Kontrola log

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 18:13

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2021
Ran by lucka (administrator) on LENOVO-PC (LENOVO INVALID) (04-02-2021 17:56:00)
Running from C:\Users\lucka\Desktop
Loaded Profiles: lucka
Platform: Windows 8.1 Connected (Update) (X64) Language: English (United States)
Default browser: IE
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\Lenovo PhoneCompanion\adb.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\COMODO Secure Shopping\csssrv64.exe
(Comodo Security Solutions, Inc. -> Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
(LENOVO -> LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Maxthon (Asia) Limited. -> Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\systemcore\mfefire.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\conhost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\dasHost.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\dwm.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\msiexec.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\rundll32.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\SearchIndexer.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\spoolsv.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wbem\WmiPrvSE.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wininit.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\winlogon.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\wlanext.exe
(Microsoft Corporation) [File not signed] C:\Windows\System32\WUDFHost.exe
(Microsoft Corporation) [File not signed] C:\Windows\SysWOW64\msiexec.exe <2>
(Microsoft Corporation) [File not signed] C:\Windows\SysWOW64\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(VideoLAN -> VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-05] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [File not signed]
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7818552 2013-11-07] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2014-01-21] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [836592 2015-01-05] (Lenovo (Beijing) Limited -> Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-01-05] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2015-01-05] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [10140904 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink Corp. -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [26112 2014-10-29] (Microsoft Corporation) [File not signed]
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [22528 2014-10-29] (Microsoft Corporation) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\...\Providers\Internet Print Provider: C:\windows\system32\inetpp.dll [165376 2016-06-25] (Microsoft Corporation) [File not signed]
HKLM\...\Providers\LanMan Print Services: C:\windows\system32\win32spl.dll [865792 2017-08-11] (Microsoft Corporation) [File not signed]
HKLM\...\Windows x64\Print Processors\winprint: C:\Windows\System32\spool\prtprocs\x64\winprint.dll [45568 2016-01-30] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Local Port: C:\windows\system32\localspl.dll [1095680 2017-08-11] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: C:\windows\system32\FXSMON.DLL [42496 2014-10-29] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\Standard TCP/IP Port: C:\windows\system32\tcpmon.dll [216576 2014-10-29] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\USB Monitor: C:\windows\system32\usbmon.dll [308736 2014-10-29] (Microsoft Corporation) [File not signed]
HKLM\...\Print\Monitors\WSD Port: C:\windows\system32\WSDMon.dll [309760 2014-10-29] (Microsoft Corporation) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.146\Installer\chrmstp.exe [2021-02-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{d0869df6-64b0-4289-b483-9bff61394420}] -> C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfCredProv.dll [2015-01-05] (Lenovo (Beijing) Limited -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01B0672D-13C0-4FC0-8DFD-CEE159881970} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184 2014-09-10] (LENOVO -> Lenovo)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask => {A4173A49-F373-4475-9A0F-2D615204DC20} C:\windows\system32\SettingSyncCore.dll [841728 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {0D21BBCE-5FF6-4613-B62C-48148CA6EAA1} - System32\Tasks\Microsoft\Windows\RAC\RacTask => {42060D27-CA53-41f5-96E4-B1E8169308A6} C:\windows\system32\RacEngn.dll [1636864 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => C:\windows\system32\aitagent.exe [157184 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {10D9ADD6-58F6-4012-A1FD-41A13851E5A8} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [256824 2014-09-11] (Maxthon (Asia) Limited. -> Maxthon International ltd.)
Task: {11744BC1-B4EE-4CEF-8126-B5F78C68CE69} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2018-01-03] (Google Inc -> Google Inc.)
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator => {645E29EA-4B0A-464C-8B7D-1A6B9F9D92A8} C:\windows\system32\msched.dll [137728 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {149FCF80-BA39-407F-A5BC-92D359631E0F} - System32\Tasks\{8331F916-D37B-4883-8E9A-C2A75724AF41} => C:\windows\system32\pcalua.exe -a "C:\Users\lucka\Desktop\zoek (1).exe" -d C:\Users\lucka\Desktop
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance => {57BFCFDD-EEE4-4DBB-A751-3CDEB169FF44} C:\windows\system32\msched.dll [137728 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {177C642E-7F10-4D72-8255-5AA816434884} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2781936 2013-12-24] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {1A4230A2-E136-4936-9B22-DDF624BB8332} - System32\Tasks\Microsoft\Windows\IME\SQM data sender => {ccb1d8cb-d39f-41c9-b793-0196214bdc4e} C:\Windows\System32\IME\shared\imecfm.dll [115200 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {1EFFB9C8-B178-41D3-906D-D567219D1B46} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\windows\System32\PlaySndSrv.dll [88064 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {21199D4C-F9E7-4A63-8AFD-C469861365D8} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => {5b6b6834-34f0-49b9-ad4e-81d4994c7a74} C:\windows\system32\DfpCommon.dll [408576 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {2BC666B2-C77B-492D-A698-30536C6C4D42} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\windows\System32\wsqmcons.exe [382976 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate => {17C82257-654E-4C47-8E23-DCA24EAA76A0} C:\windows\system32\sysmain.dll [1217024 2015-07-10] (Microsoft Corporation) [File not signed]
Task: {2D95D35A-54AC-40CE-B246-F4AB6D2A6CD8} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh => {23C1F3CF-C110-4512-ACA9-7B6174ECE888} C:\windows\System32\DeviceSetupManagerAPI.dll [119296 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {329D0FF6-145E-4A45-9CBD-CBE6BB2FC8D8} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\windows\system32\TpmTasks.dll [175616 2017-08-11] (Microsoft Corporation) [File not signed]
Task: {34946D56-A8FF-4198-BD85-43FA91981A0F} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents => {8168e74a-b39f-46d8-adcd-7bed477b80a3} C:\windows\System32\MemoryDiagnostic.dll [28672 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\windows\System32\AutoWorkplace.exe [45056 2013-08-22] (Microsoft Corporation) [File not signed]
Task: {358EE060-BD59-4F93-9741-A57AE6887DC0} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon => {b1aebb5d-ead9-4476-b375-9c3ed9f32afc} C:\windows\System32\sppcext.dll [492032 2013-08-22] (Microsoft Corporation) [File not signed]
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\windows\system32\tzsync.exe [63488 2015-07-14] (Microsoft Corporation) [File not signed]
Task: {3C7D587E-A3BD-4B2E-A799-0DB54F80AB81} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [95192 2013-03-09] (CyberLink Corp. -> CyberLink Corp.)
Task: {3FA2ACE3-9A5F-46C9-9481-CF59A253F2D6} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {45561755-0BB2-49DF-9B3C-3F0CEB4AB61E} - System32\Tasks\Microsoft\Windows\WS\Badge Update => {00CCDDF6-5107-424D-853D-3907AE5502DC} C:\windows\winstore\WinStoreUI.dll [1229312 2015-05-03] (Microsoft Corporation) [File not signed]
Task: {47BFE674-5DFA-4395-B88C-47D28D6E5597} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4c9c-A211-7CC38785E79D} C:\windows\system32\WinSATAPI.dll [381952 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} C:\windows\system32\sysmain.dll [1217024 2015-07-10] (Microsoft Corporation) [File not signed]
Task: {55E46F05-2A1C-4F8F-8254-26482B40C290} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required => {48794782-6a1f-47b9-bd52-1d5f95d49c1b} C:\Windows\System32\pnpui.dll [33280 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {5705047A-8B57-4B41-881F-DAEA70D97A9C} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy => {60400283-b242-4fa8-8c25-caf695b88209} C:\Windows\System32\pnppolicy.dll [50176 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {57D2908A-C2C5-4156-BF22-3FDC8E3F83BA} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [192000 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {57E1AB59-8B1F-47D2-AD45-7F2A4F5CDF39} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\windows\system32\TpmTasks.dll [175616 2017-08-11] (Microsoft Corporation) [File not signed]
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {c8367320-6f85-11e0-a1f0-0800200c9a66} C:\windows\System32\BthSQM.dll [27648 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {5B996296-48A1-463D-BC02-5CAAAFBCE035} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\windows\system32\DFDWiz.exe [78336 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {61DE436C-66B4-4BDD-B954-CAB97F79AB31} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {63F5E05B-7E80-4BA5-9C35-D5B122206F69} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {668F8557-652D-433B-9CD3-CB95162F402D} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {c27f6b1d-fe0b-45e4-9257-38799fa69bc8} C:\windows\System32\usbceip.dll [154624 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup => {DEF03232-9688-11E2-BE7F-B4B52FD966FF} C:\Windows\System32\pnpclean.dll [118784 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {6C1AB129-102B-4DA1-BF15-5E718CD47117} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [17152 2014-08-19] (LENOVO -> Lenovo)
Task: {6D21C8E9-C77F-4EE7-9252-2D30C930528A} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\windows\system32\defrag.exe [184832 2014-10-29] (Microsoft Corp.) [File not signed]
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {bf6c1e47-86ec-4194-9ce5-13c15dcb2001} C:\Windows\System32\skydrive.exe [1154048 2014-10-31] (Microsoft Corporation) [File not signed]
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance => {57BFCFDD-EEE4-4DBB-A751-3CDEB169FF44} C:\windows\system32\msched.dll [137728 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {714F2139-3A26-4FB3-AF65-5D38A9E4E492} - System32\Tasks\User_Feed_Synchronization-{A606ED3F-E5DF-4564-84C8-5A7985F67766} => C:\windows\system32\msfeedssync.exe [12800 2014-10-31] (Microsoft Corporation) [File not signed]
Task: {73D1388C-336E-40EC-B0B4-62CB862AF2BE} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\windows\System32\drvinst.exe [112640 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {7455D819-E7EF-4B39-A9D4-CF3BC2CA7EDB} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {c463a0fc-794f-4fdf-9201-01938ceacafa} C:\windows\system32\rasmbmgr.dll [58368 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {799DBBF1-149D-4101-A6F8-2F74221444BA} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\windows\System32\lpksetup.exe [784384 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {7A1CA63A-3611-4E61-AAFA-1B56F8746F3A} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\windows\system32\appidpolicyconverter.exe [197632 2017-07-08] (Microsoft Corporation) [File not signed]
Task: {7DD666D5-AC93-428A-B051-BD4F13C8356D} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\windows\system32\RAServer.exe [124416 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {84400372-B6DB-4852-B387-6CE186EAE25B} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\windows\System32\MbaeParserTask.exe [112128 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {86C209A4-74BB-48FE-B626-53EE71A07511} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => {927ea2af-1c54-43d5-825e-0074ce028eee} C:\windows\System32\energytask.dll [19456 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1b1f472e-3221-4826-97db-2c2324d389ae} C:\Windows\System32\skydrive.exe [1154048 2014-10-31] (Microsoft Corporation) [File not signed]
Task: {8B6F734B-452C-40E4-88DC-346EB19A28F0} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\windows\System32\sppcext.dll [492032 2013-08-22] (Microsoft Corporation) [File not signed]
Task: {92908369-CCF2-493A-85AB-05A9F8E620B0} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask => {59B9640B-3F70-4D1C-B159-F26EEB8A4C87} C:\windows\system32\SettingSyncCore.dll [841728 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {94E12419-82B1-4D1E-9DEF-5A2959B6C0B0} - System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader => {B210D694-C8DF-490d-9576-9E20CDBC20BD} C:\Windows\System32\mscms.dll [584704 2017-02-04] (Microsoft Corporation) [File not signed]
Task: {96B095BB-12CF-465E-9072-863BA0F5696E} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [192000 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {98292BAF-42C3-4FC1-9056-7EB1EE3B3C57} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\windows\system32\WofTasks.dll [28672 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {9B3A5D95-1AE4-45DE-9991-05BD06F89D25} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900be39d-6be8-461a-bc4d-b0fa71f5ecb1} C:\windows\System32\wdi.dll [95744 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {9B844C1D-AD9B-4CE1-BEAC-BAF122C38DCC} - System32\Tasks\Microsoft\Windows\MUI\Mcbuilder => C:\windows\System32\mcbuilder.exe [281088 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {9C8E21C9-6AB1-4D66-8DF5-73AF5359B24E} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses => {10F591BE-3C84-418A-86DD-BAA002E2F36E} C:\windows\winstore\WinStoreUI.dll [1229312 2015-05-03] (Microsoft Corporation) [File not signed]
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\AMHelper" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Optimize Start Menu Cache Files-S-1-5-21-4289856400-1582998229-3165114676-1001" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\PDVDServ Task" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Synaptics TouchPad Enhancements" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{A606ED3F-E5DF-4564-84C8-5A7985F67766}" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\{8331F916-D37B-4883-8E9A-C2A75724AF41}" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {9F588D10-CD57-432E-A76C-DA792AA3F6CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2018-01-03] (Google Inc -> Google Inc.)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => {63260bce-a3fb-4a34-aa51-d4d8e877b62b} C:\Windows\System32\WorkFoldersShell.dll [193536 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {A216000C-66D3-4E66-8A6E-D98AB5762D3C} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\windows\system32\BthUdTask.exe [37888 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {A44A1624-C719-4A46-8833-AA65471469C9} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\windows\system32\srtasks.exe [58368 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {A5480E25-AF71-4B88-A76E-C9C3BA1588EE} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) => {89917B7C-A1A6-11DF-8BF6-18A90531A85A} C:\windows\System32\fhtask.dll [60928 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {A98AD887-1E81-47AF-B3DF-F06329AB67E5} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance => {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} C:\windows\System32\srchadmin.dll [370176 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {AAA89DAF-1B4F-447D-AF21-7F0559AC9962} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [71168 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance => {57BFCFDD-EEE4-4DBB-A751-3CDEB169FF44} C:\windows\system32\msched.dll [137728 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {BC537794-54F5-4702-8CEB-06F584ECD24A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\windows\system32\SpaceAgent.exe [104960 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {BCF1C859-636B-4378-818B-C160C2EA3B13} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {BD50F9D1-96F6-4CFA-A79F-701151C176D3} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\windows\system32\dimsjob.dll [38400 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {C1871B11-4A68-44D9-98B3-EE63B16D29E1} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855fec53-d2e4-4999-9e87-3414e9cf0ff4} C:\windows\system32\wdc.dll [1436672 2017-06-11] (Microsoft Corporation) [File not signed]
Task: {C2599556-050C-48B7-98E3-CD224A313FE3} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\windows\system32\appidcertstorecheck.exe [17920 2017-07-08] (Microsoft Corporation) [File not signed]
Task: {C371F25E-745F-4A1E-BEF3-959161B56258} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific => {9f2b0085-9218-42a1-88b0-9f0e65851666} C:\windows\system32\apprepsync.dll [169984 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {C3BC58BF-FE17-4E06-B231-415CA4048DE7} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork => {b1aebb5d-ead9-4476-b375-9c3ed9f32afc} C:\windows\System32\sppcext.dll [492032 2013-08-22] (Microsoft Corporation) [File not signed]
Task: {CBD3EF37-0E38-431A-A6E8-607C56893A63} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\windows\system32\lpremove.exe [67072 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {CBDA51B5-18F3-4C3F-BBAD-09E7E42FDD0E} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\windows\system32\cleanmgr.exe [217600 2014-10-29] (Microsoft Corporation) [File not signed] -> /autoclean /d %systemdrive%
Task: {CCFEBB07-718E-418A-804E-3E5593D0793F} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {ca767aa8-9157-4604-b64b-40747123d5f2} C:\windows\System32\regidle.dll [13312 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {CD3F71A5-25DA-4A71-B641-3B0B338D3B10} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\KernelCeipTask => {e7ed314f-2816-4c26-aeb5-54a34d02404c} C:\windows\System32\kernelceip.dll [19968 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {CD5B361C-450C-456E-AF2C-B490D5AD4938} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan => {cf4270f5-2e43-4468-83b3-a8c45bb33ea1} C:\Windows\System32\pstask.dll [15360 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371} C:\Windows\System32\perftrack.dll [1145856 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask => {60A4C78C-E2B8-4E6E-876F-DA203B02C05E} C:\windows\system32\SettingSyncCore.dll [841728 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {D00E7CB4-F82A-4A72-AB0F-7BB86DCA6F2F} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\windows\system32\dimsjob.dll [38400 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {D07886D2-ED4A-4B0F-9F0E-2D21957BC1FE} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4b81-9BEC-6C05514111AA} C:\Windows\System32\WpcWebSync.dll [2941952 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {D1D8F1BA-2E8D-4582-8CB7-7777C9E26E39} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {c1f85ef8-bcc2-4606-bb39-70c523715eb3} C:\windows\System32\sdiagschd.dll [52736 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {D352DA66-6B83-46D8-9915-8E7B856C5978} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\windows\system32\WofTasks.dll [28672 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {D6F4A061-CEFB-4F38-81EC-6E80ECDD3011} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\windows\System32\LocationNotifications.exe [86528 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization => {97d47d56-3777-49fb-8e8f-90d7e30e1a1e} C:\Windows\System32\WorkFoldersShell.dll [193536 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {DD3EB21E-349E-416E-B8ED-3EADBF145037} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh => {EBF00FCB-0769-4b81-9BEC-6C05514111AA} C:\Windows\System32\WpcWebSync.dll [2941952 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {DD5C473F-E1AA-48BF-939B-76D10F63D9BA} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {DF8FF214-D536-45F4-90EC-1767F65DBED4} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic => {8168e74a-b39f-46d8-adcd-7bed477b80a3} C:\windows\System32\MemoryDiagnostic.dll [28672 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {E131C6A0-5FFC-419B-ABFA-CE4CB36CDE8A} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime => {A31AD6C2-FF4C-43D4-8E90-7101023096F9} C:\windows\system32\TimeSyncTask.dll [14848 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {E367590C-10F8-4401-B924-5839261DC94E} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358b920-0ac7-461f-98f4-58e32cd89148} C:\windows\system32\wininet.dll [3241472 2017-11-14] (Microsoft Corporation) [File not signed]
Task: {E64595D9-E1AF-4E09-8D36-1721FC82AEE3} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58fb76b9-ac85-4e55-ac04-427593b1d060} C:\windows\system32\dimsjob.dll [38400 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE => {89d1d0c2-a3cf-490c-abe3-b86cde34b047} C:\windows\System32\ReAgentTask.dll [15360 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {E72AAFFF-4118-43E6-A96C-696FAD3070F5} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4289856400-1582998229-3165114676-1001 => {2D3F8A1B-6DCD-4ED5-BDBA-A096594B98EF} C:\Windows\System32\twinapi.dll [801792 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {E7875FC9-89E8-4373-B871-9098E12D9B33} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4289856400-1582998229-3165114676-500 => {2D3F8A1B-6DCD-4ED5-BDBA-A096594B98EF} C:\Windows\System32\twinapi.dll [801792 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {E8CC75DC-A5F5-4267-BD93-8A3479D0A822} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575cfe-9a55-4003-a5e1-f38d1ebdcbe1} C:\windows\system32\MsCtfMonitor.dll [28160 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {EC76D684-D616-40F7-97D1-283B260A1B41} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {F15E0568-C1DA-446E-86C9-4AF3857BADF7} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\windows\system32\msdrm.dll [573952 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {F2AE6483-AA0E-41B7-B993-4BB10F36D639} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {F3033906-E419-4CA4-AAA0-8E9B8B3154E2} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\windows\system32\TpmTasks.dll [175616 2017-08-11] (Microsoft Corporation) [File not signed]
Task: {F62D3A5B-5E2E-4305-A06A-A7CE9DE361B0} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4d8a-A53E-D81C70CF743C} C:\windows\system32\msdrm.dll [573952 2014-10-29] (Microsoft Corporation) [File not signed]
Task: {F890D0F2-CA12-4C48-87DA-48B147F88DEF} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [35584 2014-07-30] (LENOVO -> )
Task: {FF58CB26-F58A-4E22-B93B-951C19420D6F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)



