Ahoj. Měl jsem v notebooku win 7. od té doby, co jsem přešel na WIN 10., notebook spomaluje a spomaluje. Nevím čím to může být. vše se načítá pomalu i prgramy jako z Office. internet je jedno jak je připojen, také pomalý. nevím jestli mám vir, anebo něco tajně spuštěné, co by spomalovalo notebook. Přikládám log RSIT a předem děkuji za pomoc
Logfile of random's system information tool 1.10 (written by random/random)
Run by Palko at 2016-07-19 19:15:41
Microsoft Windows 10 Home
System drive C: has 266 GB (87%) free of 304 GB
Total RAM: 1660 MB (25% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:16:09, on 19. 7. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0494)
Boot mode: Normal
Running processes:
C:\Program Files\Elantech\ETDCtrl.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.7167.57651.0_x86__8wekyb3d8bbwe\onenoteim.exe
C:\Windows\System32\SystemSettingsBroker.exe
C:\WINDOWS\System32\NetworkUXBroker.exe
C:\Users\Palko\Desktop\RSIT.exe
C:\Program Files\trend micro\Palko.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Palko\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: Intel Security True Key Helper Service (TrueKeyServiceHelper) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
--
End of file - 7638 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\HPCeeScheduleForPalko.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPalko (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\
googletranslate.xml
youtube.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-06-28 983792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-06-28 983792]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-10-27 14467328]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-10 2484424]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-08-21 748744]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"CanonQuickMenu"=C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [2014-01-17 1284680]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-06-29 53288576]
"OneDrive"=C:\Users\Palko\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-15 405584]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-03-11 6667992]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SppExtComObj.exe]
"Debugger="C:\Windows\SECOH-QAD.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-07-15 03:10:26 ----A---- C:\WINDOWS\system32\KMSServer.exe
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\olepro32.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\moshost.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-14 14:19:40 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-07-14 14:19:40 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-07-14 14:19:39 ----A---- C:\WINDOWS\system32\ole32.dll
2016-07-14 14:19:39 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-14 14:19:38 ----A---- C:\WINDOWS\system32\wininet.dll
2016-07-14 14:19:37 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-07-14 14:19:36 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-07-14 14:19:36 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-07-14 14:19:35 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-07-14 14:19:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-07-14 14:19:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-14 14:19:31 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-07-14 14:19:30 ----A---- C:\WINDOWS\system32\mos.dll
2016-07-14 14:19:28 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-07-14 14:19:26 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-14 14:19:24 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-07-14 14:19:23 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-07-14 14:19:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-07-14 14:19:20 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-07-14 14:19:18 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-07-14 14:19:16 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-07-14 14:19:16 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-07-14 14:19:15 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-07-14 14:19:14 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-07-14 14:19:13 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-07-14 14:19:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-07-14 14:19:12 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-07-14 14:19:11 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-07-14 14:19:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-07-14 14:19:09 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-07-14 14:19:08 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-07-14 14:19:07 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-07-14 14:19:07 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-07-14 14:19:06 ----A---- C:\WINDOWS\system32\Wpc.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-07-14 14:19:04 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2016-07-14 14:19:03 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-07-14 14:19:03 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-07-14 14:19:02 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-14 14:19:01 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-07-14 14:18:58 ----A---- C:\WINDOWS\system32\werconcpl.dll
2016-07-14 14:18:58 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-07-14 14:18:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-07-14 14:18:57 ----A---- C:\WINDOWS\system32\dui70.dll
