Virus


(osh) #1

Hej Jeg har fået virus kan nogle hjælpe, en special news online popper op hele tiden, og noget der hedder strictor virus ??


(f-arn) #2

Hej :slight_smile:

Hent “Malwarebytes’ Anti-Malware” her

Installer programmet og kør et scan med det.

Når det er færdig laver det en log som jeg gerne vil se.

Fortæl om det hjalp :question:


(osh) #3

Hej Jeg har den installeret og kørt en scanning uden den fandt noget for nogle dage siden
men nu vil den slet ikke starte op


(osh) #4

Jo her er den :slight_smile:

Malwarebytes

-Logoplysninger-
Scanningsdato: 18/06/2018
Scanningstidspunkt: 15.24
Logfil: e400a35d-72fa-11e8-92c5-206a8a1e8654.json
Administrator: Ja

-Softwareoplysninger-
Version: 3.5.1.2522
Komponentversion: 1.0.365
Opdatér pakkeversion: 1.0.5528
Licens: Gratis

-Systemoplysninger-
OS: Windows 7 Service Pack 1
CPU: x64
Filsystem: NTFS
Bruger: Ole-Pc\Ole

-Scanningsoversigt-
Scanningstype: Trusselsscanning
Scanning started af: Manuel
Resultat: Fuldført
Scannede objekter: 314225
Registrerede trusler: 0
(Ingen skadelige elementer registreret)
Trusler i karantæne: 0
(Ingen skadelige elementer registreret)
Forløbet tid: 5 min, 0 sek.

-Scanningsindstillinger-
Hukommelse: Aktiveret
Start: Aktiveret
Filsystem: Aktiveret
Arkiver: Aktiveret
Rootkits: Deaktiveret
Heuristik: Aktiveret
PUP: Advar
PUM: Registrér

-Scanningsoplysninger-
Proces: 0
(Ingen skadelige elementer registreret)

Modul: 0
(Ingen skadelige elementer registreret)

Registreringsnøgle: 0
(Ingen skadelige elementer registreret)

Registreringsværdi: 0
(Ingen skadelige elementer registreret)

Registreringsdata: 0
(Ingen skadelige elementer registreret)

Datastrøm: 0
(Ingen skadelige elementer registreret)

Mappe: 0
(Ingen skadelige elementer registreret)

Fil: 0
(Ingen skadelige elementer registreret)

Fysisk sektor: 0
(Ingen skadelige elementer registreret)

WMI: 0
(Ingen skadelige elementer registreret)

(end)

men det har ikke hjulpet


(osh) #5

Hej Igen

Jeg har prøvet et program der hedder Hitmanpro, men det skriver sådan her (billede) hvis du kan se det


(f-arn) #6

Hent Farbar Recovery Scan Tool x64 og gem den på Skrivebordet.

Deaktiver dit sikkerhedprogram, mens du kører den :exclamation:

Start Farbar Recovery Scan Tool/Farbar Recovery Scan Tool x64 og klik på Scan.

Første gang der scannes, laver den automatisk Addition.txt.

Når scanningen er færdig, har du 2 log filer på Skrivebordet - FRST.txt og Addition.txt som du bedes kopiere herind.

Send dem i separate indlæg, da det gør det mere overskueligt :exclamation:


(osh) #7

Ok de kommer her og tak

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2015
Ran by Ole (administrator) on OLE-PC on 19-06-2018 12:49:24
Running from C:\Users\Ole\Desktop
Loaded Profiles: Ole (Available Profiles: Ole)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Dansk (Danmark)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.141.333\AvastBrowserCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.141.333\AvastBrowserCrashHandler64.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Windows\PLFSetI.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324608 2010-06-10] (Alcor Micro Corp.)
HKLM…\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKLM…\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-29] (Realtek Semiconductor)
HKLM…\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-06-09] ()
HKLM…\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [325120 2009-10-22] (Alps Electric Co., Ltd.)
HKLM…\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated)
HKLM…\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc.)
HKLM…\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM…\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-06-17] (AVAST Software)
HKLM-x32…\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-05-27] (Egis Technology Inc.)
HKU\S-1-5-21-944301883-4089375509-3149596369-1001…\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-944301883-4089375509-3149596369-1001…\Run: [AvastBrowserAutoLaunch_0A79AAA6EB34CF10D12006B692018D42] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1801544 2018-06-12] (AVAST Software)
HKU\S-1-5-21-944301883-4089375509-3149596369-1001\Control Panel\Desktop\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter “C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter”
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-06-17] (AVAST Software)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll [2010-05-27] (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll [2010-05-27] (Egis Technology Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-944301883-4089375509-3149596369-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> DefaultScope 9C27F3A6DFA4463BA957489A61E82CDE URL = http://www.bing.com/search?FORM=U218DF&PC=U218&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> 9C27F3A6DFA4463BA957489A61E82CDE URL = http://www.bing.com/search?FORM=U218DF&PC=U218&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-29] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-06-17] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-29] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-29] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-06-17] (AVAST Software)
BHO-x32: Hjælp til logon til Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-29] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> No Name - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - No File
DPF: HKLM {B479199A-1242-4E3C-AD81-7F0DF801B4AE} http://download.microsoft.com/download/C/9/C/C9C3D86D-84AC-4AF0-8584-842756A66467/MicrosoftDownloadManager.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Technologies)
Handler: WSAllMyTubechrome - No CLSID Value
Tcpip\Parameters: [DhcpNameServer] 212.10.10.4 212.10.10.5

FireFox:

FF ProfilePath: C:\Users\Ole\AppData\Roaming\Mozilla\Firefox\Profiles\fVAP8opS.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_113.dll [2018-06-07] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-29] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_113.dll [2018-06-07] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219159.dll [2015-06-26] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-29] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/DownloadManager,version=1.1 -> C:\Windows\ [2015-01-29] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\npViewRight.dll [2012-07-05] (Verimatrix, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin-x32: visualon.com/voBrowserPlugin -> C:\ProgramData\VisualOn\BrowserPlugin\npStofaWebtvPlayer.dll [2014-11-20] ()
FF Plugin HKU\S-1-5-21-944301883-4089375509-3149596369-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Ole\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-944301883-4089375509-3149596369-1001: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\npViewRight.dll [2012-07-05] (Verimatrix, Inc.)
FF Plugin HKU\S-1-5-21-944301883-4089375509-3149596369-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Ole\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2018-06-01] (Zoom Video Communications, Inc.)
FF Extension: No Name - C:\Users\Ole\AppData\Roaming\Mozilla\Firefox\Profiles\fVAP8opS.default\Extensions\abs@avira.com [2017-10-03]
FF HKLM…\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: No Name - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-06-15]
FF HKLM-x32…\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: No Name - C:\Users\Ole\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\passwordmanager@avira.com [2017-10-03]
FF Extension: No Name - C:\ProgramData\Wondershare\AllMyTube\AllMyTube@Wondershare.com_xpi\ [not found]

Chrome:

CHR Profile: C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Slides) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-03]
CHR Extension: (Docs) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-03]
CHR Extension: (Google Drive) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-03]
CHR Extension: (YouTube) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-03]
CHR Extension: (Google Search) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-03]
CHR Extension: (Avast SafePrice) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-06-18]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2017-10-07]
CHR Extension: (Google Docs Offline) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-03]
CHR Extension: (Gmail) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-02]
CHR HKLM…\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - https://clients2.google.com/service/update2/crx
CHR HKLM…\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - http://clients2.google.com/service/update2/crx
CHR HKLM…\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM…\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - https://clients2.google.com/service/update2/crx

Opera:

StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-02-12] (SUPERAntiSpyware.com)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7620096 2018-06-17] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-17] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [317280 2018-06-17] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-17] (AVAST Software)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332656 2018-05-02] (HP Inc.)
S3 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [103808 2008-01-22] ()
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-03] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604824 2018-06-05] (McAfee, Inc.)
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
S4 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640 2010-04-17] (NTI, Inc.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [60416 2009-06-22] (Hewlett-Packard) [File not signed]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe [81968 2016-02-23] (SiSoftware) [File not signed]
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\Sh4Service.exe [889016 2018-06-18] (Enigma Software Group USA, LLC.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1000824 2018-05-14] (McAfee, LLC.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2018-05-14] (McAfee, LLC.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2018-05-14] (McAfee, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe [473824 2017-05-05] (Wondershare)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone toolkit for iOS\Library\DriverInstaller\DriverInstall.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [196640 2018-06-17] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [227504 2018-06-17] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199440 2018-06-17] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343752 2018-06-17] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57680 2018-06-17] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [234560 2018-06-17] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-06-17] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [159120 2018-06-17] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111360 2018-06-17] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85968 2018-06-17] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027720 2018-06-17] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460520 2018-06-17] (AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [205976 2018-06-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381552 2018-06-17] (AVAST Software)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2018-06-18] ()
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-06-19] (Malwarebytes)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-06-16] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-06-16] (Zemana Ltd.)
S3 cpuz134; ??\C:\Users\Ole\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-19 12:49 - 2018-06-19 12:49 - 00026856 _____ C:\Users\Ole\Desktop\FRST.txt
2018-06-19 12:45 - 2018-06-19 12:45 - 02413056 _____ (Farbar) C:\Users\Ole\Downloads\FRST64 (2).exe
2018-06-19 12:45 - 2018-06-19 12:45 - 02413056 _____ (Farbar) C:\Users\Ole\Downloads\FRST64 (1).exe
2018-06-18 19:29 - 2018-06-18 19:29 - 00017968 _____ C:\Users\Ole\Desktop\HitmanPro_20180618_1929.log
2018-06-18 19:25 - 2018-06-18 19:25 - 00003314 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2018-06-18 19:25 - 2018-06-18 19:25 - 00001051 _____ C:\Users\Ole\Desktop\SpyHunter.lnk
2018-06-18 19:25 - 2018-06-18 19:25 - 00000000 ____D C:\sh4ldr
2018-06-18 19:25 - 2018-06-18 19:25 - 00000000 ____D C:\ProgramData\Enigma Software Group
2018-06-18 19:24 - 2018-06-18 19:24 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2018-06-18 19:24 - 2018-06-18 19:24 - 00000000 ____D C:\Program Files\Enigma Software Group
2018-06-18 19:22 - 2018-06-18 19:22 - 05800224 _____ (Enigma Software Group USA, LLC.) C:\Users\Ole\Desktop\SpyHunter-Installer.exe
2018-06-18 15:29 - 2018-06-18 15:29 - 00001495 _____ C:\Users\Ole\Desktop\kk.txt
2018-06-18 15:23 - 2018-06-19 12:43 - 00253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-06-18 15:23 - 2018-06-18 19:00 - 00152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-06-18 15:23 - 2018-06-18 15:23 - 00001831 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-06-18 15:23 - 2018-06-18 15:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-06-18 15:15 - 2018-06-17 12:14 - 00376536 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-06-18 15:00 - 2018-06-18 15:00 - 74288784 _____ (Malwarebytes ) C:\Users\Ole\Desktop\mb3-setup-1878.1878-3.5.1.2522.exe
2018-06-17 19:56 - 2018-06-17 19:56 - 00001843 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2018-06-17 19:56 - 2018-06-17 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2018-06-17 19:56 - 2018-06-17 19:56 - 00000000 ____D C:\Program Files\HitmanPro
2018-06-17 19:49 - 2018-06-17 20:06 - 00000000 ____D C:\ProgramData\HitmanPro
2018-06-17 19:48 - 2018-06-17 19:48 - 11609024 _____ (SurfRight B.V.) C:\Users\Ole\Desktop\hitmanpro_x64.exe
2018-06-17 17:49 - 2018-06-17 17:49 - 01137360 _____ (F-Secure Corporation) C:\Users\Ole\Downloads\fsbl.exe
2018-06-17 17:14 - 2018-06-17 17:14 - 07248800 _____ (TweakNow.com ) C:\Users\Ole\Downloads\RegCleaner736 (1).exe
2018-06-17 17:09 - 2018-06-17 17:09 - 15835744 _____ (Piriform Ltd) C:\Users\Ole\Downloads\ccsetup543pro.exe
2018-06-17 17:09 - 2018-06-17 17:09 - 00003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-06-17 12:17 - 2018-06-17 12:17 - 00002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-06-17 12:17 - 2018-06-17 12:17 - 00002474 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2018-06-17 12:16 - 2018-06-17 12:16 - 00003408 _____ C:\Windows\System32\Tasks\AvastUpdateTaskMachineUA
2018-06-17 12:16 - 2018-06-17 12:16 - 00003280 _____ C:\Windows\System32\Tasks\AvastUpdateTaskMachineCore
2018-06-17 12:16 - 2018-06-17 12:16 - 00000000 ____D C:\Users\Ole\AppData\Local\AVAST Software
2018-06-17 12:16 - 2018-06-17 12:16 - 00000000 ____D C:\Program Files (x86)\AVAST Software
2018-06-17 12:14 - 2018-06-18 15:15 - 00003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-06-17 12:14 - 2018-06-18 15:15 - 00001886 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2018-06-17 12:14 - 2018-06-17 12:14 - 00460520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-06-17 12:14 - 2018-06-17 12:14 - 00381552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-06-17 12:14 - 2018-06-17 12:14 - 00205976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-06-17 12:14 - 2018-06-17 12:14 - 00196640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-06-17 12:14 - 2018-06-17 12:14 - 00159120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-06-17 12:14 - 2018-06-17 12:14 - 00111360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-06-17 12:14 - 2018-06-17 12:14 - 00085968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-06-17 12:14 - 2018-06-17 12:14 - 00046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-06-17 12:14 - 2018-06-17 12:14 - 00000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-06-17 12:14 - 2018-06-17 12:14 - 00000000 ____D C:\Users\Ole\AppData\Roaming\AVAST Software
2018-06-17 12:14 - 2018-06-17 12:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-06-17 12:14 - 2018-06-17 12:14 - 00000000 ____D C:\Program Files\Common Files\AVAST Software
2018-06-17 12:14 - 2018-06-17 12:13 - 01027720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-06-17 12:14 - 2018-06-17 12:13 - 00343752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-06-17 12:14 - 2018-06-17 12:13 - 00234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-06-17 12:14 - 2018-06-17 12:13 - 00227504 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-06-17 12:14 - 2018-06-17 12:13 - 00199440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-06-17 12:14 - 2018-06-17 12:13 - 00057680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-06-17 12:13 - 2018-06-17 18:31 - 00000000 ____D C:\ProgramData\AVAST Software
2018-06-17 12:13 - 2018-06-17 12:13 - 00000000 ____D C:\Program Files\AVAST Software
2018-06-17 12:12 - 2018-06-17 12:12 - 06334880 _____ (AVAST Software) C:\Users\Ole\Desktop\avast_free_antivirus_setup_online.exe
2018-06-16 19:53 - 2018-06-16 19:53 - 00000000 _____ C:\autoexec.bat
2018-06-16 19:28 - 2018-06-19 12:49 - 00109510 _____ C:\Windows\ZAM.krnl.trace
2018-06-16 19:28 - 2018-06-19 12:49 - 00028935 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-06-16 19:28 - 2018-06-16 19:28 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2018-06-16 19:28 - 2018-06-16 19:28 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys
2018-06-16 19:28 - 2018-06-16 19:28 - 00001152 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2018-06-16 19:28 - 2018-06-16 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2018-06-16 19:28 - 2018-06-16 19:28 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-06-16 19:27 - 2018-06-16 19:27 - 00000000 ____D C:\Users\Ole\AppData\Local\Zemana
2018-06-13 14:19 - 2018-05-29 22:36 - 00396960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-06-13 14:19 - 2018-05-29 21:40 - 00348824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-06-13 14:19 - 2018-05-29 04:43 - 00631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-06-13 14:19 - 2018-05-29 04:41 - 05577408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-06-13 14:19 - 2018-05-29 04:41 - 00708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-06-13 14:19 - 2018-05-29 04:41 - 00262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-06-13 14:19 - 2018-05-29 04:41 - 00154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-06-13 14:19 - 2018-05-29 04:41 - 00095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-06-13 14:19 - 2018-05-29 04:35 - 01665336 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 04050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-06-13 14:19 - 2018-05-29 04:32 - 03962048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-06-13 14:19 - 2018-05-29 04:32 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 01211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:25 - 01314064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:03 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-06-13 14:19 - 2018-05-29 04:03 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-06-13 14:19 - 2018-05-29 04:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-06-13 14:19 - 2018-05-29 04:03 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-06-13 14:19 - 2018-05-29 04:03 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-06-13 14:19 - 2018-05-29 03:59 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-06-13 14:19 - 2018-05-29 03:59 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-06-13 14:19 - 2018-05-29 03:58 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-06-13 14:19 - 2018-05-29 03:58 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 03:58 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 03:58 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 03:58 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 03:56 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-06-13 14:19 - 2018-05-29 03:55 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-06-13 14:19 - 2018-05-29 03:55 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-06-13 14:19 - 2018-05-29 03:54 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-06-13 14:19 - 2018-05-29 03:54 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-06-13 14:19 - 2018-05-29 02:04 - 00634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-06-13 14:19 - 2018-05-25 07:10 - 25742848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-06-13 14:19 - 2018-05-25 06:59 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-06-13 14:19 - 2018-05-25 06:59 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-06-13 14:19 - 2018-05-25 06:46 - 02902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-06-13 14:19 - 2018-05-25 06:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-06-13 14:19 - 2018-05-25 06:44 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-06-13 14:19 - 2018-05-25 06:44 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-06-13 14:19 - 2018-05-25 06:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-06-13 14:19 - 2018-05-25 06:43 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-06-13 14:19 - 2018-05-25 06:38 - 05779968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-06-13 14:19 - 2018-05-25 06:37 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-06-13 14:19 - 2018-05-25 06:36 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-06-13 14:19 - 2018-05-25 06:34 - 20286976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-06-13 14:19 - 2018-05-25 06:33 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-06-13 14:19 - 2018-05-25 06:32 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-06-13 14:19 - 2018-05-25 06:32 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-06-13 14:19 - 2018-05-25 06:32 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-06-13 14:19 - 2018-05-25 06:32 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-06-13 14:19 - 2018-05-25 06:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-06-13 14:19 - 2018-05-25 06:24 - 00969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-06-13 14:19 - 2018-05-25 06:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-06-13 14:19 - 2018-05-25 06:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-06-13 14:19 - 2018-05-25 06:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-06-13 14:19 - 2018-05-25 06:15 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-06-13 14:19 - 2018-05-25 06:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-06-13 14:19 - 2018-05-25 06:14 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-06-13 14:19 - 2018-05-25 06:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-06-13 14:19 - 2018-05-25 06:14 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-06-13 14:19 - 2018-05-25 06:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-06-13 14:19 - 2018-05-25 06:12 - 02295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-06-13 14:19 - 2018-05-25 06:10 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-06-13 14:19 - 2018-05-25 06:10 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-06-13 14:19 - 2018-05-25 06:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-06-13 14:19 - 2018-05-25 06:08 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-06-13 14:19 - 2018-05-25 06:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-06-13 14:19 - 2018-05-25 06:07 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-06-13 14:19 - 2018-05-25 06:06 - 00662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-06-13 14:19 - 2018-05-25 06:06 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-06-13 14:19 - 2018-05-25 06:05 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-06-13 14:19 - 2018-05-25 06:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-06-13 14:19 - 2018-05-25 05:57 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-06-13 14:19 - 2018-05-25 05:57 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-06-13 14:19 - 2018-05-25 05:55 - 00809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-06-13 14:19 - 2018-05-25 05:55 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-06-13 14:19 - 2018-05-25 05:53 - 15283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-06-13 14:19 - 2018-05-25 05:53 - 02135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-06-13 14:19 - 2018-05-25 05:53 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-06-13 14:19 - 2018-05-25 05:52 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-06-13 14:19 - 2018-05-25 05:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-06-13 14:19 - 2018-05-25 05:51 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-06-13 14:19 - 2018-05-25 05:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-06-13 14:19 - 2018-05-25 05:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-06-13 14:19 - 2018-05-25 05:47 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-06-13 14:19 - 2018-05-25 05:45 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-06-13 14:19 - 2018-05-25 05:42 - 04496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-06-13 14:19 - 2018-05-25 05:40 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-06-13 14:19 - 2018-05-25 05:39 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-06-13 14:19 - 2018-05-25 05:39 - 00696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-06-13 14:19 - 2018-05-25 05:38 - 13679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-06-13 14:19 - 2018-05-25 05:38 - 02060288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-06-13 14:19 - 2018-05-25 05:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-06-13 14:19 - 2018-05-25 05:29 - 01546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-06-13 14:19 - 2018-05-25 05:19 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-06-13 14:19 - 2018-05-25 05:17 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-06-13 14:19 - 2018-05-25 05:15 - 01314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-06-13 14:19 - 2018-05-25 05:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-06-13 14:19 - 2018-05-15 06:16 - 01681088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-06-13 14:19 - 2018-05-15 05:44 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2018-06-13 14:19 - 2018-05-15 05:44 - 01159680 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2018-06-13 14:19 - 2018-05-15 05:44 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-06-13 14:19 - 2018-05-15 05:44 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2018-06-13 14:19 - 2018-05-15 05:24 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2018-06-13 14:19 - 2018-05-15 05:23 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2018-06-13 14:19 - 2018-05-15 05:13 - 03207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2018-06-13 14:19 - 2018-05-15 05:13 - 00782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2018-06-13 14:19 - 2018-05-15 05:13 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-06-13 14:19 - 2018-05-15 05:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2018-06-13 14:19 - 2018-05-15 05:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2018-06-13 14:19 - 2018-05-15 05:01 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2018-06-13 14:19 - 2018-05-15 03:20 - 00467856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-06-13 14:19 - 2018-05-15 03:20 - 00459632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-06-13 14:19 - 2018-05-12 04:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2018-06-13 14:19 - 2018-05-12 04:07 - 00033152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2018-06-13 14:19 - 2018-05-12 04:07 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2018-06-13 14:19 - 2018-05-11 23:19 - 00977408 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-06-13 14:19 - 2018-05-11 23:19 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2018-06-13 14:19 - 2018-05-11 23:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-06-13 14:19 - 2018-05-11 02:40 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-06-13 14:19 - 2018-05-11 02:40 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-06-13 14:19 - 2018-05-11 02:39 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2018-06-13 14:19 - 2018-04-06 18:39 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-06-13 14:19 - 2018-04-06 18:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-06-01 20:37 - 2018-06-01 20:38 - 160866848 _____ C:\Users\Ole\Desktop\GMT20180601-110106_Live-webin_640x360.mp4
2018-06-01 12:41 - 2018-06-01 12:41 - 00000000 ____D C:\Users\Ole\AppData\Roaming\Zoom
2018-06-01 12:41 - 2018-06-01 12:41 - 00000000 ____D C:\Users\Ole\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2018-05-31 21:19 - 2018-05-31 21:19 - 00133640 _____ (Zoom Video Communications, Inc.) C:\Users\Ole\Desktop\Zoom_launcher.exe
2018-05-28 18:10 - 2018-05-28 18:10 - 00000000 ____D C:\Users\Ole\AppData\Roaming\Apowersoft
2018-05-28 18:10 - 2018-05-28 18:10 - 00000000 ____D C:\Users\Ole\AppData\Local\Apowersoft
2018-05-28 18:10 - 2018-05-28 18:10 - 00000000 ____D C:\ProgramData\Apowersoft

