Langsom bærbar 4Gb,2.13Ghz

Jeg har kørt Norton scanning, som intet fandt. Dernæst scannet med AdwareCleaner og RougeKiller. Der blev fundet Tr.Razy, som er sat i karantæne - men den er ondsindet og skal væk iflg. RK. Er der nogen der vil vurdere rapporterne? Hvordan påvirker Tr.Razy pc’en? - jeg kan ikke søge mig frem til noget. Pc’en åbner på 1 1/2 min og lukker på 1 1/2 min (samme tid) og pålogning tager 3/4 min. Disse værdier er målt EFTER scanningerne.

Hej :slight_smile:

Jeg vil gerne se resultatet af disse scanninger, men du skal ikke køre programmerne igen!

Jeg har desværre kørt prog. flere gange allerede, - ved ikke hvilken skade det kunne gøre. Vedlægger derfor flere filer pr. scanning. Der foreslås en del fjernet af Adwcleaner, men kan man ikke bare slå dem fra i f.eks. Sysinternals? Sonyprogrammet har jeg selv indlagt, det er et foto-program og skal bibeholdes. Der foreslås nogle “suspicious” i Roguekiller, samt 1 “malicious” - sikkert en ondsindet virus, men jeg har ikke kunnet slå den op.

Måske har du en ide til, hvorfor mine Ctrl-taster ikke virker?

-------------------------------

Malwarebytes AdwCleaner 8.0.0.0

-------------------------------

Build: 11-21-2019

Database: 2019-11-20.1 (Local)

Support: https://www.malwarebytes.com/support

-------------------------------

Mode: Scan

-------------------------------

Start: 12-16-2019

Duration: 00:01:15

OS: Windows 7 Home Premium

Scanned: 35226

Detected: 55

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Plants Vs Zombies

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Preinstalled Software ] *****

Preinstalled.ASUSControlDeck Folder C:\Program Files (x86)\ASUS\CONTROLDECK
Preinstalled.ASUSControlDeck Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{3330ECAF-3D95-4833-8657-773A53486A3B}
Preinstalled.ASUSControlDeck Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUSControlDeck
Preinstalled.ASUSControlDeck Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{5B65EF64-1DFA-414A-8C94-7BB726158E21}
Preinstalled.ASUSControlDeck Task C:\Windows\System32\Tasks\ASUSCONTROLDECK
Preinstalled.ASUSFancyStart Folder C:\ASUS.DAT
Preinstalled.ASUSFancyStart Folder C:\Program Files (x86)\ASUS\FANCYSTART
Preinstalled.ASUSFancyStart Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{2B81872B-A054-48DA-BE3B-FA5C164C303A}
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\BOOKWORM DELUXE
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\COOKING DASH
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\GAMECONSOLE
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\GOVERNOR OF POKER
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\HOTEL DASH SUITE SUCCESS
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\JEWEL QUEST 3
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\LUXOR 3
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\MAHJONGG DIMENSIONS
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\PLANTS VS ZOMBIES
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\WORLD OF GOO
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Bookworm Deluxe
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Cooking Dash
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Governor of Poker
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Hotel Dash Suite Success
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Jewel Quest 3
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Luxor 3
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mahjongg dimensions
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\World of Goo
Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{E71E60C1-533E-45A5-8D80-E475E88D2B17}is1
Preinstalled.ASUSLiveUpdate Folder C:\Program Files (x86)\ASUS\ASUS LIVE UPDATE
Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{408B8D0B-C1F6-4DC8-8166-EB080475CB77}
Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS Live Update
Preinstalled.ASUSLiveUpdate Task C:\Windows\System32\Tasks\ASUS LIVE UPDATE
Preinstalled.ASUSSplendid Folder C:\Program Files (x86)\ASUS\SPLENDID
Preinstalled.ASUSSplendid Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{09664138-F62E-4145-A6E9-09DA515D9526}
Preinstalled.ASUSSplendid Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACMON
Preinstalled.ASUSSplendid Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{0969AF05-4FF6-4C00-9406-43599238DE0D}
Preinstalled.ASUSSplendid Task C:\Windows\System32\Tasks\ACMON
Preinstalled.ASUSVibe Folder C:\Program Files (x86)\ASUS\ASUSVIBE
Preinstalled.ASUSVibe Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUSVIBE
Preinstalled.ASUSVibe Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Asus Vibe2.0
Preinstalled.ASUSVirtualCamera Folder C:\Program Files (x86)\ASUS\VIRTUALCAMERA
Preinstalled.ASUSVirtualCamera Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
Preinstalled.ASUSWebStorage Folder C:\Program Files (x86)\ASUS\ASUS WEBSTORAGE
Preinstalled.ASUSWebStorage Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS WEBSTORAGE
Preinstalled.ASUSWebStorage Registry HKLM\Software\Classes\CLSID{6D4133E5-0742-4ADC-8A8C-9303440F7190}
Preinstalled.ASUSWebStorage Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ASUS WebStorage
Preinstalled.CyberLinkLabelPrint Folder C:\Program Files (x86)\CYBERLINK\LABELPRINT
Preinstalled.CyberLinkLabelPrint Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield
{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Preinstalled.CyberLinkLabelPrint Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Preinstalled.CyberLinkMediaEspresso Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
Preinstalled.CyberLinkMediaEspresso Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{E3739848-5329-48E3-8D28-5BBD6E8BE384}
Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer
Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{40BF1E83-20EB-11D8-97C5-0009C5020658}
Preinstalled.SonyPlayMemoriesHome Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
--------------------------------------------oOo-------------------------------------

-------------------------------

Malwarebytes AdwCleaner 8.0.0.0

-------------------------------

Build: 11-21-2019

Database: 2019-11-20.1 (Local)

Support: https://www.malwarebytes.com/support

-------------------------------

Mode: Clean

-------------------------------

Start: 12-16-2019

Duration: 00:00:47

OS: Windows 7 Home Premium

Cleaned: 54

Failed: 1

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Plants Vs Zombies

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.ASUSControlDeck Folder C:\Program Files (x86)\ASUS\CONTROLDECK
Deleted Preinstalled.ASUSControlDeck Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{3330ECAF-3D95-4833-8657-773A53486A3B}
Deleted Preinstalled.ASUSControlDeck Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUSControlDeck
Deleted Preinstalled.ASUSControlDeck Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{5B65EF64-1DFA-414A-8C94-7BB726158E21}
Deleted Preinstalled.ASUSControlDeck Task C:\Windows\System32\Tasks\ASUSCONTROLDECK
Deleted Preinstalled.ASUSFancyStart Folder C:\ASUS.DAT
Deleted Preinstalled.ASUSFancyStart Folder C:\Program Files (x86)\ASUS\FANCYSTART
Deleted Preinstalled.ASUSFancyStart Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{2B81872B-A054-48DA-BE3B-FA5C164C303A}
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\BOOKWORM DELUXE
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\COOKING DASH
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\GAMECONSOLE
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\GOVERNOR OF POKER
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\HOTEL DASH SUITE SUCCESS
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\JEWEL QUEST 3
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\LUXOR 3
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\MAHJONGG DIMENSIONS
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\PLANTS VS ZOMBIES
Deleted Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\WORLD OF GOO
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Bookworm Deluxe
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Cooking Dash
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Governor of Poker
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Hotel Dash Suite Success
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Jewel Quest 3
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Luxor 3
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mahjongg dimensions
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\World of Goo
Deleted Preinstalled.ASUSGames Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{E71E60C1-533E-45A5-8D80-E475E88D2B17}is1
Deleted Preinstalled.ASUSLiveUpdate Folder C:\Program Files (x86)\ASUS\ASUS LIVE UPDATE
Deleted Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{408B8D0B-C1F6-4DC8-8166-EB080475CB77}
Deleted Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS Live Update
Deleted Preinstalled.ASUSLiveUpdate Task C:\Windows\System32\Tasks\ASUS LIVE UPDATE
Deleted Preinstalled.ASUSSplendid Folder C:\Program Files (x86)\ASUS\SPLENDID
Deleted Preinstalled.ASUSSplendid Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{09664138-F62E-4145-A6E9-09DA515D9526}
Deleted Preinstalled.ASUSSplendid Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACMON
Deleted Preinstalled.ASUSSplendid Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{0969AF05-4FF6-4C00-9406-43599238DE0D}
Deleted Preinstalled.ASUSSplendid Task C:\Windows\System32\Tasks\ACMON
Deleted Preinstalled.ASUSVibe Folder C:\Program Files (x86)\ASUS\ASUSVIBE
Deleted Preinstalled.ASUSVibe Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUSVIBE
Deleted Preinstalled.ASUSVibe Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Asus Vibe2.0
Deleted Preinstalled.ASUSVirtualCamera Folder C:\Program Files (x86)\ASUS\VIRTUALCAMERA
Deleted Preinstalled.ASUSVirtualCamera Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
Deleted Preinstalled.ASUSWebStorage Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS WEBSTORAGE
Deleted Preinstalled.ASUSWebStorage Registry HKLM\Software\Classes\CLSID{6D4133E5-0742-4ADC-8A8C-9303440F7190}
Deleted Preinstalled.ASUSWebStorage Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ASUS WebStorage
Deleted Preinstalled.CyberLinkLabelPrint Folder C:\Program Files (x86)\CYBERLINK\LABELPRINT
Deleted Preinstalled.CyberLinkLabelPrint Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield
{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Deleted Preinstalled.CyberLinkLabelPrint Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Deleted Preinstalled.CyberLinkMediaEspresso Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
Deleted Preinstalled.CyberLinkMediaEspresso Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{E3739848-5329-48E3-8D28-5BBD6E8BE384}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{40BF1E83-20EB-11D8-97C5-0009C5020658}
Deleted Preinstalled.SonyPlayMemoriesHome Registry HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}
Not Deleted Preinstalled.ASUSWebStorage Folder C:\Program Files (x86)\ASUS\ASUS WEBSTORAGE


[+] Delete Tracing Keys
[+] Reset Winsock


AdwCleaner[S00].txt - [7660 octets] - [16/12/2019 18:43:25]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
---------------------------------oOo------------------------------------------

RogueKiller Anti-Malware V14.0.2.0 (x64) [Dec 16 2019] (Premium) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits
Started in : Normal mode
User : SYSTEM [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20190819_114745, Driver : Loaded
Mode : Standard Scan, Scan – Date : 2019/12/16 19:46:54 (Duration : 00:48:50)
Switches : -minimize

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

XX - Software
[Tr.Razy (Malicious)] (X64) HKEY_USERS\S-1-5-21-3914148689-2029455862-2912437901-1000\Software\Resources – N/A -> Found

O3 - Toolbar
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar|Locked – 0 -> Found
[Suspicious.Path (Potentially Malicious)] (X86) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar|Locked – 0 -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_USERS\S-1-5-21-3914148689-2029455862-2912437901-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar|Locked – 0 -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_USERS\S-1-5-21-3914148689-2029455862-2912437901-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar|Locked – 0 -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
Hosts file is too big

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Firefox Config
[PUM.SearchEngine (Potentially Malicious)] browser.search.defaultenginename (C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\dneh2ivd.default\prefs.js) – Startpage HTTPS -> Found
[PUM.SearchEngine (Potentially Malicious)] browser.search.selectedEngine (C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\dneh2ivd.default\prefs.js) – Startpage HTTPS -> Found
[PUM.SearchEngine (Potentially Malicious)] browser.search.selectedEngine (C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\prefs.js) – Startpage HTTPS - Dansk -> Found
------------------------------------oOo---------------------------------------------

RogueKiller Anti-Malware V14.0.2.0 (x64) [Dec 16 2019] (Premium) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits
Started in : Normal mode
User : adm [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20190819_114745, Driver : Loaded
Mode : Standard Scan, Scan – Date : 2019/12/17 09:37:16 (Duration : 03:17:20)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
Hosts file is too big

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Hej :slight_smile:

Er det Sony PlayMemories du mener :question:

Virker kameraet på din computer :question:

Kameraet virker vel, men det bliver ikke brugt. Sonyprogrammet er et redigeringsprogram til mit håndkamera, og jeg nævner det, fordi det jo netop ikke er crapware.

Ja, Sony PlayMemories.

Det er grunden til mit kamera spørgsmål, så vil du godt lige checke om det virker :question:

Til 64 bit Windows, hent Farbar Recovery Scan Tool x64 og gem den på Skrivebordet.

Deaktiver dit sikkerhedprogram, mens du kører den :exclamation:

Start Farbar Recovery Scan Tool x64 og klik på Scan.

Første gang der scannes, laver den automatisk Addition.txt.

Når scanningen er færdig, har du 2 log filer på Skrivebordet - FRST.txt og Addition.txt som du bedes kopiere herind.

