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-12-11 12:21 - 2019-11-21 03:16 - 000580096 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-12-11 12:21 - 2019-11-21 03:16 - 000496640 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-12-11 12:21 - 2019-11-21 01:48 - 000629984 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2019-12-11 12:21 - 2019-11-19 21:56 - 025753088 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-12-11 12:21 - 2019-11-19 21:44 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-12-11 12:21 - 2019-11-19 21:44 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-12-11 12:21 - 2019-11-19 21:31 - 002910720 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-12-11 12:21 - 2019-11-19 21:30 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-12-11 12:21 - 2019-11-19 21:29 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-12-11 12:21 - 2019-11-19 21:29 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-12-11 12:21 - 2019-11-19 21:29 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-12-11 12:21 - 2019-11-19 21:22 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-12-11 12:21 - 2019-11-19 21:21 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-12-11 12:21 - 2019-11-19 21:19 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000797184 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-12-11 12:21 - 2019-11-19 21:18 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-12-11 12:21 - 2019-11-19 21:18 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-12-11 12:21 - 2019-11-19 21:17 - 005500928 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-12-11 12:21 - 2019-11-19 21:10 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-12-11 12:21 - 2019-11-19 21:07 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-12-11 12:21 - 2019-11-19 21:01 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-12-11 12:21 - 2019-11-19 21:00 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-12-11 12:21 - 2019-11-19 21:00 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-12-11 12:21 - 2019-11-19 20:56 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-12-11 12:21 - 2019-11-19 20:56 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-12-11 12:21 - 2019-11-19 20:54 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-12-11 12:21 - 2019-11-19 20:52 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-12-11 12:21 - 2019-11-19 20:43 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-12-11 12:21 - 2019-11-19 20:41 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-12-11 12:21 - 2019-11-19 20:41 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-12-11 12:21 - 2019-11-19 20:39 - 002132992 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-12-11 12:21 - 2019-11-19 20:39 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-12-11 12:21 - 2019-11-19 20:36 - 015445504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-12-11 12:21 - 2019-11-19 20:26 - 004859392 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-12-11 12:21 - 2019-11-19 20:15 - 001566720 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-12-11 12:21 - 2019-11-19 20:04 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-12-11 12:21 - 2019-11-19 09:17 - 020290048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-12-11 12:21 - 2019-11-19 09:11 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-12-11 12:21 - 2019-11-19 08:59 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-12-11 12:21 - 2019-11-19 08:58 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-12-11 12:21 - 2019-11-19 08:58 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-12-11 12:21 - 2019-11-19 08:57 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-12-11 12:21 - 2019-11-19 08:56 - 002304000 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-12-11 12:21 - 2019-11-19 08:53 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-12-11 12:21 - 2019-11-19 08:52 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-12-11 12:21 - 2019-11-19 08:50 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000662528 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-12-11 12:21 - 2019-11-19 08:49 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-12-11 12:21 - 2019-11-19 08:40 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-12-11 12:21 - 2019-11-19 08:36 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-12-11 12:21 - 2019-11-19 08:36 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-12-11 12:21 - 2019-11-19 08:35 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-12-11 12:21 - 2019-11-19 08:33 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-12-11 12:21 - 2019-11-19 08:33 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-12-11 12:21 - 2019-11-19 08:31 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-12-11 12:21 - 2019-11-19 08:30 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-12-11 12:21 - 2019-11-19 08:26 - 004112384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-12-11 12:21 - 2019-11-19 08:24 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-12-11 12:21 - 2019-11-19 08:23 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-12-11 12:21 - 2019-11-19 08:23 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-12-11 12:21 - 2019-11-19 08:22 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-12-11 12:21 - 2019-11-19 08:20 - 013838336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-12-11 12:21 - 2019-11-19 08:05 - 004387840 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-12-11 12:21 - 2019-11-19 08:01 - 001331712 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-12-11 12:21 - 2019-11-19 08:00 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-12-11 12:21 - 2019-11-15 03:32 - 000311008 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 001425920 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 001330176 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000479232 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscms.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000215040 _____ (Microsoft Corporation) C:\windows\SysWOW64\icm32.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2019-12-11 12:21 - 2019-11-15 03:29 - 000010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2019-12-11 12:21 - 2019-11-15 03:25 - 000385248 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 002072576 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 001574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000517632 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000040960 _____ (Microsoft Corporation) C:\windows\system32\WcsPlugInService.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000035840 _____ (Microsoft Corporation) C:\windows\system32\printfilterpipelineprxy.dll