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-19 12:49 - 2014-06-10 16:59 - 00000000 ____D C:\FRST
2018-06-19 12:49 - 2013-12-19 04:14 - 00509370 _____ C:\Windows\system32\perfh006.dat
2018-06-19 12:49 - 2013-12-19 04:14 - 00098648 _____ C:\Windows\system32\perfc006.dat
2018-06-19 12:49 - 2009-07-14 07:13 - 01378836 _____ C:\Windows\system32\PerfStringBackup.INI
2018-06-19 12:48 - 2013-12-18 19:22 - 01622113 _____ C:\Windows\WindowsUpdate.log
2018-06-19 12:42 - 2017-10-07 09:30 - 00014054 _____ C:\Windows\setupact.log
2018-06-19 12:42 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2018-06-18 20:01 - 2009-07-14 06:45 - 00025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-06-18 20:01 - 2009-07-14 06:45 - 00025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-06-18 15:22 - 2017-10-08 08:01 - 00013000 _____ C:\Windows\PFRO.log
2018-06-18 15:21 - 2015-01-05 12:41 - 00000000 ____D C:\Users\Ole\AppData\Local\CrashDumps
2018-06-18 15:06 - 2014-06-09 15:26 - 00000000 ____D C:\Program Files\CCleaner
2018-06-18 15:01 - 2014-03-10 18:18 - 00000000 ____D C:\ProgramData\Malwarebytes
2018-06-17 17:16 - 2017-09-09 16:54 - 00001098 _____ C:\Users\Public\Desktop\TweakNow RegCleaner.lnk
2018-06-17 17:16 - 2017-09-09 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakNow RegCleaner
2018-06-17 17:16 - 2017-09-09 16:54 - 00000000 ____D C:\Program Files (x86)\TweakNow RegCleaner
2018-06-17 17:16 - 2014-01-03 17:29 - 00000000 ____D C:\Users\Ole\AppData\Roaming\TweakNow RegCleaner 2012
2018-06-17 17:09 - 2014-06-09 15:26 - 00000786 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-06-17 08:21 - 2014-06-09 15:40 - 00000000 ____D C:\AdwCleaner
2018-06-16 19:52 - 2013-12-18 19:48 - 00000000 ____D C:\Users\Ole
2018-06-15 13:34 - 2013-12-21 09:00 - 00000000 ____D C:\Windows\system32\MRT
2018-06-15 13:31 - 2017-08-30 17:14 - 00003830 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1504106056
2018-06-15 13:31 - 2017-08-30 17:13 - 00000000 ____D C:\Program Files\Opera
2018-06-15 13:30 - 2017-10-11 16:57 - 133315992 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-06-15 13:30 - 2013-12-21 09:00 - 133315992 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-06-14 12:28 - 2015-01-26 22:07 - 00002240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-14 12:28 - 2015-01-26 22:07 - 00002199 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-06-09 16:13 - 2017-04-23 18:36 - 00004466 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-06-09 16:13 - 2015-07-17 17:35 - 00004312 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-06-09 16:13 - 2013-12-21 09:20 - 00842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-06-09 16:13 - 2013-12-21 09:20 - 00175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-06-09 16:13 - 2013-12-21 09:20 - 00000000 ____D C:\Windows\system32\Macromed
2018-06-09 16:13 - 2010-09-16 01:32 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2018-06-07 20:53 - 2018-03-14 14:41 - 00004454 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-31 09:01 - 2014-03-08 18:21 - 00000000 ____D C:\Users\Ole\AppData\Roaming\Skype
2018-05-30 17:45 - 2017-04-23 18:36 - 00000000 ____D C:\Program Files\TrueKey
2018-05-27 09:46 - 2017-04-23 18:50 - 00001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2018-05-27 09:46 - 2017-04-23 18:50 - 00001115 _____ C:\Users\Public\Desktop\True Key.lnk

==================== Files in the root of some directories =======

2016-08-12 12:29 - 2016-08-12 12:33 - 15392768 _____ () C:\Users\Ole\AppData\Roaming\Sandra.mdb
2016-05-14 13:21 - 2016-05-14 13:21 - 0000057 _____ () C:\ProgramData\Ament.ini
2010-09-16 01:41 - 2010-03-03 00:59 - 0131984 _____ () C:\ProgramData\FullRemove.exe

Some files in TEMP:

C:\Users\Ole\AppData\Local\Temp\Quarantine.exe
C:\Users\Ole\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Ole\AppData\Local\Temp\sqlite3.dll
C:\Users\Onicha\AppData\Local\Temp\avgnt.exe
C:\Users\Onicha\AppData\Local\Temp\SkypeSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-30 19:23

==================== End of log ============================


(osh) #8

Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by Ole at 2018-06-19 12:50:29
Running from C:\Users\Ole\Desktop
Boot Mode: Normal

==================== Accounts: =============================

Administrator (S-1-5-21-944301883-4089375509-3149596369-500 - Administrator - Disabled)
Gæst (S-1-5-21-944301883-4089375509-3149596369-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-944301883-4089375509-3149596369-1005 - Limited - Enabled)
Ole (S-1-5-21-944301883-4089375509-3149596369-1001 - Administrator - Enabled) => C:\Users\Ole