Send dem i separate indlæg, da det gør det mere overskueligt :exclamation:

Når jeg leder kameraet fremfår jeg et vindue på skærmen med forskellige indstillingsmuligheder - og der afgives lyd når jeg trykker på udløseren. Dog, der kommer intet billede op. Kigger jeg under programmer finder jeg heller intet Asüs Camera, men det har AdwCleaner jo også fjernet - men det kan lægges tilbage, og det vil jeg nok foretrække. FRST64 er kørt som bruger, ikke som adm.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2019
Ran by n (21-12-2019 14:24:25)
Running from C:\Users\n\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-02-02 11:38:14)
Boot Mode: Normal

==================== Accounts: =============================

adm (S-1-5-21-3914148689-2029455862-2912437901-1000 - Administrator - Enabled) => C:\Users\adm
Administrator (S-1-5-21-3914148689-2029455862-2912437901-500 - Administrator - Disabled)
Gæst (S-1-5-21-3914148689-2029455862-2912437901-501 - Limited - Disabled) => C:\Users\Gæst
i (S-1-5-21-3914148689-2029455862-2912437901-1007 - Limited - Enabled) => C:\Users\i
k (S-1-5-21-3914148689-2029455862-2912437901-1002 - Limited - Enabled) => C:\Users\k
n (S-1-5-21-3914148689-2029455862-2912437901-1001 - Limited - Enabled) => C:\Users\n
ni (S-1-5-21-3914148689-2029455862-2912437901-1008 - Limited - Enabled) => C:\Users\ni

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Disabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AS: Norton Security (Disabled - Up to date) {19116A92-4E0F-6AEB-F126-5230691200C8}
FW: Norton Security (Disabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Apple Software Update (HKLM-x32…{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Apple-programunderstøttelse (HKLM-x32…{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
ArcSoft Panorama Maker 5 (HKLM-x32…{F18046C5-1C4E-4BE1-A3D6-A6F970E2E8E8}) (Version: 5.0.1.25 - ArcSoft)
ASUS AI Recovery (HKLM-x32…{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}) (Version: 1.0.10 - ASUS)
ASUS CopyProtect (HKLM-x32…{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}) (Version: 1.0.0015 - ASUS)
ASUS Data Security Manager (HKLM-x32…{FA2092C5-7979-412D-A962-6485274AE1EE}) (Version: 1.00.0014 - ASUS)
ASUS LifeFrame3 (HKLM-x32…{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.21 - ASUS)
ASUS Live Update (HKLM-x32…{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS)
ASUS MultiFrame (HKLM-x32…{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0021 - ASUS)
ASUS Power4Gear Hybrid (HKLM…{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.42 - ASUS)
ASUS SmartLogon (HKLM-x32…{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0009 - ASUS)
ASUS Video Magic (HKLM-x32…{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4015 - CyberLink Corp.) Hidden
ASUS Video Magic (HKLM-x32…\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4015 - CyberLink Corp.)
ATK Package (HKLM-x32…{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0007 - ASUS)
CCleaner (HKLM…\CCleaner) (Version: 4.12 - Piriform)
Conexant HD Audio (HKLM…\CNXT_AUDIO_HDA) (Version: 4.111.0.63 - Conexant)
CyberLink PhotoNow (HKLM-x32…\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
CyberLink PowerDirector (HKLM-x32…\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2609a - CyberLink Corp.)
CyberLink PowerDVD 9 (HKLM-x32…\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3009.50 - CyberLink Corp.)
D3DX10 (HKLM-x32…{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKLM-x32…\Dropbox) (Version: 86.4.146 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32…{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Epson Easy Photo Print 2 (HKLM-x32…{71E90740-5E5F-4D43-AB8F-CAC1D93DBB5B}) (Version: 2.5.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32…{86B4A6B9-07FD-48EC-8730-1EC82E80C3D7}) (Version: 3.10.0030 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32…\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-422 423 425 Series Printer Uninstall (HKLM…\EPSON XP-422 423 425 Series) (Version: - SEIKO EPSON Corporation)
EPSON-manualer (HKLM-x32…{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.32.0.0 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32…\ESET Online Scanner) (Version: - )
ETDWare PS/2-x64 7.0.5.16_WHQL (HKLM…\Elantech) (Version: 7.0.5.16 - ELAN Microelectronics Corp.)
EULAlyzer 2.2 (HKLM-x32…\EULAlyzer_is1) (Version: 2.2.0 - BrightFort LLC)
Fast Boot (HKLM…{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.7 - ASUS)
Intel® Control Center (HKLM-x32…{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Graphics Media Accelerator Driver (HKLM-x32…{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2125 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32…{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
IrfanView (remove only) (HKLM-x32…\IrfanView) (Version: 4.37 - Irfan Skiljan)
JMicron Ethernet Adapter NDIS Driver (HKLM-x32…{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: 6.0.23.4 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32…{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.33.2 - JMicron Technology Corp.)
Junk Mail filter update (HKLM-x32…{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K_Series_ScreenSaver_EN (HKLM-x32…\K_Series_ScreenSaver_EN) (Version: - )
Macrium Reflect Free Edition (HKLM…{A2C0B6E0-6132-4CE7-AED5-8615E5B4088F}) (Version: 5.3.7220 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM…\MacriumReflect) (Version: 5.3 - Paramount Software (UK) Ltd.)
Mesh Runtime (HKLM-x32…{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32…{50816F92-1652-4A7C-B9BC-48F682742C4B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MFL-Pro Suite (HKLM-x32…{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Microsoft .NET Framework 4.7.2 (dansk) (HKLM…{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1030) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM…{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32…\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM…{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM…\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DAN (HKLM…\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DAN) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32…{95140000-0137-0409-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation)
Mozilla Firefox 70.0.1 (x64 en-GB) (HKLM…\Mozilla Firefox 70.0.1 (x64 en-GB)) (Version: 70.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM…\MozillaMaintenanceService) (Version: 55.0 - Mozilla)
MSVC80_x64_v2 (HKLM…{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32…{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM…{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32…{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32…{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32…{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32…{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nikon Message Center 2 (HKLM-x32…{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.0.1 - Nikon)
Nokia Connectivity Cable Driver (HKLM-x32…{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32…{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}) (Version: 3.8.48.0 - Nokia) Hidden
Nokia Suite (HKLM-x32…\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Norton Security (HKLM-x32…\NGC) (Version: 22.19.9.63 - Symantec Corporation)
Nuance PDF Reader (HKLM-x32…{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
PaperPort (HKLM-x32…{A17EABB6-D0C6-44E5-820C-72DC7F495064}) (Version: 9.02.0814 - ScanSoft, Inc.)
PC Connectivity Solution (HKLM-x32…{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Picture Control Utility (HKLM-x32…{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.2.2 - Nikon)
Politikens Engelskordbog (HKLM-x32…{FA95AFFE-6299-40F7-A763-7208461F4DC0}) (Version: 1.01.0000 - Politikens Forlag A/S)
Recuva (HKLM…\Recuva) (Version: 1.36 - Piriform)
Revo Uninstaller 1.93 (HKLM-x32…\Revo Uninstaller) (Version: 1.93 - VS Revo Group)
RogueKiller version 14.0.2.0 (HKLM…\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.0.2.0 - Adlice Software)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-003D-0000-0000-0000000FF1CE}Office14.SingleImage{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype version 8.42 (HKLM-x32…\Skype_is1) (Version: 8.42 - Skype Technologies S.A.)
Skype™ 7.0 (HKLM-x32…{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Software Updater (HKLM-x32…{E07D7C7B-F424-4EEF-BA17-B2C32BD1C107}) (Version: 4.3.0 - SEIKO EPSON CORPORATION)
syncables desktop SE (HKLM-x32…{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
TrueCrypt (HKLM-x32…\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
USB2.0 UVC VGA WebCam (HKLM…\USB2.0 UVC VGA WebCam) (Version: 5.8.54000.207 - Sonix)
Verbatim GREEN BUTTON 1.46 (HKLM-x32…\Verbatim GREEN BUTTON_is1) (Version: - Verbatim)
ViewNX 2 (HKLM-x32…{DDD62492-32A7-412B-8AF1-2CF032AD42E3}) (Version: 2.1.2 - Nikon)
Windows Live Essentials (HKLM-x32…\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32…{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows-driverpakke - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM…\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinFlash (HKLM-x32…{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.30.3 - ASUS)
Wireless Console 3 (HKLM-x32…{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll [2007-06-15] () [File not signed]
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => -> No File
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll [2009-11-26] (eCareme Technologies, Inc.) [File not signed]
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll [2007-06-15] () [File not signed]
ContextMenuHandlers1: [ADSMEnDecExt] -> {8BB925EB-A385-4F4D-B463-D9CC4A4F98F5} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmendecExt.dll [2009-09-30] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
ContextMenuHandlers1: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Program Files (x86)\ASUS\ASUS WebStorage\XPClient.DLL [2010-03-16] (eCareme Technologies, Inc. -> Ecareme)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ReflectShellExt] -> [CC]{DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => -> No File
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers2: [ReflectShellExt] -> [CC]{DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => -> No File
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Program Files (x86)\ASUS\ASUS WebStorage\XPClient.DLL [2010-03-16] (eCareme Technologies, Inc. -> Ecareme)
ContextMenuHandlers3: [MBAMShlExt] -> [CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3} => -> No File
ContextMenuHandlers4: [ADSMEnDecExt] -> {8BB925EB-A385-4F4D-B463-D9CC4A4F98F5} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmendecExt.dll [2009-09-30] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> [CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3} => -> No File
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2009-10-26 04:38 - 2009-10-26 04:38 - 000221184 _____ ( ) [File not signed] C:\Program Files (x86)\ASUS\ASUS WebStorage\LogicNP.EZNamespaceExtensions.dll
2009-03-02 03:07 - 2009-03-02 03:07 - 000200704 _____ ( ) [File not signed] C:\Program Files (x86)\ASUS\ASUS WebStorage\LogicNP.EZShellExtensions.dll
2019-05-19 17:57 - 2019-05-19 17:57 - 000253952 _____ ( ) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.CxHDAudioAP#\8be1d2c5e47fbd2ed03b550d547ed735\Interop.CxHDAudioAPILib.ni.dll
2007-06-15 19:28 - 2007-06-15 19:28 - 000104960 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll
2007-06-15 19:28 - 2007-06-15 19:28 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll
2014-02-05 10:01 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2018-09-15 14:35 - 2019-12-16 15:22 - 000874141 _____ () [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\TorBrowser\Tor\libevent-2-1-6.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 001109520 _____ () [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\TorBrowser\Tor\libgcc_s_sjlj-1.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 000268509 _____ () [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\TorBrowser\Tor\libssp-0.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 000101888 _____ () [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\TorBrowser\Tor\zlib1.dll
2011-02-11 21:43 - 2011-02-11 21:43 - 000931840 _____ () [File not signed] C:\Windows\assembly\GAC_64\System.Data.SQLite\1.0.60.0__db937bc2d44ff139\System.Data.SQLite.dll
2004-05-28 03:13 - 2004-05-28 03:13 - 000080384 _____ (ACTIONTEC Electronics,Inc) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\ATKWLIOC.DLL
2005-09-22 02:30 - 2005-09-22 02:30 - 000036864 _____ (ATK) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\inter_f2.dll
2014-02-05 10:01 - 2009-03-06 12:51 - 000770048 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll
2014-02-05 10:01 - 2009-09-28 13:38 - 000151552 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brcceng.dll
2014-02-05 10:01 - 2009-05-11 13:48 - 000372736 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll
2014-02-05 10:02 - 2009-09-28 13:38 - 005390336 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll
2011-02-11 21:59 - 2010-04-14 23:36 - 000335872 _____ (Conexant Systems, Inc) [File not signed] C:\Program Files\Conexant\SAII\da-DK\SmartAudio.resources.dll
2011-02-11 21:59 - 2010-04-14 23:33 - 006205440 _____ (Conexant Systems, Inc) [File not signed] C:\Program Files\Conexant\SAII\en-US\SmartAudio.resources.dll
2009-11-26 06:49 - 2009-11-26 06:49 - 000070656 _____ (eCareme Technologies, Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll
2014-02-05 10:02 - 2003-06-30 00:00 - 000259584 _____ (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTDIS12n.dll
2014-02-05 10:02 - 2005-07-05 00:00 - 000131584 _____ (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTFIL12n.DLL
2014-02-05 10:02 - 2003-06-30 00:00 - 000406016 _____ (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTKRN12n.dll
2018-09-15 14:35 - 2019-12-16 15:22 - 000535293 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\TorBrowser\Tor\libwinpthread-1.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 000501248 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\freebl3.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 000040448 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\lgpllibs.dll
2017-06-13 07:40 - 2019-12-16 15:22 - 002093568 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\mozavcodec.dll
2017-06-13 07:40 - 2019-12-16 15:22 - 000210944 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\mozavutil.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 000874496 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\mozglue.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 002444288 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\nss3.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 000387584 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\nssckbi.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 000227328 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\softokn3.dll
2000-01-01 01:00 - 2019-12-16 15:22 - 099994112 _____ (Mozilla Foundation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\xul.dll
2005-01-13 09:36 - 2005-01-13 09:36 - 000303104 _____ (Silicon Integrated Systems Corp.) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\SiSPkt.dll
2006-03-30 06:24 - 2006-03-30 06:24 - 000270336 _____ (The Apache Software Foundation) [File not signed] C:\Program Files (x86)\ASUS\ASUS WebStorage\log4net.dll
2019-11-05 10:24 - 2019-12-16 15:22 - 003300506 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\TorBrowser\Tor\libcrypto-1_1.dll
2019-11-05 10:24 - 2019-12-16 15:22 - 000948549 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\TorBrowser\Tor\libssl-1_1.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:84098FD3 [139]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => “”=“Driver”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => “”=“Driver”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => “”=“Driver”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => “”=“Driver”

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2018-01-10 12:02 - 000544368 ____N C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 fr.a2dfp.net
127.0.0.1 m.fr.a2dfp.net
127.0.0.1 mfr.a2dfp.net
127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 static.a-ads.com
127.0.0.1 abcstats.com
127.0.0.1 ad4.abradio.cz
127.0.0.1 a.abv.bg
127.0.0.1 adserver.abv.bg
127.0.0.1 adv.abv.bg
127.0.0.1 bimg.abv.bg
127.0.0.1 ca.abv.bg
127.0.0.1 www2.a-counter.kiev.ua
127.0.0.1 track.acclaimnetwork.com
127.0.0.1 accuserveadsystem.com
127.0.0.1 www.accuserveadsystem.com
127.0.0.1 achmedia.com
127.0.0.1 csh.actiondesk.com
127.0.0.1 ads.activepower.net
127.0.0.1 app.activetrail.com
127.0.0.1 stat.active24stats.nl #[Tracking.Cookie]
127.0.0.1 traffic.acwebconnecting.com
127.0.0.1 office.ad1.ru
127.0.0.1 cms.ad2click.nl
127.0.0.1 ad2games.com
127.0.0.1 ads.ad2games.com
127.0.0.1 content.ad20.net
127.0.0.1 core.ad20.net

There are 13761 more lines.