Reklama
lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 18:14

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 C:\windows\SysWOW64\napinsp.dll [55296 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [70144 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [70144 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [65536 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 05 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 06 C:\windows\SysWOW64\winrnr.dll [23040 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5 07 C:\windows\SysWOW64\wshbth.dll [50688 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 01 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 02 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 03 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 04 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 05 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 06 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 07 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 08 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 09 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 10 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9 11 C:\windows\SysWOW64\mswsock.dll [286208 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [69120 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [88576 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [88576 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 04 C:\Windows\system32\NLAapi.dll [86016 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 05 C:\Windows\System32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 06 C:\Windows\System32\winrnr.dll [30720 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog5-x64 07 C:\Windows\system32\wshbth.dll [63488 2014-10-29] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [339456 2016-05-13] (Microsoft Corporation) [File not signed]
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{51AF7BC3-537D-4648-B5FB-E691F51BF9FF}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E60D511B-C0E6-474F-8897-14A388D55888}: [DhcpNameServer] 178.22.112.22 178.22.118.10

Chrome:
=======
CHR Profile: C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default [2021-02-04]
CHR Extension: (Slides) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-02-03]
CHR Extension: (Docs) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-02-03]
CHR Extension: (Google Drive) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-02-03]
CHR Extension: (YouTube) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-02-03]
CHR Extension: (Sheets) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-02-03]
CHR Extension: (Google Docs Offline) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-02-03]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-02-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03]
CHR Extension: (Gmail) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-02-03]
CHR Extension: (Chrome Media Router) - C:\Users\lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-03]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 gpsvc; C:\windows\System32\gpsvc.dll [1362432 2017-04-06] (Microsoft Corporation) [File not signed]
R2 nsi; C:\windows\System32\nsisvc.dll [28672 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WinHttpAutoProxySvc; C:\windows\system32\winhttp.dll [796672 2016-06-11] (Microsoft Corporation) [File not signed]
U3 WinHttpAutoProxySvc; C:\windows\SysWOW64\winhttp.dll [626176 2016-06-11] (Microsoft Corporation) [File not signed]
U3 AeLookupSvc; C:\windows\System32\aelupsvc.dll [214528 2014-10-29] (Microsoft Corporation) [File not signed]
U3 ALG; C:\windows\System32\alg.exe [96768 2014-10-29] (Microsoft Corporation) [File not signed]
U3 AppIDSvc; C:\windows\System32\appidsvc.dll [39936 2017-07-08] (Microsoft Corporation) [File not signed]
R3 Appinfo; C:\windows\System32\appinfo.dll [110080 2016-01-31] (Microsoft Corporation) [File not signed]
U3 AppReadiness; C:\windows\system32\AppReadiness.dll [562688 2014-10-29] (Microsoft Corporation) [File not signed]
U3 AppXSvc; C:\windows\system32\appxdeploymentserver.dll [1348096 2014-10-29] (Microsoft Corporation) [File not signed]
U2 AudioEndpointBuilder; C:\windows\System32\AudioEndpointBuilder.dll [226304 2014-10-29] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\windows\System32\Audiosrv.dll [911360 2014-10-29] (Microsoft Corporation) [File not signed]
U3 AxInstSV; C:\windows\System32\AxInstSV.dll [111104 2014-10-29] (Microsoft Corporation) [File not signed]
U3 BDESVC; C:\windows\System32\bdesvc.dll [348672 2016-04-01] (Microsoft Corporation) [File not signed]
U2 BFE; C:\windows\System32\bfe.dll [845312 2016-02-05] (Microsoft Corporation) [File not signed]
U2 BITS; C:\windows\System32\qmgr.dll [933376 2014-10-29] (Microsoft Corporation) [File not signed]
U2 BrokerInfrastructure; C:\windows\System32\bisrv.dll [270336 2014-10-29] (Microsoft Corporation) [File not signed]
U3 Browser; C:\windows\System32\browser.dll [135168 2014-10-29] (Microsoft Corporation) [File not signed]
U3 BthHFSrv; C:\windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation) [File not signed]
U3 bthserv; C:\windows\system32\bthserv.dll [94720 2014-10-29] (Microsoft Corporation) [File not signed]
U2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-10] (Lenovo (Beijing) Limited -> )
U3 CertPropSvc; C:\windows\System32\certprop.dll [158720 2016-12-25] (Microsoft Corporation) [File not signed]
U2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U3 COMSysApp; C:\windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [19264 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
U3 COMSysApp; C:\windows\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [17216 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R2 CryptSvc; C:\windows\system32\cryptsvc.dll [131584 2014-10-29] (Microsoft Corporation) [File not signed]
U2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [4054248 2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
R2 DcomLaunch; C:\windows\system32\rpcss.dll [817664 2017-04-16] (Microsoft Corporation) [File not signed]
U3 defragsvc; C:\windows\System32\defragsvc.dll [524288 2014-10-29] (Microsoft Corporation) [File not signed]
U2 DeviceAssociationService; C:\windows\system32\das.dll [407040 2014-10-29] (Microsoft Corporation) [File not signed]
U3 DeviceInstall; C:\windows\system32\umpnpmgr.dll [116736 2014-10-29] (Microsoft Corporation) [File not signed]
U2 Dhcp; C:\windows\system32\dhcpcore.dll [365056 2014-10-29] (Microsoft Corporation) [File not signed]
U2 Dhcp; C:\windows\SysWOW64\dhcpcore.dll [292864 2014-10-29] (Microsoft Corporation) [File not signed]
U2 DiagTrack; C:\windows\system32\diagtrack.dll [1628672 2016-08-22] (Microsoft Corporation) [File not signed]
U2 Dnscache; C:\windows\System32\dnsrslvr.dll [252416 2017-06-13] (Microsoft Corporation) [File not signed]
U3 dot3svc; C:\windows\System32\dot3svc.dll [262144 2014-10-29] (Microsoft Corporation) [File not signed]
U2 DPS; C:\windows\system32\dps.dll [174080 2014-10-29] (Microsoft Corporation) [File not signed]
U2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2253776 2019-06-20] (Comodo Security Solutions, Inc. -> Comodo)
U3 DsmSvc; C:\windows\System32\DeviceSetupManager.dll [206848 2014-10-29] (Microsoft Corporation) [File not signed]
U3 Eaphost; C:\windows\System32\eapsvc.dll [110592 2014-10-29] (Microsoft Corporation) [File not signed]
U3 EFS; C:\windows\system32\efssvc.dll [41472 2014-10-29] (Microsoft Corporation) [File not signed]
U2 EventLog; C:\windows\System32\wevtsvc.dll [1696256 2015-03-06] (Microsoft Corporation) [File not signed]
U2 EventSystem; C:\windows\system32\es.dll [516608 2014-10-29] (Microsoft Corporation) [File not signed]
U2 EventSystem; C:\windows\SysWOW64\es.dll [367616 2014-10-29] (Microsoft Corporation) [File not signed]
U3 Fax; C:\windows\system32\fxssvc.exe [658944 2014-10-29] (Microsoft Corporation) [File not signed]
U3 fdPHost; C:\windows\system32\fdPHost.dll [22016 2014-10-29] (Microsoft Corporation) [File not signed]
U3 FDResPub; C:\windows\system32\fdrespub.dll [34816 2014-10-29] (Microsoft Corporation) [File not signed]
U3 fhsvc; C:\windows\system32\fhsvc.dll [121856 2014-10-29] (Microsoft Corporation) [File not signed]
U2 FontCache; C:\windows\system32\FntCache.dll [1377792 2017-05-12] (Microsoft Corporation) [File not signed]
U3 hidserv; C:\windows\system32\hidserv.dll [33792 2014-10-29] (Microsoft Corporation) [File not signed]
U3 hidserv; C:\windows\SysWOW64\hidserv.dll [30720 2014-10-29] (Microsoft Corporation) [File not signed]
U3 hkmsvc; C:\windows\system32\kmsvc.dll [101376 2014-10-29] (Microsoft Corporation) [File not signed]
U3 HomeGroupListener; C:\windows\system32\ListSvc.dll [275968 2014-10-29] (Microsoft Corporation) [File not signed]
U3 HomeGroupProvider; C:\windows\system32\provsvc.dll [445952 2014-10-29] (Microsoft Corporation) [File not signed]
U3 HomeGroupProvider; C:\windows\SysWOW64\provsvc.dll [366080 2014-10-29] (Microsoft Corporation) [File not signed]
U2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [130008 2014-01-22] (Intel Corporation - pGFX -> Intel Corporation)
U3 IEEtwCollectorService; C:\windows\system32\IEEtwCollector.exe [116224 2017-04-16] (Microsoft Corporation) [File not signed]
U2 IKEEXT; C:\windows\System32\ikeext.dll [1080320 2017-11-07] (Microsoft Corporation) [File not signed]
U2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
U2 iphlpsvc; C:\windows\System32\iphlpsvc.dll [927744 2016-04-07] (Microsoft Corporation) [File not signed]
U2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
U3 KeyIso; C:\windows\system32\keyiso.dll [62464 2014-10-29] (Microsoft Corporation) [File not signed]
U3 KeyIso; C:\windows\SysWOW64\keyiso.dll [46592 2014-10-29] (Microsoft Corporation) [File not signed]
U3 KtmRm; C:\windows\system32\msdtckrm.dll [373248 2014-10-29] (Microsoft Corporation) [File not signed]
U2 LanmanServer; C:\windows\system32\srvsvc.dll [329216 2017-09-07] (Microsoft Corporation) [File not signed]
R2 LanmanWorkstation; C:\windows\System32\wkssvc.dll [289280 2014-10-29] (Microsoft Corporation) [File not signed]
U3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-23] (LENOVO -> Lenovo)
U2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-07-30] (LENOVO -> LENOVO INCORPORATED.)
U2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-01-05] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
U3 lfsvc; C:\windows\System32\GeofenceMonitorService.dll [521728 2014-10-29] (Microsoft Corporation) [File not signed]
U3 lfsvc; C:\windows\SysWOW64\GeofenceMonitorService.dll [367104 2014-10-29] (Microsoft Corporation) [File not signed]
U3 lltdsvc; C:\windows\System32\lltdsvc.dll [279040 2014-10-29] (Microsoft Corporation) [File not signed]
U2 lmhosts; C:\windows\System32\lmhsvc.dll [24576 2014-10-29] (Microsoft Corporation) [File not signed]
U2 LSM; C:\windows\System32\lsm.dll [780800 2015-02-21] (Microsoft Corporation) [File not signed]
U2 LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [38896 2014-02-18] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
U2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1880864 2018-02-08] (Maxthon (Asia) Limited. -> Maxthon)
U2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-02] (Malwarebytes Inc -> Malwarebytes)
U2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U2 mfevtp; C:\windows\system32\mfevtps.exe [189912 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U2 MMCSS; C:\windows\system32\mmcss.dll [71168 2014-10-29] (Microsoft Corporation) [File not signed]
U2 MpsSvc; C:\windows\system32\mpssvc.dll [881152 2016-04-09] (Microsoft Corporation) [File not signed]
U3 MSDTC; C:\windows\System32\msdtc.exe [144384 2014-10-29] (Microsoft Corporation) [File not signed]
U3 MSiSCSI; C:\windows\system32\iscsiexe.dll [151040 2016-09-03] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\windows\system32\msiexec.exe /V [65024 2016-05-05] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\windows\SysWOW64\msiexec.exe /V [59904 2016-05-05] (Microsoft Corporation) [File not signed]
U3 napagent; C:\windows\system32\qagentRT.dll [446464 2014-10-29] (Microsoft Corporation) [File not signed]
U3 NcaSvc; C:\windows\System32\ncasvc.dll [166400 2014-10-29] (Microsoft Corporation) [File not signed]
U3 NcbService; C:\windows\System32\ncbservice.dll [154112 2014-10-29] (Microsoft Corporation) [File not signed]
U3 NcdAutoSetup; C:\windows\System32\NcdAutoSetup.dll [74752 2015-07-16] (Microsoft Corporation) [File not signed]
U3 Netlogon; C:\windows\system32\netlogon.dll [840192 2017-01-10] (Microsoft Corporation) [File not signed]
U3 Netlogon; C:\windows\SysWOW64\netlogon.dll [696832 2017-01-10] (Microsoft Corporation) [File not signed]
U3 Netman; C:\windows\System32\netman.dll [266752 2014-10-29] (Microsoft Corporation) [File not signed]
U3 netprofm; C:\windows\System32\netprofmsvc.dll [550912 2014-10-29] (Microsoft Corporation) [File not signed]
U2 NlaSvc; C:\windows\System32\nlasvc.dll [391680 2014-12-06] (Microsoft Corporation) [File not signed]
U3 p2pimsvc; C:\windows\system32\pnrpsvc.dll [380416 2014-10-29] (Microsoft Corporation) [File not signed]
U3 p2psvc; C:\windows\system32\p2psvc.dll [440832 2014-10-29] (Microsoft Corporation) [File not signed]
U2 PcaSvc; C:\windows\System32\pcasvc.dll [474112 2014-10-29] (Microsoft Corporation) [File not signed]
U3 PerfHost; C:\windows\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation) [File not signed]
U2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [288240 2015-01-05] (Lenovo (Beijing) Limited -> Lenovo)
U3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [305136 2015-01-05] (Lenovo (Beijing) Limited -> Lenovo)
U3 pla; C:\windows\system32\pla.dll [1526784 2014-10-29] (Microsoft Corporation) [File not signed]
U3 pla; C:\windows\SysWOW64\pla.dll [1534464 2014-10-29] (Microsoft Corporation) [File not signed]
U3 PlugPlay; C:\windows\system32\umpnpmgr.dll [116736 2014-10-29] (Microsoft Corporation) [File not signed]
U3 PNRPAutoReg; C:\windows\system32\pnrpauto.dll [26624 2014-10-29] (Microsoft Corporation) [File not signed]
U3 PNRPsvc; C:\windows\system32\pnrpsvc.dll [380416 2014-10-29] (Microsoft Corporation) [File not signed]
U3 PolicyAgent; C:\windows\System32\ipsecsvc.dll [397312 2014-10-29] (Microsoft Corporation) [File not signed]
U2 Power; C:\windows\system32\umpo.dll [80384 2014-10-29] (Microsoft Corporation) [File not signed]
U3 PrintNotify; C:\windows\system32\spool\drivers\x64\3\PrintConfig.dll [2988544 2016-06-07] (Microsoft Corporation) [File not signed]
U2 ProfSvc; C:\windows\system32\profsvc.dll [228864 2015-07-09] (Microsoft Corporation) [File not signed]
U3 QWAVE; C:\windows\system32\qwave.dll [303104 2014-10-29] (Microsoft Corporation) [File not signed]
U3 QWAVE; C:\windows\SysWOW64\qwave.dll [261632 2014-10-29] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\windows\System32\rasauto.dll [102912 2014-10-29] (Microsoft Corporation) [File not signed]
S3 RasMan; C:\windows\System32\rasmans.dll [542720 2017-08-06] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\windows\System32\mprdim.dll [233472 2016-07-07] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\windows\SysWOW64\mprdim.dll [187392 2016-07-07] (Microsoft Corporation) [File not signed]
U4 RemoteRegistry; C:\windows\system32\regsvc.dll [166400 2017-09-06] (Microsoft Corporation) [File not signed]
U2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 RpcEptMapper; C:\windows\System32\RpcEpMap.dll [80896 2014-10-29] (Microsoft Corporation) [File not signed]
U3 RpcLocator; C:\windows\system32\locator.exe [10240 2014-10-29] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\windows\system32\rpcss.dll [817664 2017-04-16] (Microsoft Corporation) [File not signed]
U4 SCardSvr; C:\windows\System32\SCardSvr.dll [194048 2014-10-29] (Microsoft Corporation) [File not signed]
U3 ScDeviceEnum; C:\windows\System32\ScDeviceEnum.dll [133120 2016-12-25] (Microsoft Corporation) [File not signed]
U2 Schedule; C:\windows\system32\schedsvc.dll [1265152 2015-08-01] (Microsoft Corporation) [File not signed]
U3 SCPolicySvc; C:\windows\System32\certprop.dll [158720 2016-12-25] (Microsoft Corporation) [File not signed]
U3 seclogon; C:\windows\system32\seclogon.dll [31744 2016-02-06] (Microsoft Corporation) [File not signed]
R2 SENS; C:\windows\System32\sens.dll [73728 2014-10-29] (Microsoft Corporation) [File not signed]
U3 SensrSvc; C:\windows\system32\sensrsvc.dll [243200 2014-10-29] (Microsoft Corporation) [File not signed]
U3 SessionEnv; C:\windows\system32\sessenv.dll [346112 2017-06-11] (Microsoft Corporation) [File not signed]
U3 SessionEnv; C:\windows\SysWOW64\sessenv.dll [299520 2017-06-11] (Microsoft Corporation) [File not signed]
U4 SharedAccess; C:\windows\System32\ipnathlp.dll [452608 2014-10-29] (Microsoft Corporation) [File not signed]
U2 ShellHWDetection; C:\windows\System32\shsvcs.dll [640000 2014-10-29] (Microsoft Corporation) [File not signed]
U2 ShellHWDetection; C:\windows\SysWOW64\shsvcs.dll [576512 2014-10-29] (Microsoft Corporation) [File not signed]
U3 smphost; C:\windows\System32\smphost.dll [13312 2014-10-29] (Microsoft Corporation) [File not signed]
U3 smphost; C:\windows\SysWOW64\smphost.dll [11776 2014-10-29] (Microsoft Corporation) [File not signed]
U3 SNMPTRAP; C:\windows\System32\snmptrap.exe [14848 2017-05-09] (Microsoft Corporation) [File not signed]
R2 Spooler; C:\windows\System32\spoolsv.exe [827392 2014-10-29] (Microsoft Corporation) [File not signed]
U3 SSDPSRV; C:\windows\System32\ssdpsrv.dll [249344 2014-10-29] (Microsoft Corporation) [File not signed]
U3 SstpSvc; C:\windows\system32\sstpsvc.dll [142848 2014-10-29] (Microsoft Corporation) [File not signed]
U3 stisvc; C:\windows\System32\wiaservc.dll [670720 2014-10-29] (Microsoft Corporation) [File not signed]
U3 StorSvc; C:\windows\system32\storsvc.dll [20480 2014-10-29] (Microsoft Corporation) [File not signed]
U3 StorSvc; C:\windows\SysWOW64\storsvc.dll [17920 2014-10-29] (Microsoft Corporation) [File not signed]
U3 svsvc; C:\windows\system32\svsvc.dll [13312 2014-10-29] (Microsoft Corporation) [File not signed]
U3 swprv; C:\windows\System32\swprv.dll [706048 2014-10-29] (Microsoft Corporation) [File not signed]
U2 SysMain; C:\windows\system32\sysmain.dll [1217024 2015-07-10] (Microsoft Corporation) [File not signed]
U2 SystemEventsBroker; C:\windows\System32\SystemEventsBrokerServer.dll [294912 2015-05-12] (Microsoft Corporation) [File not signed]
U3 TabletInputService; C:\windows\System32\TabSvc.dll [154112 2017-09-09] (Microsoft Corporation) [File not signed]
U3 TapiSrv; C:\windows\System32\tapisrv.dll [313344 2014-10-29] (Microsoft Corporation) [File not signed]
U3 TapiSrv; C:\windows\SysWOW64\tapisrv.dll [254464 2014-10-29] (Microsoft Corporation) [File not signed]
S3 TermService; C:\windows\System32\termsrv.dll [1115136 2017-05-27] (Microsoft Corporation) [File not signed]
R2 Themes; C:\windows\system32\themeservice.dll [59392 2014-10-29] (Microsoft Corporation) [File not signed]
U3 THREADORDER; C:\windows\system32\mmcss.dll [71168 2014-10-29] (Microsoft Corporation) [File not signed]
U3 TimeBroker; C:\windows\System32\TimeBrokerServer.dll [262656 2014-10-29] (Microsoft Corporation) [File not signed]
U2 TrkWks; C:\windows\System32\trkwks.dll [124416 2014-10-29] (Microsoft Corporation) [File not signed]
S3 TrustedInstaller; C:\windows\servicing\TrustedInstaller.exe [106496 2014-10-29] (Microsoft Corporation) [File not signed]
U2 UESDK1.0; C:\Program Files (x86)\Lenovo\UESDK\UESDK.exe [319472 2014-07-18] (Lenovo (Beijing) Limited -> Lenovo)
U3 UI0Detect; C:\windows\system32\UI0Detect.exe [41984 2014-10-29] (Microsoft Corporation) [File not signed]
U3 UmRdpService; C:\windows\System32\umrdp.dll [301056 2017-06-11] (Microsoft Corporation) [File not signed]
U3 upnphost; C:\windows\System32\upnphost.dll [457728 2014-10-29] (Microsoft Corporation) [File not signed]
U3 upnphost; C:\windows\SysWOW64\upnphost.dll [331776 2014-10-29] (Microsoft Corporation) [File not signed]
U3 VaultSvc; C:\Windows\System32\vaultsvc.dll [260608 2014-10-29] (Microsoft Corporation) [File not signed]
U3 vds; C:\windows\System32\vds.exe [1313792 2014-10-29] (Microsoft Corporation) [File not signed]
U2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [67856 2015-01-05] (Lenovo (Beijing) Limited -> )
U3 vmicguestinterface; C:\windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [File not signed]
U3 vmicheartbeat; C:\windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [File not signed]
U3 vmickvpexchange; C:\windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [File not signed]
U3 vmicrdv; C:\windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [File not signed]
U3 vmicshutdown; C:\windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [File not signed]
U3 vmictimesync; C:\windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [File not signed]
U3 vmicvss; C:\windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [File not signed]
U3 VSS; C:\windows\system32\vssvc.exe [1454080 2014-10-29] (Microsoft Corporation) [File not signed]
U3 W32Time; C:\windows\system32\w32time.dll [411648 2014-10-29] (Microsoft Corporation) [File not signed]
U3 wbengine; C:\windows\system32\wbengine.exe [1574912 2016-08-11] (Microsoft Corporation) [File not signed]
U3 WbioSrvc; C:\windows\System32\wbiosrvc.dll [465920 2014-10-29] (Microsoft Corporation) [File not signed]
U2 Wcmsvc; C:\windows\System32\wcmsvc.dll [374784 2014-10-29] (Microsoft Corporation) [File not signed]
U3 wcncsvc; C:\windows\System32\wcncsvc.dll [465920 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WcsPlugInService; C:\windows\System32\WcsPlugInService.dll [43520 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WcsPlugInService; C:\windows\SysWOW64\WcsPlugInService.dll [34304 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WdiServiceHost; C:\windows\system32\wdi.dll [95744 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WdiServiceHost; C:\windows\SysWOW64\wdi.dll [84992 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WdiSystemHost; C:\windows\system32\wdi.dll [95744 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WdiSystemHost; C:\windows\SysWOW64\wdi.dll [84992 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
U3 WebClient; C:\windows\System32\webclnt.dll [228864 2016-06-09] (Microsoft Corporation) [File not signed]
U3 WebClient; C:\windows\SysWOW64\webclnt.dll [199168 2016-06-09] (Microsoft Corporation) [File not signed]
U3 Wecsvc; C:\windows\system32\wecsvc.dll [209408 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WEPHOSTSVC; C:\windows\system32\wephostsvc.dll [26112 2014-10-29] (Microsoft Corporation) [File not signed]
U3 wercplsupport; C:\windows\System32\wercplsupport.dll [84992 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WerSvc; C:\windows\System32\WerSvc.dll [108544 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WiaRpc; C:\windows\System32\wiarpc.dll [67584 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
U2 Winmgmt; C:\windows\system32\wbem\WMIsvc.dll [230400 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WinRM; C:\windows\system32\WsmSvc.dll [2609664 2017-03-13] (Microsoft Corporation) [File not signed]
U3 WinRM; C:\windows\SysWOW64\WsmSvc.dll [2170880 2017-03-13] (Microsoft Corporation) [File not signed]
U2 WlanSvc; C:\windows\System32\wlansvc.dll [1547264 2017-06-13] (Microsoft Corporation) [File not signed]
U3 wlidsvc; C:\windows\system32\wlidsvc.dll [1639424 2014-10-29] (Microsoft Corporation) [File not signed]
U3 wmiApSrv; C:\windows\system32\wbem\WmiApSrv.exe [201728 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1478144 2014-10-29] (Microsoft Corporation) [File not signed]
U3 workfolderssvc; C:\windows\system32\workfolderssvc.dll [1673728 2016-02-03] (Microsoft Corporation) [File not signed]
U3 WPCSvc; C:\windows\System32\wpcsvc.dll [12288 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WPCSvc; C:\windows\SysWOW64\wpcsvc.dll [10240 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WPDBusEnum; C:\windows\system32\wpdbusenum.dll [87040 2017-04-06] (Microsoft Corporation) [File not signed]
U2 wscsvc; C:\windows\System32\wscsvc.dll [146944 2016-01-06] (Microsoft Corporation) [File not signed]
U2 WSearch; C:\windows\system32\SearchIndexer.exe [903168 2017-06-02] (Microsoft Corporation) [File not signed]
U2 WSearch; C:\windows\SysWOW64\SearchIndexer.exe [710144 2017-06-02] (Microsoft Corporation) [File not signed]
U3 wuauserv; C:\windows\system32\wuaueng.dll [3717632 2017-10-14] (Microsoft Corporation) [File not signed]
U3 wudfsvc; C:\windows\System32\WUDFSvc.dll [104960 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WwanSvc; C:\windows\System32\wwansvc.dll [513536 2014-10-29] (Microsoft Corporation) [File not signed]
U2 mfecore; "C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe" [X]

lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 18:15

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U3 1394ohci; C:\windows\System32\drivers\1394ohci.sys [231424 2013-08-22] (Microsoft Corporation) [File not signed]
U3 acpipagr; C:\windows\System32\drivers\acpipagr.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
U3 AcpiPmi; C:\windows\System32\drivers\acpipmi.sys [12288 2013-08-22] (Microsoft Corporation) [File not signed]
U3 acpitime; C:\windows\System32\drivers\acpitime.sys [10752 2013-08-22] (Microsoft Corporation) [File not signed]
U1 AFD; C:\windows\system32\drivers\afd.sys [559616 2015-10-13] (Microsoft Corporation) [File not signed]
U1 ahcache; C:\windows\System32\DRIVERS\ahcache.sys [75776 2014-12-12] (Microsoft Corporation) [File not signed]
U3 AmdK8; C:\windows\System32\drivers\amdk8.sys [95744 2013-08-22] (Microsoft Corporation) [File not signed]
U3 AmdPPM; C:\windows\System32\drivers\amdppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
U3 AppID; C:\windows\system32\drivers\appid.sys [82944 2014-10-29] (Microsoft Windows) [File not signed]
U3 AsyncMac; C:\windows\system32\DRIVERS\asyncmac.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
U1 BasicDisplay; C:\windows\System32\drivers\BasicDisplay.sys [50688 2013-08-22] (Microsoft Corporation) [File not signed]
U1 BasicRender; C:\windows\System32\drivers\BasicRender.sys [32256 2017-11-08] (Microsoft Corporation) [File not signed]
U1 Beep; C:\Windows\System32\Drivers\Beep.sys [7680 2013-08-22] (Microsoft Corporation) [File not signed]
U3 bowser; C:\windows\System32\DRIVERS\bowser.sys [101376 2016-10-04] (Microsoft Corporation) [File not signed]
U3 BthAvrcpTg; C:\windows\System32\drivers\BthAvrcpTg.sys [36992 2013-08-22] (Microsoft Corporation) [File not signed]
U3 BthEnum; C:\windows\System32\drivers\BthEnum.sys [53248 2014-10-29] (Microsoft Corporation) [File not signed]
U3 BthHFEnum; C:\windows\System32\drivers\bthhfenum.sys [57856 2014-10-29] (Microsoft Corporation) [File not signed]
U3 bthhfhid; C:\windows\System32\drivers\BthHFHid.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
U3 BthLEEnum; C:\windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation) [File not signed]
U3 BTHMODEM; C:\windows\System32\drivers\bthmodem.sys [64000 2014-03-18] (Microsoft Corporation) [File not signed]
U3 BthPan; C:\windows\System32\drivers\bthpan.sys [119296 2017-07-06] (Microsoft Corporation) [File not signed]
U3 BTHPORT; C:\windows\System32\Drivers\BTHport.sys [1198080 2014-10-29] (Microsoft Corporation) [File not signed]
U3 BTHUSB; C:\windows\System32\Drivers\BTHUSB.sys [81920 2014-10-29] (Microsoft Corporation) [File not signed]
U3 btmaux; C:\windows\system32\DRIVERS\btmaux.sys [140600 2013-11-07] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
U3 btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [1411384 2013-11-07] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
U4 cdfs; C:\windows\System32\DRIVERS\cdfs.sys [88576 2013-08-22] (Microsoft Corporation) [File not signed]
U1 cdrom; C:\windows\System32\drivers\cdrom.sys [164352 2013-08-22] (Microsoft Corporation) [File not signed]
U3 cfwids; C:\windows\System32\drivers\cfwids.sys [70592 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U3 circlass; C:\windows\System32\drivers\circlass.sys [44032 2013-08-22] (Microsoft Corporation) [File not signed]
U3 CmBatt; C:\windows\System32\drivers\CmBatt.sys [25472 2013-08-22] (Microsoft Corporation) [File not signed]
U1 cmdcss; C:\windows\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmderd; C:\windows\System32\DRIVERS\cmderd.sys [29600 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmdGuard; C:\windows\System32\DRIVERS\cmdguard.sys [834720 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U1 cmdhlp; C:\windows\system32\DRIVERS\cmdhlp.sys [37824 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U3 CompositeBus; C:\windows\System32\drivers\CompositeBus.sys [36352 2013-08-22] (Microsoft Corporation) [File not signed]
U3 condrv; C:\windows\System32\drivers\condrv.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
U1 Dfsc; C:\windows\System32\Drivers\dfsc.sys [138752 2017-01-10] (Microsoft Corporation) [File not signed]
U3 dmvsc; C:\windows\System32\drivers\dmvsc.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
U3 e1iexpress; C:\windows\system32\DRIVERS\e1i63x64.sys [460288 2013-06-18] (Intel Corporation) [File not signed]
U3 ErrDev; C:\windows\System32\drivers\errdev.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
U3 exfat; C:\Windows\System32\Drivers\exfat.sys [200704 2013-08-22] (Microsoft Corporation) [File not signed]
U3 fdc; C:\windows\System32\drivers\fdc.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
U3 Filetrace; C:\windows\System32\drivers\filetrace.sys [34816 2013-08-22] (Microsoft Corporation) [File not signed]
U3 flpydisk; C:\windows\System32\drivers\flpydisk.sys [25088 2013-08-22] (Microsoft Corporation) [File not signed]
U3 FxPPM; C:\windows\System32\drivers\fxppm.sys [27136 2013-08-22] (Microsoft Corporation) [File not signed]
U3 gencounter; C:\windows\System32\drivers\vmgencounter.sys [11264 2013-08-22] (Microsoft Corporation) [File not signed]
U3 HdAudAddService; C:\windows\system32\drivers\HdAudio.sys [395776 2013-08-22] (Microsoft Corporation) [File not signed]
U3 HDAudBus; C:\windows\System32\drivers\HDAudBus.sys [76800 2014-07-24] (Microsoft Corporation) [File not signed]
U3 HidBatt; C:\windows\System32\drivers\HidBatt.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
U3 HidBth; C:\windows\System32\drivers\hidbth.sys [96768 2013-08-22] (Microsoft Corporation) [File not signed]
U3 hidi2c; C:\windows\System32\drivers\hidi2c.sys [41472 2013-08-22] (Microsoft Corporation) [File not signed]
U3 HidIr; C:\windows\System32\drivers\hidir.sys [45568 2013-08-22] (Microsoft Corporation) [File not signed]
U3 HidUsb; C:\windows\System32\drivers\hidusb.sys [32768 2016-05-14] (Microsoft Corporation) [File not signed]
U3 hyperkbd; C:\windows\System32\drivers\hyperkbd.sys [13824 2013-08-22] (Microsoft Corporation) [File not signed]
U3 HyperVideo; C:\windows\system32\DRIVERS\HyperVideo.sys [22016 2013-08-22] (Microsoft Corporation) [File not signed]
U3 i8042prt; C:\windows\System32\drivers\i8042prt.sys [107520 2014-10-07] (Microsoft Corporation) [File not signed]
U3 igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [3729920 2014-03-07] (Intel Corporation) [File not signed]
U1 inspect; C:\windows\system32\DRIVERS\inspect.sys [119952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
U3 intelppm; C:\windows\System32\drivers\intelppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
U3 IpFilterDriver; C:\windows\System32\DRIVERS\ipfltdrv.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
U3 IPMIDRV; C:\windows\System32\drivers\IPMIDrv.sys [79872 2014-07-24] (Microsoft Corporation) [File not signed]
U3 IPNAT; C:\windows\System32\drivers\ipnat.sys [142848 2014-03-18] (Microsoft Corporation) [File not signed]
U3 IRENUM; C:\windows\System32\drivers\irenum.sys [17920 2013-08-22] (Microsoft Corporation) [File not signed]
U1 isedrv; C:\windows\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
U3 kbdhid; C:\windows\System32\drivers\kbdhid.sys [32256 2014-10-07] (Microsoft Corporation) [File not signed]
U3 kdnic; C:\windows\system32\DRIVERS\kdnic.sys [19456 2013-08-22] (Microsoft Corporation) [File not signed]
U3 ksthunk; C:\windows\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation) [File not signed]
U2 lltdio; C:\windows\system32\DRIVERS\lltdio.sys [59392 2013-08-22] (Microsoft Corporation) [File not signed]
U2 luafv; C:\windows\system32\drivers\luafv.sys [124416 2017-10-10] (Microsoft Corporation) [File not signed]
U3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248992 2021-02-02] (Malwarebytes Inc -> Malwarebytes)
U3 mfeapfk; C:\windows\System32\drivers\mfeapfk.sys [177544 2014-04-04] (McAfee, Inc. -> McAfee, Inc.) [File not signed]
U3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [311856 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [69352 2014-04-04] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
U3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [522360 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [784760 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U3 mfencbdc; C:\windows\system32\DRIVERS\mfencbdc.sys [441264 2014-03-18] (McAfee, Inc. -> McAfee, Inc.)
U3 mfencrk; C:\windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc. -> McAfee, Inc.)
U0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [346760 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U3 Modem; C:\windows\System32\drivers\modem.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
U3 monitor; C:\windows\System32\drivers\monitor.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
U3 mouhid; C:\windows\System32\drivers\mouhid.sys [30208 2014-10-07] (Microsoft Corporation) [File not signed]
U3 mpsdrv; C:\windows\System32\drivers\mpsdrv.sys [74240 2014-10-29] (Microsoft Corporation) [File not signed]
U3 MRxDAV; C:\windows\system32\drivers\mrxdav.sys [140800 2016-09-08] (Microsoft Corporation) [File not signed]
U3 mrxsmb; C:\windows\System32\DRIVERS\mrxsmb.sys [401408 2017-02-01] (Microsoft Corporation) [File not signed]
U2 mrxsmb10; C:\windows\System32\DRIVERS\mrxsmb10.sys [285184 2017-09-07] (Microsoft Corporation) [File not signed]
U3 mrxsmb20; C:\windows\System32\DRIVERS\mrxsmb20.sys [201728 2017-02-01] (Microsoft Corporation) [File not signed]
U3 MsBridge; C:\windows\system32\DRIVERS\bridge.sys [115712 2014-10-29] (Microsoft Corporation) [File not signed]
U1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
U3 mshidkmdf; C:\windows\System32\drivers\mshidkmdf.sys [8192 2013-08-22] (Microsoft Corporation) [File not signed]
U3 mshidumdf; C:\windows\System32\drivers\mshidumdf.sys [9728 2013-08-22] (Microsoft Corporation) [File not signed]
U3 MSKSSRV; C:\windows\system32\drivers\MSKSSRV.sys [10624 2013-08-22] (Microsoft Corporation) [File not signed]
U3 MsLldp; C:\windows\system32\DRIVERS\mslldp.sys [66560 2014-10-29] (Microsoft Corporation) [File not signed]
U3 MSPCLOCK; C:\windows\system32\drivers\MSPCLOCK.sys [7040 2013-08-22] (Microsoft Corporation) [File not signed]
U3 MSPQM; C:\windows\system32\drivers\MSPQM.sys [6784 2013-08-22] (Microsoft Corporation) [File not signed]
U3 MSTEE; C:\windows\system32\drivers\MSTEE.sys [7936 2013-08-22] (Microsoft Corporation) [File not signed]
U3 MTConfig; C:\windows\System32\drivers\MTConfig.sys [13312 2013-08-22] (Microsoft Corporation) [File not signed]
U2 NativeWifiP; C:\windows\system32\DRIVERS\nwifi.sys [445952 2017-09-13] (Microsoft Corporation) [File not signed]
U3 NdisCap; C:\windows\system32\DRIVERS\ndiscap.sys [43008 2014-10-29] (Microsoft Corporation) [File not signed]
U3 NdisImPlatform; C:\windows\system32\DRIVERS\NdisImPlatform.sys [126464 2014-10-29] (Microsoft Corporation) [File not signed]
U3 NdisTapi; C:\windows\system32\DRIVERS\ndistapi.sys [24576 2014-10-29] (Microsoft Corporation) [File not signed]
U3 Ndisuio; C:\windows\system32\DRIVERS\ndisuio.sys [60416 2013-08-22] (Microsoft Corporation) [File not signed]
U3 NdisVirtualBus; C:\windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
U3 NdisWan; C:\windows\system32\DRIVERS\ndiswan.sys [205824 2016-04-05] (Microsoft Corporation) [File not signed]
U3 NdisWanLegacy; C:\windows\system32\DRIVERS\ndiswan.sys [205824 2016-04-05] (Microsoft Corporation) [File not signed]
U3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [72192 2014-10-29] (Microsoft Corporation) [File not signed]
U2 Ndu; C:\windows\System32\drivers\Ndu.sys [103424 2014-10-29] (Microsoft Corporation) [File not signed]
U1 NetBIOS; C:\windows\System32\DRIVERS\netbios.sys [48128 2014-10-29] (Microsoft Corporation) [File not signed]
U1 NetBT; C:\windows\System32\DRIVERS\netbt.sys [281600 2017-08-11] (Microsoft Corporation) [File not signed]
U3 netvsc; C:\windows\System32\drivers\netvsc63.sys [87040 2014-10-29] (Microsoft Corporation) [File not signed]
U1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [58880 2013-08-22] (Microsoft Corporation) [File not signed]
U1 npsvctrig; C:\windows\System32\drivers\npsvctrig.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
U1 nsiproxy; C:\windows\System32\drivers\nsiproxy.sys [40960 2017-08-13] (Microsoft Corporation) [File not signed]