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with “hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Backup Manager (HKLM-x32…\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Acer Crystal Eye Webcam (HKLM-x32…{7760D94E-B1B5-40A0-9AA0-ABF942108755}) (Version: 5.2.19.3 - Suyin Optronics Corp)
Acer ePower Management (HKLM-x32…{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32…{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acer GameZone Console (HKLM-x32…{58F4D244-314F-4D26-B5EF-C28AB32E22CB}is1) (Version: 6.1.0.9 - Oberon Media, Inc.)
Acer Registration (HKLM-x32…\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32…\Acer Screensaver) (Version: 1.1.0423.2010 - Acer Incorporated)
Acrobat.com (HKLM-x32…{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32…\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 30 ActiveX (HKLM-x32…\Adobe Flash Player ActiveX) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32…\Adobe Flash Player NPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Adobe Flash Player 30 PPAPI (HKLM-x32…\Adobe Flash Player PPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM-x32…\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
Adobe Reader 9.5.5 MUI (HKLM-x32…{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32…\Adobe Shockwave Player) (Version: 12.1.9.159 - Adobe Systems, Inc.)
Airport Mania First Flight (HKLM-x32…{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}) (Version: - Oberon Media)
Alcor Micro USB Card Reader (HKLM-x32…\InstallShield
{DD89CE29-BC88-40C6-A845-E2548682C5D6}) (Version: 1.9.17.06019 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.9.17.06019 - Alcor Micro Corp.) Hidden
ALPS Touch Pad Driver (HKLM…{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.105.2015.1107 - Alps Electric)
Amazonia (HKLM-x32…{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}) (Version: - Oberon Media)
Apple Mobile Device Support (HKLM…{E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5}) (Version: 11.0.0.30 - Apple Inc.)
Apple Software Update (HKLM-x32…{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Apple Software Update (HKLM-x32…{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
Apple-programunderstøttelse (32 bit) (HKLM-x32…{3D1290E6-1F77-46D5-A715-A56679C8D4E3}) (Version: 6.0.2 - Apple Inc.)
Apple-programunderstøttelse (64 bit) (HKLM…{D0E45DEC-F4B9-4370-A9DF-66837789C2EF}) (Version: 6.0.2 - Apple Inc.)
Avast Free Antivirus (HKLM-x32…\Avast Antivirus) (Version: 18.4.2338 - AVAST Software)
Avast Secure Browser (HKLM-x32…\Avast Secure Browser) (Version: 66.2.567.181 - AVAST Software)
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
Bing Bar (HKLM-x32…{449CE12D-E2C7-4B97-B19E-55D163EA9435}) (Version: 7.0.619.0 - Microsoft Corporation)
Bonjour (HKLM…{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Gigabit NetLink Controller (HKLM…{A84DB02B-9C2B-4272-9D2D-A80E00A56513}) (Version: 14.2.4.2 - Broadcom Corporation)
Cake Mania (HKLM-x32…{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}) (Version: - Oberon Media)
CameraHelperMsi (x32 Version: 13.50.854.0 - Logitech) Hidden
Canon iP3600 series Brugerregistrering (HKLM-x32…\Canon iP3600 series Brugerregistrering) (Version: - )
Canon iP3600 series Printer Driver (HKLM…{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}Canon_iP3600_series) (Version: - )
Canon Pro9500 II series Printer Driver (HKLM…{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}Canon_Pro9500_II_series) (Version: - Canon Inc.)
CCleaner (HKLM…\CCleaner) (Version: 5.43 - Piriform)
CPUID HWMonitor Pro 1.23 (HKLM…\CPUID HWMonitorPro_is1) (Version: - )
CyberLink PowerDVD 9 (HKLM-x32…\InstallShield
{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3216.50 - CyberLink Corp.)
Danske Spil Poker (HKLM-x32…\DanskeSpilPoker) (Version: - DanskeSpil)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
eSobi v2 (HKLM-x32…\InstallShield
{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
EZCast (HKLM-x32…{74CECDD9-4B8E-4AE3-9571-8070A17F3C34}) (Version: 2.4.0.49 - Actions-Micro)
Facebook Video Calling 3.1.0.521 (HKLM-x32…{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Google Chrome (HKLM-x32…\Google Chrome) (Version: 67.0.3396.87 - Google Inc.)
Google Earth Pro (HKLM…{D9EF644E-2FAE-493B-8180-5617CC774C4F}) (Version: 7.3.1.4507 - Google)
Google Toolbar for Internet Explorer (HKLM-x32…{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.33.17 - Google Inc.) Hidden
HitmanPro 3.8 (HKLM…\HitmanPro38) (Version: 3.8.0.294 - SurfRight B.V.)
HP Envy 100 D410 series - basissoftware til enheden (HKLM…{D14C4E95-DDDB-45C1-B05A-30EC2E0A65A2}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Envy 100 D410 series Hjælp (HKLM-x32…{749EC8D6-EE79-47FA-B13D-E87A6E3855E8}) (Version: 140.0.32.32 - Hewlett Packard)
HP Photo Creations (HKLM-x32…\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Support Solutions Framework (HKLM-x32…{CA1481E4-16C7-4A3D-B56A-3F800E43D9FE}) (Version: 12.9.18.3 - HP)
HP Update (HKLM-x32…{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Identity Card (HKLM-x32…\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
iMyFone Umate 5.1.0.3 (HKLM-x32…{5284F901-9F62-4462-A0E6-2E4373A64454}is1) (Version: 5.1.0.3 - Shenzhen iMyFone Technology Co., Ltd.)
Inkjet Printer/Scanner Extended Survey Program (HKLM-x32…\CANONIJPLM100) (Version: - )
Intel® Graphics Media Accelerator Driver (HKLM-x32…{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2119 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32…{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32…{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
iSumsoft Windows Password Refixer Personal Trial 3.1.2 (HKLM-x32…\iSumsoft Windows Password Refixer Personal Trial) (Version: 3.1.2 - iSumsoft)
iTunes (HKLM…{DF9D1F29-B8BE-485B-8215-92FD503D2E6D}) (Version: 12.7.0.166 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM…{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 31 (HKLM-x32…{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Junk Mail filter update (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Karen’s Replicator (HKLM-x32…\Karen’s Replicator) (Version: 3.6.0.9 - Karen Kenworthy)
Kompatibilitetspakke til Office 2007-systemet (HKLM-x32…{90120000-0020-0406-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Launch Manager (HKLM-x32…\LManager) (Version: 4.0.14 - Acer Inc.)
LINE (HKU\S-1-5-21-944301883-4089375509-3149596369-1001…\LINE) (Version: 4.10.1.1256 - LINE Corporation)
Logitech Webcam Software (HKLM-x32…{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
Malwarebytes version 3.5.1.2522 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}is1) (Version: 3.5.1.2522 - Malwarebytes)
McAfee True Key (HKLM…\TrueKey) (Version: 5.0.150.1 - McAfee)
McAfee WebAdvisor (HKLM-x32…{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.7.203 - McAfee, Inc.)
Microsoft .NET Framework 4.7.1 (dansk) (HKLM…{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1030) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM…{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Download Manager (HKLM-x32…{654977DB-0001-0002-0001-EABD228DDE8B}) (Version: 1.2.1 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32…{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32…{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32…{90110406-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM…{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM…{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32…{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32…{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MyWinLocker (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32…\InstallShield
{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
Norton Online Backup (HKLM-x32…{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
NTI Backup Now 5 (HKLM-x32…\InstallShield
{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.630 - NewTech Infosystems)
NTI Backup Now Standard (x32 Version: 5.1.2.630 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM-x32…\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6636 - NewTech Infosystems)
NTI Media Maker 8 (x32 Version: 8.0.12.6636 - NewTech Infosystems) Hidden
Opera Stable 53.0.2907.99 (HKLM-x32…\Opera 53.0.2907.99) (Version: 53.0.2907.99 - Opera Software)
Realtek High Definition Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Samsung Data Migration (HKLM-x32…{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.1 - Samsung)
Samsung Kies3 (HKLM-x32…\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16011.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.16011.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Magician (HKLM-x32…{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM…{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden
SignCut (HKLM-x32…\SignCut) (Version: 1.96 - Whisqu Graphic AB)
SiSoftware Sandra Lite 2016.SP1 (HKLM…{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}is1) (Version: 22.20.2016.3 - SiSoftware)
Skype Click to Call (HKLM-x32…{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.40 (HKLM-x32…{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Smart Switch (HKLM-x32…\InstallShield
{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16052.2 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.1.16052.2 - Samsung Electronics Co., Ltd.) Hidden
SpyHunter 4 (HKLM-x32…\SpyHunter) (Version: 4.28.7.4850 - Enigma Software Group, LLC)
StofaWebTvPlayer (HKLM-x32…{5AE2ECFD-8211-44C0-87A1-564BB32FF08D}) (Version: 3.13.1.7173 - Stofa A/S)
SUPERAntiSpyware (HKLM…{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 9 (HKLM-x32…\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
TweakNow RegCleaner (HKLM-x32…\TweakNow RegCleaner_is1) (Version: 7.3.6 - TweakNow.com)
TweakNow RegCleaner 2012 (HKLM-x32…\TweakNow RegCleaner 2012_is1) (Version: 7.2.1 - TweakNow.com)
ViewRight Web PC (HKLM-x32…{0AEF5F93-DE30-4D0A-A879-B3BB72000F52}) (Version: 2.1.2.3 - Verimatrix, Inc.)
Welcome Center (HKLM-x32…\Acer Welcome Center) (Version: 1.02.3004 - Acer Incorporated)
Windows Live Essentials (HKLM-x32…\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Sync (HKLM-x32…{02B8DBC1-7312-43AF-8BA7-9F29CDD6B348}) (Version: 14.0.8117.416 - Microsoft Corporation)
Zemana AntiMalware (HKLM-x32…{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)
Zoom (HKU\S-1-5-21-944301883-4089375509-3149596369-1001…\ZoomUMX) (Version: 4.1 - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2017-10-08 07:31 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00B85494-EA24-4966-BFCD-5C3A61B70583} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-11-16] (Microsoft Corporation)
Task: {022FC4B2-E8DB-4256-8168-65FFE8B7E4DB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_113_pepper.exe [2018-06-09] (Adobe Systems Incorporated)
Task: {08DFB0F0-6CC1-4CD1-A9AC-60EC3308DF96} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-05-24] (Piriform Ltd)
Task: {0BEC3FD7-2DF3-4F56-BEAC-3C14235384BB} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_113_Plugin.exe [2018-06-07] (Adobe Systems Incorporated)
Task: {14F04A88-4BDD-481E-889E-20D23B14C7FE} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => C:\Windows\system32\GWX\GWX.exe
Task: {196F8CC7-91C6-4872-9F8B-E6B3A1C05832} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-06-17] (AVAST Software)
Task: {21C2EA1C-8BE6-4D53-9FD7-75A6AFB8B563} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2018-06-18] (Enigma Software Group USA, LLC.)
Task: {22FD8DD2-83F6-4FAF-A9E7-17B0690FD984} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => C:\Windows\system32\GWX\GWX.exe
Task: {2C9EF1CF-6FB9-4F95-A102-07B47ADE9C67} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {39118FCA-CB97-47FC-8412-2FDF3D91E94F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-06-17] (AVAST Software)
Task: {44DB5E9E-438A-43D8-967A-F7AE39A302F1} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d
Task: {4C494699-E012-41E4-9F47-12F8B22CFC52} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-07-24] (Apple Inc.)
Task: {5082581B-2071-4BAE-B46F-7E65AF33DBDF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-05-24] (Piriform Ltd)
Task: {5572B5C0-3425-4FC5-B808-18DFFD6D652D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => C:\Windows\system32\GWX\GWXConfigManager.exe
Task: {5D02727B-9E0E-4CC6-9887-2100BE132B28} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {6E4D088B-A375-4736-A6C9-F20B7F3D15B5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Time-5d => C:\Windows\system32\GWX\GWX.exe
Task: {6E4FF7BD-8357-4EE6-845E-D0A4ADE9E1AA} - System32\Tasks\Opera scheduled Autoupdate 1504106056 => C:\Program Files\Opera\launcher.exe [2018-06-12] (Opera Software)
Task: {81458E71-9CDF-469C-A7B1-DC0D2A7120B1} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-06-18] (AVAST Software)
Task: {8BA70BD6-C691-4D76-955D-12D0E552E575} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {9CCA5449-2D18-4951-B201-A1FF4E00F6DF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {AE8190D0-EDD9-48D9-9C1F-523C5A80C472} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle No Task File <==== ATTENTION
Task: {BB758013-F3CD-40EF-9427-3560B02BA3CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {BDF9F589-D41D-4BFC-A711-2A0DE1B4CCBB} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-06-17] (AVAST Software)
Task: {D755228D-C406-43DC-B885-B6C63C3BD978} - \Microsoft\Windows\Setup\GWXTriggers\Logon No Task File <==== ATTENTION
Task: {D8EF13B0-9B51-4CF5-A910-529258ED0106} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-06-09] (Adobe Systems Incorporated)
Task: {EB72317E-940C-4EB7-AD37-9B53C42CC54B} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2018-03-14] (Microsoft Corporation)