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\PC Connectivity Solution;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\GNU\GnuPG\pub
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001\Control Panel\Desktop\Wallpaper -> C:\Users\n\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk => C:\Windows\pss\Secunia PSI Tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS Premium Sound.lnk => C:\Windows\pss\SRS Premium Sound.lnk.CommonStartup
MSCONFIG\startupreg: ADSMTray => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: Bdagent => “C:\Program Files\Bitdefender\Bitdefender\bdagent.exe”
MSCONFIG\startupreg: BrMfcWnd => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
MSCONFIG\startupreg: ccleaner => “C:\Program Files\CCleaner\CCleaner64.exe” /AUTO
MSCONFIG\startupreg: ControlCenter3 => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
MSCONFIG\startupreg: Dropbox => “C:\Program Files (x86)\Dropbox\Client\Dropbox.exe” /systemstartup
MSCONFIG\startupreg: HOSTS Anti-Adware_PUPs => C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: SmartAudio => C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
MSCONFIG\startupreg: SunJavaUpdateSched => “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
MSCONFIG\startupreg: Syncables => C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
MSCONFIG\startupreg: Wireless Console 3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{5341C9C6-F706-4EDE-9144-834032069C64}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Block) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
FirewallRules: [UDP Query User{8CD67B3E-E27C-4E55-888E-3C914C65BADB}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Block) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
FirewallRules: [{A7C0072B-F06D-4EFB-A1FC-C1E9CA4E4A65}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{525C6FCC-78A8-422D-9999-FC89FBA8EBAF}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BB74D8E8-C18F-4778-9AB3-954D975DF5A0}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{A309D5E6-45B5-4421-9620-CD7D47C8303B}] => (Allow) C:\Program Files (x86)\Common Files\nokia\service layer\a\nsl_host_process.exe No File
FirewallRules: [{D262E984-945D-4679-AE65-9A6EA6997FBD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{27BAC69D-9DBC-4EBC-B520-5D9B78AA3959}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3A9D5DF9-DBC2-4487-AFC3-3636473F0DEF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{92A71D51-DF8C-4A87-878E-36F3B9DF323A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A9A91A9E-AF56-467A-9635-C658D8C3DADB}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{7E9E4532-9232-4156-A59E-6221E987A08F}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{FBA5B3BB-BAD4-4E6E-B0A1-855C6B7919CE}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{68CCC310-D68C-4454-82ED-FD5FA1BCB71C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F47E25AC-E98F-48DA-9759-E090584EBD36}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2B20DBFD-25A6-47FD-BE60-B772937575F5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{342C6490-BB88-4A8B-A9F9-5A5BD005E8D1}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:74.52 GB) (Free:5.79 GB) (8%)
Check “VSS” service

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:

Error: (12/21/2019 10:08:01 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Det lykkedes ikke at oprette aktiveringskontekst for “D:\install-filer\esetsmartinstaller_enu.exe”. Der opstod fejl i manifest- eller politikfilen “” på linje .
En komponentversion, der er påkrævet af programmet, er i konflikt med en anden komponentversion, der allerede er aktiv.
Komponenter i konflikt er:.
Komponent 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_e372d88f30fbb845.manifest.
Komponent 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24483_none_2b200f664577e14b.manifest.

Error: (12/20/2019 09:28:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Navn på program med fejl: FBAgent.exe, version: 1.0.7.0, tidsstempel: 0x4ca3faac
Navn på modul med fejl: ntdll.dll, version: 6.1.7601.24540, tidsstempel: 0x5ddf3f5f
Undtagelseskode: 0xc0000374
Forskydning med fejl 0x00000000000bf232
Proces-id 0x4c8
Programmets starttidspunkt 0x01d5b70d224b309b
Programsti: C:\Windows\system32\FBAgent.exe
Modulsti: C:\Windows\SYSTEM32\ntdll.dll
Rapport-id: b18d640c-2302-11ea-a315-bcaec5d01a82

Error: (12/20/2019 09:27:29 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/20 09:27:29.096]: [00005492]: brccFCtl.dll: ### ERROR ### Get OmniPage Language-ID Failed

Error: (12/20/2019 09:27:29 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/20 09:27:29.095]: [00005492]: brccFCtl.dll: ### ERROR ### m_fpGetLanguageInfo = NULL

Error: (12/20/2019 09:27:29 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/20 09:27:29.095]: [00005492]: brccFCtl.dll: ### ERROR ### LoadLibrary Functions failed. m_fpIsAvailable-Return = FALSE

Error: (12/20/2019 09:13:11 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/20 09:13:11.792]: [00003076]: brccFCtl.dll: ### ERROR ### Get OmniPage Language-ID Failed

Error: (12/20/2019 09:13:11 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/20 09:13:11.792]: [00003076]: brccFCtl.dll: ### ERROR ### m_fpGetLanguageInfo = NULL

Error: (12/20/2019 09:13:11 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/20 09:13:11.791]: [00003076]: brccFCtl.dll: ### ERROR ### LoadLibrary Functions failed. m_fpIsAvailable-Return = FALSE

System errors:

Error: (12/21/2019 02:20:53 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/21/2019 02:20:53 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/21/2019 02:20:53 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/21/2019 02:19:30 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/21/2019 02:19:30 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/21/2019 02:19:30 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/21/2019 10:32:57 AM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{7D1933CB-86F6-4A98-8628-01BE94C9A575}
og APPID
{F290BFB2-1864-45B1-8804-2654194A87E7}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/21/2019 10:32:57 AM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{7D1933CB-86F6-4A98-8628-01BE94C9A575}
og APPID
{F290BFB2-1864-45B1-8804-2654194A87E7}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

CodeIntegrity:

Date: 2014-11-14 12:11:31.769
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.17334_none_e2a50f60f9c30e69\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.744
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.17128_none_e2b3dca8f9b75d86\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.735
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.17031_none_e2a208d0f9c5caef\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.692
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16507_none_e2c89a96f9a7e748\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.669
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16485_none_e27018bcf9ea96fb\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.656
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16477_none_e27ce93cf9e0adb8\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.648
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16457_none_e2928914f9d075d6\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.641
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16408_none_e2c998faf9a70378\FileManager.exe because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. K52F.212 11/01/2010
Motherboard: ASUSTeK Computer Inc. K52F
Processor: Intel® Pentium® CPU P6200 @ 2.13GHz
Percentage of memory in use: 70%
Total physical RAM: 3884.38 MB
Available physical RAM: 1148.05 MB
Total Virtual: 4882.52 MB
Available Virtual: 782.43 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:74.52 GB) (Free:5.79 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:202.08 GB) (Free:90.9 GB) NTFS

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2019
Ran by n (ATTENTION: The user is not administrator) on KA (ASUSTeK Computer Inc. K52F) (21-12-2019 14:20:35)
Running from C:\Users\n\Desktop
Loaded Profiles: adm & n & k (Available Profiles: adm & n & k & i & ni & Gæst)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Dansk (Danmark)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
() [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Windows\AsScrPro.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Mozilla Corporation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\firefox.exe
(Mozilla Corporation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\firefox.exe
(Mozilla Corporation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\firefox.exe
(Mozilla Corporation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\firefox.exe
(Mozilla Corporation) [File not signed] C:\Users\n\Desktop\Tor Browser\Browser\firefox.exe
(Seifert) [File not signed] C:\Program Files (x86)\WinDirStat\windirstat.exe
(SRS Labs, Inc -> SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NortonSecurity.exe
Failed to access process -> ACService.exe
Failed to access process -> ADSMSrv.exe
Failed to access process -> ADSMTray.exe
Failed to access process -> AsLdrSrv.exe
Failed to access process -> ASPG.exe
Failed to access process -> ATKOSD.exe
Failed to access process -> ATKOSD.exe
Failed to access process -> ATKOSD.exe
Failed to access process -> ATKOSD2.exe
Failed to access process -> ATKOSD2.exe
Failed to access process -> BatteryLife.exe
Failed to access process -> BrccMCtl.exe
Failed to access process -> consent.exe
Failed to access process -> consent.exe
Failed to access process -> consent.exe
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> Dropbox.exe
Failed to access process -> Dropbox.exe
Failed to access process -> Dropbox.exe
Failed to access process -> Dropbox.exe
Failed to access process -> Dropbox.exe
Failed to access process -> Dropbox.exe
Failed to access process -> DropboxUpdate.exe
Failed to access process -> dwm.exe
Failed to access process -> dwm.exe
Failed to access process -> E_YATINDE.EXE
Failed to access process -> escsvc64.exe
Failed to access process -> ETDCtrl.exe
Failed to access process -> ETDCtrl.exe
Failed to access process -> ETDCtrlHelper.exe
Failed to access process -> ETDCtrlHelper.exe
Failed to access process -> explorer.exe
Failed to access process -> explorer.exe
Failed to access process -> GFNEXSrv.exe
Failed to access process -> HControl.exe
Failed to access process -> HControl.exe
Failed to access process -> HControl.exe
Failed to access process -> igfxpers.exe
Failed to access process -> igfxpers.exe
Failed to access process -> LMS.exe
Failed to access process -> lsass.exe
Failed to access process -> lsm.exe
Failed to access process -> NokiaSuite.exe
Failed to access process -> NortonSecurity.exe
Failed to access process -> NortonSecurity.exe
Failed to access process -> NortonSecurity.exe
Failed to access process -> OSPPSVC.EXE
Failed to access process -> PresentationFontCache.exe
Failed to access process -> QtWebEngineProcess.exe
Failed to access process -> QtWebEngineProcess.exe
Failed to access process -> QtWebEngineProcess.exe
Failed to access process -> RichVideo.exe
Failed to access process -> SearchIndexer.exe
Failed to access process -> sensorsrv.exe
Failed to access process -> services.exe
Failed to access process -> Skype.exe
Failed to access process -> Skype.exe
Failed to access process -> Skype.exe
Failed to access process -> Skype.exe
Failed to access process -> Skype-Setup.exe
Failed to access process -> Skype-Setup.tmp
Failed to access process -> smss.exe
Failed to access process -> spoolsv.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> taskeng.exe
Failed to access process -> taskeng.exe
Failed to access process -> taskeng.exe
Failed to access process -> taskhost.exe
Failed to access process -> taskhost.exe
Failed to access process -> UNS.exe
Failed to access process -> WDC.exe
Failed to access process -> WDC.exe
Failed to access process -> WDC.exe
Failed to access process -> wininit.exe
Failed to access process -> winlogon.exe
Failed to access process -> winlogon.exe
Failed to access process -> winlogon.exe
Failed to access process -> WLIDSVC.EXE
Failed to access process -> WLIDSVCM.EXE
Failed to access process -> WmiPrvSE.exe
Failed to access process -> WmiPrvSE.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-06-10] (ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.)
HKLM…\Run: [InstallerLauncher] => “C:\Program Files\Common Files\Bitdefender\SetupInformation{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe” /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation{6F57816A-791A-41 (the data entry has 36 more characters).
HKLM-x32…\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32…\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6260544 2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001…\MountPoints2: F - F:\LaunchU3.exe -a
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001…\MountPoints2: {47119126-0c67-11e9-866b-bcaec5d01a82} - F:\LaunchU3.exe -a
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001…\MountPoints2: {bf7ea4ef-3049-11e9-a149-bcaec5d01a82} - F:\startme.exe
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001\Control Panel\Desktop\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18…\RunOnce: [SPReview] => “C:\Windows\System32\SPReview\SPReview.exe” /sp:1 /errorfwlink:“hxxp://go.microsoft.com/fwlink/?LinkID=122915” /build:7601
HKU\S-1-5-18…\RunOnce: [{90140000-003D-0000-0000-0000000FF1CE}] => C:\Windows\system32\cmd.exe /C del “C:\ProgramData\Microsoft Help\Rgstrtn.lck” /Q /A:H
HKU\S-1-5-18…\RunOnce: [{90140000-00A1-0406-0000-0000000FF1CE}] => C:\Windows\system32\cmd.exe /C del “C:\ProgramData\Microsoft Help\Rgstrtn.lck” /Q /A:H
HKU\S-1-5-18…\RunOnce: [{90140000-001A-0406-0000-0000000FF1CE}] => C:\Windows\system32\cmd.exe /C del “C:\ProgramData\Microsoft Help\Rgstrtn.lck” /Q /A:H
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software…\Authentication\Credential Providers: [{06FE45A8-6D92-44ba-A0F1-9A9BCDC8F5A7}] -> C:\Program Files (x86)\ASUS\SmartLogon\system\FaceCredentialProvider64.dll [2009-06-19] (ASUSTeK Computer Inc. -> ASUS)
HKLM\Software…\Authentication\Credential Providers: [{2AD920F6-D745-4d8b-9526-619171C2CC4D}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [File not signed]
HKLM\Software…\Authentication\Credential Providers: [{455BD3EC-20A5-44c3-8D77-396909825B5E}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [File not signed]
HKLM\Software…\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
HKLM\Software…\Authentication\Credential Provider Filters: [{120495C2-9E38-48a2-A08B-C302F7487628}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2014-02-05] ()
Startup: C:\Users\n\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skærmklipper og startprogram til OneNote 2010.lnk [2018-03-07]
ShortcutTarget: Skærmklipper og startprogram til OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job =>
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job =>
Task: C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {B06B062D-02BA-44BB-8069-00891B8335AB}.job =>
Task: C:\Windows\Tasks\Launch BullGuard.job =>

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip…\Interfaces{3BF79BAB-C9C8-4AF3-B83D-01DB3CA1A244}: [NameServer] 198.153.192.1,198.153.194.1
Tcpip…\Interfaces{3BF79BAB-C9C8-4AF3-B83D-01DB3CA1A244}: [DhcpNameServer] 192.168.1.1

Internet Explorer:

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
URLSearchHook: [S-1-5-21-3914148689-2029455862-2912437901-1000] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-21-3914148689-2029455862-2912437901-1002] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&l=dis&prt=NGC&chn=retail&geo=DK&ver=22.19.9.63&locale=DK_en&guid=D6BEFC06-5CAB-4603-8188-A1B505B287BC&doi=2016-09-01&o=APN11913&gct=kwd&qsrc=2869
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: No Name -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine32\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine32\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)

FireFox:

FF DefaultProfile: pk9m1lat.default-1395485829658
FF ProfilePath: C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658 [2019-12-21]
FF Extension: (Disconnect) - C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\Extensions\2.0@disconnect.me.xpi [2017-04-28]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\Extensions\firefox@ghostery.com.xpi [2019-12-18]
FF Extension: (HTTPS Everywhere) - C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\Extensions\https-everywhere-eff@eff.org.xpi [2019-12-18] [UpdateUrl:hxxps://www.eff.org/files/https-everywhere-updates.json]
FF Extension: (Smart HTTPS) - C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\Extensions\jid0-oFwt2ZcakHhkFl7Kp4lJn@jetpack.xpi [2016-10-31] [Legacy]
FF Extension: (Disconnect Search) - C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\Extensions\search@disconnect.me.xpi [2014-05-03] [Legacy] [not signed]
FF Extension: (NoScript) - C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\Extensions{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2019-12-18]
FF Extension: (BetterPrivacy) - C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\Extensions{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2016-11-16] [Legacy]
FF SearchPlugin: C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\pk9m1lat.default-1395485829658\searchplugins\startpage-https—dansk.xml [2016-03-02]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-10-02] (Nokia -> )
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation -> Zeon Corporation)