2019-12-11 12:21 - 2019-11-15 03:22 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000623104 _____ (Microsoft Corporation) C:\windows\system32\mscms.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000250880 _____ (Microsoft Corporation) C:\windows\system32\icm32.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2019-12-11 12:21 - 2019-11-15 03:21 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2019-12-11 12:21 - 2019-11-15 03:06 - 000748544 _____ (Microsoft Corporation) C:\windows\system32\printfilterpipelinesvc.exe
2019-12-11 12:21 - 2019-11-15 03:04 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2019-12-11 12:21 - 2019-11-15 02:59 - 000034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2019-12-11 12:21 - 2019-11-15 02:59 - 000033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\WcsPlugInService.dll
2019-12-11 12:21 - 2019-11-15 02:58 - 000123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2019-12-11 12:21 - 2019-11-15 02:48 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2019-12-11 12:21 - 2019-11-15 02:45 - 000327680 _____ (Microsoft Corporation) C:\windows\system32\services.exe
2019-12-11 12:21 - 2019-11-05 22:25 - 000162016 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-12-11 12:21 - 2019-10-26 01:17 - 001717760 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-12-10 16:41 - 2019-12-26 17:32 - 000000000 ____D C:\Users\User\Desktop\Byt foto
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-08 23:12 - 2016-11-18 16:30 - 000000918 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-01-08 23:12 - 2016-11-18 16:30 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-01-08 23:12 - 2009-07-14 04:20 - 000000000 ____D C:\windows\inf
2020-01-08 18:14 - 2009-07-14 05:45 - 000032208 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-01-08 18:14 - 2009-07-14 05:45 - 000032208 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-01-08 18:12 - 2019-11-04 21:57 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2020-01-08 18:10 - 2016-09-25 18:17 - 000668792 _____ C:\windows\system32\perfh005.dat
2020-01-08 18:10 - 2016-09-25 18:17 - 000141420 _____ C:\windows\system32\perfc005.dat
2020-01-08 18:10 - 2009-07-14 06:13 - 001583226 _____ C:\windows\system32\PerfStringBackup.INI
2020-01-08 18:06 - 2018-02-22 13:32 - 000065536 _____ C:\windows\system32\Ikeext.etl
2020-01-08 18:06 - 2016-11-18 16:30 - 000000914 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-01-08 18:06 - 2016-11-17 10:59 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2020-01-08 18:06 - 2016-09-25 18:06 - 000000000 ____D C:\ProgramData\Validity
2020-01-08 18:06 - 2009-07-14 06:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-01-08 18:01 - 2009-07-14 04:20 - 000000000 ____D C:\windows\tracing
2020-01-07 21:13 - 2019-10-19 08:54 - 000000000 ____D C:\Users\User\AppData\Roaming\uTorrent
2020-01-06 19:00 - 2016-12-14 16:19 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2019-12-26 17:31 - 2019-11-03 21:00 - 000001104 _____ C:\Users\User\Desktop\Adobe Lightroom Classic CC.lnk
2019-12-25 15:14 - 2019-11-01 18:14 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2019-12-25 13:47 - 2019-07-17 11:12 - 000000000 ____D C:\windows\rescache
2019-12-24 03:17 - 2019-09-19 11:14 - 000000412 __RSH C:\ProgramData\ntuser.pol
2019-12-24 03:17 - 2009-07-14 05:45 - 000431256 _____ C:\windows\system32\FNTCACHE.DAT
2019-12-24 03:01 - 2016-09-25 17:51 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-12-22 21:00 - 2018-02-16 18:23 - 000002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-12-19 11:55 - 2009-07-14 04:20 - 000000000 ____D C:\windows\PolicyDefinitions
2019-12-19 11:42 - 2009-07-14 06:32 - 000000000 ____D C:\windows\system32\WinBioPlugIns
2019-12-19 11:28 - 2016-09-25 17:40 - 000000000 ____D C:\Program Files\Intel
2019-12-18 10:32 - 2015-10-22 16:36 - 001558876 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-12-18 10:29 - 2017-01-15 16:40 - 000000000 ____D C:\windows\system32\MRT
2019-12-18 10:10 - 2017-01-15 16:40 - 129221664 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-12-16 07:59 - 2019-10-05 13:01 - 000004128 _____ C:\windows\system32\Tasks\CCleaner Update
2019-12-15 20:42 - 2019-12-08 22:27 - 000000000 ____D C:\Users\User\Desktop\Loghtroom tutorial
2019-12-15 15:46 - 2016-09-25 18:15 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-12-15 15:45 - 2016-09-25 18:15 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-12-14 12:42 - 2018-02-16 18:22 - 000003388 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-12-14 12:42 - 2018-02-16 18:22 - 000003260 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-12-11 12:43 - 2016-11-17 10:59 - 000000000 ____D C:\Users\User
==================== Files in the root of some directories ========
2017-03-06 15:19 - 2017-03-06 15:19 - 000007609 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
2017-08-15 08:04 - 2017-08-15 08:04 - 000000000 _____ () C:\Users\User\AppData\Local\{50C0C264-FFDB-41F0-962A-12C712663B44}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-01-02 20:26
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-01-2020
Ran by User (08-01-2020 23:24:08)
Running from C:\Users\User\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-11-17 09:59:40)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3462915178-2026758371-2574779644-500 - Administrator - Disabled)
Guest (S-1-5-21-3462915178-2026758371-2574779644-501 - Limited - Disabled)
User (S-1-5-21-3462915178-2026758371-2574779644-1000 - Administrator - Enabled) => C:\Users\User
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Endpoint Antivirus 6.1.2222.1 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Endpoint Antivirus 6.1.2222.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_8_2) (Version: 8.2 - Adobe Systems Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{7999800f-411b-4d04-aadd-32b576d84592}) (Version: 21.20.1 - Intel Corporation)
Apowersoft Online Launcher version 1.7.5 (HKLM-x32\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.5 - APOWERSOFT LIMITED)
Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.62.54 - Conexant)
Connect2 (HKLM-x32\...\Connect2_is1) (Version: 4.2.0.3818 - Lenovo)
Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited)
DaVinci Resolve (HKLM\...\{5913037B-95C8-4A27-8F37-026BBC7B5AF1}) (Version: 16.1.2026 - Blackmagic Design)
DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{74ADC138-4768-4C5D-8123-B17527E513B5}) (Version: 1.3.1.0 - Blackmagic Design)
Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 88.4.172 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
ESET Endpoint Antivirus (HKLM\...\{0165402B-C509-49BA-ACC1-2EDB9BB3C493}) (Version: 6.1.2222.1 - ESET, spol. s r.o.)