U1 Null; C:\Windows\System32\Drivers\Null.sys [5632 2013-08-22] (Microsoft Corporation) [File not signed]
U3 Parport; C:\windows\System32\drivers\parport.sys [96256 2016-08-11] (Microsoft Corporation) [File not signed]
U2 PEAUTH; C:\windows\System32\drivers\peauth.sys [663040 2014-03-18] (Microsoft Corporation) [File not signed]
U3 PptpMiniport; C:\windows\system32\DRIVERS\raspptp.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
U3 Processor; C:\windows\System32\drivers\processr.sys [92160 2013-08-22] (Microsoft Corporation) [File not signed]
U1 Psched; C:\windows\system32\DRIVERS\pacer.sys [151040 2014-10-29] (Microsoft Corporation) [File not signed]
U3 QWAVEdrv; C:\windows\system32\drivers\qwavedrv.sys [47104 2014-10-29] (Microsoft Corporation) [File not signed]
U3 RasAcd; C:\windows\System32\DRIVERS\rasacd.sys [17408 2014-10-29] (Microsoft Corporation) [File not signed]
U3 RasAgileVpn; C:\windows\system32\DRIVERS\AgileVpn.sys [95744 2016-07-07] (Microsoft Corporation) [File not signed]
U3 Rasl2tp; C:\windows\system32\DRIVERS\rasl2tp.sys [120832 2013-08-22] (Microsoft Corporation) [File not signed]
U3 RasPppoe; C:\windows\system32\DRIVERS\raspppoe.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
U3 RasSstp; C:\windows\system32\DRIVERS\rassstp.sys [93696 2014-10-29] (Microsoft Corporation) [File not signed]
U1 rdbss; C:\windows\System32\DRIVERS\rdbss.sys [402432 2016-04-06] (Microsoft Corporation) [File not signed]
U3 rdpbus; C:\windows\System32\drivers\rdpbus.sys [22528 2013-08-22] (Microsoft Corporation) [File not signed]
U3 RDPDR; C:\windows\System32\drivers\rdpdr.sys [195584 2014-03-18] (Microsoft Corporation) [File not signed]
U3 RFCOMM; C:\windows\System32\drivers\rfcomm.sys [167424 2014-03-18] (Microsoft Corporation) [File not signed]
U2 rspndr; C:\windows\system32\DRIVERS\rspndr.sys [80384 2013-08-22] (Microsoft Corporation) [File not signed]
U3 s3cap; C:\windows\System32\drivers\vms3cap.sys [7168 2013-08-22] (Microsoft Corporation) [File not signed]
U3 scfilter; C:\windows\System32\DRIVERS\scfilter.sys [40960 2016-12-25] (Microsoft Corporation) [File not signed]
U4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2013-08-22] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
U3 Serenum; C:\windows\System32\drivers\serenum.sys [23040 2016-08-11] (Microsoft Corporation) [File not signed]
U3 Serial; C:\windows\System32\drivers\serial.sys [83456 2016-08-11] (Microsoft Corporation) [File not signed]
U3 sermouse; C:\windows\System32\drivers\sermouse.sys [26112 2014-10-07] (Microsoft Corporation) [File not signed]
U3 sfloppy; C:\windows\System32\drivers\sfloppy.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
U2 srv; C:\windows\System32\DRIVERS\srv.sys [415744 2017-09-07] (Microsoft Corporation) [File not signed]
U3 srv2; C:\windows\System32\DRIVERS\srv2.sys [686592 2017-09-07] (Microsoft Corporation) [File not signed]
U3 srvnet; C:\windows\System32\DRIVERS\srvnet.sys [243200 2017-09-07] (Microsoft Corporation) [File not signed]
U2 tcpipreg; C:\windows\System32\drivers\tcpipreg.sys [49152 2014-03-06] (Microsoft Corporation) [File not signed]
U1 tdx; C:\windows\system32\DRIVERS\tdx.sys [107520 2017-08-02] (Microsoft Corporation) [File not signed]
U3 TsUsbFlt; C:\windows\System32\drivers\tsusbflt.sys [56320 2013-08-22] (Microsoft Corporation) [File not signed]
U3 TsUsbGD; C:\windows\System32\drivers\TsUsbGD.sys [29696 2014-10-29] (Microsoft Corporation) [File not signed]
U3 tunnel; C:\windows\system32\DRIVERS\tunnel.sys [154112 2013-08-22] (Microsoft Corporation) [File not signed]
U4 udfs; C:\windows\System32\DRIVERS\udfs.sys [316416 2015-03-13] (Microsoft Corporation) [File not signed]
U3 umbus; C:\windows\System32\drivers\umbus.sys [46080 2013-08-22] (Microsoft Corporation) [File not signed]
U3 UmPass; C:\windows\System32\drivers\umpass.sys [11776 2013-08-22] (Microsoft Corporation) [File not signed]
U3 usbcir; C:\windows\System32\drivers\usbcir.sys [98304 2014-10-29] (Microsoft Corporation) [File not signed]
U3 usbohci; C:\windows\System32\drivers\usbohci.sys [30208 2015-10-10] (Microsoft Corporation) [File not signed]
U3 usbprint; C:\windows\System32\drivers\usbprint.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
U3 usbuhci; C:\windows\System32\drivers\usbuhci.sys [37376 2015-10-10] (Microsoft Corporation) [File not signed]
U3 usbvideo; C:\windows\System32\Drivers\usbvideo.sys [212736 2014-06-21] (Microsoft Corporation) [File not signed]
U3 VMBusHID; C:\windows\System32\drivers\VMBusHID.sys [21760 2013-08-22] (Microsoft Corporation) [File not signed]
U3 vwifibus; C:\windows\System32\drivers\vwifibus.sys [24576 2016-08-13] (Microsoft Corporation) [File not signed]
U1 vwififlt; C:\windows\system32\DRIVERS\vwififlt.sys [71680 2016-08-13] (Microsoft Corporation) [File not signed]
U3 vwifimp; C:\windows\system32\DRIVERS\vwifimp.sys [38912 2016-08-13] (Microsoft Corporation) [File not signed]
U3 WacomPen; C:\windows\System32\drivers\wacompen.sys [26752 2013-08-22] (Microsoft Corporation) [File not signed]
U3 Wanarp; C:\windows\system32\DRIVERS\wanarp.sys [80896 2014-10-29] (Microsoft Corporation) [File not signed]
U1 Wanarpv6; C:\windows\system32\DRIVERS\wanarp.sys [80896 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
U3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
U3 WmiAcpi; C:\windows\System32\drivers\wmiacpi.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
U4 ws2ifsl; C:\windows\system32\drivers\ws2ifsl.sys [21504 2013-08-22] (Microsoft Corporation) [File not signed]
U3 wsvd; C:\windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
U3 WudfPf; C:\windows\System32\drivers\WudfPf.sys [113664 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WUDFRd; C:\windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WUDFSensorLP; C:\windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation) [File not signed]
U3 WUDFWpdFs; C:\windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation) [File not signed]
U1 amsdk; \??\C:\windows\system32\drivers\amsdk.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-04 13:58 - 2021-02-04 15:14 - 1380120450 _____ C:\Users\lucka\Downloads\Joker.2019.BluRay.AC3.5.1.CZ.mkv
2021-02-04 09:53 - 2021-02-04 10:18 - 000088767 _____ C:\Users\lucka\Desktop\Addition.txt
2021-02-04 09:44 - 2021-02-04 17:57 - 000087070 _____ C:\Users\lucka\Desktop\FRST.txt
2021-02-04 09:44 - 2021-02-04 17:56 - 000000000 ____D C:\FRST
2021-02-04 09:44 - 2021-02-04 17:55 - 000027236 _____ C:\windows\system32\Drivers\fvstore.dat
2021-02-04 09:44 - 2021-02-04 09:44 - 000000000 ___HD C:\VTRoot
2021-02-04 09:38 - 2021-02-04 09:40 - 002297856 _____ (Farbar) C:\Users\lucka\Desktop\FRST64 (1).exe
2021-02-04 09:28 - 2021-02-04 09:28 - 000000000 ____D C:\Users\lucka\Desktop\backups
2021-02-04 09:23 - 2021-02-04 09:23 - 000388608 _____ (Trend Micro Inc.) C:\Users\lucka\Desktop\HijackThis.exe
2021-02-03 23:23 - 2021-02-03 23:23 - 000000000 ____D C:\Users\lucka\AppData\Roaming\Comodo
2021-02-03 23:07 - 2021-02-04 17:50 - 000854576 _____ C:\windows\system32\Drivers\sfi.dat
2021-02-03 23:07 - 2021-02-03 23:07 - 000002109 _____ C:\Users\Public\Desktop\COMODO Internet Security Premium.lnk
2021-02-03 23:07 - 2021-02-03 23:07 - 000002109 _____ C:\ProgramData\Desktop\COMODO Internet Security Premium.lnk
2021-02-03 23:07 - 2021-02-03 23:07 - 000000000 ____D C:\windows\system32\Tasks\COMODO
2021-02-03 23:06 - 2021-02-03 23:06 - 000000000 ____D C:\Program Files\COMODO
2021-02-03 23:05 - 2021-02-03 23:05 - 000002092 _____ C:\Users\Public\Desktop\Comodo Secure Shopping.lnk
2021-02-03 23:05 - 2021-02-03 23:05 - 000002092 _____ C:\ProgramData\Desktop\Comodo Secure Shopping.lnk
2021-02-03 23:05 - 2019-08-21 08:02 - 000454616 _____ (COMODO) C:\windows\system32\cssguard64.dll
2021-02-03 23:05 - 2019-08-21 08:02 - 000341224 _____ (COMODO) C:\windows\system32\cmdkbdcss64.dll
2021-02-03 23:05 - 2019-08-21 08:02 - 000337856 _____ (COMODO) C:\windows\SysWOW64\cssguard32.dll
2021-02-03 23:05 - 2019-08-21 08:02 - 000262376 _____ (COMODO) C:\windows\SysWOW64\cmdkbdcss32.dll
2021-02-03 23:05 - 2019-01-29 09:42 - 000254440 _____ (COMODO) C:\windows\system32\iseguard64.dll
2021-02-03 23:05 - 2019-01-29 09:42 - 000205024 _____ (COMODO) C:\windows\SysWOW64\iseguard32.dll
2021-02-03 23:05 - 2018-08-29 23:55 - 000063256 _____ (COMODO) C:\windows\system32\Drivers\isedrv.sys
2021-02-03 23:05 - 2018-02-28 08:11 - 000125000 _____ (COMODO) C:\windows\system32\Drivers\cmdcss.sys
2021-02-03 23:04 - 2021-02-03 23:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2021-02-03 23:04 - 2021-02-03 23:05 - 000000000 ____D C:\Program Files (x86)\Comodo
2021-02-03 23:04 - 2021-02-03 23:04 - 000002139 _____ C:\Users\Public\Desktop\Comodo Dragon.lnk
2021-02-03 23:04 - 2021-02-03 23:04 - 000002139 _____ C:\ProgramData\Desktop\Comodo Dragon.lnk
2021-02-03 23:04 - 2021-02-03 23:04 - 000000000 ____D C:\Users\lucka\AppData\Local\Comodo
2021-02-03 22:55 - 2021-02-03 23:05 - 000000000 ____D C:\ProgramData\Comodo
2021-02-03 22:55 - 2021-02-03 22:55 - 000000000 ____D C:\ProgramData\Shared Space
2021-02-03 22:53 - 2021-02-03 23:42 - 000050388 _____ C:\windows\ZAM.krnl.trace
2021-02-03 13:51 - 2021-02-04 17:57 - 000000000 ____D C:\Users\lucka\AppData\Roaming\vlc
2021-02-03 13:29 - 2021-02-03 13:29 - 000001097 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-02-03 13:29 - 2021-02-03 13:29 - 000001097 _____ C:\ProgramData\Desktop\VLC media player.lnk
2021-02-03 13:29 - 2021-02-03 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2021-02-03 13:11 - 2021-02-03 14:56 - 1919118056 _____ C:\Users\lucka\Downloads\Avengers.Endgame.2019.BluRay.1080p.CZ.dabing.mkv
2021-02-03 12:34 - 2021-02-03 12:34 - 000000000 ____D C:\Users\lucka\AppData\Local\Conexant
2021-02-03 12:25 - 2021-02-03 12:25 - 000000000 ____D C:\Users\lucka\Desktop\New folder
2021-02-03 12:21 - 2021-02-03 22:51 - 000000000 ____D C:\windows\system32\Tasks\Avast Software
2021-02-03 12:19 - 2021-02-03 22:53 - 000000000 ____D C:\ProgramData\Avast Software
2021-02-03 11:47 - 2021-02-03 11:47 - 000000000 ____D C:\Users\lucka\AppData\Local\Zemana
2021-02-03 11:47 - 2021-02-03 11:47 - 000000000 ____D C:\Program Files (x86)\Zemana
2021-02-03 11:46 - 2021-02-03 23:42 - 000000000 ____D C:\Users\lucka\AppData\Local\AMSDK
2021-02-03 11:38 - 2014-02-13 23:59 - 000024064 _____ C:\windows\zoek-delete.exe
2021-02-03 11:04 - 2021-02-03 22:53 - 000003122 _____ C:\windows\system32\Tasks\{8331F916-D37B-4883-8E9A-C2A75724AF41}
2021-02-03 11:03 - 2021-02-03 11:31 - 000000000 ____D C:\zoek_backup
2021-02-03 11:00 - 2021-02-03 11:00 - 001800862 _____ C:\Users\lucka\Downloads\zoek1.rar
2021-02-03 11:00 - 2021-02-03 11:00 - 000000000 ____D C:\Users\lucka\Downloads\zoek1
2021-02-02 18:23 - 2021-02-02 18:23 - 000000000 ____D C:\ProgramData\Sophos
2021-02-02 18:18 - 2021-02-02 18:21 - 206758184 _____ (Sophos Limited) C:\Users\lucka\Downloads\Sophos Virus Removal Tool.exe
2021-02-02 15:17 - 2021-02-02 15:17 - 000248992 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2021-02-02 15:17 - 2021-02-02 15:17 - 000153312 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2021-02-02 15:17 - 2021-02-02 15:17 - 000001987 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-02-02 15:17 - 2021-02-02 15:17 - 000001975 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-02-02 15:17 - 2021-02-02 15:17 - 000001975 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-02-02 15:14 - 2021-02-02 18:11 - 000000000 ____D C:\Users\lucka\AppData\Local\CrashDumps
2021-02-02 14:32 - 2021-02-02 14:32 - 000000000 ____D C:\Users\lucka\AppData\Local\mbam
2021-02-02 14:31 - 2021-02-02 14:31 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-02 14:30 - 2021-02-02 14:30 - 000000000 ____D C:\Program Files\Malwarebytes
2021-02-02 14:29 - 2021-02-02 14:29 - 002086424 _____ (Malwarebytes) C:\Users\lucka\Downloads\MBSetup.exe
2021-02-02 14:18 - 2021-02-02 17:46 - 000000000 ____D C:\AdwCleaner
2021-02-02 14:16 - 2021-02-02 14:17 - 008447152 _____ (Malwarebytes) C:\Users\lucka\Downloads\AdwCleaner.exe
2021-02-02 14:08 - 2021-02-02 14:08 - 000448512 _____ (OldTimer Tools) C:\Users\lucka\Downloads\TFC.exe
2021-02-02 14:05 - 2021-02-02 14:05 - 000050688 _____ (Atribune.org) C:\Users\lucka\Downloads\ATF-Cleaner.exe
2021-02-01 19:59 - 2021-02-01 19:59 - 000000000 ____D C:\Users\lucka\AppData\Local\CyberLink
2021-02-01 15:45 - 2021-02-01 15:45 - 000000000 ____D C:\Users\lucka\AppData\Roaming\CyberLink