==================== Loaded Modules (Whitelisted) ==============

2017-09-01 02:49 - 2017-09-01 02:49 - 01356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-09-01 02:49 - 2017-09-01 02:49 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-06-18 15:23 - 2018-06-18 19:00 - 02297040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-06-16 19:28 - 2018-06-16 19:28 - 00155504 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2013-12-18 19:28 - 2010-06-09 19:54 - 00206208 _____ () C:\Windows\PLFSetI.exe
2017-09-11 14:45 - 2017-09-11 14:45 - 01356088 _____ () C:\Program Files\iTunes\libxml2.dll
2017-09-11 14:45 - 2017-09-11 14:45 - 00092472 _____ () C:\Program Files\iTunes\zlib1.dll
2018-04-30 13:20 - 2018-04-30 13:20 - 00061408 _____ () C:\Program Files\CCleaner\branding.dll
2018-05-24 19:51 - 2018-05-24 19:51 - 00085832 _____ () C:\Program Files\CCleaner\lang\lang-1030.dll
2018-06-14 12:28 - 2018-06-12 07:36 - 04608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.87\libglesv2.dll
2018-06-14 12:28 - 2018-06-12 07:36 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.87\libegl.dll
2018-06-17 12:13 - 2018-06-17 12:13 - 00482520 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-06-18 19:23 - 2018-06-18 19:23 - 05842576 _____ () C:\Program Files\AVAST Software\Avast\defs\18061804\algo.dll
2018-06-17 12:13 - 2018-06-17 12:13 - 00889048 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-06-17 12:14 - 2018-06-17 12:14 - 00924888 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-06-17 12:13 - 2018-06-17 12:13 - 00150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-06-17 12:13 - 2018-06-17 12:13 - 00982744 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-06-17 12:13 - 2018-06-17 12:13 - 00519896 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-06-19 12:43 - 2018-06-19 12:43 - 05842576 _____ () C:\Program Files\AVAST Software\Avast\defs\18061900\algo.dll
2010-06-29 00:20 - 2010-06-29 00:20 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2010-06-29 00:12 - 2010-06-29 00:12 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2018-06-17 12:14 - 2018-06-17 12:14 - 67126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-06-17 12:13 - 2018-06-17 12:13 - 00293592 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-10-17 16:37 - 2014-09-28 17:59 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:0B9176C0
AlternateDataStreams: C:\ProgramData\Temp:E36F5B57

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => “”=“Service”
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => “”=“Service”

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-944301883-4089375509-3149596369-1001\Control Panel\Desktop\Wallpaper -> C:\Users\Ole\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 212.10.10.4 - 212.10.10.5

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: NOBU => 2
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\startupreg: CCleaner Monitoring => “C:\Program Files\CCleaner\CCleaner64.exe” /MONITOR
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iTunesHelper => “C:\Program Files\iTunes\iTunesHelper.exe”

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D28BD9FE-7CF9-45A6-B998-DEE52D4F02F8}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{02D7460E-A7D8-4A2A-A18C-B5E78A4128BF}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{5857A0C9-22E8-4E56-B21E-C6C5A7AAE293}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{942D5A7A-7074-4261-AC9A-1F2A857F1F06}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{F90F9123-ECB5-42EE-8BE8-79E170112E8F}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{6DB31436-2B81-4DE7-984C-06D19AC50784}] => (Allow) svchost.exe
FirewallRules: [{7B9343BC-4981-43C7-BC02-EEFC7F66B50A}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{AE6C9589-235A-4A2A-96A4-4AE1D74DE412}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{13E8D8BA-9CA3-4C79-8C69-334E462A8313}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{906972D6-647D-4A49-A153-763FF20A6065}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{11E3106E-8308-488C-8DD7-40FF0C8D1B2C}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{38F036F7-17C2-47EE-A887-CFBC30578EF2}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{0A83A9CE-8A7D-4070-93FF-AFA74BE4E8C7}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{E507C844-0CF2-4D1A-ABAF-89FD609CDE64}C:\users\onicha\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Allow) C:\users\onicha\appdata\local\facebook\video\skype\facebookvideocalling.exe
FirewallRules: [UDP Query User{C3981132-7024-4D6B-9937-7ABBD73AAE92}C:\users\onicha\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Allow) C:\users\onicha\appdata\local\facebook\video\skype\facebookvideocalling.exe
FirewallRules: [TCP Query User{E982337B-90EA-4EA9-820F-6F31E156EDB3}C:\users\onicha\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Allow) C:\users\onicha\appdata\local\facebook\video\skype\facebookvideocalling.exe
FirewallRules: [UDP Query User{8DF53D0A-F2D9-4B18-B25A-C09B42343D99}C:\users\onicha\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Allow) C:\users\onicha\appdata\local\facebook\video\skype\facebookvideocalling.exe
FirewallRules: [{A0829927-4CAA-4C28-9F92-39E7EA47027A}] => (Allow) C:\Users\Ole\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{59857529-E0C4-4141-9BA9-5FA392E57D72}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{946E8C3B-FCDE-44FF-964B-C595F9EBB393}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C6291275-580F-4E75-8B6D-8709CB28D95C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6AA59922-69D3-48BA-A870-B8A9D9AFDB91}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{345FE1ED-EB0D-46E9-A123-517F1F06A995}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{E230B049-1FD9-4C53-9B49-D114AF8C15B4}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{F7342B05-25FE-491E-8FF6-77E08E781F92}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{74516D9A-75B3-46B9-BC75-49D8F732ECD8}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{6FC3A9CB-1062-4A82-80C7-FEE57A3907E4}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{49059FF9-2C83-41E8-A99F-A741509A1907}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{0C983515-BA6D-4C9D-AFFD-872E7B4AFA32}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{51343D84-4D22-477E-BEAE-EF8A400FA82E}] => (Allow) C:\Program Files\HP\HP Envy 100 D410 series\Bin\DeviceSetup.exe
FirewallRules: [{560A226A-2806-4751-8A15-6D28C4B230D6}] => (Allow) C:\Program Files\HP\HP Envy 100 D410 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{5026DBCD-3850-4775-89DB-548DE707A0F9}] => (Allow) C:\Program Files\HP\HP Envy 100 D410 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{F0B8B12A-785A-476C-BB93-D322B797D992}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe
FirewallRules: [{B6338BB3-791D-46C1-9097-0B7ECFDF5E80}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\RpcSandraSrv.exe
FirewallRules: [{F5E482A7-FCA6-48C7-AA7F-7CEE8C709D06}] => (Allow) C:\Users\Ole\AppData\Local\Line\bin\4.10.0.1236\LINE.exe
FirewallRules: [{1DAB619B-50B1-49E0-8D2C-AF9224994DB1}] => (Allow) C:\Users\Ole\AppData\Local\Line\bin\4.10.0.1236\LINE.exe
FirewallRules: [{8CD82069-F053-4086-BE45-26DD0588F861}] => (Allow) C:\Users\Ole\AppData\Local\Line\bin\4.10.0.1236\LineUpdater.exe
FirewallRules: [{2B0FB738-3E20-4D4B-9A3F-5BC4897DE554}] => (Allow) C:\Users\Ole\AppData\Local\Line\bin\4.10.0.1236\LineUpdater.exe
FirewallRules: [{B30B16C0-64BB-4536-A522-58B530A51CBC}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{58F47852-805E-403E-9337-429FEC811E57}] => (Allow) C:\Program Files (x86)\EZCast\EZCast.exe
FirewallRules: [{E3744904-714A-4AF6-BE7B-E75B3C67F169}] => (Allow) C:\Program Files (x86)\EZCast\EZScreen
FirewallRules: [TCP Query User{98E2D062-A56B-4629-B849-BF002BC747B4}C:\program files (x86)\wondershare\youtube-downloader\allmytube.exe] => (Block) C:\program files (x86)\wondershare\youtube-downloader\allmytube.exe
FirewallRules: [UDP Query User{E9C6289F-B183-4CCE-A7E7-70F27A12820C}C:\program files (x86)\wondershare\youtube-downloader\allmytube.exe] => (Block) C:\program files (x86)\wondershare\youtube-downloader\allmytube.exe
FirewallRules: [{AED23538-524C-4EDE-9B46-16EFA69E638E}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
FirewallRules: [{831CBBF9-A9B9-4070-97D8-3F433C3EB231}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
FirewallRules: [{AE74925E-A0C2-4B45-8F42-D66EE4889CCE}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll
FirewallRules: [{3BF1F153-9FC7-4C6B-9860-934537247722}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll
FirewallRules: [{E3BC4F4D-7872-49AC-A300-F0F9988C9C40}] => (Allow) C:\Program Files\Opera\53.0.2907.68\opera.exe
FirewallRules: [{35154718-9EA7-423F-BE45-DF8D42282443}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FEFA2CEB-DFED-4A8C-ABCF-73F3CB575155}] => (Allow) C:\Program Files\Opera\53.0.2907.99\opera.exe
FirewallRules: [{B5B61A69-71F7-4345-A34C-F53EE1A1AE9D}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{F4CF82DE-0FC3-47FD-8BEC-09891E0C9FFE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{B2932E27-05DD-4AF8-9F8A-064221A0CF14}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe

==================== Faulty Device Manager Devices =============

Name: Microsoft Teredo Tunneling-adapter
Description: Microsoft Teredo Tunneling-adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click “Update Driver” to update the drivers for this device.
On the “General Properties” tab of the device, click “Troubleshoot” to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:

Error: (06/18/2018 07:22:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper – Error 1316. Den angivne konto findes allerede.