ESET Remote Administrator Agent (HKLM\...\{A0E7525A-7F3D-407B-80DD-E992D2745203}) (Version: 6.1.365.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Integrated Camera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.10586.11196 - Realtek Semiconductor Corp.)
Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1933.12.0.1301 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 21.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4678 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.56.87.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{05817e4d-5f15-49b4-afec-7edb31fc7dd6}) (Version: 1.56.87.0 - Intel Corporation) Hidden
Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.4.43 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 18.1.1525.1421) (HKLM\...\{302600C1-6BDF-4FD1-1504-148929CC1385}) (Version: 18.1.1504.0518 - Intel Corporation)
Intel® Integrated Sensor Solution (HKLM-x32\...\{755abcd0-2942-482b-a27d-22921a5849f0}) (Version: 3.0.14.3056 - Intel Corporation)
ISS_Drivers_x64 (HKLM\...\{7E28859E-AD3D-4FC2-8D70-E345F8C87722}) (Version: 3.0.14.3056 - Intel Corporation) Hidden
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.81.00.07 - Lenovo)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.20 - Lenovo)
Lenovo Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.1.22.0 - Lenovo)
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.25 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.18 - Lenovo) Hidden
Lenovo PowerENGAGE (HKLM-x32\...\{15B15395-FF53-44E1-ADAD-FCC279E3CA10}) (Version: 2.51.0040 - Lenovo Inc.)
Lenovo Scaling Utility (HKLM\...\Lenovo Scaling Utility) (Version: 3.10 - Lenovo)
Lenovo Solution Center (HKLM\...\{06913C0C-88EB-42AF-9D94-3E9136CEE9BC}) (Version: 3.6.002.003 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0088 - Lenovo)
Lenovo Touch Fingerprint Software (HKLM\...\{F2E59F3D-B840-402D-9397-FF71B92355DF}_is1) (Version: 1.00.11 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0009.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 2016 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.12228.20364 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12228.20364 - Microsoft Corporation) Hidden
Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.10 - Lenovo Group Limited)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21290 - Realtek Semiconduct Corp.)
Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 7.18.602.2015 - Realtek)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.140 - Synaptics Incorporated)
Synaptics WBF Fingerprint Reader Drivers (HKLM\...\{3EAF1BE2-2B6B-4A18-BCDD-E7FC39883570}) (Version: 5.1.311.26 - Synaptics Incorporated)
ThinkPad OneLink Plus Dock (HKLM-x32\...\{8E1CACF5-2493-4950-9AD5-189903FE57E7}) (Version: 1.10.11 - Lenovo)
Thinkpad USB Ethernet Adapter Driver (HKLM-x32\...\{D8102684-7BA1-4948-88B9-535F84E6E588}) (Version: 7.18.602.2015 - Lenovo)
ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.26.85 - Lenovo)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Unity Web Player (HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.)