Chrome:

CHR DefaultProfile: Default
CHR HKLM…\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\Exts\Chrome.crx
CHR HKLM…\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32…\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\Exts\Chrome.crx
CHR HKLM-x32…\Chrome\Extension: [dflinnddekagfkncpgojoppgnppfkbkj] - <no Path/update_url>
CHR HKLM-x32…\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
R3 ADSMService; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.) [File not signed]
S2 AFBAgent; C:\Windows\system32\FBAgent.exe [377264 2010-09-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) [File not signed]
S4 Brother XP spl Service; C:\Windows\SysWOW64\brsvc01a.exe [57344 2004-06-14] (brother Industries Ltd) [File not signed]
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
S3 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S2 lmhosts; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 LMS; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [262144 2009-10-01] (Intel Corporation) [File not signed]
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 NlaSvc; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 NortonSecurity; C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NortonSecurity.exe [227296 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 nsi; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [3272656 2014-07-21] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
R3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-04-06] (CyberLink -> ) [File not signed]
S4 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [16569400 2019-12-16] (Adlice -> )
R2 UNS; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2314240 2009-10-01] (Intel Corporation) [File not signed]
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2753536 2011-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\Definitions\BASHDefs\20191217.001\BHDrvx64.sys [1952136 2019-09-27] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\1613090.03F\ccSetx64.sys [193392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516784 2019-10-18] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154288 2019-11-05] (Symantec Corporation -> Symantec Corporation)
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [129024 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronic Corp.)
R1 IDSVia64; C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\Definitions\IPSDefs\20191220.061\IDSvia64.sys [1451016 2019-12-13] (Symantec Corporation -> Symantec Corporation)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] (ASUSTeK Computer Inc. -> )
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15928 2009-06-18] (ASUSTeK Computer Inc. -> Windows ® Win 7 DDK provider)
S4 nmwcd; C:\Windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 nmwcdc; C:\Windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 nmwcdnsucx64; C:\Windows\System32\drivers\nmwcdnsucx64.sys [12800 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 nmwcdnsux64; C:\Windows\System32\drivers\nmwcdnsux64.sys [171008 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [166384 2014-10-30] (Paramount Software UK Ltd -> Windows ® Win 7 DDK provider)
S3 PSMounterEx; C:\Windows\SysWOW64\drivers\psmounterex.sys [76408 2013-08-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
S3 PSVolAcc; C:\Windows\System32\Drivers\PSVolAcc.sys [12760 2014-07-21] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
S3 SiSGbeLH; C:\Windows\System32\DRIVERS\SiSG664.sys [56832 2009-06-10] (Microsoft Windows -> Silicon Integrated Systems Corp.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800192 2009-08-20] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 SRTSP; C:\Windows\System32\drivers\NGCx64\1613090.03F\SRTSP64.SYS [889008 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\1613090.03F\SRTSPX64.SYS [50864 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S4 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\1613090.03F\SYMEFASI64.SYS [1963400 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-03-25] (Symantec Corporation -> Symantec Corporation)
S3 SymEvnt; C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\SymPlatform\SymEvnt.sys [710536 2019-11-17] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\Windows\System32\drivers\NGCx64\1613090.03F\Ironx64.SYS [316656 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\Windows\System32\drivers\NGCx64\1613090.03F\symnets.sys [573448 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S4 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\1613090.03F\wpCtrlDrv.sys [1012120 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S1 A2DDA; ??\C:\EEK\BIN\a2ddax64.sys [X]
S4 cleanhlp; ??\C:\EEK\bin\cleanhlp64.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 NAVENG; ??\C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\Definitions\SDSDefs\20170606.004\NAVENG.SYS [X]
S3 NAVEX15; ??\C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\Definitions\SDSDefs\20170606.004\NAVEX15.SYS [X]
U2 TMAgent; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-21 14:20 - 2019-12-21 14:22 - 000028435 _____ C:\Users\n\Desktop\FRST.txt
2019-12-21 14:19 - 2019-12-21 14:20 - 000000000 ____D C:\FRST
2019-12-21 11:29 - 2019-12-21 11:36 - 000000000 ____D C:\Users\n\Desktop\gr
2019-12-20 09:07 - 2019-12-20 09:07 - 000000000 ____D C:\Users\n\Desktop\se også D-partition
2019-12-20 00:24 - 2019-12-20 00:28 - 000000000 ____D C:\Users\n\Desktop\rec
2019-12-19 11:32 - 2019-12-19 11:32 - 000000000 ____D C:\Users\adm\AppData\Local\CrashDumps
2019-12-18 17:21 - 2019-12-18 17:21 - 000000000 ____D C:\Users\n\Desktop\hdd-test
2019-12-17 09:27 - 2019-12-17 09:27 - 002264064 _____ (Farbar) C:\Users\n\Desktop\FRST64.exe
2019-12-17 09:10 - 2019-12-17 16:55 - 000000000 ____D C:\Users\n\Desktop\C
2019-12-17 09:01 - 2019-12-19 11:43 - 000000000 ____D C:\Users\n\Desktop\Adwcleanerrapport
2019-12-17 09:00 - 2019-12-18 07:36 - 000000000 ____D C:\Users\n\Desktop\RougeKillerrapport
2019-12-16 19:41 - 2019-12-16 20:58 - 000000000 ____D C:\ProgramData\RogueKiller
2019-12-16 19:41 - 2019-12-16 19:41 - 000000860 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2019-12-16 19:41 - 2019-12-16 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2019-12-16 19:41 - 2019-12-16 19:41 - 000000000 ____D C:\Program Files\RogueKiller
2019-12-16 18:48 - 2019-12-16 18:48 - 000000170 _____ C:\Users\n\Desktop\scanInfoAdw-eller-Rogue-spm
2019-12-15 16:28 - 2019-12-17 01:43 - 000000000 ____D C:\Windows\rescache
2019-12-15 13:18 - 2019-11-15 02:58 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-12-15 13:18 - 2019-11-15 02:48 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-12-15 13:14 - 2019-11-28 04:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 03:58 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-12-15 13:14 - 2019-11-28 03:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 03:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 03:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 03:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-12-15 13:14 - 2019-11-19 21:29 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-12-15 13:14 - 2019-11-19 21:18 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-12-15 13:14 - 2019-11-19 21:00 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-12-15 13:14 - 2019-11-19 08:52 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-12-15 13:14 - 2019-11-19 08:36 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-12-15 13:14 - 2019-11-19 08:36 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-12-15 13:14 - 2019-11-19 08:35 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-12-15 13:13 - 2019-12-06 06:27 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2019-12-15 13:13 - 2019-11-28 04:33 - 000710072 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-12-15 13:13 - 2019-11-28 04:32 - 004061616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-12-15 13:13 - 2019-11-28 04:32 - 003967416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-12-15 13:13 - 2019-11-28 04:32 - 001320248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-12-15 13:13 - 2019-11-28 04:32 - 000627664 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-12-15 13:13 - 2019-11-28 04:32 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-12-15 13:13 - 2019-11-28 04:32 - 000155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-12-15 13:13 - 2019-11-28 04:32 - 000097208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-12-15 13:13 - 2019-11-28 04:31 - 005554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-12-15 13:13 - 2019-11-28 04:31 - 001671504 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000834048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-12-15 13:13 - 2019-11-28 04:04 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-12-15 13:13 - 2019-11-28 04:03 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-12-15 13:13 - 2019-11-28 04:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-12-15 13:13 - 2019-11-28 04:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-12-15 13:13 - 2019-11-28 04:00 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-12-15 13:13 - 2019-11-28 03:59 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-12-15 13:13 - 2019-11-28 03:58 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-12-15 13:13 - 2019-11-28 03:58 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-12-15 13:13 - 2019-11-28 03:58 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-12-15 13:13 - 2019-11-28 03:57 - 003233280 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-12-15 13:13 - 2019-11-28 03:57 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-12-15 13:13 - 2019-11-28 03:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-12-15 13:13 - 2019-11-28 03:56 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-12-15 13:13 - 2019-11-28 03:56 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-12-15 13:13 - 2019-11-28 03:53 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-12-15 13:13 - 2019-11-28 03:53 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-12-15 13:13 - 2019-11-28 03:52 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-12-15 13:13 - 2019-11-28 03:52 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-12-15 13:13 - 2019-11-28 03:52 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-12-15 13:13 - 2019-11-28 03:52 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-12-15 13:13 - 2019-11-28 03:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-12-15 13:13 - 2019-11-23 08:48 - 000390752 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-12-15 13:13 - 2019-11-23 07:57 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-12-15 13:13 - 2019-11-21 03:16 - 000580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-12-15 13:13 - 2019-11-21 03:16 - 000496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-12-15 13:13 - 2019-11-21 01:48 - 000629984 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-12-15 13:13 - 2019-11-19 21:56 - 025753088 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-12-15 13:13 - 2019-11-19 21:44 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-12-15 13:13 - 2019-11-19 21:44 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-12-15 13:13 - 2019-11-19 21:31 - 002910720 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-12-15 13:13 - 2019-11-19 21:30 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-12-15 13:13 - 2019-11-19 21:29 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-12-15 13:13 - 2019-11-19 21:29 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-12-15 13:13 - 2019-11-19 21:22 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-12-15 13:13 - 2019-11-19 21:21 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-12-15 13:13 - 2019-11-19 21:19 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-12-15 13:13 - 2019-11-19 21:18 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-12-15 13:13 - 2019-11-19 21:18 - 000797184 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-12-15 13:13 - 2019-11-19 21:18 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-12-15 13:13 - 2019-11-19 21:17 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-12-15 13:13 - 2019-11-19 21:10 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-12-15 13:13 - 2019-11-19 21:07 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-12-15 13:13 - 2019-11-19 21:01 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-12-15 13:13 - 2019-11-19 21:00 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-12-15 13:13 - 2019-11-19 20:56 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-12-15 13:13 - 2019-11-19 20:56 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-12-15 13:13 - 2019-11-19 20:54 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-12-15 13:13 - 2019-11-19 20:52 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-12-15 13:13 - 2019-11-19 20:43 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-12-15 13:13 - 2019-11-19 20:41 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-12-15 13:13 - 2019-11-19 20:41 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-12-15 13:13 - 2019-11-19 20:39 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-12-15 13:13 - 2019-11-19 20:39 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-12-15 13:13 - 2019-11-19 20:36 - 015445504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-12-15 13:13 - 2019-11-19 20:26 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-12-15 13:13 - 2019-11-19 20:15 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-12-15 13:13 - 2019-11-19 20:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-12-15 13:13 - 2019-11-19 09:17 - 020290048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-12-15 13:13 - 2019-11-19 09:11 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-12-15 13:13 - 2019-11-19 08:59 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-12-15 13:13 - 2019-11-19 08:58 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-12-15 13:13 - 2019-11-19 08:58 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-12-15 13:13 - 2019-11-19 08:57 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-12-15 13:13 - 2019-11-19 08:56 - 002304000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-12-15 13:13 - 2019-11-19 08:53 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-12-15 13:13 - 2019-11-19 08:50 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-12-15 13:13 - 2019-11-19 08:49 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-12-15 13:13 - 2019-11-19 08:49 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-12-15 13:13 - 2019-11-19 08:49 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-12-15 13:13 - 2019-11-19 08:40 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-12-15 13:13 - 2019-11-19 08:33 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-12-15 13:13 - 2019-11-19 08:33 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-12-15 13:13 - 2019-11-19 08:31 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-12-15 13:13 - 2019-11-19 08:30 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-12-15 13:13 - 2019-11-19 08:26 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-12-15 13:13 - 2019-11-19 08:24 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-12-15 13:13 - 2019-11-19 08:23 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-12-15 13:13 - 2019-11-19 08:23 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-12-15 13:13 - 2019-11-19 08:22 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-12-15 13:13 - 2019-11-19 08:20 - 013838336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-12-15 13:13 - 2019-11-19 08:05 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-12-15 13:13 - 2019-11-19 08:01 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-12-15 13:13 - 2019-11-19 08:00 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-12-15 13:13 - 2019-11-15 03:32 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 001330176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-12-15 13:13 - 2019-11-15 03:25 - 000385248 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000517632 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-12-15 13:13 - 2019-11-15 03:06 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2019-12-15 13:13 - 2019-11-15 03:04 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-12-15 13:13 - 2019-11-15 02:59 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-12-15 13:13 - 2019-11-15 02:59 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2019-12-15 13:13 - 2019-11-15 02:45 - 000327680 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2019-12-15 13:13 - 2019-11-14 12:34 - 003187712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 002368000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000628224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000162016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-12-15 13:13 - 2019-11-05 22:25 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2019-12-15 13:13 - 2019-11-05 22:24 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2019-12-15 13:13 - 2019-11-05 22:24 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-12-15 13:13 - 2019-11-05 22:23 - 000368352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-12-15 13:13 - 2019-11-05 22:22 - 000115936 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-12-15 13:13 - 2019-11-05 22:20 - 003247616 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000706560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000572416 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2019-12-15 13:13 - 2019-11-05 22:19 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2019-12-15 13:13 - 2019-11-05 22:19 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2019-12-15 13:13 - 2019-11-05 22:19 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2019-12-15 13:13 - 2019-11-05 22:12 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-12-15 13:13 - 2019-11-05 22:03 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2019-12-15 13:13 - 2019-11-05 22:03 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2019-12-15 13:13 - 2019-11-05 21:57 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2019-12-15 13:13 - 2019-11-05 21:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2019-12-15 13:13 - 2019-11-05 21:51 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2019-12-15 13:13 - 2019-11-05 21:50 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-12-15 13:13 - 2019-11-05 20:43 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-12-15 13:13 - 2019-10-26 01:17 - 001717760 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-12-15 13:13 - 2019-10-15 00:58 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-12-15 13:13 - 2019-10-15 00:58 - 001182208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2019-12-15 13:13 - 2019-09-17 03:28 - 000738816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-12-15 13:13 - 2019-09-10 03:27 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-12-15 13:13 - 2019-09-10 03:24 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-12-15 13:13 - 2019-09-10 01:09 - 000802816 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-12-15 11:54 - 2019-12-16 15:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-12-15 11:44 - 2019-12-15 11:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-12-05 02:23 - 2019-12-05 02:23 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-21 14:12 - 2016-11-16 20:45 - 000000000 ____D C:\Users\n\AppData\LocalLow\Mozilla
2019-12-21 13:45 - 2015-11-27 10:45 - 000000911 _____ C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {B06B062D-02BA-44BB-8069-00891B8335AB}.job
2019-12-21 10:37 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Desktop\url-adr
2019-12-21 10:19 - 2019-09-19 22:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-12-20 20:35 - 2019-08-16 16:18 - 000000000 ____D C:\Users\n\Desktop\hva
2019-12-20 20:35 - 2015-01-22 10:01 - 000088160 _____ C:\Users\n\Desktop\SumatraPDF-settings.txt
2019-12-20 10:10 - 2019-03-02 08:15 - 000000000 ____D C:\Users\n\Desktop\sumatrapdfcache
2019-12-20 10:08 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\su
2019-12-20 10:06 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\cy
2019-12-20 10:03 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\gu
2019-12-20 09:36 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\forsk
2019-12-20 09:19 - 2009-07-14 05:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-12-20 09:19 - 2009-07-14 05:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-12-20 09:11 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-12-20 08:44 - 2015-06-13 19:45 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-12-20 07:12 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-12-20 06:08 - 2014-02-02 14:04 - 000000000 ____D C:\Users\n
2019-12-19 19:33 - 2009-08-04 11:52 - 000509370 _____ C:\Windows\system32\perfh006.dat
2019-12-19 19:33 - 2009-08-04 11:52 - 000098648 _____ C:\Windows\system32\perfc006.dat
2019-12-19 19:33 - 2009-07-14 06:13 - 001387928 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-19 11:28 - 2011-02-11 22:06 - 000001770 _____ C:\Windows\system32\ServiceFilter.ini
2019-12-19 11:23 - 2014-03-10 08:07 - 000000000 ___RD C:\Users\n\Desktop\Div. genveje
2019-12-18 08:05 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\div
2019-12-16 19:40 - 2011-02-11 21:28 - 000000000 ____D C:\ProgramData\Temp
2019-12-16 18:47 - 2011-02-11 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-12-16 18:47 - 2011-02-11 21:43 - 000000000 ____D C:\Program Files (x86)\ASUS
2019-12-16 18:47 - 2011-02-11 21:28 - 000000000 ____D C:\Program Files (x86)\CyberLink
2019-12-16 18:43 - 2014-02-05 15:21 - 000000000 ____D C:\AdwCleaner
2019-12-16 18:26 - 2015-06-13 19:45 - 000000000 ____D C:\Users\adm\AppData\Local\Dropbox
2019-12-16 15:15 - 2018-03-06 09:18 - 000002453 _____ C:\Users\Public\Desktop\Norton Security.lnk
2019-12-16 15:15 - 2009-07-14 05:45 - 000423288 _____ C:\Windows\system32\FNTCACHE.DAT
2019-12-16 15:00 - 2014-12-12 08:56 - 000000000 ____D C:\Windows\system32\appraiser
2019-12-16 15:00 - 2014-04-23 21:14 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-12-16 15:00 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-12-16 14:47 - 2014-02-26 14:14 - 001363214 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-12-16 14:39 - 2014-02-02 18:51 - 000000000 ____D C:\Windows\system32\MRT
2019-12-16 14:27 - 2014-02-02 18:51 - 129221664 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-12-15 15:25 - 2017-06-06 14:39 - 000000000 ____D C:\Program Files\Common Files\AV
2019-12-15 11:55 - 2018-02-27 10:01 - 000000000 ____D C:\Windows\system32\Drivers\NGCx64
2019-11-23 16:19 - 2014-02-03 13:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== Files in the root of some directories ========