Error: (06/18/2018 06:55:51 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper – Error 1316. Den angivne konto findes allerede.

Error: (06/18/2018 05:37:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1310

Error: (06/18/2018 05:37:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1310

Error: (06/18/2018 05:37:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/18/2018 05:02:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1311

Error: (06/18/2018 05:02:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1311

Error: (06/18/2018 05:02:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/18/2018 05:01:37 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper – Error 1316. Den angivne konto findes allerede.

Error: (06/18/2018 05:00:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5275392

System errors:

Error: (06/19/2018 00:51:51 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Enheden \Device\Ide\iaStor0 svarede ikke inden for timeoutperioden.

Error: (06/19/2018 00:42:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjenesten Wondershare Driver Install Service kunne ikke starte pga. følgende fejl:
%%2

Error: (06/18/2018 07:53:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjenesten Wondershare Driver Install Service kunne ikke starte pga. følgende fejl:
%%2

Error: (06/18/2018 07:27:37 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Der blev modtaget følgende alvorlige fejl: 40.

Error: (06/18/2018 07:27:37 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Der blev modtaget følgende alvorlige fejl: 70.

Error: (06/18/2018 06:57:26 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Enheden \Device\Ide\iaStor0 svarede ikke inden for timeoutperioden.

Error: (06/18/2018 06:57:24 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Enheden \Device\Ide\iaStor0 svarede ikke inden for timeoutperioden.

Error: (06/18/2018 06:57:22 PM) (Source: iaStor) (EventID: 9) (User: )
Description: Enheden \Device\Ide\iaStor0 svarede ikke inden for timeoutperioden.

Error: (06/18/2018 03:22:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjenesten Wondershare Driver Install Service kunne ikke starte pga. følgende fejl:
%%2

Error: (06/18/2018 03:08:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjenesten Wondershare Driver Install Service kunne ikke starte pga. følgende fejl:
%%2

Microsoft Office:

Error: (06/18/2018 07:22:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper – Error 1316. Den angivne konto findes allerede.
(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/18/2018 06:55:51 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper – Error 1316. Den angivne konto findes allerede.
(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/18/2018 05:37:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1310

Error: (06/18/2018 05:37:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1310

Error: (06/18/2018 05:37:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/18/2018 05:02:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1311

Error: (06/18/2018 05:02:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1311

Error: (06/18/2018 05:02:24 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/18/2018 05:01:37 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper – Error 1316. Den angivne konto findes allerede.
(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/18/2018 05:00:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5275392

CodeIntegrity Errors:

Date: 2018-05-01 18:44:12.799
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:44:12.027
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:44:11.126
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:44:09.985
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:44:09.092
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:44:07.944
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:44:06.366
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:44:05.289
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:44:04.472
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\DmNotificationBroker.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-05-01 18:41:40.427
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\PrintDialogHost3D.exe because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel® Pentium® CPU P6200 @ 2.13GHz
Percentage of memory in use: 61%
Total physical RAM: 3764.5 MB
Available physical RAM: 1455.52 MB
Total Pagefile: 7527.16 MB
Available Pagefile: 4584.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:465.66 GB) (Free:107.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 0CB428CE)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of log ============================


(osh) #9

Hej Det er ikke væk endnu ? det popper stadig op !!!


(f-arn) #10

Vil du godt afinstallere Java 8 Update 31, TweakNow RegCleaner og Zemana AntiMalware.

------

Deaktiver dine Sikkerheds programmer, mens “Fixet” kører.

Jeg vedhæfter Fixlist.txt (774 Bytes). Gem den på Skrivebordet ved siden af Farbar Recovery Scan Tool/Farbar Recovery Scan Tool x64 (FRST/FRST64).

Den skal ligge ved siden af FRST/FRST64 :exclamation:

Dette Fix blev skrevet specielt til denne bruger og til brug på denne PC.
Køres dette på en anden PC, kan det forårsage skade, og i værste fald vil PCen ikke starte
.

Start FRST/FRST64 (Farbar Recovery Scan Tool/Farbar Recovery Scan Tool x64) og klik på FIX (og vent til den er færdig)

Luk FRST/FRST64, og lad PCen genstarte.

Den laver Fixlog.txt, som du skal kopiere herind i dit næste indlæg.


Hvor ser du den virus :question:


(osh) #11

Undskyld jeg havde ikke set det sidste svar fra dig da jeg ikke har fået på min email, jeg prøver det nu, virussen popper op i højre side af skærmen og hedder (special news online)


(f-arn) #12

Er det i en Browser du ser den, og hvis der er, hvilken :question:


(osh) #13

google chrome browser


(osh) #14

Fix result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by Ole at 2018-06-21 20:19:03 Run:4
Running from C:\Users\Ole\Desktop
Loaded Profiles: Ole (Available Profiles: Ole)
Boot Mode: Normal

fixlist content:


start
CreateRestorePoint:
CloseProcesses:
Toolbar: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> No Name - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - No File
DPF: HKLM {B479199A-1242-4E3C-AD81-7F0DF801B4AE} http://download.microsoft.com/download/C/9/C/C9C3D86D-84AC-4AF0-8584-842756A66467/MicrosoftDownloadManager.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
FF Extension: No Name - C:\ProgramData\Wondershare\AllMyTube\AllMyTube@Wondershare.com_xpi\ [not found]
S3 cpuz134; ??\C:\Users\Ole\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
AlternateDataStreams: C:\ProgramData\Temp:0B9176C0
AlternateDataStreams: C:\ProgramData\Temp:E36F5B57
cmd: ipconfig /flushdns
EmptyTemp:
end


Error: (0) Failed to create a restore point.
Processes closed successfully.
HKU\S-1-5-21-944301883-4089375509-3149596369-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} => value removed successfully
HKCR\CLSID{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} => key not found.
“HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units{B479199A-1242-4E3C-AD81-7F0DF801B4AE}” => key removed successfully
HKCR\CLSID{B479199A-1242-4E3C-AD81-7F0DF801B4AE} => key not found.
“HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units{D27CDB6E-AE6D-11CF-96B8-444553540000}” => key removed successfully
“HKCR\CLSID{D27CDB6E-AE6D-11CF-96B8-444553540000}” => key removed successfully
C:\ProgramData\Wondershare\AllMyTube\AllMyTube@Wondershare.com_xpi\ not found.
cpuz134 => Service removed successfully
C:\ProgramData\Temp => “:0B9176C0” ADS removed successfully.
C:\ProgramData\Temp => “:E36F5B57” ADS removed successfully.

========= ipconfig /flushdns =========

Windows IP-konfiguration

DNS Resolver Cache blev t�mt.

========= End of CMD: =========

EmptyTemp: => 1.5 GB temporary data Removed.

The system needed a reboot…

==== End of Fixlog 20:19:12 ====


(f-arn) #15

Deaktiver dine Sikkerheds programmer, mens “Fixet” kører.

Jeg vedhæfter Fixlist.txt (534 Bytes). Gem den på Skrivebordet ved siden af Farbar Recovery Scan Tool/Farbar Recovery Scan Tool x64 (FRST/FRST64).

Den skal ligge ved siden af FRST/FRST64 :exclamation:

Dette Fix blev skrevet specielt til denne bruger og til brug på denne PC.
Køres dette på en anden PC, kan det forårsage skade, og i værste fald vil PCen ikke starte
.

Start FRST/FRST64 (Farbar Recovery Scan Tool/Farbar Recovery Scan Tool x64) og klik på FIX (og vent til den er færdig)

Luk FRST/FRST64, og lad PCen genstarte.

Den laver Fixlog.txt, som du skal kopiere herind i dit næste indlæg.


Hvordan kører PCen nu :question:


(osh) #16

Den kommer her

Fix result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by Ole at 2018-06-22 08:30:14 Run:5
Running from C:\Users\Ole\Desktop
Loaded Profiles: Ole (Available Profiles: Ole)
Boot Mode: Normal

fixlist content:


start
CreateRestorePoint:
CloseProcesses:
CHR Extension: (Slides) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-03]
CHR Extension: (Google Search) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-02]
cmd: ipconfig /flushdns
EmptyTemp:
end


Error: (0) Failed to create a restore point.
Processes closed successfully.
C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek => moved successfully.
C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf => moved successfully.
C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm => moved successfully.

========= ipconfig /flushdns =========

Windows IP-konfiguration

DNS Resolver Cache blev t�mt.

========= End of CMD: =========

EmptyTemp: => 46.9 MB temporary data Removed.

The system needed a reboot…

==== End of Fixlog 08:30:19 ====


(osh) #17

Det ser ud til den er væk nu, den er ikke kommet frem inden for de seneste 2 timer:grinning:


(osh) #18

Nej desværre den er der endnu


(f-arn) #19

Vil du godt slette den FRST64 du har, og hente en ny Farbar Recovery Scan Tool x64 og gem den på Skrivebordet.

Tryk på Scan og send to nye logs fra FRST/FRST64 herind.