YouTube By Click CZ v.2.2.121 - 01.12.2019 (HKLM-x32\...\YouTube By Click CZ v.2.2.121 - 01.12.2019) (Version: v.2.2.121 - 01.12.2019 - Libbi)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileCoAuthLib64.dll => No File
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\system32\igfxDTCM.dll [2017-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Endpoint Antivirus\shellExt.dll [2015-02-16] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-12-19 12:01 - 2019-12-19 12:01 - 000366592 _____ ( ) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\97071a9704bb9412ec68751638269445\Interop.CxHDAudioAPILib.ni.dll
2019-12-19 12:01 - 2019-12-19 12:01 - 000018944 _____ ( ) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\d492c49ec7c96de6d2ae55f632940304\Interop.CxUtilSvcLib.ni.dll
2016-09-25 17:50 - 2016-04-14 06:08 - 000107008 ____N () [File not signed] C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.DLL
2017-06-15 12:05 - 2013-08-15 10:30 - 000005632 _____ () [File not signed] C:\Program Files (x86)\Y Soft\SafeQ Client\Client\cs-CZ\SafeQ Client.resources.dll
2011-03-10 15:14 - 2011-03-10 15:14 - 000015360 _____ () [File not signed] C:\windows\System32\KOAYXJ_L.DLL
2017-06-15 12:04 - 2013-12-11 09:19 - 000911360 _____ () [File not signed] C:\windows\System32\SafeQCairoLib64.dll
2017-06-15 12:04 - 2013-12-11 09:19 - 004077568 _____ () [File not signed] C:\windows\System32\SAFEQVS64.DLL
2017-01-19 08:15 - 2016-10-04 15:51 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2014-01-27 12:32 - 2014-01-27 12:32 - 000017408 _____ (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) [File not signed] C:\windows\System32\KOFYQJ1L.DLL
2003-03-18 21:12 - 2003-03-18 21:12 - 001047552 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MFC71U.DLL
2003-03-18 20:14 - 2003-03-18 20:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MSVCP71.dll
2003-02-21 04:42 - 2003-02-21 04:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Access Connections\MSVCR71.dll
2019-03-27 22:34 - 2019-03-27 22:34 - 000130560 _____ (Microsoft Corporation) [File not signed] C:\windows\Microsoft.Net\assembly\GAC_64\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2016-09-25 18:15 - 2016-09-25 18:15 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2016-09-25 18:15 - 2016-09-25 18:15 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2017-06-15 12:05 - 2014-01-27 12:32 - 000083968 _____ (Monotype Imaging Inc.) [File not signed] C:\windows\system32\spool\PRTPROCS\x64\KOFYQJ1P.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\sharepoint.com -> hxxps://arrivagroup-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2017-09-26 13:55 - 000000828 _____ C:\windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Lenovo\Touch Fingerprint Software\;C:\Program Files (x86)\Common Files\Lenovo;C:\ProgramData\Lenovo\ReadyApps;C:\Program Files (x86)\Lenovo\Access Connections\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\UCRT\;C:\Program Files\Intel\UCRT\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.4.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{E15A7E75-68B8-4560-8A34-1B069C0ABBF5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{3DCA92CC-0285-4F06-85E0-571B9CC424A9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{6773A2C6-6A23-49F4-BBD3-0503B2CCFC43}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [{A11E7015-9EFD-436F-8690-F8F681B4CF17}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [TCP Query User{B0C53834-D02B-42A5-A74C-DD2537156BB6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [UDP Query User{8DBD8F48-21B6-427E-AE99-B37B0547C5F9}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [{6F82152E-592C-4C37-BBB4-0B9DA2B6E5E1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{C0890717-0836-4730-B6ED-C70B52EE04BD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{2328F931-C54F-4BB7-80D0-79AB5796C223}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{EC000FB9-BA84-4CF7-9EF0-E928AACEB663}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{56BB9ABE-8F2B-4EE4-B13C-55851A1CFACC}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{6EBED7C8-9E91-4297-B1AF-E112C5589613}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{B5263E3C-0E01-4734-88A9-C0D2A82A31E7}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [{9452C8AF-9427-4CE8-81E5-FD3FC4872AAC}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [{73D05B18-6AE0-4026-A2FE-AED7CF88F25B}] => (Allow) C:\Program Files (x86)\Lenovo\Connect2\Connect2.exe (Lenovo -> Lenovo)
FirewallRules: [TCP Query User{7907BFC8-ECA4-44E3-98AF-C364008D2244}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [UDP Query User{166DA7BE-F59C-4F65-8C71-DFAE2796C240}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{EBB2161B-0900-455E-9D02-BFFF7367F1F3}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{3C46BBBE-5408-4222-B4A1-998BCE3708B8}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{B12F8A01-C359-4188-96F8-DA079C326818}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{75509381-A825-4067-807F-BC07B7CBFA46}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Online Audio Recorder\Online Audio Recorder.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{86D7BA4B-5B61-4BA3-A1B5-A41D712A74DB}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{D6FB86DD-30B6-4605-82E7-13F7D9A9272B}] => (Allow) C:\Users\User\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{6A8ED8C4-4985-4FE3-A6B8-24D76EE23D45}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{2CA9505A-6310-4D67-8081-41DA60DE2C51}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{6E9370EF-C8C7-4DCB-A9E9-9C2598ACEAB1}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [TCP Query User{06F61F08-6B47-4115-B130-787D0904AD78}C:\users\User\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\User\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{E2EFE2BF-F2F5-4B67-917A-84DF49CA9BBC}C:\users\User\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\User\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{44702919-8EDB-4C89-8EC0-0290067D59AB}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{8B6AA8D0-D65E-40B2-84CE-BBA716C397B1}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{6349C3E6-1B6E-4AA9-B579-0E718925E461}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{613973F3-6588-402E-9607-410E60E58F5B}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{584D30D9-0335-47FA-B120-02DD75FF5247}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [UDP Query User{8274EB7D-3C17-4360-BAAE-233F37139C80}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [{A44351A7-2560-407E-8DF7-9E1D65429472}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2097082B-7E2A-4E3B-9793-66D8BABED76F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E7912B3C-3EFA-47F4-820B-CDB8F5299B51}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{8D826799-3DD3-431C-8F74-E229AE6C17EE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{099F3126-26F2-45D2-98BF-4642C9F49976}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe () [File not signed]
FirewallRules: [{06313568-4EB5-49FD-97A2-62969C121FB6}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{BB772583-14EF-4D7B-AD0F-AEEA8B25C9BB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{D5395935-A15C-4742-85EE-5C813124ECC5}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{E1618C00-764A-40D4-B7C0-5A66F2FFE54C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe No File
FirewallRules: [{FEA0883E-049C-4380-8754-0884EF827D0A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe No File
FirewallRules: [{DA04E61C-DCBB-47DD-BBE7-B6AF4DEE7345}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{5A7CACCC-314A-4B70-86E8-0B54EF88F404}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