2007-06-12 18:34 - 2007-06-12 18:34 - 000035822 _____ () C:\Program Files (x86)\Common Files\ASPG_icon.ico
2008-05-22 17:35 - 2008-05-22 17:35 - 000051962 _____ () C:\Program Files (x86)\Common Files\banner.jpg
2009-04-08 19:31 - 2009-04-08 19:31 - 000106496 _____ () C:\Program Files (x86)\Common Files\CPInstallAction.dll
2008-08-12 06:45 - 2008-08-12 06:45 - 000155648 _____ (ASUS) C:\Program Files (x86)\Common Files\MSIactionall.dll
2018-07-28 19:10 - 2018-07-28 19:10 - 000000017 _____ () C:\Users\n\AppData\Local\resmon.resmoncfg

==================== FLock ==============================

2019-12-21 14:07 C:\Config.Msi
2014-04-20 14:08 C:\MSOCache
2018-11-18 22:10 C:\PerfLogs
2014-02-02 12:36 C:\Recovery
2019-12-20 20:14 C:\Windows\system32\config
2009-07-14 06:09 C:\Windows\system32\FxsTmp
2009-07-14 04:20 C:\Windows\system32\ias
2009-07-14 04:20 C:\Windows\system32\Msdtc
2009-07-14 04:20 C:\Windows\system32\NetworkList
2019-12-21 14:17 C:\Windows\system32\Tasks
2017-04-24 08:37 C:\Windows\system32\wdi
2018-08-27 13:57 C:\Windows\system32\wfp
2018-04-19 19:03 C:\Windows\LiveKernelReports
2018-05-03 20:34 C:\Windows\Minidump
2009-07-14 03:34 C:\Windows\ModemLogs
2019-12-21 10:19 C:\Windows\Prefetch
2009-07-14 04:20 C:\Windows\SysWOW64\config
2009-07-14 06:32 C:\Windows\SysWOW64\FxsTmp
2009-07-14 04:20 C:\Windows\SysWOW64\Msdtc
2009-07-14 04:20 C:\Windows\SysWOW64\NetworkList
2009-07-14 04:20 C:\Windows\SysWOW64\Tasks
2019-08-25 22:40 C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2019-08-25 22:40 C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2019-12-21 13:45 C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {B06B062D-02BA-44BB-8069-00891B8335AB}.job
2014-05-02 08:39 C:\Windows\Tasks\Launch BullGuard.job
2018-08-27 13:56 C:\Users\Gæst
2018-08-27 13:56 C:\Users\i
2018-08-27 15:53 C:\Users\k
2019-03-10 09:43 C:\Users\ni
2014-02-05 18:40 C:\Users\reserve
2017-08-20 12:00 C:\Users\TEMP
2017-11-18 11:10 C:\Users\adm\AppData\Local\ElevatedDiagnostics

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

ATTENTION: ==> Could not access BCD. The user is not administrator -> Lageret med startkonfigurationsdata kunne ikke �bnes.
Adgang n�gtet.

==================== End of FRST.txt ========================

Når du kører den som bruger, er der en del ting der er låst, og det er måske derfor der er nogle “lidt mærkelige” indslag i de logs… Andre ting skyldes helt klart at den ikke er kørt som admin :exclamation:

Er n den bruger du har problemer med :question:

Nej, ikke specielt n der er langsom. Skal jeg sende de 2 logfiler igen, men kørt som adm?

Ja tak :slight_smile: Men husk at sætte flueben ved Addition.txt

FRSTnew

2 nye FRST rapporter herunder:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-12-2019
Ran by adm (23-12-2019 18:35:14)
Running from C:\Users\n\Desktop\langsom pc\FRST64
Windows 7 Home Premium Service Pack 1 (X64) (2014-02-02 11:38:14)
Boot Mode: Normal

==================== Accounts: =============================

adm (S-1-5-21-3914148689-2029455862-2912437901-1000 - Administrator - Enabled) => C:\Users\adm
Administrator (S-1-5-21-3914148689-2029455862-2912437901-500 - Administrator - Disabled)
Gæst (S-1-5-21-3914148689-2029455862-2912437901-501 - Limited - Disabled) => C:\Users\Gæst
i (S-1-5-21-3914148689-2029455862-2912437901-1007 - Limited - Enabled) => C:\Users\i
k (S-1-5-21-3914148689-2029455862-2912437901-1002 - Limited - Enabled) => C:\Users\k
n (S-1-5-21-3914148689-2029455862-2912437901-1001 - Limited - Enabled) => C:\Users\n
ni (S-1-5-21-3914148689-2029455862-2912437901-1008 - Limited - Enabled) => C:\Users\ni

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Disabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AS: Norton Security (Disabled - Up to date) {19116A92-4E0F-6AEB-F126-5230691200C8}
FW: Norton Security (Disabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Apple Software Update (HKLM-x32…{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Apple-programunderstøttelse (HKLM-x32…{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
ArcSoft Panorama Maker 5 (HKLM-x32…{F18046C5-1C4E-4BE1-A3D6-A6F970E2E8E8}) (Version: 5.0.1.25 - ArcSoft)
ASUS AI Recovery (HKLM-x32…{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}) (Version: 1.0.10 - ASUS)
ASUS CopyProtect (HKLM-x32…{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}) (Version: 1.0.0015 - ASUS)
ASUS Data Security Manager (HKLM-x32…{FA2092C5-7979-412D-A962-6485274AE1EE}) (Version: 1.00.0014 - ASUS)
ASUS LifeFrame3 (HKLM-x32…{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.21 - ASUS)
ASUS Live Update (HKLM-x32…{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS)
ASUS MultiFrame (HKLM-x32…{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0021 - ASUS)
ASUS Power4Gear Hybrid (HKLM…{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.42 - ASUS)
ASUS SmartLogon (HKLM-x32…{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0009 - ASUS)
ASUS Video Magic (HKLM-x32…{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4015 - CyberLink Corp.) Hidden
ASUS Video Magic (HKLM-x32…\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4015 - CyberLink Corp.)
ATK Package (HKLM-x32…{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0007 - ASUS)
CCleaner (HKLM…\CCleaner) (Version: 4.12 - Piriform)
Conexant HD Audio (HKLM…\CNXT_AUDIO_HDA) (Version: 4.111.0.63 - Conexant)
CyberLink PhotoNow (HKLM-x32…\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
CyberLink PowerDirector (HKLM-x32…\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2609a - CyberLink Corp.)
CyberLink PowerDVD 9 (HKLM-x32…\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3009.50 - CyberLink Corp.)
D3DX10 (HKLM-x32…{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKLM-x32…\Dropbox) (Version: 86.4.146 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32…{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Epson Easy Photo Print 2 (HKLM-x32…{71E90740-5E5F-4D43-AB8F-CAC1D93DBB5B}) (Version: 2.5.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32…{86B4A6B9-07FD-48EC-8730-1EC82E80C3D7}) (Version: 3.10.0030 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32…\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON XP-422 423 425 Series Printer Uninstall (HKLM…\EPSON XP-422 423 425 Series) (Version: - SEIKO EPSON Corporation)
EPSON-manualer (HKLM-x32…{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.32.0.0 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32…\ESET Online Scanner) (Version: - )
ETDWare PS/2-x64 7.0.5.16_WHQL (HKLM…\Elantech) (Version: 7.0.5.16 - ELAN Microelectronics Corp.)
EULAlyzer 2.2 (HKLM-x32…\EULAlyzer_is1) (Version: 2.2.0 - BrightFort LLC)
Fast Boot (HKLM…{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.7 - ASUS)
Intel® Control Center (HKLM-x32…{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Graphics Media Accelerator Driver (HKLM-x32…{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2125 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32…{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
IrfanView (remove only) (HKLM-x32…\IrfanView) (Version: 4.37 - Irfan Skiljan)
JMicron Ethernet Adapter NDIS Driver (HKLM-x32…{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: 6.0.23.4 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32…{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.33.2 - JMicron Technology Corp.)
Junk Mail filter update (HKLM-x32…{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K_Series_ScreenSaver_EN (HKLM-x32…\K_Series_ScreenSaver_EN) (Version: - )
Macrium Reflect Free Edition (HKLM…{A2C0B6E0-6132-4CE7-AED5-8615E5B4088F}) (Version: 5.3.7220 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM…\MacriumReflect) (Version: 5.3 - Paramount Software (UK) Ltd.)
Mesh Runtime (HKLM-x32…{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32…{50816F92-1652-4A7C-B9BC-48F682742C4B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MFL-Pro Suite (HKLM-x32…{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Microsoft .NET Framework 4.7.2 (dansk) (HKLM…{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1030) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM…{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32…\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM…{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM…\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DAN (HKLM…\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DAN) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32…{95140000-0137-0409-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation)
Mozilla Firefox 71.0 (x64 en-GB) (HKLM…\Mozilla Firefox 71.0 (x64 en-GB)) (Version: 71.0 - Mozilla)
Mozilla Maintenance Service (HKLM…\MozillaMaintenanceService) (Version: 55.0 - Mozilla)
MSVC80_x64_v2 (HKLM…{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32…{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM…{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32…{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32…{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32…{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32…{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nikon Message Center 2 (HKLM-x32…{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.0.1 - Nikon)
Nokia Connectivity Cable Driver (HKLM-x32…{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32…{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}) (Version: 3.8.48.0 - Nokia) Hidden
Nokia Suite (HKLM-x32…\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Norton Security (HKLM-x32…\NGC) (Version: 22.19.9.63 - Symantec Corporation)
Nuance PDF Reader (HKLM-x32…{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
PaperPort (HKLM-x32…{A17EABB6-D0C6-44E5-820C-72DC7F495064}) (Version: 9.02.0814 - ScanSoft, Inc.)
PC Connectivity Solution (HKLM-x32…{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Picture Control Utility (HKLM-x32…{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.2.2 - Nikon)
Politikens Engelskordbog (HKLM-x32…{FA95AFFE-6299-40F7-A763-7208461F4DC0}) (Version: 1.01.0000 - Politikens Forlag A/S)
Recuva (HKLM…\Recuva) (Version: 1.36 - Piriform)
Revo Uninstaller 1.93 (HKLM-x32…\Revo Uninstaller) (Version: 1.93 - VS Revo Group)
RogueKiller version 14.0.2.0 (HKLM…\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.0.2.0 - Adlice Software)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-003D-0000-0000-0000000FF1CE}Office14.SingleImage{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype version 8.42 (HKLM-x32…\Skype_is1) (Version: 8.42 - Skype Technologies S.A.)
Skype™ 7.0 (HKLM-x32…{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Software Updater (HKLM-x32…{E07D7C7B-F424-4EEF-BA17-B2C32BD1C107}) (Version: 4.3.0 - SEIKO EPSON CORPORATION)
syncables desktop SE (HKLM-x32…{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
TrueCrypt (HKLM-x32…\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
USB2.0 UVC VGA WebCam (HKLM…\USB2.0 UVC VGA WebCam) (Version: 5.8.54000.207 - Sonix)
Verbatim GREEN BUTTON 1.46 (HKLM-x32…\Verbatim GREEN BUTTON_is1) (Version: - Verbatim)
ViewNX 2 (HKLM-x32…{DDD62492-32A7-412B-8AF1-2CF032AD42E3}) (Version: 2.1.2 - Nikon)
WinDirStat 1.1.2 (HKU\S-1-5-21-3914148689-2029455862-2912437901-1000…\WinDirStat) (Version: - )
Windows Live Essentials (HKLM-x32…\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32…{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows-driverpakke - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM…\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinFlash (HKLM-x32…{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.30.3 - ASUS)
Wireless Console 3 (HKLM-x32…{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll [2007-06-15] () [File not signed]
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => -> No File
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll [2009-11-26] (eCareme Technologies, Inc.) [File not signed]
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll [2007-06-15] () [File not signed]
ContextMenuHandlers1: [ADSMEnDecExt] -> {8BB925EB-A385-4F4D-B463-D9CC4A4F98F5} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmendecExt.dll [2009-09-30] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
ContextMenuHandlers1: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Program Files (x86)\ASUS\ASUS WebStorage\XPClient.DLL [2010-03-16] (eCareme Technologies, Inc. -> Ecareme)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ReflectShellExt] -> [CC]{DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => -> No File
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers2: [ReflectShellExt] -> [CC]{DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => -> No File
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Program Files (x86)\ASUS\ASUS WebStorage\XPClient.DLL [2010-03-16] (eCareme Technologies, Inc. -> Ecareme)
ContextMenuHandlers3: [MBAMShlExt] -> [CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3} => -> No File
ContextMenuHandlers4: [ADSMEnDecExt] -> {8BB925EB-A385-4F4D-B463-D9CC4A4F98F5} => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmendecExt.dll [2009-09-30] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> [CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3} => -> No File
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2009-10-26 04:38 - 2009-10-26 04:38 - 000221184 _____ ( ) [File not signed] C:\Program Files (x86)\ASUS\ASUS WebStorage\LogicNP.EZNamespaceExtensions.dll
2009-03-02 03:07 - 2009-03-02 03:07 - 000200704 _____ ( ) [File not signed] C:\Program Files (x86)\ASUS\ASUS WebStorage\LogicNP.EZShellExtensions.dll
2007-06-15 19:28 - 2007-06-15 19:28 - 000104960 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll
2007-06-15 19:28 - 2007-06-15 19:28 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll
2014-02-05 10:01 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2011-02-11 21:43 - 2011-02-11 21:43 - 000931840 _____ () [File not signed] C:\Windows\assembly\GAC_64\System.Data.SQLite\1.0.60.0__db937bc2d44ff139\System.Data.SQLite.dll
2004-05-28 03:13 - 2004-05-28 03:13 - 000080384 _____ (ACTIONTEC Electronics,Inc) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\ATKWLIOC.DLL
2011-02-11 21:54 - 2009-10-01 03:48 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll
2005-09-22 02:30 - 2005-09-22 02:30 - 000036864 _____ (ATK) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\inter_f2.dll
2014-02-05 10:01 - 2009-05-19 00:00 - 000041984 _____ (Brother Industries ,Ltd ) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\brmfpp4.dll
2014-02-05 10:01 - 2009-03-06 12:51 - 000770048 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll
2014-02-05 10:01 - 2009-09-28 13:38 - 000151552 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brcceng.dll
2014-02-05 10:01 - 2009-05-11 13:48 - 000372736 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll
2014-02-05 10:02 - 2009-09-28 13:38 - 005390336 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll
2009-11-26 06:49 - 2009-11-26 06:49 - 000070656 _____ (eCareme Technologies, Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll
2011-02-11 21:54 - 2009-10-01 03:48 - 000077824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\DTMessageLib.dll
2011-02-11 21:54 - 2009-10-01 03:45 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll
2014-02-05 10:02 - 2003-06-30 00:00 - 000259584 _____ (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTDIS12n.dll
2014-02-05 10:02 - 2005-07-05 00:00 - 000131584 _____ (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTFIL12n.DLL
2014-02-05 10:02 - 2003-06-30 00:00 - 000406016 _____ (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTKRN12n.dll
2005-01-13 09:36 - 2005-01-13 09:36 - 000303104 _____ (Silicon Integrated Systems Corp.) [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\SiSPkt.dll
2006-03-30 06:24 - 2006-03-30 06:24 - 000270336 _____ (The Apache Software Foundation) [File not signed] C:\Program Files (x86)\ASUS\ASUS WebStorage\log4net.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:84098FD3 [139]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => “”=“Driver”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => “”=“Driver”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => “”=“Driver”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => “”=“Driver”