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-04 17:54 - 2015-01-05 12:51 - 000000000 ____D C:\windows\system32\Tasks\Lenovo
2021-02-04 17:35 - 2017-03-05 08:25 - 000003600 _____ C:\windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4289856400-1582998229-3165114676-1001
2021-02-04 14:32 - 2017-03-05 08:26 - 000003930 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{A606ED3F-E5DF-4564-84C8-5A7985F67766}
2021-02-04 13:56 - 2018-04-02 03:47 - 000000000 ____D C:\Users\lucka\Downloads\New folder
2021-02-04 10:19 - 2013-08-22 14:36 - 000000000 ____D C:\windows\Inf
2021-02-04 09:32 - 2013-08-22 15:45 - 000000006 ____H C:\windows\Tasks\SA.DAT
2021-02-04 09:30 - 2015-01-05 13:07 - 000002560 _____ C:\windows\system32\VfService.trf
2021-02-03 23:28 - 2014-03-18 10:53 - 000863592 _____ C:\windows\system32\PerfStringBackup.INI
2021-02-03 23:13 - 2018-01-03 13:05 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-03 23:13 - 2018-01-03 13:05 - 000002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-02-03 23:13 - 2018-01-03 13:05 - 000002214 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-02-03 22:53 - 2018-01-03 13:01 - 000003332 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-03 22:53 - 2018-01-03 13:01 - 000003204 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-03 22:53 - 2015-01-05 13:06 - 000003056 _____ C:\windows\system32\Tasks\PDVDServ Task
2021-02-03 22:53 - 2015-01-05 12:09 - 000002990 _____ C:\windows\system32\Tasks\Synaptics TouchPad Enhancements
2021-02-03 13:28 - 2017-12-28 18:54 - 000000000 ____D C:\Program Files (x86)\VideoLAN
2021-02-03 12:34 - 2015-01-05 12:05 - 000000000 ____D C:\ProgramData\Conexant
2021-02-02 15:03 - 2015-01-05 12:55 - 000000000 ____D C:\ProgramData\McAfee
2021-02-02 15:03 - 2015-01-05 12:55 - 000000000 ____D C:\Program Files\mcafee
2021-02-02 15:03 - 2015-01-05 12:55 - 000000000 ____D C:\Program Files\Common Files\McAfee
2021-02-02 15:03 - 2015-01-05 12:55 - 000000000 ____D C:\Program Files (x86)\McAfee
2021-02-02 15:02 - 2013-08-22 14:25 - 000262144 ___SH C:\windows\system32\config\BBI
2021-02-02 14:47 - 2015-01-05 12:50 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-02-02 14:24 - 2013-08-22 16:36 - 000000000 ____D C:\windows\system32\NDF
2021-02-02 14:14 - 2013-08-22 14:25 - 000262144 ___SH C:\windows\system32\config\ELAM
2021-02-01 19:59 - 2015-01-05 13:06 - 000000000 ____D C:\ProgramData\CyberLink
2021-02-01 19:12 - 2013-08-22 16:36 - 000000000 ____D C:\windows\tracing
2021-02-01 13:59 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-01 13:59 - 2013-08-22 16:36 - 000000000 ____D C:\windows\AppReadiness

==================== FLock ==============================

2021-02-04 09:44 C:\VTRoot
2017-09-14 20:30 C:\windows\system32\ntdll.dll
2017-09-14 20:29 C:\windows\SysWOW64\ntdll.dll

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\SysWOW64\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\SysWOW64\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll
[2017-12-28 21:20] - [2017-04-16 08:22] - 000817664 _____ (Microsoft Corporation) 20CC6E9FE25ACD34BE4FCDDB7B08364D

C:\windows\system32\dnsapi.dll
[2017-12-28 21:20] - [2017-09-07 21:08] - 000656896 _____ (Microsoft Corporation) 764E397D1664C3CE690AC35D3DD7085A

C:\windows\SysWOW64\dnsapi.dll
[2017-12-28 21:21] - [2017-09-07 19:24] - 000499200 _____ (Microsoft Corporation) 19992FFEC28B2CE8BDFCE1E7F51C4FAF


LastRegBack: 2021-02-03 14:02
==================== End of FRST.txt ========================

lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 18:19

uz to mam tady je additional:

lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 18:20

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.4.0.2710 - Adobe Systems Incorporated)
Amazon 1Button App (HKLM-x32\...\{3E69CC95-C0F6-4C74-8F43-74F9046F20B2}) (Version: 1.0.10 - Amazon) <==== ATTENTION
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{6da487a6-c50d-494e-aaa0-6d8ce9c37ef3}) (Version: 20.10.2 - Intel Corporation)
CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.0.3.4 - Lenovo)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 75.0.3770.100 - Comodo)
COMODO Internet Security Premium (HKLM\...\{9D9A22A4-C382-4340-9843-AB8C54FC9D49}) (Version: 12.2.2.7098 - COMODO Security Solutions Inc.) Hidden
COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 12.2.2.7098 - COMODO Security Solutions Inc.)
COMODO Secure Shopping (HKLM-x32\...\{D15DF9B0-3A98-4BEF-B7D5-FC3AEA478445}) (Version: 1.4.159.0 - COMODO) Hidden
COMODO Secure Shopping (HKLM-x32\...\Comodo Secure_Shopping_list_uninstall) (Version: 1.4.478445.159 - Comodo)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.50 - Conexant)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.4505 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
Dependency Package Update (HKLM\...\{0788641D-D31A-478D-BB34-C41564AE9F93}) (Version: 1.6.26.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{5252431C-288E-409D-ADCF-24407E0E6F70}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM\...\{FFED38DF-94DC-4FF9-96C1-A6990EDA6B03}) (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (HKLM-x32\...\{1D2682EA-75DD-44B6-BF2D-CD3C49EAD012}) (Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{3117B53D-A409-4D99-A0DE-11A1A40696FA}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4430150F-61B3-4142-BE04-EAC68C8DDA18}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4ABFEC28-1554-493D-A84D-BEA21D8E6D6F}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{4AF6C9BC-D8DB-4286-94D9-474CE54ADAA2}) (Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{503B47A9-E34A-4841-ADD7-417191D5DB5E}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{546FF45D-2467-4950-AAFB-0A06ACBB6B2C}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5B2190E9-199D-450A-94B3-4D6826C770C2}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{5BEFE1E1-F597-4B79-913B-15FFDB25B744}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{63DE35C9-B080-4D03-B110-99E14FD35BCE}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{65316098-0220-4D5C-B37A-6136083A0897}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (HKLM-x32\...\{E966DBE4-5075-465E-BA81-BC9A3A3204B3}) (Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Energy Manager (HKLM-x32\...\{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.21 - Lenovo) Hidden
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.21 - Lenovo)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.146 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1347.2) (HKLM\...\{302600C1-6BDF-4FD1-1312-148929CC1385}) (Version: 17.0.1312.0414 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.0.0.1002 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.6.472587.185 - Comodo)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.26.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10260 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo) Hidden
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2326 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2326 - CyberLink Corp.)
Lenovo PhoneCompanion (HKLM-x32\...\{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.2.0.0 - Lenovo) Hidden
Lenovo PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.2.0.0 - Lenovo)
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.1823.01 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.1823.01 - CyberLink Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
Lenovo Updates (HKLM-x32\...\{A2E1E9F0-0B68-4166-8C7F-85B563B84DF4}) (Version: 1.0.0.65 - Lenovo) Hidden
Lenovo Updates (HKLM-x32\...\InstallShield_{A2E1E9F0-0B68-4166-8C7F-85B563B84DF4}) (Version: 1.0.0.65 - Lenovo)
Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.0.14.1061 - Lenovo)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.2.2000 - Maxthon International Limited)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4641.3004 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39053 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.8.0 - Lenovo Group Limited)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.14.74 - Synaptics Incorporated)
UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.2.7 - Lenovo)
User Manuals (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
WinRAR 5.60 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_3.1.2.8_neutral__343d40qqvtj1t [2017-12-29] (Amazon.com)
Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_2.2.26.0_x86__k1h2ywk1493x8 [2017-12-29] (LENOVO INC.)
Dailymotion -> C:\Program Files\WindowsApps\DailymotionSA.Dailymotion_2.0.1.63_x64__6dqnvyezrysvy [2017-12-29] (Dailymotion SA)
Evernote Touch -> C:\Program Files\WindowsApps\Evernote.Evernote_3.3.0.102_x86__q4d96b2w5wcc2 [2017-12-29] (Evernote)
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2017-08-30] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2017-12-29] (FilmOn TV Inc.)
McAfee® Central for Lenovo -> C:\Program Files\WindowsApps\McAfeeInc.06.McAfeeSecurityAdvisorforLenovo_5.0.173.1_x64__bq6yxensn79aw [2018-04-03] (McAfee_Inc)
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
MSN Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
Phone Companion -> C:\Program Files\WindowsApps\E0469640.DeviceCollaboration_2.0.0.9_x64__5grkq8ppsgwt4 [2017-12-29] (LENOVO INC)
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2017-12-29] (CYBERLINK COM CORPORATION)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2017-12-29] (Skype) [MS Ad]
The Weather Channel for Lenovo -> C:\Program Files\WindowsApps\Weather.TheWeatherChannelforLenovo_2.1.20.1_x64__t3yemqpq4kp7p [2017-12-29] (The Weather Channel.)
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_1.18.3.0_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.2.0.24_neutral__qj0v5chwq8f2g [2017-08-30] (TripAdvisor LLC)
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation) [MS Ad]
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2017-12-29] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2014-09-28] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll [2014-08-13] (Lenovo) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2014-09-28] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-02] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll [2014-08-13] (Lenovo) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\system32\igfxDTCM.dll [2014-03-07] (Intel Corporation) [File not signed]
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\windows\system32\igfxOSP.dll [2014-03-07] (Intel Corporation) [File not signed]
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-02] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)

lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 18:21

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2017-12-28 21:21 - 2017-09-14 20:30 - 001737600 _____ (Access Denied) [File not signed] C:\windows\SYSTEM32\ntdll.dll
2015-01-05 13:07 - 2015-01-05 13:07 - 000096256 _____ (Google, inc) [File not signed] C:\Program Files\Lenovo PhoneCompanion\AdbWinApi.dll
2015-01-05 13:07 - 2015-01-05 13:07 - 000060928 _____ (Google, inc) [File not signed] C:\Program Files\Lenovo PhoneCompanion\AdbWinUsbApi.dll
2014-03-12 09:37 - 2014-03-07 17:17 - 000653824 _____ (Intel Corporation) [File not signed] C:\windows\system32\igfxDH.dll
2014-03-12 09:37 - 2014-03-07 17:17 - 000267264 _____ (Intel Corporation) [File not signed] C:\windows\system32\igfxDI.dll
2014-03-12 09:37 - 2014-03-07 17:17 - 000151040 _____ (Intel Corporation) [File not signed] C:\windows\system32\igfxLHM.dll
2014-03-12 09:37 - 2014-03-07 17:21 - 027362968 _____ (IntelVPGSigning2014 -> Intel Corporation) [File not signed] C:\windows\System32\igd10iumd64.dll
2014-03-12 09:37 - 2014-03-07 17:21 - 004532472 _____ (IntelVPGSigning2014 -> Intel Corporation) [File not signed] C:\windows\System32\igdusc64.dll
2015-01-05 12:51 - 2014-08-13 01:32 - 000468480 _____ (Lenovo) [File not signed] C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll
2015-01-05 13:02 - 2015-01-05 13:02 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\PowerDVD10\MSVCR71.dll
2017-12-28 23:02 - 2014-10-29 02:04 - 000679936 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
2017-12-28 22:53 - 2014-10-29 03:22 - 000286208 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Internet Explorer\sqmapi.dll
2017-12-28 22:57 - 2014-10-29 03:36 - 000045568 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Windows Photo Viewer\PhotoBase.dll
2017-12-28 22:57 - 2014-10-29 02:57 - 001844224 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
2017-12-28 23:08 - 2014-10-29 03:22 - 000286208 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Windows Portable Devices\SqmApi.dll
2017-12-28 23:26 - 2014-10-29 02:15 - 002488320 _____ (Microsoft Corporation) [File not signed] C:\windows\AppPatch\AcGenral.DLL
2017-12-28 23:23 - 2014-10-29 02:23 - 000332800 _____ (Microsoft Corporation) [File not signed] C:\windows\AppPatch\AcLayers.dll
2017-12-28 22:49 - 2014-10-29 02:56 - 000242688 _____ (Microsoft Corporation) [File not signed] C:\windows\AppPatch\AppPatch64\AcLayers.DLL
2017-12-28 23:02 - 2014-10-29 01:55 - 006307328 _____ (Microsoft Corporation) [File not signed] C:\Windows\ImmersiveControlPanel\SystemSettings.dll
2017-12-28 22:49 - 2014-10-29 03:08 - 000055808 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\acppage.dll
2017-12-28 22:53 - 2014-10-29 02:58 - 000894976 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\Actioncenter.dll
2017-12-28 22:49 - 2014-10-29 01:56 - 000278528 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\ACTIVEDS.dll
2017-12-28 21:20 - 2016-08-27 17:33 - 002881536 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\actxprxy.dll
2017-12-28 22:53 - 2014-10-29 02:27 - 000023040 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\adhapi.dll
2018-01-11 08:41 - 2016-02-04 17:39 - 000077824 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\adhsvc.dll
2017-12-28 22:49 - 2014-10-29 03:41 - 000251392 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\adsldpc.dll
2017-12-28 22:49 - 2014-10-29 03:21 - 000098816 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\AEPIC.dll
2017-12-28 22:49 - 2014-10-29 01:53 - 000118272 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\AltTab.dll
2017-12-28 22:48 - 2014-10-29 03:44 - 000564224 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\apphelp.dll
2017-12-28 21:20 - 2016-01-31 19:07 - 000110080 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\appinfo.dll
2017-12-28 22:49 - 2014-10-29 02:58 - 000163328 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\apprepapi.dll
2017-12-28 23:02 - 2014-10-29 02:26 - 000034816 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\appsruprov.dll
2017-12-28 22:49 - 2014-10-29 03:33 - 000108544 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ATL.DLL
2017-12-28 22:49 - 2014-10-29 02:28 - 000048128 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\atlthunk.dll
2017-12-28 22:49 - 2014-10-29 02:11 - 000226304 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\audioendpointbuilder.dll
2017-12-28 22:49 - 2014-10-29 02:02 - 000911360 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\audiosrv.dll
2017-12-28 21:20 - 2017-08-11 02:39 - 002779136 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\authui.dll
2017-12-28 21:20 - 2017-08-11 03:16 - 000275968 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\AUTHZ.dll
2017-12-28 22:49 - 2014-10-29 03:44 - 002022912 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\BatMeter.dll
2017-12-28 22:49 - 2014-10-29 02:27 - 000397312 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\Bcp47Langs.dll
2017-12-28 21:20 - 2016-02-05 16:11 - 000845312 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\bfe.dll
2017-12-28 22:49 - 2014-10-29 03:48 - 000024064 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\bi.dll
2017-12-28 22:50 - 2014-10-29 02:12 - 000270336 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\bisrv.dll
2017-12-28 22:49 - 2014-10-29 03:34 - 000054272 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\bitsigd.dll
2017-12-28 22:49 - 2014-10-29 02:28 - 000024576 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\bitsperf.dll
2017-12-28 22:50 - 2014-10-29 02:16 - 000107520 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\BluetoothApis.dll
2017-12-28 22:50 - 2014-10-29 02:27 - 000133120 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\BrokerLib.dll
2017-12-28 22:50 - 2014-10-29 02:26 - 000135168 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\browser.dll
2017-12-28 22:50 - 2014-10-29 01:50 - 000221184 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\bthprops.cpl
2017-12-28 22:52 - 2014-10-29 03:02 - 000432128 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\CLUSAPI.dll
2017-12-28 22:50 - 2014-10-29 02:45 - 000717312 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\COMDLG32.dll
2017-12-28 20:13 - 2016-01-10 17:41 - 001707008 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\comsvcs.dll
2017-12-28 22:50 - 2014-10-29 01:53 - 000033280 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\CredentialMigrationHandler.dll
2017-12-28 22:50 - 2014-10-29 03:05 - 000168960 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\credui.dll
2017-12-28 22:50 - 2014-10-29 02:17 - 000121856 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\cryptcatsvc.dll
2017-12-28 22:50 - 2014-10-29 02:28 - 000214528 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\cryptnet.dll
2017-12-28 22:50 - 2014-10-29 02:27 - 000131584 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\cryptsvc.dll
2017-12-28 22:50 - 2014-10-29 02:26 - 000037888 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\crypttpmeksvc.dll
2017-12-28 22:56 - 2014-10-29 02:26 - 000055296 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\cscapi.dll
2017-12-28 23:02 - 2014-10-29 02:27 - 000020480 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\CSystemEventsBrokerClient.dll
2017-12-28 22:51 - 2014-10-29 02:35 - 004709888 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\d2d1.dll
2017-12-28 22:51 - 2014-10-29 02:24 - 002464768 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\D3D10Warp.dll
2017-12-28 21:18 - 2016-08-30 15:11 - 000092672 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\DAB.dll
2017-12-28 22:51 - 2014-10-29 02:29 - 000013312 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\DABAPI.dll
2017-12-28 22:51 - 2014-10-29 02:09 - 000146432 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\dafupnp.dll
2017-12-28 21:19 - 2017-05-09 15:28 - 000193024 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\DAFWSD.dll
2017-12-28 22:51 - 2014-10-29 02:12 - 000407040 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\das.dll
2017-12-28 22:55 - 2014-10-29 01:57 - 000034304 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\datusage.dll
2017-12-28 22:53 - 2014-10-29 02:20 - 001492480 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dbghelp.dll
2017-12-28 22:52 - 2014-10-29 03:44 - 000014848 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\DCIMAN32.dll
2017-12-28 22:51 - 2014-10-29 02:07 - 000594944 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\DDRAW.dll
2017-12-28 22:51 - 2014-10-29 02:25 - 000102400 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\DevDispItemProvider.dll
2017-12-28 22:51 - 2014-10-29 02:18 - 000194560 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\deviceaccess.dll
2017-12-28 22:51 - 2014-10-29 02:27 - 000038912 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\deviceassociation.dll
2017-12-28 22:50 - 2014-10-29 02:27 - 000069632 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\devrtl.DLL
2017-12-28 22:51 - 2014-10-29 02:29 - 000365056 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dhcpcore.dll
2017-12-28 22:51 - 2014-10-29 02:28 - 000269312 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\dhcpcore6.dll
2017-12-28 22:51 - 2014-10-29 02:28 - 000089088 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dhcpcsvc.DLL
2017-12-28 22:51 - 2014-10-29 02:29 - 000066048 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dhcpcsvc6.DLL
2017-12-28 21:21 - 2016-08-22 14:34 - 001628672 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\diagtrack.dll
2017-12-28 22:51 - 2014-10-29 03:03 - 000489472 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\dlnashext.dll
2017-12-28 21:20 - 2017-09-07 21:08 - 000656896 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\DNSAPI.dll
2017-12-28 22:51 - 2014-10-29 02:25 - 000013824 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\dnsext.dll
2017-12-28 21:21 - 2017-06-13 15:16 - 000252416 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dnsrslvr.dll
2017-12-28 22:52 - 2014-10-29 03:23 - 000148480 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\Dot3MM.dll
2017-12-28 22:52 - 2014-10-29 02:29 - 000015360 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\DPAPI.DLL
2017-12-28 21:20 - 2017-04-02 15:49 - 000186880 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\dpapisrv.dll
2017-12-28 22:50 - 2014-10-29 02:21 - 000174080 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dps.dll
2017-12-28 22:52 - 2014-10-29 02:26 - 000744448 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\drvstore.dll
2017-12-28 20:15 - 2016-03-10 18:03 - 000030208 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\DSPARSE.dll
2017-12-28 22:51 - 2014-10-29 03:27 - 000037888 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\dtsh.dll
2017-12-28 22:52 - 2014-10-29 02:08 - 001822720 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\DUI70.dll
2017-12-28 22:52 - 2014-10-29 02:09 - 000658944 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\DUser.dll
2017-12-28 22:51 - 2014-10-29 02:15 - 002259456 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\dwmcore.dll
2017-12-28 22:51 - 2014-10-29 02:17 - 000164352 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\dwmredir.dll
2017-12-28 21:20 - 2017-05-12 03:58 - 001985536 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\dwrite.dll
2017-12-28 22:52 - 2014-10-29 02:44 - 000463872 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\dxp.dll
2017-12-28 19:46 - 2015-01-30 02:08 - 000346112 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\eappcfg.dll
2017-12-28 22:52 - 2014-10-29 02:19 - 000070656 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\eappprxy.dll
2017-12-28 22:52 - 2014-10-29 03:44 - 000057856 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\efslsaext.dll
2017-12-28 22:52 - 2014-10-29 03:12 - 000135680 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\EhStorAPI.dll
2017-12-28 22:52 - 2014-10-29 03:07 - 000207872 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\EhStorShell.dll
2017-12-28 22:53 - 2014-10-29 02:20 - 000070656 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\elscore.dll
2017-12-28 22:53 - 2014-10-29 02:27 - 000700928 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\ElsLad.dll
2017-12-28 23:02 - 2014-10-29 02:26 - 000053760 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\energyprov.dll
2017-12-28 22:50 - 2014-10-29 02:12 - 000516608 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\es.dll
2017-12-28 21:20 - 2016-07-30 18:12 - 002896384 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ESENT.dll
2017-12-28 23:02 - 2014-10-29 02:27 - 000028160 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\EventAggregation.dll
2017-12-28 21:20 - 2017-06-06 21:52 - 003120640 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\explorerframe.dll
2017-12-28 22:52 - 2014-10-29 02:13 - 000052736 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fdPnp.dll
2017-12-28 22:48 - 2014-10-29 02:22 - 000075264 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fdproxy.dll
2017-12-28 22:48 - 2014-10-29 02:15 - 000034816 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\fdrespub.dll
2017-12-28 22:48 - 2014-10-29 02:17 - 000109568 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fdssdp.dll
2017-12-28 22:48 - 2014-10-29 02:08 - 000172032 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fdwsd.dll
2018-01-11 08:41 - 2016-04-09 23:09 - 000754176 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\FirewallAPI.dll
2017-12-28 23:10 - 2014-10-29 01:50 - 000920064 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\FirewallControlPanel.dll
2017-12-28 22:52 - 2014-10-29 02:28 - 000019968 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\fltlib.dll
2017-12-28 21:21 - 2017-05-12 03:48 - 001377792 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\fntcache.dll
2017-12-28 23:08 - 2014-10-29 02:21 - 000320512 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\framedynos.dll
2017-12-28 22:52 - 2014-10-29 03:44 - 000065024 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\fthsvc.dll
2017-12-28 22:48 - 2014-10-29 02:18 - 000157696 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\FunDisc.dll
2018-01-11 08:42 - 2016-04-01 17:50 - 000737280 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\fveapi.dll
2017-12-28 22:59 - 2014-10-29 02:27 - 000025600 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\FVECERTS.dll
2017-12-28 21:20 - 2016-02-05 16:11 - 000422400 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\fwpuclnt.dll
2017-12-28 22:55 - 2014-10-29 02:16 - 000092160 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\FwRemoteSvr.DLL
2017-12-28 22:52 - 2014-10-29 03:28 - 000042496 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\FXSMON.DLL
2017-12-28 22:54 - 2014-10-29 02:20 - 000162304 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\globinputhost.dll
2017-12-28 22:56 - 2014-10-29 03:44 - 000165888 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\GLU32.dll
2017-12-28 21:21 - 2017-04-06 17:35 - 001362432 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\gpsvc.dll
2017-12-28 22:53 - 2014-10-29 03:17 - 000043520 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\hcproviders.dll
2017-12-28 22:53 - 2014-10-29 01:54 - 000599552 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\hgcpl.dll
2017-12-28 22:53 - 2014-10-29 02:28 - 000036864 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\HID.DLL
2017-12-28 22:53 - 2014-10-29 01:48 - 000543232 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\hnetcfg.dll
2017-12-28 22:53 - 2014-10-29 02:29 - 000038912 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\HTTPAPI.dll
2018-01-11 08:41 - 2016-02-04 17:49 - 000125440 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\httpprxm.dll
2017-12-28 22:50 - 2014-10-29 03:36 - 000134144 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\CHARTV.dll
2017-12-28 22:53 - 2014-10-29 03:42 - 000014336 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\IconCodecService.dll
2017-12-28 23:00 - 2014-10-29 02:18 - 000146432 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\IDStore.dll
2017-12-28 21:20 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\ieframe.dll
2017-12-28 21:21 - 2017-10-14 09:13 - 002903552 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\iertutil.dll
2017-12-28 21:20 - 2017-11-07 21:29 - 001080320 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ikeext.dll
2017-12-28 22:53 - 2014-10-29 03:11 - 000547328 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\imapi2.dll
2017-12-28 21:18 - 2016-06-25 19:13 - 000165376 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\inetpp.dll
2017-12-28 21:19 - 2016-10-11 18:47 - 000263680 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\Input.dll
2017-12-28 22:53 - 2014-10-29 01:48 - 000259072 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\InputSwitch.dll
2018-01-11 08:42 - 2016-04-07 17:06 - 000927744 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\iphlpsvc.dll
2017-12-28 22:55 - 2014-10-29 02:08 - 000397312 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ipsecsvc.dll
2017-12-28 21:20 - 2017-10-14 08:23 - 000963072 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\kerberos.DLL
2017-12-28 23:04 - 2014-10-29 03:48 - 000024576 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ktmw32.dll
2017-12-28 22:54 - 2014-10-29 03:40 - 000072192 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\l2gpstore.dll
2017-12-28 22:54 - 2014-10-29 03:40 - 000030208 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\LINKINFO.dll
2017-12-28 23:11 - 2014-10-29 02:23 - 000376320 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\livessp.DLL
2017-12-28 22:54 - 2014-10-29 03:48 - 000024576 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\lmhsvc.dll
2017-12-28 21:20 - 2017-08-11 02:44 - 001095680 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\localspl.dll
2017-12-28 22:49 - 2014-10-29 03:08 - 000132608 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\LockScreenContent.dll
2017-12-28 22:59 - 2014-10-29 02:27 - 000241152 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\logoncli.dll
2017-12-28 21:20 - 2017-10-14 08:29 - 001436672 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\lsasrv.dll
2017-12-28 20:15 - 2015-02-21 00:49 - 000780800 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\lsm.dll
2017-12-28 23:08 - 2014-10-29 02:27 - 000114176 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\mi.dll
2017-12-28 22:49 - 2014-10-29 03:42 - 000023552 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\midimap.dll
2017-12-28 23:08 - 2014-10-29 02:20 - 000234496 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\miutils.dll
2017-12-28 22:55 - 2014-10-29 02:16 - 000238592 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\MLANG.dll
2017-12-28 22:55 - 2014-10-29 02:22 - 000071168 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\mmcss.dll
2017-12-28 21:19 - 2017-06-24 17:46 - 000424448 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\MPRAPI.dll
2018-01-11 08:42 - 2016-04-09 22:55 - 000881152 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\mpssvc.dll
2017-12-28 19:41 - 2015-02-08 00:57 - 001090048 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\mrmcorer.dll
2017-12-28 22:49 - 2014-10-29 03:37 - 000026624 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\msacm32.drv
2013-08-22 12:04 - 2013-08-22 12:04 - 000382976 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\MSCOREE.DLL
2017-12-28 23:03 - 2014-10-29 03:31 - 000028160 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\MsCtfMonitor.dll
2017-12-28 21:20 - 2017-09-08 18:14 - 003084288 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\MsftEdit.dll
2017-12-28 21:20 - 2016-11-05 18:57 - 003320320 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\msi.dll
2017-12-28 22:55 - 2014-10-29 02:28 - 000011264 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\Msidle.dll
2017-12-28 22:52 - 2014-10-29 02:28 - 000007680 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\MSIMG32.dll
2017-12-28 22:51 - 2014-10-29 02:27 - 000046080 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\mspatcha.dll
2013-08-22 12:44 - 2013-08-22 12:44 - 000002048 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\msprivs.DLL
2017-12-28 23:11 - 2014-10-29 01:57 - 000133120 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\mssprxy.dll
2017-12-28 21:20 - 2017-06-15 15:17 - 002551808 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\MSSRCH.DLL
2017-12-28 23:03 - 2014-10-29 03:42 - 000480256 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\MSUTB.dll
2017-12-28 23:08 - 2014-10-29 03:35 - 000237056 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\MSWB7.dll
2017-12-28 19:42 - 2016-05-13 22:58 - 000339456 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\mswsock.dll
2017-12-28 21:20 - 2017-06-03 17:27 - 002346496 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\msxml3.dll
2017-12-28 22:55 - 2014-10-29 03:42 - 000069120 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\napinsp.dll
2017-12-28 22:55 - 2014-10-29 02:16 - 000154112 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ncbservice.dll
2017-12-28 22:55 - 2014-10-29 02:14 - 000026624 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\NCI.dll
2017-12-28 23:08 - 2014-10-29 02:26 - 000073216 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\NCObjAPI.DLL
2017-12-28 22:55 - 2014-10-29 02:29 - 000350720 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\ncryptprov.dll
2017-12-28 19:53 - 2014-12-06 04:17 - 000360448 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ncsi.dll
2017-12-28 22:55 - 2014-10-29 02:25 - 000025600 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\ncuprov.dll
2017-12-28 22:55 - 2014-10-29 02:21 - 000064512 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\nduprov.dll
2017-12-28 23:00 - 2014-10-29 02:25 - 000127488 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\negoexts.DLL
2017-12-28 22:55 - 2014-10-29 02:31 - 000318464 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\netjoin.dll
2017-12-28 21:20 - 2017-01-10 22:06 - 000840192 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\netlogon.DLL
2017-12-28 22:55 - 2014-10-29 01:51 - 000266752 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\netman.dll
2017-12-28 22:56 - 2014-10-29 02:21 - 000255488 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\netprofm.dll
2017-12-28 22:56 - 2014-10-29 02:19 - 000550912 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\netprofmsvc.dll
2017-12-28 22:55 - 2014-10-29 02:52 - 002829312 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\netshell.dll
2017-12-28 22:55 - 2014-10-29 02:45 - 001678336 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\NetworkExplorer.dll
2017-12-28 22:56 - 2014-10-29 01:58 - 000106496 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\NetworkStatus.dll
2017-12-28 23:02 - 2014-10-29 02:12 - 000393728 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\NInput.dll
2017-12-28 19:53 - 2014-10-29 02:24 - 000086016 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\nlaapi.dll
2017-12-28 19:53 - 2014-12-06 02:41 - 000391680 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\nlasvc.dll
2017-12-28 22:56 - 2014-10-29 03:41 - 000037888 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\npmproxy.dll
2017-12-28 22:54 - 2014-10-29 02:28 - 000016896 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\nrpsrv.DLL
2017-12-28 23:04 - 2014-10-29 02:29 - 000028672 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\nsisvc.dll
2017-12-28 22:51 - 2014-10-29 02:26 - 000148480 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\NTDSAPI.dll
2017-12-28 21:19 - 2016-08-25 21:50 - 000747008 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\ntshrui.dll
2017-12-28 22:56 - 2014-10-29 02:17 - 000412160 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\OLEACC.dll
2017-12-28 22:50 - 2014-10-29 03:33 - 000126464 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\oledlg.dll
2017-12-28 22:55 - 2014-10-29 02:27 - 000033280 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\ondemandconnroutehelper.dll
2017-12-28 22:56 - 2014-10-29 02:17 - 000231424 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\OneX.DLL
2017-12-28 22:56 - 2014-10-29 03:42 - 001091584 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\OPENGL32.dll
2017-12-28 22:48 - 2014-10-29 03:42 - 000025088 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\pcacli.dll
2017-12-28 22:48 - 2014-10-29 02:24 - 000034816 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\pcadm.dll
2017-12-28 22:48 - 2014-10-29 02:03 - 000474112 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\pcasvc.dll
2013-08-22 12:41 - 2013-08-22 12:41 - 000040448 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\pcwum.dll
2017-12-28 22:56 - 2014-10-29 02:28 - 000041472 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\perfproc.dll
2017-12-28 22:50 - 2014-10-29 02:01 - 001145856 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\perftrack.dll
2017-12-28 20:26 - 2015-04-03 01:35 - 000445440 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\PhotoMetadataHandler.dll
2017-12-28 20:15 - 2015-03-13 03:58 - 000259072 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\pku2u.DLL