2016-07-14 14:18:56 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2016-07-14 14:18:56 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-14 14:18:55 ----A---- C:\WINDOWS\system32\netshell.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-07-14 14:18:51 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-07-14 14:18:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-07-14 14:18:49 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-14 14:18:48 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-07-14 14:18:48 ----A---- C:\WINDOWS\system32\cdd.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\duser.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-07-14 14:18:46 ----A---- C:\WINDOWS\system32\StikyNot.exe
2016-07-14 14:18:46 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-07-14 14:18:45 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-07-14 14:18:45 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-07-14 14:18:44 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2016-07-14 14:18:44 ----A---- C:\WINDOWS\system32\rasgcw.dll
2016-07-14 14:18:43 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-07-14 14:18:43 ----A---- C:\WINDOWS\system32\certcli.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-07-14 14:18:41 ----A---- C:\WINDOWS\system32\WLanConn.dll
2016-07-14 14:18:41 ----A---- C:\WINDOWS\system32\msra.exe
2016-07-14 14:18:40 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-07-14 14:18:40 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-07-14 14:18:39 ----A---- C:\WINDOWS\system32\WmpDui.dll
2016-07-14 14:18:39 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\dot3ui.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-07-14 14:18:36 ----A---- C:\WINDOWS\system32\cdpreference.exe
2016-07-14 14:18:33 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-14 14:18:31 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-14 14:18:30 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-14 14:18:29 ----A---- C:\WINDOWS\system32\twinui.dll
2016-07-14 14:18:23 ----A---- C:\WINDOWS\system32\wmp.dll
2016-07-14 14:18:20 ----A---- C:\WINDOWS\explorer.exe
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-07-14 14:18:10 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-14 14:18:08 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-07-14 14:18:07 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-07-14 14:18:05 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-07-14 14:18:01 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-14 14:18:00 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-07-14 14:17:59 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-14 14:17:59 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-07-14 14:17:58 ----A---- C:\WINDOWS\system32\shell32.dll
2016-07-14 14:17:55 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-14 14:17:52 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-14 14:17:49 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-14 14:17:47 ----A---- C:\WINDOWS\system32\localspl.dll
2016-07-14 14:17:46 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-14 14:17:46 ----A---- C:\WINDOWS\system32\authui.dll
2016-07-14 14:17:45 ----A---- C:\WINDOWS\system32\usocore.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-07-14 14:17:43 ----A---- C:\WINDOWS\system32\winmde.dll
2016-07-14 14:17:43 ----A---- C:\WINDOWS\system32\propsys.dll
2016-07-14 14:17:42 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-07-14 14:17:42 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-07-14 14:17:41 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2016-07-14 14:17:41 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-07-14 14:17:40 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-14 14:17:39 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-14 14:17:39 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-07-14 14:17:38 ----A---- C:\WINDOWS\system32\gameux.dll
2016-07-14 14:17:37 ----A---- C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-14 14:17:37 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\WSService.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\Clipc.dll
2016-07-14 14:17:33 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-07-14 14:17:33 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\wiaaut.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-14 14:17:31 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-07-14 14:17:31 ----A---- C:\WINDOWS\system32\inetpp.dll
2016-07-14 14:17:30 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-07-14 14:17:30 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-14 14:17:29 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-14 14:17:29 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-07-14 14:17:28 ----A---- C:\WINDOWS\HelpPane.exe
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\winipcfile.dll
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\sbe.dll
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\ntprint.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-07-14 14:17:25 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-14 14:17:25 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-14 14:17:24 ----A---- C:\WINDOWS\system32\oemlicense.dll
2016-07-14 14:17:24 ----A---- C:\WINDOWS\system32\msieftp.dll
2016-07-14 14:17:23 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-14 14:17:22 ----A---- C:\WINDOWS\system32\WSClient.dll
2016-07-14 14:17:22 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-07-14 14:17:21 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-07-14 14:17:20 ----A---- C:\WINDOWS\system32\winmsipc.dll
2016-07-14 14:17:19 ----A---- C:\WINDOWS\system32\ieui.dll