FirewallRules: [{E337C171-0B6B-47B2-B580-2F50844C4AC4}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/08/2020 06:06:10 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:06:10 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:06:10 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:01:00 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:01:00 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/08/2020 06:01:00 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0
Error: (01/05/2020 11:14:31 AM) (Source: LSC.Services.SystemService) (EventID: 0) (User: )
Description: Službu nelze spustit. Neplatný popisovač
Error: (01/04/2020 02:06:53 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
System errors:
=============
Error: (01/08/2020 06:06:27 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
cdrom
Error: (01/08/2020 06:05:43 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (01/08/2020 06:05:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\windows\System32\IWMSSvc.dll
Error: (01/08/2020 06:05:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\windows\System32\IWMSSvc.dll
Error: (01/08/2020 06:05:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\windows\System32\IWMSSvc.dll
Error: (01/08/2020 06:05:35 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\windows\System32\IWMSSvc.dll
Error: (01/08/2020 06:05:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error: (01/08/2020 06:05:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMI Performance Adapter byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Windows Defender:
===================================
Date: 2018-05-30 08:40:15.267
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{72075FD7-E8C0-45DB-AE8D-90584B55ABFD}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2017-10-31 09:09:04.509
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{5C876C4F-6444-4702-B8A9-76F38B60F403}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-07-06 12:56:42.583
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.271.442.0
Předchozí verze podpisu:1.269.1075.0
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:1.1.15000.2
Předchozí verze modulu:1.1.14901.4
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2018-07-06 12:56:42.583
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.15000.2
Předchozí verze modulu:1.1.14901.4
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2018-03-07 09:07:46.811
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2018-02-16 18:13:39.903
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2017-04-04 18:13:25.299
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
CodeIntegrity:
===================================
Date: 2017-04-03 14:02:42.733
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-04-03 14:02:42.730
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-27 14:02:42.334
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-27 14:02:42.332
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: LENOVO N1FET59W (1.33 ) 12/19/2017
Motherboard: LENOVO 20FB002UMC
Processor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Percentage of memory in use: 54%
Total physical RAM: 8063.59 MB
Available physical RAM: 3684.43 MB
Total Virtual: 16125.32 MB
Available Virtual: 11563.88 MB
==================== Drives ================================
Drive c: (Windows7_OS) (Fixed) (Total:224.57 GB) (Free:17.21 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:13.68 GB) (Free:3.73 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: E18CAEFD)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: E - E:\Install.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {5c4b32fb-e4e1-11e7-a664-54ee75af747f} - D:\setup_mafia_czech_1.3_(16073).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {9ce027ce-f762-4612-87f1-d301e187c33c} - Q:\LenovoQDrive.cmd
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c79e-e55d-11e7-9168-54ee75af747f} - D:\setup_fallout_3_1.7.0.3_(12034).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c7a0-e55d-11e7-9168-54ee75af747f} - E:\Install.exe
GroupPolicy: Restriction ? <==== ATTENTION
Task: {05340752-FD04-4293-9F07-B94C5A792DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {43EDC2DA-5C41-4974-8066-2A634D1C90AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {D47A2F71-D51C-4D80-BB9E-506840453844} - System32\Tasks\{958E9137-2257-4798-BFA9-C64F899A7AD0} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\strongholdcrusader_cz.exe" -d "C:\Users\User\Desktop"
Task: {E436B607-8CCE-4227-8910-4A1BA2C7E1C6} - System32\Tasks\{CD37E19B-3E47-423A-BAC9-14831EB5EC54} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\Jagged_Alliance_2_(1999)_CZ.exe" -d "C:\Users\User\Desktop"
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> DefaultScope {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\User\AppData\Local\{50C0C264-FFDB-41F0-962A-12C712663B44}
CustomCLSID: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileCoAuthLib64.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{E15A7E75-68B8-4560-8A34-1B069C0ABBF5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{3DCA92CC-0285-4F06-85E0-571B9CC424A9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{6773A2C6-6A23-49F4-BBD3-0503B2CCFC43}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [{A11E7015-9EFD-436F-8690-F8F681B4CF17}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [TCP Query User{B0C53834-D02B-42A5-A74C-DD2537156BB6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [UDP Query User{8DBD8F48-21B6-427E-AE99-B37B0547C5F9}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [{6F82152E-592C-4C37-BBB4-0B9DA2B6E5E1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{C0890717-0836-4730-B6ED-C70B52EE04BD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{2328F931-C54F-4BB7-80D0-79AB5796C223}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{EC000FB9-BA84-4CF7-9EF0-E928AACEB663}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{56BB9ABE-8F2B-4EE4-B13C-55851A1CFACC}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{6EBED7C8-9E91-4297-B1AF-E112C5589613}] => (Allow) C:\ProFirewallRules: [TCP Query User{7907BFC8-ECA4-44E3-98AF-C364008D2244}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [UDP Query User{166DA7BE-F59C-4F65-8C71-DFAE2796C240}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{EBB2161B-0900-455E-9D02-BFFF7367F1F3}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{3C46BBBE-5408-4222-B4A1-998BCE3708B8}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
gram Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{E1618C00-764A-40D4-B7C0-5A66F2FFE54C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe No File
FirewallRules: [{FEA0883E-049C-4380-8754-0884EF827D0A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe No File
FirewallRules: [{5A7CACCC-314A-4B70-86E8-0B54EF88F404}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Fix result of Farbar Recovery Scan Tool (x64) Version: 12-01-2020
Ran by User (14-01-2020 13:51:54) Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User (Available Profiles: User)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: E - E:\Install.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {5c4b32fb-e4e1-11e7-a664-54ee75af747f} - D:\setup_mafia_czech_1.3_(16073).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {9ce027ce-f762-4612-87f1-d301e187c33c} - Q:\LenovoQDrive.cmd
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c79e-e55d-11e7-9168-54ee75af747f} - D:\setup_fallout_3_1.7.0.3_(12034).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c7a0-e55d-11e7-9168-54ee75af747f} - E:\Install.exe
GroupPolicy: Restriction ? <==== ATTENTION
Task: {05340752-FD04-4293-9F07-B94C5A792DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google
Inc.)