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2018-01-10 12:02 - 000544368 ____N C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 fr.a2dfp.net
127.0.0.1 m.fr.a2dfp.net
127.0.0.1 mfr.a2dfp.net
127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 static.a-ads.com
127.0.0.1 abcstats.com
127.0.0.1 ad4.abradio.cz
127.0.0.1 a.abv.bg
127.0.0.1 adserver.abv.bg
127.0.0.1 adv.abv.bg
127.0.0.1 bimg.abv.bg
127.0.0.1 ca.abv.bg
127.0.0.1 www2.a-counter.kiev.ua
127.0.0.1 track.acclaimnetwork.com
127.0.0.1 accuserveadsystem.com
127.0.0.1 www.accuserveadsystem.com
127.0.0.1 achmedia.com
127.0.0.1 csh.actiondesk.com
127.0.0.1 ads.activepower.net
127.0.0.1 app.activetrail.com
127.0.0.1 stat.active24stats.nl #[Tracking.Cookie]
127.0.0.1 traffic.acwebconnecting.com
127.0.0.1 office.ad1.ru
127.0.0.1 cms.ad2click.nl
127.0.0.1 ad2games.com
127.0.0.1 ads.ad2games.com
127.0.0.1 content.ad20.net
127.0.0.1 core.ad20.net

There are 13761 more lines.

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\PC Connectivity Solution;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\GNU\GnuPG\pub
HKU\S-1-5-21-3914148689-2029455862-2912437901-1000\Control Panel\Desktop\Wallpaper -> C:\Users\adm\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001\Control Panel\Desktop\Wallpaper -> C:\Users\n\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk => C:\Windows\pss\Secunia PSI Tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS Premium Sound.lnk => C:\Windows\pss\SRS Premium Sound.lnk.CommonStartup
MSCONFIG\startupreg: ADSMTray => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: Bdagent => “C:\Program Files\Bitdefender\Bitdefender\bdagent.exe”
MSCONFIG\startupreg: BrMfcWnd => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
MSCONFIG\startupreg: ccleaner => “C:\Program Files\CCleaner\CCleaner64.exe” /AUTO
MSCONFIG\startupreg: ControlCenter3 => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
MSCONFIG\startupreg: Dropbox => “C:\Program Files (x86)\Dropbox\Client\Dropbox.exe” /systemstartup
MSCONFIG\startupreg: HOSTS Anti-Adware_PUPs => C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: SmartAudio => C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
MSCONFIG\startupreg: SunJavaUpdateSched => “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
MSCONFIG\startupreg: Syncables => C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
MSCONFIG\startupreg: Wireless Console 3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{5341C9C6-F706-4EDE-9144-834032069C64}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Block) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
FirewallRules: [UDP Query User{8CD67B3E-E27C-4E55-888E-3C914C65BADB}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Block) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
FirewallRules: [{A7C0072B-F06D-4EFB-A1FC-C1E9CA4E4A65}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{525C6FCC-78A8-422D-9999-FC89FBA8EBAF}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BB74D8E8-C18F-4778-9AB3-954D975DF5A0}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{A309D5E6-45B5-4421-9620-CD7D47C8303B}] => (Allow) C:\Program Files (x86)\Common Files\nokia\service layer\a\nsl_host_process.exe No File
FirewallRules: [{D262E984-945D-4679-AE65-9A6EA6997FBD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{27BAC69D-9DBC-4EBC-B520-5D9B78AA3959}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3A9D5DF9-DBC2-4487-AFC3-3636473F0DEF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{92A71D51-DF8C-4A87-878E-36F3B9DF323A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A9A91A9E-AF56-467A-9635-C658D8C3DADB}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{7E9E4532-9232-4156-A59E-6221E987A08F}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{FBA5B3BB-BAD4-4E6E-B0A1-855C6B7919CE}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{68CCC310-D68C-4454-82ED-FD5FA1BCB71C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F47E25AC-E98F-48DA-9759-E090584EBD36}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2B20DBFD-25A6-47FD-BE60-B772937575F5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{342C6490-BB88-4A8B-A9F9-5A5BD005E8D1}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

21-12-2019 16:58:38 Planlagt kontrolpunkt

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:

Error: (12/23/2019 06:31:12 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Styring af skrivebordsvindue har fundet en alvorlig fejl (0x80070008)

Error: (12/23/2019 06:23:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Navn på program med fejl: FBAgent.exe, version: 1.0.7.0, tidsstempel: 0x4ca3faac
Navn på modul med fejl: ntdll.dll, version: 6.1.7601.24540, tidsstempel: 0x5ddf3f5f
Undtagelseskode: 0xc0000374
Forskydning med fejl 0x00000000000bf232
Proces-id 0x4ec
Programmets starttidspunkt 0x01d5b845ae1eaacb
Programsti: C:\Windows\system32\FBAgent.exe
Modulsti: C:\Windows\SYSTEM32\ntdll.dll
Rapport-id: f1ab4501-25a8-11ea-8a7e-bcaec5d01a82

Error: (12/23/2019 06:03:07 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Sikkerhedskopieringen blev ikke fuldført, da der ikke kunne skrives til sikkerhedskopiplaceringen D:. Fejlen er: Sikkerhedskopiplaceringen blev ikke fundet, eller den er ikke gyldig. Gennemgå indstillingerne for sikkerhedskopiering, og kontrollér sikkerhedskopiplaceringen. (0x81000006).

Error: (12/22/2019 10:24:18 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/22 10:24:18.756]: [00006492]: brccFCtl.dll: ### ERROR ### Get OmniPage Language-ID Failed

Error: (12/22/2019 10:24:18 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/22 10:24:18.756]: [00006492]: brccFCtl.dll: ### ERROR ### m_fpGetLanguageInfo = NULL

Error: (12/22/2019 10:24:18 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/22 10:24:18.754]: [00006492]: brccFCtl.dll: ### ERROR ### LoadLibrary Functions failed. m_fpIsAvailable-Return = FALSE

Error: (12/22/2019 09:42:10 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/22 09:42:10.937]: [00006712]: brccFCtl.dll: ### ERROR ### Get OmniPage Language-ID Failed

Error: (12/22/2019 09:42:10 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: CTLCN BrtCTLCN: [2019/12/22 09:42:10.937]: [00006712]: brccFCtl.dll: ### ERROR ### m_fpGetLanguageInfo = NULL

System errors:

Error: (12/23/2019 06:23:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Tjenesten AFBAgent afsluttede uventet. Dette er sket 1 gang(e).

Error: (12/23/2019 06:22:56 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Serveren {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C} blev ikke registreret af DCOM inden for det specificerede tidsrum.

Error: (12/23/2019 06:08:59 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/23/2019 06:08:59 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/23/2019 06:08:59 PM) (Source: DCOM) (EventID: 10016) (User: ka)
Description: Adgangsindstillingerne programspecifikke giver ikke Lokal Aktivering adgang til COM-serverprogrammet med CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
og APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
for brugeren ka\n SID (S-1-5-21-3914148689-2029455862-2912437901-1001) fra adressen LocalHost (via LRPC). Denne sikkerhedstilladelse kan redigeres ved hjælp af administrationsværktøjet til komponenttjenester.

Error: (12/21/2019 03:22:04 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Serveren {995C996E-D918-4A8C-A302-45719A6F4EA7} blev ikke registreret af DCOM inden for det specificerede tidsrum.

Error: (12/21/2019 03:21:51 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Serveren {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C} blev ikke registreret af DCOM inden for det specificerede tidsrum.

Error: (12/21/2019 02:52:27 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Serveren {752073A1-23F2-4396-85F0-8FDB879ED0ED} blev ikke registreret af DCOM inden for det specificerede tidsrum.