2016-07-14 14:17:18 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-14 14:17:18 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-07-14 14:17:16 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-14 14:17:12 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-07-14 14:17:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-14 14:17:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-07-14 14:17:06 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-07-14 14:17:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-07-14 14:16:58 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\devinv.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-07-14 14:16:53 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-07-14 14:16:49 ----A---- C:\WINDOWS\system32\invagent.dll
2016-07-14 14:16:49 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-07-14 14:16:48 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-07-14 14:16:47 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-07-14 14:16:47 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-14 14:16:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-07-14 14:16:45 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-07-14 14:16:45 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\provengine.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-14 14:16:42 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-07-14 14:16:42 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-14 14:16:40 ----A---- C:\WINDOWS\system32\tquery.dll
2016-07-14 14:16:40 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\aepic.dll
2016-07-14 14:16:38 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-07-14 14:16:38 ----A---- C:\WINDOWS\system32\mf.dll
2016-07-14 14:16:37 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-07-14 14:16:35 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-14 14:16:35 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-14 14:16:34 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-07-14 14:16:34 ----A---- C:\WINDOWS\system32\provops.dll
2016-07-14 14:16:33 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-07-14 14:16:32 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-07-14 14:16:32 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-07-14 14:16:31 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-07-14 14:16:31 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-07-14 14:16:30 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\wldp.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-07-14 14:16:23 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-07-14 14:16:23 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\webio.dll
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\mssphtb.dll
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\mssph.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-07-14 14:16:20 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-07-14 14:16:20 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-14 14:16:19 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-07-14 14:16:19 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-14 14:16:17 ----A---- C:\WINDOWS\system32\fhengine.dll
2016-07-14 14:16:17 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-07-14 14:16:16 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-14 14:16:16 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-14 14:16:15 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-14 14:16:15 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\msscntrs.dll
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-14 14:16:09 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-07-14 14:16:08 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-07-14 14:16:08 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-07-14 14:16:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-07-14 14:16:07 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-07-14 14:16:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-07-14 14:16:04 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-07-14 14:16:04 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-07-14 14:16:03 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-07-14 14:16:02 ----A---- C:\WINDOWS\system32\taskeng.exe
2016-07-14 14:16:01 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-14 14:16:01 ----A---- C:\WINDOWS\system32\winload.exe
2016-07-14 14:16:00 ----A---- C:\WINDOWS\system32\winresume.exe
2016-07-14 14:16:00 ----A---- C:\WINDOWS\system32\schtasks.exe
2016-07-14 14:15:59 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-11 10:33:35 ----D---- C:\ProgramData\TrueKey
2016-07-11 10:31:38 ----D---- C:\Program Files\Intel
2016-07-11 10:31:22 ----D---- C:\Program Files\Intel Security
2016-07-11 10:27:53 ----D---- C:\Program Files\McAfee
2016-07-11 10:27:51 ----D---- C:\Program Files\Common Files\McAfee
2016-07-11 07:23:38 ----D---- C:\Program Files\TrueKey
2016-07-11 07:23:36 ----D---- C:\ProgramData\McAfee Security Scan
2016-07-11 07:23:11 ----D---- C:\Program Files\McAfee Security Scan
2016-07-11 07:23:10 ----D---- C:\ProgramData\McAfee
======List of files/folders modified in the last 1 month======
2016-07-19 19:16:00 ----D---- C:\WINDOWS\Prefetch
2016-07-19 19:15:51 ----D---- C:\Program Files\trend micro
2016-07-19 18:01:37 ----D---- C:\WINDOWS\System32
2016-07-19 18:01:37 ----D---- C:\WINDOWS\INF
2016-07-19 18:01:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-19 18:00:14 ----D---- C:\WINDOWS\Temp
2016-07-19 17:32:03 ----D---- C:\WINDOWS\system32\sru
2016-07-19 17:23:48 ----D---- C:\WINDOWS\system32\DriverStore
2016-07-19 17:22:56 ----D---- C:\WINDOWS\system32\config
2016-07-19 14:40:53 ----D---- C:\WINDOWS\WinSxS
2016-07-19 14:30:23 ----D---- C:\WINDOWS\Microsoft.NET
2016-07-19 14:23:41 ----D---- C:\WINDOWS\system32\catroot2
2016-07-19 13:24:42 ----D---- C:\WINDOWS\AppReadiness
2016-07-19 13:24:40 ----HD---- C:\Program Files\WindowsApps
2016-07-15 03:04:49 ----D---- C:\WINDOWS\system32\wbem
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\oobe
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\migration