Task: {43EDC2DA-5C41-4974-8066-2A634D1C90AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google
Inc.)
Task: {D47A2F71-D51C-4D80-BB9E-506840453844} - System32\Tasks\{958E9137-2257-4798-BFA9-C64F899A7AD0} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\strongholdcrusader_cz.exe"
-d "C:\Users\User\Desktop"
Task: {E436B607-8CCE-4227-8910-4A1BA2C7E1C6} - System32\Tasks\{CD37E19B-3E47-423A-BAC9-14831EB5EC54} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\Jagged_Alliance_2_(1999)
_CZ.exe" -d "C:\Users\User\Desktop"
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> DefaultScope {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\User\AppData\Local\{50C0C264-FFDB-41F0-962A-12C712663B44}
CustomCLSID: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive
\17.3.6799.0327\amd64\FileCoAuthLib64.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{E15A7E75-68B8-4560-8A34-1B069C0ABBF5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{3DCA92CC-0285-4F06-85E0-571B9CC424A9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{6773A2C6-6A23-49F4-BBD3-0503B2CCFC43}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [{A11E7015-9EFD-436F-8690-F8F681B4CF17}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [TCP Query User{B0C53834-D02B-42A5-A74C-DD2537156BB6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files
(x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [UDP Query User{8DBD8F48-21B6-427E-AE99-B37B0547C5F9}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files
(x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [{6F82152E-592C-4C37-BBB4-0B9DA2B6E5E1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{C0890717-0836-4730-B6ED-C70B52EE04BD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{2328F931-C54F-4BB7-80D0-79AB5796C223}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{EC000FB9-BA84-4CF7-9EF0-E928AACEB663}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{56BB9ABE-8F2B-4EE4-B13C-55851A1CFACC}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{6EBED7C8-9E91-4297-B1AF-E112C5589613}] => (Allow) C:\ProFirewallRules: [TCP Query User{7907BFC8-ECA4-44E3-98AF-C364008D2244}C:\program files (x86)\starcraft ii\versions
\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [UDP Query User{166DA7BE-F59C-4F65-8C71-DFAE2796C240}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii
\versions\base59587\sc2_x64.exe No File
FirewallRules: [{EBB2161B-0900-455E-9D02-BFFF7367F1F3}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{3C46BBBE-5408-4222-B4A1-998BCE3708B8}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
gram Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{E1618C00-764A-40D4-B7C0-5A66F2FFE54C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe No File
FirewallRules: [{FEA0883E-049C-4380-8754-0884EF827D0A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe No File
FirewallRules: [{5A7CACCC-314A-4B70-86E8-0B54EF88F404}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c4b32fb-e4e1-11e7-a664-54ee75af747f} => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9ce027ce-f762-4612-87f1-d301e187c33c} => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d6d3c79e-e55d-11e7-9168-54ee75af747f} => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d6d3c7a0-e55d-11e7-9168-54ee75af747f} => removed successfully
C:\windows\system32\GroupPolicy\Machine => moved successfully
C:\windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{05340752-FD04-4293-9F07-B94C5A792DA8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{05340752-FD04-4293-9F07-B94C5A792DA8}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{43EDC2DA-5C41-4974-8066-2A634D1C90AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43EDC2DA-5C41-4974-8066-2A634D1C90AB}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D47A2F71-D51C-4D80-BB9E-506840453844}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D47A2F71-D51C-4D80-BB9E-506840453844}" => removed successfully
C:\windows\System32\Tasks\{958E9137-2257-4798-BFA9-C64F899A7AD0} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{958E9137-2257-4798-BFA9-C64F899A7AD0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E436B607-8CCE-4227-8910-4A1BA2C7E1C6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E436B607-8CCE-4227-8910-4A1BA2C7E1C6}" => removed successfully
C:\windows\System32\Tasks\{CD37E19B-3E47-423A-BAC9-14831EB5EC54} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CD37E19B-3E47-423A-BAC9-14831EB5EC54}" => removed successfully
"HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
"HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\User\AppData\Local\{50C0C264-FFDB-41F0-962A-12C712663B44} => moved successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\SPPSVC-In-TCP" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\SPPSVC-In-TCP-NoScope" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E15A7E75-68B8-4560-8A34-1B069C0ABBF5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3DCA92CC-0285-4F06-85E0-571B9CC424A9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6773A2C6-6A23-49F4-BBD3-0503B2CCFC43}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A11E7015-9EFD-436F-8690-F8F681B4CF17}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B0C53834-D02B-42A5-A74C-DD2537156BB6}C:\program files (x86)\ubisoft\ubisoft game