FRSTnew

Husk at sætte flueben ved Addition.txt :exclamation:


(osh) #20

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.06.2018
Ran by Ole (administrator) on OLE-PC (22-06-2018 16:23:39)
Running from C:\Users\Ole\Desktop
Loaded Profiles: Ole (Available Profiles: Ole)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Dansk (Danmark)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(McAfee, LLC.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Windows\PLFSetI.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.141.333\AvastBrowserCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.141.333\AvastBrowserCrashHandler64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324608 2010-06-10] (Alcor Micro Corp.)
HKLM…\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-27] (Egis Technology Inc.)
HKLM…\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-29] (Realtek Semiconductor)
HKLM…\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-06-09] ()
HKLM…\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [325120 2009-10-22] (Alps Electric Co., Ltd.)
HKLM…\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated)
HKLM…\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc.)
HKLM…\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-06-20] (AVAST Software)
HKLM-x32…\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-05-27] (Egis Technology Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-944301883-4089375509-3149596369-1001…\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-944301883-4089375509-3149596369-1001…\Run: [AvastBrowserAutoLaunch_0A79AAA6EB34CF10D12006B692018D42] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1801544 2018-06-12] (AVAST Software)
HKU\S-1-5-21-944301883-4089375509-3149596369-1001\Control Panel\Desktop\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter “C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter”

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 212.10.10.4 212.10.10.5
Tcpip…\Interfaces{2E68257E-054B-4A09-B8E7-C45D5E24F2C9}: [DhcpNameServer] 212.10.10.4 212.10.10.5

Internet Explorer:

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-944301883-4089375509-3149596369-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> DefaultScope 9C27F3A6DFA4463BA957489A61E82CDE URL = hxxp://www.bing.com/search?FORM=U218DF&PC=U218&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> 9C27F3A6DFA4463BA957489A61E82CDE URL = hxxp://www.bing.com/search?FORM=U218DF&PC=U218&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-944301883-4089375509-3149596369-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-06-20] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-06-20] (AVAST Software)
BHO-x32: Hjælp til logon til Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-06-05] (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Technologies)
Handler: WSAllMyTubechrome - No CLSID Value

FireFox:

FF ProfilePath: C:\Users\Ole\AppData\Roaming\Mozilla\Firefox\Profiles\fVAP8opS.default [2017-10-08]
FF Extension: (Avira Browser Safety) - C:\Users\Ole\AppData\Roaming\Mozilla\Firefox\Profiles\fVAP8opS.default\Extensions\abs@avira.com [2017-10-03]
FF Extension: (No Name) - C:\Users\Ole\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\passwordmanager@avira.com [2017-10-03]
FF HKLM…\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-05-15]
FF HKLM-x32…\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_113.dll [2018-06-07] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_113.dll [2018-06-07] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219159.dll [2015-06-26] (Adobe Systems, Inc.)
FF Plugin-x32: @Microsoft.com/DownloadManager,version=1.1 -> C:\Windows\ [] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\npViewRight.dll [2012-07-05] (Verimatrix, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin-x32: visualon.com/voBrowserPlugin -> C:\ProgramData\VisualOn\BrowserPlugin\npStofaWebtvPlayer.dll [2014-11-20] ()
FF Plugin HKU\S-1-5-21-944301883-4089375509-3149596369-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Ole\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-944301883-4089375509-3149596369-1001: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\npViewRight.dll [2012-07-05] (Verimatrix, Inc.)
FF Plugin HKU\S-1-5-21-944301883-4089375509-3149596369-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Ole\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2018-06-01] (Zoom Video Communications, Inc.)

Chrome:

CHR DefaultProfile: Default
CHR Profile: C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default [2018-06-22]
CHR Extension: (Slides) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-22]
CHR Extension: (Docs) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drev) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-25]
CHR Extension: (YouTube) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-05-01]
CHR Extension: (Google Docs Offline) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Betalinger i Chrome Webshop) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-09]
CHR Extension: (Gmail) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\Ole\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-22]
CHR HKLM…\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM…\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM…\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM…\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32…\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-02-12] (SUPERAntiSpyware.com)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7780400 2018-06-20] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-17] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-06-20] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-06-17] (AVAST Software)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332656 2018-05-02] (HP Inc.)
S3 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [103808 2008-01-22] ()
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-03] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604824 2018-06-05] (McAfee, Inc.)
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
S4 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640 2010-04-17] (NTI, Inc.)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [60416 2009-06-22] (Hewlett-Packard) [File not signed]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe [81968 2016-02-23] (SiSoftware) [File not signed]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1000824 2018-05-14] (McAfee, LLC.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2018-05-14] (McAfee, LLC.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2018-05-14] (McAfee, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe [473824 2017-05-05] (Wondershare)
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone toolkit for iOS\Library\DriverInstaller\DriverInstall.exe [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [197160 2018-06-20] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [229392 2018-06-20] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201328 2018-06-20] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346664 2018-06-20] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59592 2018-06-20] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [239680 2018-06-20] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-06-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [159640 2018-06-20] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111872 2018-06-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85968 2018-06-20] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027728 2018-06-20] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [463080 2018-06-20] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [211160 2018-06-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381584 2018-06-20] (AVAST Software)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-06-22] (Malwarebytes)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 ZAM; ??\C:\Windows\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; ??\C:\Windows\System32\drivers\zamguard64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-22 16:23 - 2018-06-22 16:24 - 000023382 _____ C:\Users\Ole\Desktop\FRST.txt
2018-06-22 16:21 - 2018-06-22 16:21 - 002412544 _____ (Farbar) C:\Users\Ole\Desktop\FRST64.exe
2018-06-22 08:34 - 2018-06-22 08:34 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-06-20 23:02 - 2018-06-20 23:02 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2018-06-20 19:54 - 2018-06-20 19:54 - 000000000 ____D C:\ProgramData\Emsisoft
2018-06-20 19:52 - 2018-06-21 15:31 - 000000000 ____D C:\EEK
2018-06-20 19:51 - 2018-06-20 19:51 - 339161888 _____ C:\Users\Ole\Desktop\EmsisoftEmergencyKit.exe
2018-06-20 19:50 - 2018-06-20 19:51 - 339161888 _____ C:\Users\Ole\Downloads\EmsisoftEmergencyKit.exe
2018-06-20 14:42 - 2018-06-20 14:42 - 000378072 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-06-18 15:23 - 2018-06-18 19:00 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-06-18 15:23 - 2018-06-18 15:23 - 000001831 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-06-18 15:23 - 2018-06-18 15:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-06-18 15:00 - 2018-06-18 15:00 - 074288784 _____ (Malwarebytes ) C:\Users\Ole\Desktop\mb3-setup-1878.1878-3.5.1.2522.exe
2018-06-17 19:49 - 2018-06-17 20:06 - 000000000 ____D C:\ProgramData\HitmanPro
2018-06-17 17:49 - 2018-06-17 17:49 - 001137360 _____ (F-Secure Corporation) C:\Users\Ole\Downloads\fsbl.exe
2018-06-17 17:14 - 2018-06-17 17:14 - 007248800 _____ (TweakNow.com ) C:\Users\Ole\Downloads\RegCleaner736 (1).exe
2018-06-17 17:09 - 2018-06-17 17:09 - 015835744 _____ (Piriform Ltd) C:\Users\Ole\Downloads\ccsetup543pro.exe
2018-06-17 17:09 - 2018-06-17 17:09 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-06-17 12:17 - 2018-06-17 12:17 - 000002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-06-17 12:17 - 2018-06-17 12:17 - 000002474 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2018-06-17 12:16 - 2018-06-20 17:48 - 000000000 ____D C:\Users\Ole\AppData\Local\AVAST Software
2018-06-17 12:16 - 2018-06-17 12:16 - 000003408 _____ C:\Windows\System32\Tasks\AvastUpdateTaskMachineUA
2018-06-17 12:16 - 2018-06-17 12:16 - 000003280 _____ C:\Windows\System32\Tasks\AvastUpdateTaskMachineCore
2018-06-17 12:16 - 2018-06-17 12:16 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2018-06-17 12:14 - 2018-06-20 14:42 - 001027728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000463080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000381584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000346664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000239680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000229392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000211160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000201328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000197160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000159640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000111872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000085968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000059592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-06-17 12:14 - 2018-06-20 14:42 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-06-17 12:14 - 2018-06-18 15:15 - 000001886 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2018-06-17 12:14 - 2018-06-17 12:14 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-06-17 12:14 - 2018-06-17 12:14 - 000000000 ____D C:\Users\Ole\AppData\Roaming\AVAST Software
2018-06-17 12:14 - 2018-06-17 12:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-06-17 12:14 - 2018-06-17 12:14 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2018-06-17 12:13 - 2018-06-17 18:31 - 000000000 ____D C:\ProgramData\AVAST Software
2018-06-17 12:13 - 2018-06-17 12:13 - 000000000 ____D C:\Program Files\AVAST Software
2018-06-17 12:12 - 2018-06-17 12:12 - 006334880 _____ (AVAST Software) C:\Users\Ole\Desktop\avast_free_antivirus_setup_online.exe
2018-06-16 19:53 - 2018-06-16 19:53 - 000000000 _____ C:\autoexec.bat
2018-06-16 19:28 - 2018-06-21 20:02 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-06-16 19:28 - 2018-06-21 20:01 - 000101965 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-06-16 19:28 - 2018-06-21 19:52 - 000635097 _____ C:\Windows\ZAM.krnl.trace
2018-06-16 19:27 - 2018-06-16 19:27 - 000000000 ____D C:\Users\Ole\AppData\Local\Zemana
2018-06-14 12:19 - 2018-06-14 12:19 - 000048135 _____ C:\Users\Ole\Downloads\Faktura_29371671.pdf
2018-06-13 14:19 - 2018-05-29 22:36 - 000396960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-06-13 14:19 - 2018-05-29 21:40 - 000348824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-06-13 14:19 - 2018-05-29 04:43 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-06-13 14:19 - 2018-05-29 04:41 - 005577408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-06-13 14:19 - 2018-05-29 04:41 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-06-13 14:19 - 2018-05-29 04:41 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-06-13 14:19 - 2018-05-29 04:41 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-06-13 14:19 - 2018-05-29 04:41 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-06-13 14:19 - 2018-05-29 04:35 - 001665336 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 004050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-06-13 14:19 - 2018-05-29 04:32 - 003962048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-06-13 14:19 - 2018-05-29 04:32 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:25 - 001314064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:22 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 04:03 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-06-13 14:19 - 2018-05-29 04:03 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-06-13 14:19 - 2018-05-29 04:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-06-13 14:19 - 2018-05-29 04:03 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-06-13 14:19 - 2018-05-29 04:03 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-06-13 14:19 - 2018-05-29 03:59 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-06-13 14:19 - 2018-05-29 03:59 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-06-13 14:19 - 2018-05-29 03:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-06-13 14:19 - 2018-05-29 03:58 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-06-13 14:19 - 2018-05-29 03:58 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 03:58 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 03:58 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 03:58 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-06-13 14:19 - 2018-05-29 03:56 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-06-13 14:19 - 2018-05-29 03:55 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-06-13 14:19 - 2018-05-29 03:55 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-06-13 14:19 - 2018-05-29 03:54 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-06-13 14:19 - 2018-05-29 03:54 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-06-13 14:19 - 2018-05-29 02:04 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-06-13 14:19 - 2018-05-25 07:10 - 025742848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-06-13 14:19 - 2018-05-25 06:59 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-06-13 14:19 - 2018-05-25 06:59 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-06-13 14:19 - 2018-05-25 06:46 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-06-13 14:19 - 2018-05-25 06:45 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-06-13 14:19 - 2018-05-25 06:44 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-06-13 14:19 - 2018-05-25 06:44 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-06-13 14:19 - 2018-05-25 06:44 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-06-13 14:19 - 2018-05-25 06:43 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-06-13 14:19 - 2018-05-25 06:38 - 005779968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-06-13 14:19 - 2018-05-25 06:37 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-06-13 14:19 - 2018-05-25 06:36 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-06-13 14:19 - 2018-05-25 06:34 - 020286976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-06-13 14:19 - 2018-05-25 06:33 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-06-13 14:19 - 2018-05-25 06:32 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-06-13 14:19 - 2018-05-25 06:32 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-06-13 14:19 - 2018-05-25 06:32 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-06-13 14:19 - 2018-05-25 06:32 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-06-13 14:19 - 2018-05-25 06:28 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-06-13 14:19 - 2018-05-25 06:24 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-06-13 14:19 - 2018-05-25 06:21 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-06-13 14:19 - 2018-05-25 06:16 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-06-13 14:19 - 2018-05-25 06:16 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-06-13 14:19 - 2018-05-25 06:15 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-06-13 14:19 - 2018-05-25 06:15 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-06-13 14:19 - 2018-05-25 06:14 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-06-13 14:19 - 2018-05-25 06:14 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-06-13 14:19 - 2018-05-25 06:14 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-06-13 14:19 - 2018-05-25 06:13 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-06-13 14:19 - 2018-05-25 06:12 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-06-13 14:19 - 2018-05-25 06:10 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-06-13 14:19 - 2018-05-25 06:10 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-06-13 14:19 - 2018-05-25 06:09 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-06-13 14:19 - 2018-05-25 06:08 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-06-13 14:19 - 2018-05-25 06:08 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-06-13 14:19 - 2018-05-25 06:07 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-06-13 14:19 - 2018-05-25 06:06 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-06-13 14:19 - 2018-05-25 06:06 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-06-13 14:19 - 2018-05-25 06:05 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-06-13 14:19 - 2018-05-25 06:05 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-06-13 14:19 - 2018-05-25 05:57 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-06-13 14:19 - 2018-05-25 05:57 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-06-13 14:19 - 2018-05-25 05:55 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-06-13 14:19 - 2018-05-25 05:55 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-06-13 14:19 - 2018-05-25 05:53 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-06-13 14:19 - 2018-05-25 05:53 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-06-13 14:19 - 2018-05-25 05:53 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-06-13 14:19 - 2018-05-25 05:52 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-06-13 14:19 - 2018-05-25 05:52 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-06-13 14:19 - 2018-05-25 05:51 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-06-13 14:19 - 2018-05-25 05:49 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-06-13 14:19 - 2018-05-25 05:48 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-06-13 14:19 - 2018-05-25 05:47 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-06-13 14:19 - 2018-05-25 05:45 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-06-13 14:19 - 2018-05-25 05:42 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-06-13 14:19 - 2018-05-25 05:40 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-06-13 14:19 - 2018-05-25 05:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-06-13 14:19 - 2018-05-25 05:39 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-06-13 14:19 - 2018-05-25 05:38 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-06-13 14:19 - 2018-05-25 05:38 - 002060288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-06-13 14:19 - 2018-05-25 05:37 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-06-13 14:19 - 2018-05-25 05:29 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-06-13 14:19 - 2018-05-25 05:19 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-06-13 14:19 - 2018-05-25 05:17 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-06-13 14:19 - 2018-05-25 05:15 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-06-13 14:19 - 2018-05-25 05:14 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-06-13 14:19 - 2018-05-15 06:16 - 001681088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-06-13 14:19 - 2018-05-15 05:44 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2018-06-13 14:19 - 2018-05-15 05:44 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2018-06-13 14:19 - 2018-05-15 05:44 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-06-13 14:19 - 2018-05-15 05:44 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2018-06-13 14:19 - 2018-05-15 05:24 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2018-06-13 14:19 - 2018-05-15 05:23 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2018-06-13 14:19 - 2018-05-15 05:13 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2018-06-13 14:19 - 2018-05-15 05:13 - 000782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2018-06-13 14:19 - 2018-05-15 05:13 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-06-13 14:19 - 2018-05-15 05:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2018-06-13 14:19 - 2018-05-15 05:01 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2018-06-13 14:19 - 2018-05-15 05:01 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2018-06-13 14:19 - 2018-05-15 03:20 - 000467856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-06-13 14:19 - 2018-05-15 03:20 - 000459632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-06-13 14:19 - 2018-05-12 04:07 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2018-06-13 14:19 - 2018-05-12 04:07 - 000033152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2018-06-13 14:19 - 2018-05-12 04:07 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2018-06-13 14:19 - 2018-05-11 23:19 - 000977408 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-06-13 14:19 - 2018-05-11 23:19 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2018-06-13 14:19 - 2018-05-11 23:19 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2018-06-13 14:19 - 2018-05-11 02:40 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-06-13 14:19 - 2018-05-11 02:40 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2018-06-13 14:19 - 2018-05-11 02:39 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2018-06-13 14:19 - 2018-04-06 18:39 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-06-13 14:19 - 2018-04-06 18:38 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-06-01 20:37 - 2018-06-01 20:38 - 160866848 _____ C:\Users\Ole\Desktop\GMT20180601-110106_Live-webin_640x360.mp4
2018-06-01 12:41 - 2018-06-01 12:41 - 000000000 ____D C:\Users\Ole\AppData\Roaming\Zoom
2018-06-01 12:41 - 2018-06-01 12:41 - 000000000 ____D C:\Users\Ole\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2018-05-31 21:19 - 2018-05-31 21:19 - 000133640 _____ (Zoom Video Communications, Inc.) C:\Users\Ole\Desktop\Zoom_launcher.exe
2018-05-28 18:10 - 2018-05-28 18:10 - 000000000 ____D C:\Users\Ole\AppData\Roaming\Apowersoft
2018-05-28 18:10 - 2018-05-28 18:10 - 000000000 ____D C:\Users\Ole\AppData\Local\Apowersoft
2018-05-28 18:10 - 2018-05-28 18:10 - 000000000 ____D C:\ProgramData\Apowersoft
2018-05-25 16:01 - 2018-05-25 16:01 - 000048135 _____ C:\Users\Ole\Desktop\Faktura_29371671.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-22 16:23 - 2014-06-10 16:59 - 000000000 ____D C:\FRST
2018-06-22 10:05 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2018-06-22 08:49 - 2009-07-14 06:45 - 000025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-06-22 08:49 - 2009-07-14 06:45 - 000025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-06-22 08:46 - 2013-12-19 04:14 - 000509370 _____ C:\Windows\system32\perfh006.dat
2018-06-22 08:46 - 2013-12-19 04:14 - 000098648 _____ C:\Windows\system32\perfc006.dat
2018-06-22 08:46 - 2009-07-14 07:13 - 001378836 _____ C:\Windows\system32\PerfStringBackup.INI
2018-06-22 08:46 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-06-22 08:34 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-06-21 19:52 - 2017-09-09 16:54 - 000000000 ____D C:\Users\Ole\AppData\Roaming\TweakNow RegCleaner
2018-06-21 19:52 - 2017-09-09 16:54 - 000000000 ____D C:\Program Files (x86)\TweakNow RegCleaner
2018-06-21 19:51 - 2014-01-03 17:29 - 000000000 ____D C:\Users\Ole\AppData\Roaming\TweakNow RegCleaner 2012
2018-06-21 19:51 - 2014-01-03 17:29 - 000000000 ____D C:\Program Files (x86)\TweakNow RegCleaner 2012
2018-06-21 19:50 - 2014-02-11 18:17 - 000000000 ____D C:\Program Files\Java
2018-06-18 15:21 - 2015-01-05 12:41 - 000000000 ____D C:\Users\Ole\AppData\Local\CrashDumps
2018-06-18 15:06 - 2014-06-09 15:26 - 000000000 ____D C:\Program Files\CCleaner
2018-06-18 15:01 - 2014-03-10 18:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-06-17 17:09 - 2014-06-09 15:26 - 000000786 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-06-17 08:21 - 2014-06-09 15:40 - 000000000 ____D C:\AdwCleaner
2018-06-16 19:52 - 2013-12-18 19:48 - 000000000 ____D C:\Users\Ole
2018-06-15 13:34 - 2013-12-21 09:00 - 000000000 ____D C:\Windows\system32\MRT
2018-06-15 13:31 - 2017-08-30 17:14 - 000003830 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1504106056
2018-06-15 13:31 - 2017-08-30 17:13 - 000000000 ____D C:\Program Files\Opera
2018-06-15 13:30 - 2017-10-11 16:57 - 133315992 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-06-15 13:30 - 2013-12-21 09:00 - 133315992 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-06-14 12:28 - 2015-01-26 22:07 - 000002240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-14 12:28 - 2015-01-26 22:07 - 000002199 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-06-09 16:13 - 2017-04-23 18:36 - 000004466 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-06-09 16:13 - 2015-07-17 17:35 - 000004312 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-06-09 16:13 - 2013-12-21 09:20 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-06-09 16:13 - 2013-12-21 09:20 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-06-09 16:13 - 2013-12-21 09:20 - 000000000 ____D C:\Windows\system32\Macromed
2018-06-09 16:13 - 2010-09-16 01:32 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-06-07 20:53 - 2018-03-14 14:41 - 000004454 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-31 09:01 - 2014-03-08 18:21 - 000000000 ____D C:\Users\Ole\AppData\Roaming\Skype
2018-05-30 17:45 - 2017-04-23 18:36 - 000000000 ____D C:\Program Files\TrueKey
2018-05-27 09:46 - 2017-04-23 18:50 - 000001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2018-05-27 09:46 - 2017-04-23 18:50 - 000001115 _____ C:\Users\Public\Desktop\True Key.lnk

==================== Files in the root of some directories =======

2016-08-12 12:29 - 2016-08-12 12:33 - 015392768 _____ () C:\Users\Ole\AppData\Roaming\Sandra.mdb

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-06-22 09:58

==================== End of FRST.txt ============================