2017-12-28 22:56 - 2014-10-29 03:36 - 000088064 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\PlaySndSrv.dll
2017-12-28 21:19 - 2016-08-03 16:36 - 000289792 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\PlayToDevice.dll
2017-12-28 19:41 - 2016-08-11 17:17 - 000627200 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\pnidui.dll
2017-12-28 22:56 - 2014-10-29 03:43 - 000014336 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\pnpts.dll
2017-12-28 22:57 - 2014-10-29 02:26 - 000088576 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\pnrpnsp.dll
2017-12-28 23:08 - 2014-10-29 01:55 - 000719360 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\PortableDeviceApi.dll
2017-12-28 23:08 - 2014-10-29 02:12 - 000073728 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\portabledeviceconnectapi.dll
2017-12-28 23:08 - 2014-10-29 01:54 - 000222208 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\PortableDeviceTypes.dll
2017-12-28 22:57 - 2014-10-29 03:02 - 000483328 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\powercpl.dll
2017-12-28 22:56 - 2014-10-29 01:56 - 000053248 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\PrintIsolationProxy.dll
2017-12-28 22:56 - 2014-10-29 03:13 - 000478208 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\prnfldr.dll
2017-12-28 20:00 - 2015-07-09 17:14 - 000228864 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\profsvc.dll
2017-12-28 22:57 - 2014-10-29 01:55 - 000130048 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\profsvcext.dll
2017-12-28 22:53 - 2014-10-29 01:51 - 000445952 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\provsvc.dll
2017-12-28 22:57 - 2014-10-29 02:20 - 000162816 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\ProximityCommon.dll
2017-12-28 22:57 - 2014-10-29 02:20 - 000015872 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\ProximityCommonPal.dll
2017-12-28 21:19 - 2017-06-13 09:07 - 000301568 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\ProximityService.dll
2017-12-28 22:57 - 2014-10-29 02:14 - 000040448 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\ProximityServicePAL.dll
2017-12-28 22:57 - 2014-10-29 02:25 - 000141312 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\psmsrv.dll
2017-12-28 22:49 - 2014-10-29 02:43 - 000933376 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\qmgr.dll
2017-12-28 22:58 - 2014-10-29 03:43 - 000100864 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\radardt.dll
2017-12-28 22:58 - 2014-10-29 02:28 - 000017408 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\rasadhlp.dll
2017-12-28 21:20 - 2016-07-07 21:29 - 000704512 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\RasApi32.dll
2017-12-28 22:58 - 2014-10-29 02:45 - 000879104 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\RASDLG.dll
2017-12-28 21:19 - 2016-07-07 22:04 - 000173568 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\rasman.dll
2017-12-28 22:58 - 2014-10-29 03:10 - 000468480 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\RasMM.dll
2017-12-28 22:52 - 2014-10-29 03:25 - 000290816 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\RESUTILS.DLL
2017-12-28 22:58 - 2014-10-29 02:28 - 000080896 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\rpcepmap.dll
2017-12-28 21:20 - 2017-04-16 08:22 - 000817664 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\rpcss.dll
2017-12-28 22:58 - 2014-10-29 03:09 - 000179200 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\RSTRTMGR.DLL
2017-12-28 22:58 - 2014-10-29 02:28 - 000053760 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\rtutils.dll
2017-12-28 22:51 - 2014-10-29 02:28 - 000075776 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\samcli.dll
2017-12-28 21:20 - 2017-02-04 18:53 - 000111616 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\SAMLIB.dll
2017-12-28 21:20 - 2017-02-04 18:51 - 000842240 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\samsrv.dll
2017-12-28 23:00 - 2014-10-29 02:23 - 000274944 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\scecli.DLL
2017-12-28 23:00 - 2014-10-29 03:33 - 000235520 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\scrobj.dll
2017-12-28 23:00 - 2014-10-29 03:33 - 000205824 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\scrrun.dll
2017-12-28 23:00 - 2014-10-29 01:52 - 001275904 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\searchfolder.dll
2017-12-28 22:54 - 2014-10-29 02:29 - 000029184 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SECUR32.DLL
2017-12-28 23:00 - 2014-10-29 02:21 - 000073728 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\sens.dll
2017-12-28 22:55 - 2014-10-29 03:01 - 000270336 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\SensorsApi.dll
2017-12-28 23:01 - 2014-10-29 03:13 - 000045056 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SetNetworkLocation.dll
2017-12-28 23:01 - 2014-10-29 01:47 - 000173056 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SettingMonitor.dll
2017-12-28 22:59 - 2014-10-29 01:39 - 002814464 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\SettingsHandlers.dll
2017-12-28 23:01 - 2014-10-29 01:42 - 000031232 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\SETTINGSYNCPOLICY.dll
2013-08-22 12:42 - 2013-08-22 12:41 - 000003072 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\sfc.dll
2017-12-28 23:01 - 2014-10-29 03:45 - 000051712 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\sfc_os.dll
2017-12-28 20:12 - 2016-03-05 18:04 - 000192512 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\shacct.dll
2017-12-28 21:19 - 2017-08-19 18:27 - 000237568 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SHDOCVW.dll
2017-12-28 23:01 - 2014-10-29 03:41 - 000009216 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\shfolder.dll
2017-12-28 23:01 - 2014-10-29 03:45 - 000028160 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\shgina.dll
2017-12-28 23:01 - 2014-10-29 03:17 - 000020480 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\shpafact.dll
2017-12-28 23:01 - 2014-10-29 02:04 - 000640000 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\shsvcs.dll
2017-12-28 21:20 - 2017-04-06 17:46 - 000434688 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\schannel.DLL
2017-12-28 19:42 - 2015-08-01 04:38 - 001265152 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\schedsvc.dll
2017-12-28 20:26 - 2014-10-31 04:22 - 000291840 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\SkydriveShell.dll
2014-03-18 10:54 - 2014-03-18 10:54 - 000156672 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\SLC.dll
2017-12-28 22:49 - 2014-10-29 01:35 - 000234496 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\SndVolSSO.DLL
2017-12-28 23:01 - 2014-10-29 02:28 - 000032256 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\snmpapi.dll
2017-12-28 23:01 - 2014-10-29 03:44 - 000107008 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SPINF.dll
2017-12-28 21:18 - 2016-01-30 20:26 - 000045568 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\spool\PRTPROCS\x64\winprint.dll
2017-12-28 22:56 - 2014-10-29 03:44 - 000072704 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\SPOOLSS.DLL
2014-03-18 10:54 - 2014-03-18 10:54 - 000123904 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\sppc.dll
2017-12-28 22:47 - 2014-10-29 03:05 - 000370176 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\srchadmin.dll
2017-12-28 23:02 - 2014-10-29 02:26 - 000045056 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SrumAPI.dll
2017-12-28 23:02 - 2014-10-29 02:19 - 000175616 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\srumsvc.dll
2017-12-28 21:20 - 2017-09-07 20:54 - 000329216 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\srvsvc.dll
2017-12-28 21:18 - 2017-05-02 19:41 - 000044032 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SSCORE.DLL
2017-12-28 23:01 - 2014-10-29 02:28 - 000012288 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\sscoreext.dll
2017-12-28 23:04 - 2014-10-29 03:41 - 000064512 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SSDPAPI.dll
2017-12-28 23:04 - 2014-10-29 02:10 - 000249344 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ssdpsrv.dll
2017-12-28 20:10 - 2014-10-29 03:48 - 000029184 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SspiSrv.dll
2017-12-28 23:02 - 2014-10-29 01:52 - 000336384 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\stobject.dll
2018-01-11 08:42 - 2016-04-01 17:42 - 000748544 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\StructuredQuery.dll
2017-12-28 23:02 - 2014-10-29 02:22 - 000071680 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\SubscriptionMgr.dll
2017-12-28 23:02 - 2014-10-29 03:40 - 000610816 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\sxs.dll
2017-12-28 22:55 - 2014-10-29 03:03 - 002334720 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\SyncCenter.dll
2017-12-28 23:02 - 2014-10-29 03:26 - 000098304 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\SYNCENG.dll
2017-12-28 22:55 - 2014-10-29 03:30 - 000081408 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\Syncreg.dll
2017-12-28 23:02 - 2014-10-29 03:45 - 000174592 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\syncui.dll
2017-12-28 20:28 - 2015-07-10 18:54 - 001217024 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\sysmain.dll
2017-12-28 23:07 - 2014-10-29 02:27 - 000025600 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\SYSNTFY.dll
2017-12-28 23:11 - 2014-10-29 02:27 - 000018432 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\SystemEventsBrokerClient.dll
2017-12-28 18:57 - 2015-05-12 14:19 - 000294912 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\systemeventsbrokerserver.dll
2017-12-28 23:02 - 2014-10-29 01:58 - 000116736 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\SystemSettingsDatabase.dll
2017-12-28 23:02 - 2014-10-29 01:55 - 000504320 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\taskcomp.dll
2017-12-28 23:04 - 2014-10-29 02:28 - 000030720 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\tbs.dll
2017-12-28 22:56 - 2014-10-29 01:57 - 000216576 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\tcpmon.dll
2017-12-28 23:04 - 2014-10-29 02:27 - 000011776 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\TetheringIeProvider.dll
2017-12-28 23:04 - 2014-10-29 02:03 - 000211456 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\TetheringStation.dll
2017-12-28 23:04 - 2014-10-29 02:26 - 000059392 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\themeservice.dll
2017-12-28 23:04 - 2014-10-29 02:21 - 000058368 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\threadpoolwinrt.dll
2017-12-28 23:04 - 2014-10-29 01:55 - 000171008 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\thumbcache.dll
2017-12-28 23:04 - 2014-10-29 02:20 - 000262656 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\timebrokerserver.dll
2017-12-28 23:04 - 2014-10-29 01:51 - 000518144 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\timedate.cpl
2017-12-28 21:21 - 2017-10-10 16:38 - 003631616 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\TQUERY.DLL
2017-12-28 23:04 - 2014-10-29 02:21 - 000124416 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\trkwks.dll
2017-12-28 23:04 - 2014-10-29 03:40 - 000015872 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\tschannel.dll
2017-12-28 23:00 - 2014-10-29 02:25 - 000102912 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\tspkg.DLL
2017-12-28 23:04 - 2014-10-29 03:09 - 000153600 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\twext.dll
2017-12-28 23:04 - 2014-10-29 01:52 - 000801792 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\twinapi.dll
2017-12-28 21:20 - 2016-07-23 19:18 - 001220096 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\twinui.appcore.dll
2017-12-28 21:20 - 2017-09-09 16:47 - 014466560 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\twinui.dll
2017-12-28 20:00 - 2015-01-31 00:20 - 000203264 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\UBPM.dll
2017-12-28 22:51 - 2014-10-29 02:01 - 000843776 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\uDWM.dll
2017-12-28 21:19 - 2016-10-08 23:07 - 000332288 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\UIAnimation.dll
2017-12-28 20:10 - 2015-04-10 01:40 - 001249280 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\uiautomationcore.dll
2017-12-28 23:04 - 2014-10-29 03:29 - 004483072 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\UIRibbon.dll
2017-12-28 23:04 - 2014-10-29 03:49 - 000638976 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\UIRibbonRes.dll
2017-12-28 22:50 - 2014-10-29 03:45 - 000116736 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\umpnpmgr.dll
2017-12-28 23:05 - 2014-10-29 02:27 - 000080384 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\umpo.dll
2017-12-28 23:04 - 2014-10-29 02:11 - 000045056 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\umpoext.dll
2017-12-28 23:04 - 2014-10-29 03:20 - 000397312 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\upnp.dll
2017-12-28 21:21 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\urlmon.dll
2017-12-28 22:57 - 2014-10-29 03:26 - 000308736 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\usbmon.dll
2017-12-28 23:04 - 2014-10-29 02:31 - 001278464 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\usercpl.dll
2017-12-28 21:19 - 2017-10-10 17:29 - 000068096 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\uxinit.dll
2017-12-28 21:19 - 2017-10-10 17:39 - 001192960 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\UxTheme.dll
2017-12-28 23:05 - 2014-10-29 01:52 - 000522240 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\van.dll
2017-12-28 23:05 - 2014-10-29 02:00 - 001574400 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\VSSAPI.DLL
2017-12-28 23:05 - 2014-10-29 02:19 - 000074752 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\VssTrace.DLL
2017-12-28 23:08 - 2014-10-29 02:19 - 000463360 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\esscli.dll
2017-12-28 23:08 - 2014-10-29 02:19 - 001013760 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\fastprox.dll
2017-12-28 23:08 - 2014-10-29 02:17 - 000094720 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\ncprov.dll
2017-12-28 23:08 - 2014-10-29 02:19 - 000397824 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\repdrvfs.dll
2017-12-28 23:08 - 2014-10-29 02:19 - 001277440 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\wbemcore.dll
2017-12-28 23:08 - 2014-10-29 02:20 - 000282112 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\wbemdisp.dll
2017-12-28 23:08 - 2014-10-29 02:16 - 000512512 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\wbemess.dll
2017-12-28 23:08 - 2014-10-29 02:19 - 000046592 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\wbemprox.dll
2017-12-28 23:08 - 2014-10-29 02:27 - 000065024 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\wbemsvc.dll
2017-12-28 20:15 - 2016-03-10 17:53 - 000196096 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\wmidcprv.dll
2017-12-28 20:15 - 2016-03-10 17:54 - 000864768 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\wmiprvsd.dll
2017-12-28 23:08 - 2014-10-29 02:18 - 000230400 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wbem\wmisvc.dll
2017-12-28 23:08 - 2014-10-29 02:20 - 000131072 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wbem\wmiutils.dll
2017-12-28 23:08 - 2014-10-29 02:20 - 000517120 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\wbemcomn.dll
2017-12-28 23:07 - 2014-10-29 02:27 - 000035328 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wcmapi.dll
2017-12-28 23:07 - 2014-10-29 02:07 - 000109056 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wcmcsp.dll
2017-12-28 23:07 - 2014-10-29 02:13 - 000374784 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wcmsvc.dll
2017-12-28 22:50 - 2014-10-29 02:21 - 000095744 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wdi.dll
2017-12-28 22:49 - 2014-10-29 03:37 - 000040960 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wdiasqmmodule.dll
2017-12-28 23:00 - 2014-10-29 02:28 - 000226816 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wdigest.DLL
2017-12-28 22:49 - 2014-10-29 02:10 - 000228864 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wdmaud.drv
2017-12-28 22:57 - 2014-10-29 02:20 - 000275968 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WDSCORE.dll
2018-01-11 08:42 - 2016-06-11 17:44 - 000509440 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\webio.dll
2017-12-28 22:52 - 2014-10-29 02:36 - 001252864 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\werconcpl.dll
2017-12-28 22:52 - 2014-10-29 03:11 - 000084992 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wercplsupport.dll
2017-12-28 20:13 - 2015-03-06 03:47 - 001696256 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wevtsvc.dll
2018-01-11 08:41 - 2016-04-09 23:15 - 000026112 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wfapigp.dll
2017-12-28 23:07 - 2014-10-29 02:21 - 000130048 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\WiFiDisplay.dll
2017-12-28 21:20 - 2017-08-11 02:43 - 000865792 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\win32spl.dll
2017-12-28 20:09 - 2014-10-29 02:24 - 000391168 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wincorlib.DLL
2017-12-28 21:20 - 2016-10-05 15:01 - 001200128 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.Globalization.dll
2017-12-28 22:52 - 2014-10-29 02:26 - 000055296 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\windows.globalization.fontgroups.dll
2017-12-28 22:53 - 2014-10-29 02:12 - 000115200 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
2017-12-28 21:19 - 2016-08-03 16:42 - 001317888 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.Media.Streaming.dll
2017-12-28 22:55 - 2014-10-29 02:06 - 000591872 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.Networking.Connectivity.dll
2017-12-28 22:59 - 2014-10-29 02:03 - 000740352 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
2017-12-28 21:26 - 2016-04-09 22:58 - 000534016 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.UI.dll
2017-12-28 20:12 - 2015-07-22 15:33 - 001728000 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\Windows.UI.Immersive.dll
2017-12-28 23:04 - 2014-10-29 01:46 - 009530368 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\Windows.UI.Search.dll
2018-01-11 08:43 - 2016-04-06 19:17 - 018825216 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.UI.Xaml.dll
2018-01-11 08:42 - 2016-06-11 17:37 - 000796672 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WINHTTP.dll
2017-12-28 21:20 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\WININET.dll
2017-12-28 23:07 - 2014-10-29 02:25 - 000022528 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\wininitext.dll
2017-12-28 22:54 - 2014-10-29 02:21 - 000400896 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\WinLangdb.dll
2017-12-28 23:07 - 2014-10-29 02:25 - 000086016 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\winlogonext.dll
2017-12-28 22:51 - 2014-10-29 03:44 - 000030720 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\winrnr.dll
2017-12-28 21:19 - 2016-09-03 17:12 - 000512512 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WINSPOOL.DRV
2017-12-28 23:07 - 2014-10-29 03:33 - 000025088 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\WINUSB.DLL
2017-12-28 23:08 - 2014-10-29 02:24 - 000289280 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wkssvc.dll
2017-12-28 21:21 - 2017-06-13 09:03 - 000302080 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\Wlanapi.dll
2017-12-28 23:07 - 2014-10-29 02:33 - 000505856 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wlanconn.dll
2017-12-28 23:07 - 2014-10-29 03:49 - 000011264 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\Wlanhlp.dll
2017-12-28 23:07 - 2014-10-29 01:52 - 001024512 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\WlanMM.dll
2017-12-28 21:21 - 2017-06-13 08:54 - 000374272 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WLANMSM.DLL
2017-12-28 21:21 - 2017-09-13 14:31 - 000445952 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WLANSEC.dll
2017-12-28 21:20 - 2017-06-13 08:50 - 001547264 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wlansvc.dll
2017-12-28 23:07 - 2014-10-29 02:25 - 000018944 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wlansvcpal.dll
2017-12-28 21:19 - 2017-08-02 03:19 - 000358912 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\WLDAP32.dll
2017-12-28 23:07 - 2014-10-29 02:22 - 000114176 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\wlgpclnt.dll
2017-12-28 23:11 - 2014-10-29 02:22 - 000465920 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wlidprov.dll
2017-12-28 23:11 - 2014-10-29 02:11 - 001639424 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wlidsvc.dll
2017-12-28 23:08 - 2014-10-29 02:29 - 000038400 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\WMICLNT.dll
2017-12-28 23:08 - 2014-10-29 02:20 - 000166912 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wmidcom.dll
2017-12-28 21:21 - 2017-10-14 08:05 - 015431680 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wmp.dll
2017-12-28 21:18 - 2016-08-13 01:05 - 009323008 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wmploc.dll
2017-12-28 23:07 - 2014-10-29 02:28 - 000016896 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WMsgAPI.dll
2017-12-28 22:52 - 2014-10-29 02:50 - 000193536 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\WorkFoldersShell.dll
2017-12-28 21:19 - 2017-02-04 20:30 - 000285184 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\wow64.dll
2017-12-28 19:41 - 2015-03-20 05:10 - 000013312 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wow64cpu.dll
2014-03-18 10:55 - 2014-03-18 10:55 - 000413184 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wow64win.dll
2017-12-28 23:08 - 2014-10-29 02:54 - 000110080 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wpdshserviceobj.dll
2017-12-28 22:56 - 2014-10-29 02:05 - 000606720 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wpncore.dll
2017-12-28 22:56 - 2014-10-29 02:21 - 000026624 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wpnsruprov.dll
2017-12-28 22:59 - 2014-10-29 02:11 - 000171008 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wscinterop.dll
2017-12-28 23:00 - 2014-10-29 03:35 - 000025088 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wscisvif.dll
2017-12-28 23:02 - 2014-10-29 01:55 - 000206336 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\WSClient.dll
2017-12-28 20:18 - 2016-01-06 17:47 - 000146944 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wscsvc.dll
2017-12-28 22:59 - 2014-10-29 02:44 - 001152000 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wscui.cpl
2017-12-28 21:20 - 2017-05-09 15:37 - 000658432 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wsdapi.dll
2017-12-28 22:57 - 2014-10-29 02:00 - 000309760 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\WSDMon.dll
2017-12-28 22:50 - 2014-10-29 02:21 - 000063488 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\wshbth.dll
2017-12-28 23:01 - 2014-10-29 03:44 - 000064512 _____ (Microsoft Corporation) [File not signed] C:\windows\System32\wsnmp32.dll
2017-12-28 23:07 - 2014-10-29 03:44 - 000017408 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\WSOCK32.dll
2017-12-28 20:12 - 2015-05-03 15:55 - 000971776 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\WSShared.dll
2017-12-28 22:59 - 2014-10-29 02:10 - 000203264 _____ (Microsoft Corporation) [File not signed] C:\windows\system32\WSSync.dll
2017-12-28 21:20 - 2017-05-12 03:04 - 000897024 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wuapi.dll
2017-12-28 21:20 - 2017-10-14 08:17 - 003717632 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wuaueng.dll
2017-12-28 22:50 - 2014-10-29 02:21 - 000225792 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WUDFPlatform.dll
2017-12-28 22:50 - 2014-10-29 02:21 - 000104960 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wudfsvc.dll
2017-12-28 22:51 - 2014-10-29 03:27 - 000899584 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\WUDFx.dll
2017-12-28 23:09 - 2014-10-29 03:18 - 000440320 _____ (Microsoft Corporation) [File not signed] C:\windows\SYSTEM32\zipfldr.dll
2013-08-22 07:57 - 2013-08-17 01:06 - 000796672 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_88dcdb0b2fb19957\MSVCR80.dll
2017-12-28 19:59 - 2015-04-25 03:34 - 000653824 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9600.17810_none_34ae2abd958aedeb\COMCTL32.dll
2017-12-28 19:59 - 2015-04-25 03:49 - 002582528 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda\Comctl32.dll
2017-12-28 21:19 - 2017-08-11 03:08 - 001753600 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.18790_none_9333b10747484d36\gdiplus.dll
2017-12-28 19:59 - 2015-04-25 03:34 - 002105856 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0\comctl32.dll
2017-12-28 21:19 - 2017-08-11 02:52 - 001491456 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.18790_none_dae0e7de5bc4763c\gdiplus.dll
2015-01-05 12:53 - 2015-01-05 12:53 - 000250368 _____ (Windows (R) Win 7 DDK provider) [File not signed] C:\Windows\System32\drivers\UMDF\LPIMController.dll

lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 18:22

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKU\S-1-5-21-4289856400-1582998229-3165114676-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
BHO: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll [2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
BHO-x32: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho32.dll [2019-08-21] (Comodo Security Solutions, Inc. -> COMODO)
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2016-10-08] (Microsoft Corporation) [File not signed]
Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2016-10-08] (Microsoft Corporation) [File not signed]
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler-x32: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler-x32: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2017-11-07] (Microsoft Corporation) [File not signed]
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2016-10-08] (Microsoft Corporation) [File not signed]
Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2016-10-08] (Microsoft Corporation) [File not signed]
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2017-11-14] (Microsoft Corporation) [File not signed]
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2013-08-22] (Microsoft Corporation) [File not signed]
Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2013-08-22] (Microsoft Corporation) [File not signed]
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2013-08-22] (Microsoft Corporation) [File not signed]
Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2013-08-22] (Microsoft Corporation) [File not signed]
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2013-08-22] (Microsoft Corporation) [File not signed]
Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2013-08-22] (Microsoft Corporation) [File not signed]

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2021-02-04 09:28 - 000000813 _____ C:\windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Lenovo\FusionEngine;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-4289856400-1582998229-3165114676-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lucka\Pictures\water.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
mpsdrv => Firewall Service is not running.
MpsSvc => Firewall Service is not running.
bfe => Firewall Service is not running.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{238E7177-2177-46E1-90F5-44A4B7A4E727}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe (LENOVO -> Lenovo)
FirewallRules: [{6135B7A6-8AE8-49F9-9885-62E8F350D8F3}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe (LENOVO -> Lenovo)
FirewallRules: [{131F1D07-101A-4F36-9A5B-55E0111B69C1}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe (Maxthon (Asia) Limited. -> Maxthon International ltd.)
FirewallRules: [{D382C858-3B36-4482-ACF7-06BE08BCDF9C}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe (Maxthon (Asia) Limited. -> Maxthon International ltd.)
FirewallRules: [{69F0FB2A-60AD-4B34-8AFD-DF6CACC76D3D}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe (Maxthon (Asia) Limited. -> Maxthon International ltd.)
FirewallRules: [{6E2C7393-55E6-4889-8731-023034F67E8C}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe (Maxthon (Asia) Limited. -> Maxthon International ltd.)
FirewallRules: [{015D3E69-D0DC-45A9-941E-E1BCFD08EDE9}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{5C872768-5E0B-4EED-A03F-FC1540E452BC}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{5CA9C6D2-699C-4686-872D-083F0DABFDB5}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{E5BC9D66-3B74-424E-87DA-423DF824D2F0}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe => No File
FirewallRules: [{A843F6C8-7B49-4931-A921-59F5B68703D1}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{F9002769-A790-4660-A813-2333925E8EC9}] => (Allow) LPort=55100
FirewallRules: [{A439B9C4-BB84-415C-92F9-74DCA59AD1B5}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe (Lenovo (Beijing) Limited -> Lenovo)
FirewallRules: [{4C48707D-B398-4FDF-A26F-35A6AEA3942D}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel(R) Wireless Connectivity Solutions -> )
FirewallRules: [{16C2C951-EC79-4D5F-A740-2686248BC86D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

Could not list restore points
Check "winmgmt" service or repair WMI.


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Could not start eventlog service, could not read events.

System error 123 has occurred.

The filename, directory name, or volume label syntax is incorrect.


==================== Memory info ===========================

BIOS: LENOVO A7CN48WW 08/03/2015
Motherboard: LENOVO VIUU4
Processor: Intel(R) Celeron(R) CPU N2840 @ 2.16GHz
Percentage of memory in use: 37%
Total physical RAM: 3979.2 MB
Available physical RAM: 2474 MB
Total Virtual: 4427.2 MB
Available Virtual: 2655.2 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:424.82 GB) (Free:358.44 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:21.95 GB) NTFS

\\?\Volume{9f995edd-2123-4fe3-aa87-e3b6497d0d6c}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.66 GB) NTFS
\\?\Volume{9aa61b3e-0b8e-47c4-a783-100ec55eee80}\ (PBR_DRV) (Fixed) (Total:13.61 GB) (Free:2.78 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 798ED846)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41654
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Kontrola log

Příspěvekod jaro3 » 04 úno 2021 19:48

Co tam dělá Avast a McAfee?
Vymažeme.

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {11744BC1-B4EE-4CEF-8126-B5F78C68CE69} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2018-01-03] (Google Inc -> Google Inc.)
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\AMHelper" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Optimize Start Menu Cache Files-S-1-5-21-4289856400-1582998229-3165114676-1001" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\PDVDServ Task" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Synaptics TouchPad Enhancements" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{A606ED3F-E5DF-4564-84C8-5A7985F67766}" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\{8331F916-D37B-4883-8E9A-C2A75724AF41}" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {9F588D10-CD57-432E-A76C-DA792AA3F6CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2018-01-03] (Google Inc -> Google Inc.)
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
U2 mfevtp; C:\windows\system32\mfevtps.exe [189912 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U2 mfecore; "C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe" [X]
U3 cfwids; C:\windows\System32\drivers\cfwids.sys [70592 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U3 mfeapfk; C:\windows\System32\drivers\mfeapfk.sys [177544 2014-04-04] (McAfee, Inc. -> McAfee, Inc.) [File not signed]
U3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [311856 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [69352 2014-04-04] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
U3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [522360 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [784760 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U3 mfencbdc; C:\windows\system32\DRIVERS\mfencbdc.sys [441264 2014-03-18] (McAfee, Inc. -> McAfee, Inc.)
U3 mfencrk; C:\windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc. -> McAfee, Inc.)
U0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [346760 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
C:\windows\system32\Tasks\Avast Software
C:\ProgramData\Avast Software
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\McAfee
C:\Program Files\mcafee
C:\Program Files\Common Files\McAfee
C:\Program Files (x86)\McAfee
Amazon 1Button App (HKLM-x32\...\{3E69CC95-C0F6-4C74-8F43-74F9046F20B2}) (Version: 1.0.10 - Amazon) <==== ATTENTION
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_3.1.2.8_neutral__343d40qqvtj1t [2017-12-29] (Amazon.com)
McAfee® Central for Lenovo -> C:\Program Files\WindowsApps\McAfeeInc.06.McAfeeSecurityAdvisorforLenovo_5.0.173.1_x64__bq6yxensn79aw [2018-04-03] (McAfee_Inc)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
mpsdrv => Firewall Service is not running.
MpsSvc => Firewall Service is not running.
bfe => Firewall Service is not running.
FirewallRules: [{E5BC9D66-3B74-424E-87DA-423DF824D2F0}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe => No File

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 20:32

mcafee tam byl puvodne kdyz vyprsel tak sem hledal neco free zkusil sem avast ale tady sem cetl ze comodo je lepsi free

Fix result of Farbar Recovery Scan Tool (x64) Version: 04-02-2021
Ran by lucka (04-02-2021 20:21:47) Run:1
Running from C:\Users\lucka\Desktop
Loaded Profiles: lucka
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {11744BC1-B4EE-4CEF-8126-B5F78C68CE69} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2018-01-03] (Google Inc -> Google Inc.)
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\AMHelper" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Optimize Start Menu Cache Files-S-1-5-21-4289856400-1582998229-3165114676-1001" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\PDVDServ Task" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Synaptics TouchPad Enhancements" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{A606ED3F-E5DF-4564-84C8-5A7985F67766}" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\{8331F916-D37B-4883-8E9A-C2A75724AF41}" /ENABLE
Task: {9D5A1B77-2F7D-482C-88FF-738BC4300116} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {9F588D10-CD57-432E-A76C-DA792AA3F6CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2018-01-03] (Google Inc -> Google Inc.)
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
U2 mfevtp; C:\windows\system32\mfevtps.exe [189912 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U2 mfecore; "C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe" [X]
U3 cfwids; C:\windows\System32\drivers\cfwids.sys [70592 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U3 mfeapfk; C:\windows\System32\drivers\mfeapfk.sys [177544 2014-04-04] (McAfee, Inc. -> McAfee, Inc.) [File not signed]
U3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [311856 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [69352 2014-04-04] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
U3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [522360 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [784760 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
U3 mfencbdc; C:\windows\system32\DRIVERS\mfencbdc.sys [441264 2014-03-18] (McAfee, Inc. -> McAfee, Inc.)
U3 mfencrk; C:\windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc. -> McAfee, Inc.)
U0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [346760 2014-04-04] (McAfee, Inc. -> McAfee, Inc.)
C:\windows\system32\Tasks\Avast Software
C:\ProgramData\Avast Software
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\McAfee
C:\Program Files\mcafee
C:\Program Files\Common Files\McAfee
C:\Program Files (x86)\McAfee
Amazon 1Button App (HKLM-x32\...\{3E69CC95-C0F6-4C74-8F43-74F9046F20B2}) (Version: 1.0.10 - Amazon) <==== ATTENTION
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_3.1.2.8_neutral__343d40qqvtj1t [2017-12-29] (Amazon.com)
McAfee� Central for Lenovo -> C:\Program Files\WindowsApps\McAfeeInc.06.McAfeeSecurityAdvisorforLenovo_5.0.173.1_x64__bq6yxensn79aw [2018-04-03] (McAfee_Inc)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289856400-1582998229-3165114676-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
mpsdrv => Firewall Service is not running.
MpsSvc => Firewall Service is not running.
bfe => Firewall Service is not running.
FirewallRules: [{E5BC9D66-3B74-424E-87DA-423DF824D2F0}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoPlus.exe => No File

EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{11744BC1-B4EE-4CEF-8126-B5F78C68CE69}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11744BC1-B4EE-4CEF-8126-B5F78C68CE69}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => removed successfully
C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => not found
"C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => not found
"C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => not found
"C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => not found
"C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => not found
"C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => not found
"C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => not found
"C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D5A1B77-2F7D-482C-88FF-738BC4300116}" => not found
"C:\windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Gaming mode Task Scheduler recovery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9F588D10-CD57-432E-A76C-DA792AA3F6CE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9F588D10-CD57-432E-A76C-DA792AA3F6CE}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ihcjicgdanjaechkgeegckofjjedodee => removed successfully
HKLM\System\CurrentControlSet\Services\mfevtp => removed successfully
mfevtp => service removed successfully
HKLM\System\CurrentControlSet\Services\mfecore => removed successfully
mfecore => service removed successfully
HKLM\System\CurrentControlSet\Services\cfwids => removed successfully
cfwids => service removed successfully
HKLM\System\CurrentControlSet\Services\mfeapfk => removed successfully
mfeapfk => service removed successfully
mfeavfk => Unable to stop service.
HKLM\System\CurrentControlSet\Services\mfeavfk => removed successfully
mfeavfk => service removed successfully
HKLM\System\CurrentControlSet\Services\mfeelamk => removed successfully
mfeelamk => service removed successfully
HKLM\System\CurrentControlSet\Services\mfefirek => removed successfully
mfefirek => service removed successfully
mfehidk => Unable to stop service.
HKLM\System\CurrentControlSet\Services\mfehidk => removed successfully
mfehidk => service removed successfully
mfencbdc => Unable to stop service.
HKLM\System\CurrentControlSet\Services\mfencbdc => removed successfully
mfencbdc => service removed successfully
HKLM\System\CurrentControlSet\Services\mfencrk => removed successfully
mfencrk => service removed successfully
mfewfpk => Unable to stop service.
HKLM\System\CurrentControlSet\Services\mfewfpk => removed successfully
mfewfpk => service removed successfully
C:\windows\system32\Tasks\Avast Software => moved successfully
C:\ProgramData\Avast Software => moved successfully
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\ProgramData\McAfee => moved successfully
C:\Program Files\mcafee => moved successfully
C:\Program Files\Common Files\McAfee => moved successfully
C:\Program Files (x86)\McAfee => moved successfully
Amazon 1Button App (HKLM-x32\...\{3E69CC95-C0F6-4C74-8F43-74F9046F20B2}) (Version: 1.0.10 - Amazon) <==== ATTENTION => Error: No automatic fix found for this entry.
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_3.1.2.8_neutral__343d40qqvtj1t [2017-12-29] (Amazon.com) => Error: No automatic fix found for this entry.
McAfee� Central for Lenovo -> C:\Program Files\WindowsApps\McAfeeInc.06.McAfeeSecurityAdvisorforLenovo_5.0.173.1_x64__bq6yxensn79aw [2018-04-03] (McAfee_Inc) => Error: No automatic fix found for this entry.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mfefire => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mfefirek => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mfehidk => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\mfevtp => removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
"HKU\S-1-5-21-4289856400-1582998229-3165114676-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-4289856400-1582998229-3165114676-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully
HKU\S-1-5-21-4289856400-1582998229-3165114676-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
mpsdrv => Firewall Service is not running. => Error: No automatic fix found for this entry.
MpsSvc => Firewall Service is not running. => Error: No automatic fix found for this entry.
bfe => Firewall Service is not running. => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E5BC9D66-3B74-424E-87DA-423DF824D2F0}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 56209864 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 97559270 B
Edge => 0 B
Chrome => 429989556 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 256 B
LocalService => 34634 B
NetworkService => 34634 B
lucka => 220578433 B

RecycleBin => 0 B
EmptyTemp: => 775.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:24:06 ====

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41654
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Kontrola log

Příspěvekod jaro3 » 04 úno 2021 20:43

Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

lycantrop321
Level 1
Level 1
Příspěvky: 56
Registrován: únor 21
Pohlaví: Nespecifikováno

Re: Kontrola log

Příspěvekod lycantrop321 » 04 úno 2021 21:02

tak deffender se rozjel ale ta cestina nic porad pise a language pack isnt avalible. dik

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41654
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Kontrola log

Příspěvekod jaro3 » 04 úno 2021 21:06

ve wordu nebo na netu?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 1 host