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\en-US
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\drivers
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\appraiser
2016-07-15 03:04:39 ----D---- C:\WINDOWS\Provisioning
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\PrintDialog
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\DevicesFlow
2016-07-15 03:04:38 ----D---- C:\WINDOWS\PolicyDefinitions
2016-07-15 03:04:38 ----D---- C:\WINDOWS\bcastdvr
2016-07-15 03:04:38 ----D---- C:\WINDOWS\apppatch
2016-07-15 03:04:37 ----D---- C:\Windows
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Photo Viewer
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Mail
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Journal
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Defender
2016-07-15 03:04:37 ----D---- C:\Program Files\Internet Explorer
2016-07-15 03:04:35 ----D---- C:\WINDOWS\system32\Boot
2016-07-15 01:40:56 ----SHD---- C:\WINDOWS\Installer
2016-07-15 01:40:56 ----HD---- C:\Config.Msi
2016-07-14 16:50:33 ----D---- C:\ProgramData\Microsoft Help
2016-07-14 16:48:03 ----D---- C:\WINDOWS\CbsTemp
2016-07-14 16:47:44 ----D---- C:\WINDOWS\system32\MRT
2016-07-14 16:37:50 ----A---- C:\WINDOWS\system32\MRT.exe
2016-07-14 16:24:45 ----SHD---- C:\System Volume Information
2016-07-12 19:48:48 ----AD---- C:\Program Files\Microsoft Silverlight
2016-07-12 16:06:17 ----D---- C:\WINDOWS\system32\Macromed
2016-07-11 10:33:35 ----HD---- C:\ProgramData
2016-07-11 10:31:38 ----RD---- C:\Program Files
2016-07-11 10:29:47 ----D---- C:\ProgramData\Package Cache
2016-07-11 10:28:01 ----D---- C:\Program Files\Common Files\AV
2016-07-11 10:27:51 ----D---- C:\Program Files\Common Files
2016-07-07 02:39:33 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-07-02 06:37:58 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-06-30 17:49:03 ----D---- C:\WINDOWS\Tasks
2016-06-30 17:49:03 ----D---- C:\WINDOWS\system32\Tasks
2016-06-28 19:56:50 ----D---- C:\WINDOWS\rescache
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R1 MpKsl666a1e90;MpKsl666a1e90; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6F31BFE8-7157-4120-99A6-D2C8CCBF5F5B}\MpKsl666a1e90.sys [2016-07-14 39168]
R1 MpKsl9db7e20b;MpKsl9db7e20b; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2E58C55D-FEBD-452B-A56B-07381052947F}\MpKsl9db7e20b.sys [2016-07-19 39168]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-10-25 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-10-25 542192]
R3 athr;@netathr.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwn.sys [2015-10-30 3205632]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-10-27 82432]
R3 ETD;@oem8.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-10-10 514760]
R3 i8042HDR;@oem26.inf,%i8042HDR.SvcDesc%;Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [2006-10-20 13224]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2015-10-27 3586816]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 RTSUER;@oem4.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-08 301824]
R3 tap0901;@oem6.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2013-08-22 35288]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2015-10-30 184832]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 96768]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-04-23 46080]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-05-28 203104]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-04-23 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2016-04-23 48640]
S3 vhf;@%SystemRoot%\system32\drivers\vhf.sys,-100; C:\WINDOWS\System32\drivers\vhf.sys [2015-10-30 24064]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-10-25 223216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-08-21 276992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-10 124616]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc.exe [2016-05-06 2377368]
R2 OneSyncSvc_6c603d;Hostitel synchronizace_6c603d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-06-22 906208]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-06-22 16792]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 PimIndexMaintenanceSvc_6c603d;Data kontaktů_6c603d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 UnistoreSvc_6c603d;Úložiště uživatelských dat_6c603d; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 UserDataSvc_6c603d;Přístup k uživatelským datům_6c603d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_5c70d;Hostitel synchronizace_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2013-11-11 685568]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [2016-05-31 239880]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_5c70d;Služba zasílání zpráv_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_6c603d;Služba zasílání zpráv_6c603d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-03 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_5c70d;Data kontaktů_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 TrueKeyServiceHelper;Intel Security True Key Helper Service; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-06-22 73968]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_5c70d;Úložiště uživatelských dat_5c70d; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 UserDataSvc_5c70d;Přístup k uživatelským datům_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 UsoSvc;@%systemroot%\system32\usocore.dll,-102; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomalý notebook - VYŘEŠENO
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
pomalý notebook - VYŘEŠENO
Naposledy upravil(a) stonehod dne 24 črc 2016 16:00, celkem upraveno 1 x.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý notebook
Zdravím!