launcher\games\rayman origins\rayman origins.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8DBD8F48-21B6-427E-AE99-B37B0547C5F9}C:\program files (x86)\ubisoft\ubisoft game
launcher\games\rayman origins\rayman origins.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F82152E-592C-4C37-BBB4-0B9DA2B6E5E1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C0890717-0836-4730-B6ED-C70B52EE04BD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2328F931-C54F-4BB7-80D0-79AB5796C223}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EC000FB9-BA84-4CF7-9EF0-E928AACEB663}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{56BB9ABE-8F2B-4EE4-B13C-55851A1CFACC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6EBED7C8-9E91-4297-B1AF-E112C5589613}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{166DA7BE-F59C-4F65-8C71-DFAE2796C240}C:\program files (x86)\starcraft ii
\versions\base59587\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EBB2161B-0900-455E-9D02-BFFF7367F1F3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3C46BBBE-5408-4222-B4A1-998BCE3708B8}" => removed successfully
gram Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E1618C00-764A-40D4-B7C0-5A66F2FFE54C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FEA0883E-049C-4380-8754-0884EF827D0A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A7CACCC-314A-4B70-86E8-0B54EF88F404}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33539122 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 11257578 B
Edge => 0 B
Chrome => 327165431 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 2192 B
Public => 2192 B
ProgramData => 2192 B
systemprofile => 19976 B
systemprofile32 => 96060 B
LocalService => 96060 B
NetworkService => 96060 B
User => 11965430 B
RecycleBin => 14231645 B
EmptyTemp: => 388 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:52:11 ====
Ran by User (14-01-2020 13:51:54) Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User (Available Profiles: User)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: E - E:\Install.exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {5c4b32fb-e4e1-11e7-a664-54ee75af747f} - D:\setup_mafia_czech_1.3_(16073).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {9ce027ce-f762-4612-87f1-d301e187c33c} - Q:\LenovoQDrive.cmd
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c79e-e55d-11e7-9168-54ee75af747f} - D:\setup_fallout_3_1.7.0.3_(12034).exe
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\...\MountPoints2: {d6d3c7a0-e55d-11e7-9168-54ee75af747f} - E:\Install.exe
GroupPolicy: Restriction ? <==== ATTENTION
Task: {05340752-FD04-4293-9F07-B94C5A792DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google
Inc.)
Task: {43EDC2DA-5C41-4974-8066-2A634D1C90AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google
Inc.)
Task: {D47A2F71-D51C-4D80-BB9E-506840453844} - System32\Tasks\{958E9137-2257-4798-BFA9-C64F899A7AD0} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\strongholdcrusader_cz.exe"
-d "C:\Users\User\Desktop"
Task: {E436B607-8CCE-4227-8910-4A1BA2C7E1C6} - System32\Tasks\{CD37E19B-3E47-423A-BAC9-14831EB5EC54} => C:\windows\system32\pcalua.exe -a "C:\Users\User\Desktop\Jagged_Alliance_2_(1999)
_CZ.exe" -d "C:\Users\User\Desktop"
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> DefaultScope {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
SearchScopes: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000 -> {191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\User\AppData\Local\{50C0C264-FFDB-41F0-962A-12C712663B44}
CustomCLSID: HKU\S-1-5-21-3462915178-2026758371-2574779644-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\OneDrive
\17.3.6799.0327\amd64\FileCoAuthLib64.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{E15A7E75-68B8-4560-8A34-1B069C0ABBF5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{3DCA92CC-0285-4F06-85E0-571B9CC424A9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe No File
FirewallRules: [{6773A2C6-6A23-49F4-BBD3-0503B2CCFC43}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [{A11E7015-9EFD-436F-8690-F8F681B4CF17}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe No File
FirewallRules: [TCP Query User{B0C53834-D02B-42A5-A74C-DD2537156BB6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files
(x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [UDP Query User{8DBD8F48-21B6-427E-AE99-B37B0547C5F9}C:\program files (x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe] => (Allow) C:\program files
(x86)\ubisoft\ubisoft game launcher\games\rayman origins\rayman origins.exe No File
FirewallRules: [{6F82152E-592C-4C37-BBB4-0B9DA2B6E5E1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{C0890717-0836-4730-B6ED-C70B52EE04BD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe No File
FirewallRules: [{2328F931-C54F-4BB7-80D0-79AB5796C223}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{EC000FB9-BA84-4CF7-9EF0-E928AACEB663}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe No File
FirewallRules: [{56BB9ABE-8F2B-4EE4-B13C-55851A1CFACC}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{6EBED7C8-9E91-4297-B1AF-E112C5589613}] => (Allow) C:\ProFirewallRules: [TCP Query User{7907BFC8-ECA4-44E3-98AF-C364008D2244}C:\program files (x86)\starcraft ii\versions
\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [UDP Query User{166DA7BE-F59C-4F65-8C71-DFAE2796C240}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii
\versions\base59587\sc2_x64.exe No File
FirewallRules: [{EBB2161B-0900-455E-9D02-BFFF7367F1F3}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [{3C46BBBE-5408-4222-B4A1-998BCE3708B8}] => (Block) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
gram Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File
FirewallRules: [{E1618C00-764A-40D4-B7C0-5A66F2FFE54C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe No File
FirewallRules: [{FEA0883E-049C-4380-8754-0884EF827D0A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe No File
FirewallRules: [{5A7CACCC-314A-4B70-86E8-0B54EF88F404}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c4b32fb-e4e1-11e7-a664-54ee75af747f} => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9ce027ce-f762-4612-87f1-d301e187c33c} => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d6d3c79e-e55d-11e7-9168-54ee75af747f} => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d6d3c7a0-e55d-11e7-9168-54ee75af747f} => removed successfully
C:\windows\system32\GroupPolicy\Machine => moved successfully
C:\windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{05340752-FD04-4293-9F07-B94C5A792DA8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{05340752-FD04-4293-9F07-B94C5A792DA8}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{43EDC2DA-5C41-4974-8066-2A634D1C90AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43EDC2DA-5C41-4974-8066-2A634D1C90AB}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D47A2F71-D51C-4D80-BB9E-506840453844}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D47A2F71-D51C-4D80-BB9E-506840453844}" => removed successfully
C:\windows\System32\Tasks\{958E9137-2257-4798-BFA9-C64F899A7AD0} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{958E9137-2257-4798-BFA9-C64F899A7AD0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E436B607-8CCE-4227-8910-4A1BA2C7E1C6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E436B607-8CCE-4227-8910-4A1BA2C7E1C6}" => removed successfully
C:\windows\System32\Tasks\{CD37E19B-3E47-423A-BAC9-14831EB5EC54} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CD37E19B-3E47-423A-BAC9-14831EB5EC54}" => removed successfully
"HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
"HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{191BEE13-4EDA-4F2C-B1DF-FD2B6C6A6825} => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\User\AppData\Local\{50C0C264-FFDB-41F0-962A-12C712663B44} => moved successfully
HKU\S-1-5-21-3462915178-2026758371-2574779644-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\SPPSVC-In-TCP" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\SPPSVC-In-TCP-NoScope" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E15A7E75-68B8-4560-8A34-1B069C0ABBF5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3DCA92CC-0285-4F06-85E0-571B9CC424A9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6773A2C6-6A23-49F4-BBD3-0503B2CCFC43}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A11E7015-9EFD-436F-8690-F8F681B4CF17}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B0C53834-D02B-42A5-A74C-DD2537156BB6}C:\program files (x86)\ubisoft\ubisoft game
launcher\games\rayman origins\rayman origins.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8DBD8F48-21B6-427E-AE99-B37B0547C5F9}C:\program files (x86)\ubisoft\ubisoft game
launcher\games\rayman origins\rayman origins.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F82152E-592C-4C37-BBB4-0B9DA2B6E5E1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C0890717-0836-4730-B6ED-C70B52EE04BD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2328F931-C54F-4BB7-80D0-79AB5796C223}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EC000FB9-BA84-4CF7-9EF0-E928AACEB663}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{56BB9ABE-8F2B-4EE4-B13C-55851A1CFACC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6EBED7C8-9E91-4297-B1AF-E112C5589613}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{166DA7BE-F59C-4F65-8C71-DFAE2796C240}C:\program files (x86)\starcraft ii
\versions\base59587\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EBB2161B-0900-455E-9D02-BFFF7367F1F3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3C46BBBE-5408-4222-B4A1-998BCE3708B8}" => removed successfully
gram Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe No File => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E1618C00-764A-40D4-B7C0-5A66F2FFE54C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FEA0883E-049C-4380-8754-0884EF827D0A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A7CACCC-314A-4B70-86E8-0B54EF88F404}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33539122 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 11257578 B
Edge => 0 B
Chrome => 327165431 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 2192 B
Public => 2192 B
ProgramData => 2192 B
systemprofile => 19976 B
systemprofile32 => 96060 B
LocalService => 96060 B
NetworkService => 96060 B
User => 11965430 B
RecycleBin => 14231645 B
EmptyTemp: => 388 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:52:11 ====
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Zdravím, zdá se mi, že ta "zafuněnost" větráku a celkově teplota dost poklesla. Díky moc za pomoc!
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
To jsem rád a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?