CodeIntegrity:

Date: 2014-11-14 12:11:31.769
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.17334_none_e2a50f60f9c30e69\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.744
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.17128_none_e2b3dca8f9b75d86\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.735
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.17031_none_e2a208d0f9c5caef\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.692
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16507_none_e2c89a96f9a7e748\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.669
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16485_none_e27018bcf9ea96fb\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.656
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16477_none_e27ce93cf9e0adb8\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.648
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16457_none_e2928914f9d075d6\FileManager.exe because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 12:11:31.641
Description:
Code Integrity is unable to verify the image integrity of the file \Device\PSMounterEx2\Windows\WinSxS\amd64_microsoft-windows-filemanager.appxmain_31bf3856ad364e35_6.3.9600.16408_none_e2c998faf9a70378\FileManager.exe because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. K52F.212 11/01/2010
Motherboard: ASUSTeK Computer Inc. K52F
Processor: Intel® Pentium® CPU P6200 @ 2.13GHz
Percentage of memory in use: 70%
Total physical RAM: 3884.38 MB
Available physical RAM: 1164.41 MB
Total Virtual: 4882.52 MB
Available Virtual: 1287 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:74.52 GB) (Free:5.09 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:202.08 GB) (Free:90.9 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 9652AA9B)
Partition 1: (Not Active) - (Size=21.5 GB) - (Type=1C)
Partition 2: (Active) - (Size=74.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=202.1 GB) - (Type=05)

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-12-2019
Ran by adm (administrator) on KA (ASUSTeK Computer Inc. K52F) (23-12-2019 18:33:45)
Running from C:\Users\n\Desktop\langsom pc\FRST64
Loaded Profiles: adm & n (Available Profiles: adm & n & k & i & ni & Gæst)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Dansk (Danmark)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Windows\AsScrPro.exe
(ASUSTek Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(CyberLink -> ) [File not signed] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\86.4.146\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\86.4.146\QtWebEngineProcess.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SRS Labs, Inc -> SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NortonSecurity.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-06-10] (ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.)
HKLM…\Run: [InstallerLauncher] => “C:\Program Files\Common Files\Bitdefender\SetupInformation{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe” /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation{6F57816A-791A-41 (the data entry has 36 more characters).
HKLM-x32…\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32…\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6260544 2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-3914148689-2029455862-2912437901-1000…\Run: [] => [X]
HKU\S-1-5-21-3914148689-2029455862-2912437901-1000…\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53540200 2019-03-26] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3914148689-2029455862-2912437901-1000\Control Panel\Desktop\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [242688 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001…\MountPoints2: F - F:\LaunchU3.exe -a
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001…\MountPoints2: {47119126-0c67-11e9-866b-bcaec5d01a82} - F:\LaunchU3.exe -a
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001…\MountPoints2: {bf7ea4ef-3049-11e9-a149-bcaec5d01a82} - F:\startme.exe
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001\Control Panel\Desktop\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18…\RunOnce: [SPReview] => “C:\Windows\System32\SPReview\SPReview.exe” /sp:1 /errorfwlink:“hxxp://go.microsoft.com/fwlink/?LinkID=122915” /build:7601
HKU\S-1-5-18…\RunOnce: [{90140000-003D-0000-0000-0000000FF1CE}] => C:\Windows\system32\cmd.exe /C del “C:\ProgramData\Microsoft Help\Rgstrtn.lck” /Q /A:H
HKU\S-1-5-18…\RunOnce: [{90140000-00A1-0406-0000-0000000FF1CE}] => C:\Windows\system32\cmd.exe /C del “C:\ProgramData\Microsoft Help\Rgstrtn.lck” /Q /A:H
HKU\S-1-5-18…\RunOnce: [{90140000-001A-0406-0000-0000000FF1CE}] => C:\Windows\system32\cmd.exe /C del “C:\ProgramData\Microsoft Help\Rgstrtn.lck” /Q /A:H
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software…\Authentication\Credential Providers: [{06FE45A8-6D92-44ba-A0F1-9A9BCDC8F5A7}] -> C:\Program Files (x86)\ASUS\SmartLogon\system\FaceCredentialProvider64.dll [2009-06-19] (ASUSTeK Computer Inc. -> ASUS)
HKLM\Software…\Authentication\Credential Providers: [{2AD920F6-D745-4d8b-9526-619171C2CC4D}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [File not signed]
HKLM\Software…\Authentication\Credential Providers: [{455BD3EC-20A5-44c3-8D77-396909825B5E}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [File not signed]
HKLM\Software…\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
HKLM\Software…\Authentication\Credential Provider Filters: [{120495C2-9E38-48a2-A08B-C302F7487628}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2014-02-05] ()
Startup: C:\Users\n\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skærmklipper og startprogram til OneNote 2010.lnk [2018-03-07]
ShortcutTarget: Skærmklipper og startprogram til OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01005DE8-319A-4C92-8831-33AA2919F2F3} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720 2009-07-31] (ASUSTeK Computer Inc. -> ASUS)
Task: {08107E37-6B06-42A8-BCB7-2FA056F166A0} - System32\Tasks\Norton Security with Backup\Norton Security Error Processor => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\SymErr.exe [116392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {0CF0189A-D5F0-4839-8297-80F867D4F46D} - System32\Tasks\EPSON XP-422 423 425 Series Update {B06B062D-02BA-44BB-8069-00891B8335AB} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNDE.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {1F1DADE1-85CF-4974-BB5D-9BA33BFA1F2D} - System32\Tasks{48D92612-23DD-4655-B665-60D948CF7FF3} => C:\Windows\system32\pcalua.exe -a “C:\Program Files\Windows Firewall Control\wfc.exe” -c -uninstall
Task: {673BAE04-93BA-46BF-AB95-558F112911EA} - System32\Tasks\ASPG => C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe [163384 2009-06-29] (ASUSTeK Computer Inc. -> ASUS)
Task: {6C6A7026-02F4-40DE-A974-9F3D84ABF8DE} - System32\Tasks\Norton Security with Backup\Norton Security Error Analyzer => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\SymErr.exe [116392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {8D724874-C46D-42DD-83BB-F77A2245B5F9} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9E379BC8-ADA8-4D84-8B6B-66FDDF501562} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [1929344 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {A3DDF0DF-570E-45BD-8693-6F73980B8657} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AEAE4B13-FB35-40F8-9FAC-C6481073D289} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUSTeK Computer Inc. -> ASUS)
Task: {D59B59A3-F720-474F-9792-3C5C1F16AA7D} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\WSCStub.exe [570768 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {D5C3E578-C848-41FB-92E7-6C05D3875B1B} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [976512 2010-11-11] (ASUSTeK Computer Inc. -> ASUS)
Task: {F2751CA6-4B32-41F5-94CD-638A7523ABFD} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {B06B062D-02BA-44BB-8069-00891B8335AB}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNDE.EXE:/EXE:{B06B062D-02BA-44BB-8069-00891B8335AB} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\Launch BullGuard.job => C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip…\Interfaces{3BF79BAB-C9C8-4AF3-B83D-01DB3CA1A244}: [NameServer] 198.153.192.1,198.153.194.1
Tcpip…\Interfaces{3BF79BAB-C9C8-4AF3-B83D-01DB3CA1A244}: [DhcpNameServer] 192.168.1.1

Internet Explorer:

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3914148689-2029455862-2912437901-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com/
HKU\S-1-5-21-3914148689-2029455862-2912437901-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3914148689-2029455862-2912437901-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-3914148689-2029455862-2912437901-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&l=dis&prt=NGC&chn=retail&geo=DK&ver=22.19.9.63&locale=DK_en&guid=D6BEFC06-5CAB-4603-8188-A1B505B287BC&doi=2016-09-01&o=APN11913&gct=kwd&qsrc=2869
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: No Name -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine32\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine32\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)

FireFox:

FF ProfilePath: C:\Users\adm\AppData\Roaming\Mozilla\Firefox\Profiles\4wwmv9ox.default [2019-12-19]
FF Extension: (Smart HTTPS) - C:\Users\adm\AppData\Roaming\Mozilla\Firefox\Profiles\4wwmv9ox.default\Extensions\jid0-oFwt2ZcakHhkFl7Kp4lJn@jetpack.xpi [2015-09-07] [Legacy]
FF Extension: (NoScript) - C:\Users\adm\AppData\Roaming\Mozilla\Firefox\Profiles\4wwmv9ox.default\Extensions{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-09-07] [Legacy]
FF Extension: (BetterPrivacy) - C:\Users\adm\AppData\Roaming\Mozilla\Firefox\Profiles\4wwmv9ox.default\Extensions{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2015-09-07] [Legacy]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-10-02] (Nokia -> )
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation -> Zeon Corporation)

Chrome:

CHR HKLM…\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\Exts\Chrome.crx
CHR HKLM…\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32…\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\Exts\Chrome.crx
CHR HKLM-x32…\Chrome\Extension: [dflinnddekagfkncpgojoppgnppfkbkj] - <no Path/update_url>
CHR HKLM-x32…\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
R3 ADSMService; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.) [File not signed]
S2 AFBAgent; C:\Windows\system32\FBAgent.exe [377264 2010-09-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) [File not signed]
S4 Brother XP spl Service; C:\Windows\SysWOW64\brsvc01a.exe [57344 2004-06-14] (brother Industries Ltd) [File not signed]
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc -> Dropbox, Inc.)
S3 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 LMS; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [262144 2009-10-01] (Intel Corporation) [File not signed]
R2 NortonSecurity; C:\Program Files\Norton Security with Backup\Engine\22.19.9.63\NortonSecurity.exe [227296 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S3 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [3272656 2014-07-21] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
R3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-04-06] (CyberLink -> ) [File not signed]
S4 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [16569400 2019-12-16] (Adlice -> )
R2 UNS; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2314240 2009-10-01] (Intel Corporation) [File not signed]
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2753536 2011-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\Definitions\BASHDefs\20191217.001\BHDrvx64.sys [1952136 2019-09-27] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\1613090.03F\ccSetx64.sys [193392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516784 2019-10-18] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154288 2019-11-05] (Symantec Corporation -> Symantec Corporation)
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [129024 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronic Corp.)
R1 IDSVia64; C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\Definitions\IPSDefs\20191220.061\IDSvia64.sys [1451016 2019-12-13] (Symantec Corporation -> Symantec Corporation)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] (ASUSTeK Computer Inc. -> )
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15928 2009-06-18] (ASUSTeK Computer Inc. -> Windows ® Win 7 DDK provider)
S4 nmwcd; C:\Windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 nmwcdc; C:\Windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 nmwcdnsucx64; C:\Windows\System32\drivers\nmwcdnsucx64.sys [12800 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 nmwcdnsux64; C:\Windows\System32\drivers\nmwcdnsux64.sys [171008 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [166384 2014-10-30] (Paramount Software UK Ltd -> Windows ® Win 7 DDK provider)
S3 PSMounterEx; C:\Windows\SysWOW64\drivers\psmounterex.sys [76408 2013-08-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
S3 PSVolAcc; C:\Windows\System32\Drivers\PSVolAcc.sys [12760 2014-07-21] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
S3 SiSGbeLH; C:\Windows\System32\DRIVERS\SiSG664.sys [56832 2009-06-10] (Microsoft Windows -> Silicon Integrated Systems Corp.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800192 2009-08-20] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 SRTSP; C:\Windows\System32\drivers\NGCx64\1613090.03F\SRTSP64.SYS [889008 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\1613090.03F\SRTSPX64.SYS [50864 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S4 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\1613090.03F\SYMEFASI64.SYS [1963400 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-03-25] (Symantec Corporation -> Symantec Corporation)
S3 SymEvnt; C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\SymPlatform\SymEvnt.sys [710536 2019-11-17] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\Windows\System32\drivers\NGCx64\1613090.03F\Ironx64.SYS [316656 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\Windows\System32\drivers\NGCx64\1613090.03F\symnets.sys [573448 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S4 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S4 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\1613090.03F\wpCtrlDrv.sys [1012120 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S1 A2DDA; ??\C:\EEK\BIN\a2ddax64.sys [X]
S4 cleanhlp; ??\C:\EEK\bin\cleanhlp64.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 NAVENG; ??\C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\Definitions\SDSDefs\20170606.004\NAVENG.SYS [X]
S3 NAVEX15; ??\C:\Program Files\Norton Security with Backup\NortonData\22.9.3.13\Definitions\SDSDefs\20170606.004\NAVEX15.SYS [X]
U2 TMAgent; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-22 10:21 - 2019-12-22 10:22 - 000000000 ____D C:\Users\n\Desktop\langsom pc
2019-12-22 10:08 - 2019-12-22 10:08 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2019-12-22 09:22 - 2019-12-22 09:22 - 000000000 ____D C:\Users\n\Desktop\bo
2019-12-21 14:19 - 2019-12-23 18:34 - 000000000 ____D C:\FRST
2019-12-21 11:29 - 2019-12-21 11:36 - 000000000 ____D C:\Users\n\Desktop\gr
2019-12-21 10:19 - 2019-12-22 10:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-12-20 09:07 - 2019-12-20 09:07 - 000000000 ____D C:\Users\n\Desktop\se også D-partition om systemting
2019-12-20 08:44 - 2019-12-20 08:44 - 004967580 _____ C:\Users\k\AppData\LocalLow\wbkAAB6.tmp
2019-12-20 00:24 - 2019-12-22 10:22 - 000000000 ____D C:\Users\n\Desktop\recover-værktøjer
2019-12-19 11:32 - 2019-12-19 11:32 - 000000000 ____D C:\Users\adm\AppData\Local\CrashDumps
2019-12-18 17:21 - 2019-12-18 17:21 - 000000000 ____D C:\Users\n\Desktop\hdd-test
2019-12-17 09:10 - 2019-12-17 16:55 - 000000000 ____D C:\Users\n\Desktop\CA
2019-12-16 19:41 - 2019-12-16 20:58 - 000000000 ____D C:\ProgramData\RogueKiller
2019-12-16 19:41 - 2019-12-16 19:41 - 000000860 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2019-12-16 19:41 - 2019-12-16 19:41 - 000000860 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2019-12-16 19:41 - 2019-12-16 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2019-12-16 19:41 - 2019-12-16 19:41 - 000000000 ____D C:\Program Files\RogueKiller
2019-12-16 18:48 - 2019-12-16 18:48 - 000000170 _____ C:\Users\n\Desktop\scanInfoAdw-eller-Rogue-spm
2019-12-15 16:28 - 2019-12-17 01:43 - 000000000 ____D C:\Windows\rescache
2019-12-15 13:18 - 2019-11-15 02:58 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-12-15 13:18 - 2019-11-15 02:48 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-12-15 13:14 - 2019-11-28 04:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 03:58 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-12-15 13:14 - 2019-11-28 03:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 03:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 03:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-12-15 13:14 - 2019-11-28 03:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-12-15 13:14 - 2019-11-19 21:29 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-12-15 13:14 - 2019-11-19 21:18 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-12-15 13:14 - 2019-11-19 21:00 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-12-15 13:14 - 2019-11-19 08:52 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-12-15 13:14 - 2019-11-19 08:36 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-12-15 13:14 - 2019-11-19 08:36 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-12-15 13:14 - 2019-11-19 08:35 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-12-15 13:13 - 2019-12-06 06:27 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2019-12-15 13:13 - 2019-11-28 04:33 - 000710072 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-12-15 13:13 - 2019-11-28 04:32 - 004061616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-12-15 13:13 - 2019-11-28 04:32 - 003967416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-12-15 13:13 - 2019-11-28 04:32 - 001320248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-12-15 13:13 - 2019-11-28 04:32 - 000627664 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-12-15 13:13 - 2019-11-28 04:32 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-12-15 13:13 - 2019-11-28 04:32 - 000155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-12-15 13:13 - 2019-11-28 04:32 - 000097208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-12-15 13:13 - 2019-11-28 04:31 - 005554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-12-15 13:13 - 2019-11-28 04:31 - 001671504 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000834048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-12-15 13:13 - 2019-11-28 04:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-12-15 13:13 - 2019-11-28 04:28 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-12-15 13:13 - 2019-11-28 04:04 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-12-15 13:13 - 2019-11-28 04:03 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-12-15 13:13 - 2019-11-28 04:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-12-15 13:13 - 2019-11-28 04:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-12-15 13:13 - 2019-11-28 04:00 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-12-15 13:13 - 2019-11-28 03:59 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-12-15 13:13 - 2019-11-28 03:58 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-12-15 13:13 - 2019-11-28 03:58 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-12-15 13:13 - 2019-11-28 03:58 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-12-15 13:13 - 2019-11-28 03:57 - 003233280 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-12-15 13:13 - 2019-11-28 03:57 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-12-15 13:13 - 2019-11-28 03:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-12-15 13:13 - 2019-11-28 03:56 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-12-15 13:13 - 2019-11-28 03:56 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-12-15 13:13 - 2019-11-28 03:53 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-12-15 13:13 - 2019-11-28 03:53 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-12-15 13:13 - 2019-11-28 03:52 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-12-15 13:13 - 2019-11-28 03:52 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-12-15 13:13 - 2019-11-28 03:52 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-12-15 13:13 - 2019-11-28 03:52 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-12-15 13:13 - 2019-11-28 03:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-12-15 13:13 - 2019-11-28 03:51 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-12-15 13:13 - 2019-11-23 08:48 - 000390752 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-12-15 13:13 - 2019-11-23 07:57 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-12-15 13:13 - 2019-11-21 03:16 - 000580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-12-15 13:13 - 2019-11-21 03:16 - 000496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-12-15 13:13 - 2019-11-21 01:48 - 000629984 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-12-15 13:13 - 2019-11-19 21:56 - 025753088 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-12-15 13:13 - 2019-11-19 21:44 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-12-15 13:13 - 2019-11-19 21:44 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-12-15 13:13 - 2019-11-19 21:31 - 002910720 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-12-15 13:13 - 2019-11-19 21:30 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-12-15 13:13 - 2019-11-19 21:29 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-12-15 13:13 - 2019-11-19 21:29 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-12-15 13:13 - 2019-11-19 21:22 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-12-15 13:13 - 2019-11-19 21:21 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-12-15 13:13 - 2019-11-19 21:19 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-12-15 13:13 - 2019-11-19 21:18 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-12-15 13:13 - 2019-11-19 21:18 - 000797184 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-12-15 13:13 - 2019-11-19 21:18 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-12-15 13:13 - 2019-11-19 21:17 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-12-15 13:13 - 2019-11-19 21:10 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-12-15 13:13 - 2019-11-19 21:07 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-12-15 13:13 - 2019-11-19 21:01 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-12-15 13:13 - 2019-11-19 21:00 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-12-15 13:13 - 2019-11-19 20:56 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-12-15 13:13 - 2019-11-19 20:56 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-12-15 13:13 - 2019-11-19 20:54 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-12-15 13:13 - 2019-11-19 20:52 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-12-15 13:13 - 2019-11-19 20:43 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-12-15 13:13 - 2019-11-19 20:41 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-12-15 13:13 - 2019-11-19 20:41 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-12-15 13:13 - 2019-11-19 20:39 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-12-15 13:13 - 2019-11-19 20:39 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-12-15 13:13 - 2019-11-19 20:36 - 015445504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-12-15 13:13 - 2019-11-19 20:26 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-12-15 13:13 - 2019-11-19 20:15 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-12-15 13:13 - 2019-11-19 20:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-12-15 13:13 - 2019-11-19 09:17 - 020290048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-12-15 13:13 - 2019-11-19 09:11 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-12-15 13:13 - 2019-11-19 08:59 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-12-15 13:13 - 2019-11-19 08:58 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-12-15 13:13 - 2019-11-19 08:58 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-12-15 13:13 - 2019-11-19 08:57 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-12-15 13:13 - 2019-11-19 08:56 - 002304000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-12-15 13:13 - 2019-11-19 08:53 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-12-15 13:13 - 2019-11-19 08:50 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-12-15 13:13 - 2019-11-19 08:49 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-12-15 13:13 - 2019-11-19 08:49 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-12-15 13:13 - 2019-11-19 08:49 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-12-15 13:13 - 2019-11-19 08:40 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-12-15 13:13 - 2019-11-19 08:33 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-12-15 13:13 - 2019-11-19 08:33 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-12-15 13:13 - 2019-11-19 08:31 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-12-15 13:13 - 2019-11-19 08:30 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-12-15 13:13 - 2019-11-19 08:26 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-12-15 13:13 - 2019-11-19 08:24 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-12-15 13:13 - 2019-11-19 08:23 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-12-15 13:13 - 2019-11-19 08:23 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-12-15 13:13 - 2019-11-19 08:22 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-12-15 13:13 - 2019-11-19 08:20 - 013838336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-12-15 13:13 - 2019-11-19 08:05 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-12-15 13:13 - 2019-11-19 08:01 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-12-15 13:13 - 2019-11-19 08:00 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-12-15 13:13 - 2019-11-15 03:32 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 001330176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-12-15 13:13 - 2019-11-15 03:29 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-12-15 13:13 - 2019-11-15 03:25 - 000385248 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000517632 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2019-12-15 13:13 - 2019-11-15 03:22 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-12-15 13:13 - 2019-11-15 03:21 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-12-15 13:13 - 2019-11-15 03:06 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2019-12-15 13:13 - 2019-11-15 03:04 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-12-15 13:13 - 2019-11-15 02:59 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-12-15 13:13 - 2019-11-15 02:59 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2019-12-15 13:13 - 2019-11-15 02:45 - 000327680 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2019-12-15 13:13 - 2019-11-14 12:34 - 003187712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 002368000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000628224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000162016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-12-15 13:13 - 2019-11-05 22:25 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2019-12-15 13:13 - 2019-11-05 22:25 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2019-12-15 13:13 - 2019-11-05 22:24 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2019-12-15 13:13 - 2019-11-05 22:24 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-12-15 13:13 - 2019-11-05 22:23 - 000368352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-12-15 13:13 - 2019-11-05 22:22 - 000115936 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-12-15 13:13 - 2019-11-05 22:20 - 003247616 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000706560 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000572416 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2019-12-15 13:13 - 2019-11-05 22:20 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2019-12-15 13:13 - 2019-11-05 22:19 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2019-12-15 13:13 - 2019-11-05 22:19 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2019-12-15 13:13 - 2019-11-05 22:19 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2019-12-15 13:13 - 2019-11-05 22:12 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-12-15 13:13 - 2019-11-05 22:03 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2019-12-15 13:13 - 2019-11-05 22:03 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2019-12-15 13:13 - 2019-11-05 21:57 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2019-12-15 13:13 - 2019-11-05 21:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2019-12-15 13:13 - 2019-11-05 21:51 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2019-12-15 13:13 - 2019-11-05 21:50 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-12-15 13:13 - 2019-11-05 20:43 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-12-15 13:13 - 2019-10-26 01:17 - 001717760 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-12-15 13:13 - 2019-10-15 00:58 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-12-15 13:13 - 2019-10-15 00:58 - 001182208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2019-12-15 13:13 - 2019-09-17 03:28 - 000738816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-12-15 13:13 - 2019-09-10 03:27 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-12-15 13:13 - 2019-09-10 03:24 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-12-15 13:13 - 2019-09-10 01:09 - 000802816 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-12-15 13:13 - 2019-09-10 01:09 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-12-15 11:55 - 2019-12-15 11:55 - 000003230 _____ C:\Windows\system32\Tasks\Norton WSC Integration
2019-12-15 11:55 - 2019-12-15 11:55 - 000000000 ____D C:\Windows\system32\Tasks\Norton Security with Backup
2019-12-15 11:54 - 2019-12-16 15:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-12-15 11:44 - 2019-12-15 11:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-12-05 02:23 - 2019-12-05 02:23 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2019-12-05 02:23 - 2019-12-05 02:23 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-23 18:05 - 2016-11-16 20:45 - 000000000 ____D C:\Users\n\AppData\LocalLow\Mozilla
2019-12-22 10:28 - 2016-11-19 15:28 - 000000000 ____D C:\Users\k\AppData\LocalLow\Mozilla
2019-12-22 10:24 - 2014-02-03 13:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-12-22 09:45 - 2015-11-27 10:45 - 000000911 _____ C:\Windows\Tasks\EPSON XP-422 423 425 Series Update {B06B062D-02BA-44BB-8069-00891B8335AB}.job
2019-12-22 08:50 - 2009-07-14 05:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-12-22 08:50 - 2009-07-14 05:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-12-21 22:29 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-12-21 10:37 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Desktop\url-adresserOgEMail
2019-12-20 20:35 - 2019-08-16 16:18 - 000000000 ____D C:\Users\n\Desktop\hv
2019-12-20 20:35 - 2015-01-22 10:01 - 000088160 _____ C:\Users\n\Desktop\SumatraPDF-settings.txt
2019-12-20 10:10 - 2019-03-02 08:15 - 000000000 ____D C:\Users\n\Desktop\sumatrapdfcache
2019-12-20 10:08 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\su
2019-12-20 10:06 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\cy
2019-12-20 10:03 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\gu
2019-12-20 09:36 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\forsk-tekster
2019-12-20 08:44 - 2015-06-13 19:45 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-12-20 07:12 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-12-20 06:08 - 2014-02-02 14:04 - 000000000 ____D C:\Users\n
2019-12-19 19:33 - 2009-08-04 11:52 - 000509370 _____ C:\Windows\system32\perfh006.dat
2019-12-19 19:33 - 2009-08-04 11:52 - 000098648 _____ C:\Windows\system32\perfc006.dat
2019-12-19 19:33 - 2009-07-14 06:13 - 001387928 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-19 11:28 - 2011-02-11 22:06 - 000001770 _____ C:\Windows\system32\ServiceFilter.ini
2019-12-19 11:23 - 2014-03-10 08:07 - 000000000 ___RD C:\Users\n\Desktop\Div. genveje
2019-12-18 08:05 - 2014-02-23 14:46 - 000000000 ____D C:\Users\n\Documents\div
2019-12-17 14:24 - 2015-06-13 19:48 - 000000000 ___RD C:\Users\k\Dropbox
2019-12-17 14:23 - 2015-06-13 19:43 - 000000000 ____D C:\Users\k\AppData\Local\Dropbox
2019-12-16 19:40 - 2011-02-11 21:28 - 000000000 ____D C:\ProgramData\Temp
2019-12-16 18:47 - 2011-02-11 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-12-16 18:47 - 2011-02-11 21:43 - 000000000 ____D C:\Program Files (x86)\ASUS
2019-12-16 18:47 - 2011-02-11 21:28 - 000000000 ____D C:\Program Files (x86)\CyberLink
2019-12-16 18:43 - 2014-02-05 15:21 - 000000000 ____D C:\AdwCleaner
2019-12-16 18:26 - 2015-06-13 19:45 - 000000000 ____D C:\Users\adm\AppData\Local\Dropbox
2019-12-16 15:15 - 2018-03-06 09:18 - 000002453 _____ C:\Users\Public\Desktop\Norton Security.lnk
2019-12-16 15:15 - 2018-03-06 09:18 - 000002453 _____ C:\ProgramData\Desktop\Norton Security.lnk
2019-12-16 15:15 - 2009-07-14 05:45 - 000423288 _____ C:\Windows\system32\FNTCACHE.DAT
2019-12-16 15:00 - 2014-12-12 08:56 - 000000000 ____D C:\Windows\system32\appraiser
2019-12-16 15:00 - 2014-04-23 21:14 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-12-16 15:00 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-12-16 14:47 - 2014-02-26 14:14 - 001363214 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-12-16 14:39 - 2014-02-02 18:51 - 000000000 ____D C:\Windows\system32\MRT
2019-12-16 14:27 - 2014-02-02 18:51 - 129221664 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-12-15 15:25 - 2017-06-06 14:39 - 000000000 ____D C:\Program Files\Common Files\AV
2019-12-15 11:55 - 2018-02-27 10:01 - 000000000 ____D C:\Windows\system32\Drivers\NGCx64
2019-11-24 20:26 - 2014-02-23 14:33 - 000000000 ____D C:\Users\k\Documents\Noder og div. programmer

==================== Files in the root of some directories ========

2007-06-12 18:34 - 2007-06-12 18:34 - 000035822 _____ () C:\Program Files (x86)\Common Files\ASPG_icon.ico
2008-05-22 17:35 - 2008-05-22 17:35 - 000051962 _____ () C:\Program Files (x86)\Common Files\banner.jpg
2009-04-08 19:31 - 2009-04-08 19:31 - 000106496 _____ () C:\Program Files (x86)\Common Files\CPInstallAction.dll
2008-08-12 06:45 - 2008-08-12 06:45 - 000155648 _____ (ASUS) C:\Program Files (x86)\Common Files\MSIactionall.dll
2014-07-01 12:34 - 2014-07-01 12:34 - 000000268 ___RH () C:\Users\adm\AppData\Roaming\Soundtrack
2014-07-01 12:34 - 2014-07-01 12:34 - 000000268 ___RH () C:\Users\adm\AppData\Roaming\Space Choir
2014-07-01 12:34 - 2014-07-01 12:34 - 000000268 ___RH () C:\Users\adm\AppData\Roaming\Spacious
2014-02-02 16:51 - 2014-02-02 16:51 - 000000036 _____ () C:\Users\adm\AppData\Local\housecall.guid.cache
2017-12-08 10:39 - 2019-07-28 18:38 - 000007610 _____ () C:\Users\adm\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2019-12-19 21:11
==================== End of FRST.txt ========================

… er der nogen …?

Dette emne blev automatisk lukket 7 dage efter det seneste svar. Nye svar er ikke længere tilladt.