Toto:
Toto:
je pro Win 10 na dolní provozní mezi. Chtělo by to v prvé řadě zvětšit RAM. Zkusíme vyčistit. Spusťte tuto utilitu:Total RAM: 1660 MB (25% free)
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý notebook
Log vkládám
# AdwCleaner v5.201 - Log vytvořen 19/07/2016 v 21:47:41
# Aktualizováno 30/06/2016 by ToolsLib
# Databáze : 2016-07-18.2 [Server]
# Operační system : Windows 10 Home (X86)
# Uživatelské jméno : Palko - K53U
# Spuštěno z : C:\Users\Palko\Desktop\adwcleaner_5.201.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Klíč Smazáno : HKCU\Software\Classes\TypeLib\{157B1AA6-3E5C-404A-9118-C1D91F537040}
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Klíč Smazáno : HKCU\Software\WEBAPP
[-] Klíč Smazáno : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Klíč Smazáno : HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
[-] Klíč Smazáno : HKU\S-1-5-21-4248476150-204346052-704469951-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [4121 bytů] - [19/07/2016 21:47:41]
C:\AdwCleaner\AdwCleaner[R0].txt - [7759 bytů] - [04/07/2015 08:27:26]
C:\AdwCleaner\AdwCleaner[S0].txt - [7135 bytů] - [04/07/2015 08:29:39]
C:\AdwCleaner\AdwCleaner[S1].txt - [4524 bytů] - [19/07/2016 21:36:35]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4413 bytů] ##########
# AdwCleaner v5.201 - Log vytvořen 19/07/2016 v 21:47:41
# Aktualizováno 30/06/2016 by ToolsLib
# Databáze : 2016-07-18.2 [Server]
# Operační system : Windows 10 Home (X86)
# Uživatelské jméno : Palko - K53U
# Spuštěno z : C:\Users\Palko\Desktop\adwcleaner_5.201.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Klíč Smazáno : HKCU\Software\Classes\TypeLib\{157B1AA6-3E5C-404A-9118-C1D91F537040}
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Klíč Smazáno : HKCU\Software\WEBAPP
[-] Klíč Smazáno : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Klíč Smazáno : HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
[-] Klíč Smazáno : HKU\S-1-5-21-4248476150-204346052-704469951-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [4121 bytů] - [19/07/2016 21:47:41]
C:\AdwCleaner\AdwCleaner[R0].txt - [7759 bytů] - [04/07/2015 08:27:26]
C:\AdwCleaner\AdwCleaner[S0].txt - [7135 bytů] - [04/07/2015 08:29:39]
C:\AdwCleaner\AdwCleaner[S1].txt - [4524 bytů] - [19/07/2016 21:36:35]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4413 bytů] ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý notebook
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý notebook
Nový log RSIT
Logfile of random's system information tool 1.10 (written by random/random)
Run by Palko at 2016-07-19 22:49:53
Microsoft Windows 10 Home
System drive C: has 266 GB (87%) free of 304 GB
Total RAM: 1660 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:50:11, on 19. 7. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0494)
Boot mode: Normal
Running processes:
C:\Program Files\Elantech\ETDCtrl.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
C:\WINDOWS\system32\svchost.exe
C:\Users\Palko\Desktop\RSIT.exe
C:\Program Files\trend micro\Palko.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Palko\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: Intel Security True Key Helper Service (TrueKeyServiceHelper) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
--
End of file - 7291 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\HPCeeScheduleForPalko.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPalko (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\
googletranslate.xml
youtube.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-06-28 983792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-06-28 983792]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-10-27 14467328]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-10 2484424]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-08-21 748744]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"CanonQuickMenu"=C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [2014-01-17 1284680]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-06-29 53288576]
"OneDrive"=C:\Users\Palko\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-15 405584]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-03-11 6667992]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SppExtComObj.exe]
"Debugger="C:\Windows\SECOH-QAD.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-07-15 03:10:26 ----A---- C:\WINDOWS\system32\KMSServer.exe
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\olepro32.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\moshost.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-14 14:19:40 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-07-14 14:19:40 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-07-14 14:19:39 ----A---- C:\WINDOWS\system32\ole32.dll
2016-07-14 14:19:39 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-14 14:19:38 ----A---- C:\WINDOWS\system32\wininet.dll
2016-07-14 14:19:37 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-07-14 14:19:36 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-07-14 14:19:36 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-07-14 14:19:35 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-07-14 14:19:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-07-14 14:19:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-14 14:19:31 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-07-14 14:19:30 ----A---- C:\WINDOWS\system32\mos.dll
2016-07-14 14:19:28 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-07-14 14:19:26 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-14 14:19:24 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-07-14 14:19:23 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-07-14 14:19:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-07-14 14:19:20 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-07-14 14:19:18 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-07-14 14:19:16 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-07-14 14:19:16 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-07-14 14:19:15 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-07-14 14:19:14 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-07-14 14:19:13 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-07-14 14:19:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-07-14 14:19:12 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-07-14 14:19:11 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-07-14 14:19:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-07-14 14:19:09 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-07-14 14:19:08 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-07-14 14:19:07 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-07-14 14:19:07 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-07-14 14:19:06 ----A---- C:\WINDOWS\system32\Wpc.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-07-14 14:19:04 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2016-07-14 14:19:03 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-07-14 14:19:03 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-07-14 14:19:02 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-14 14:19:01 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-07-14 14:18:58 ----A---- C:\WINDOWS\system32\werconcpl.dll
2016-07-14 14:18:58 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-07-14 14:18:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-07-14 14:18:57 ----A---- C:\WINDOWS\system32\dui70.dll
2016-07-14 14:18:56 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2016-07-14 14:18:56 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-14 14:18:55 ----A---- C:\WINDOWS\system32\netshell.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-07-14 14:18:51 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-07-14 14:18:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-07-14 14:18:49 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-14 14:18:48 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-07-14 14:18:48 ----A---- C:\WINDOWS\system32\cdd.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\duser.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-07-14 14:18:46 ----A---- C:\WINDOWS\system32\StikyNot.exe
2016-07-14 14:18:46 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-07-14 14:18:45 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-07-14 14:18:45 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-07-14 14:18:44 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2016-07-14 14:18:44 ----A---- C:\WINDOWS\system32\rasgcw.dll
2016-07-14 14:18:43 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-07-14 14:18:43 ----A---- C:\WINDOWS\system32\certcli.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-07-14 14:18:41 ----A---- C:\WINDOWS\system32\WLanConn.dll
2016-07-14 14:18:41 ----A---- C:\WINDOWS\system32\msra.exe
2016-07-14 14:18:40 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-07-14 14:18:40 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-07-14 14:18:39 ----A---- C:\WINDOWS\system32\WmpDui.dll
2016-07-14 14:18:39 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\dot3ui.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-07-14 14:18:36 ----A---- C:\WINDOWS\system32\cdpreference.exe
2016-07-14 14:18:33 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-14 14:18:31 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-14 14:18:30 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-14 14:18:29 ----A---- C:\WINDOWS\system32\twinui.dll
2016-07-14 14:18:23 ----A---- C:\WINDOWS\system32\wmp.dll
2016-07-14 14:18:20 ----A---- C:\WINDOWS\explorer.exe
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-07-14 14:18:10 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-14 14:18:08 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-07-14 14:18:07 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-07-14 14:18:05 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-07-14 14:18:01 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-14 14:18:00 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-07-14 14:17:59 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-14 14:17:59 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-07-14 14:17:58 ----A---- C:\WINDOWS\system32\shell32.dll
2016-07-14 14:17:55 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-14 14:17:52 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-14 14:17:49 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-14 14:17:47 ----A---- C:\WINDOWS\system32\localspl.dll
2016-07-14 14:17:46 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-14 14:17:46 ----A---- C:\WINDOWS\system32\authui.dll
2016-07-14 14:17:45 ----A---- C:\WINDOWS\system32\usocore.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-07-14 14:17:43 ----A---- C:\WINDOWS\system32\winmde.dll
2016-07-14 14:17:43 ----A---- C:\WINDOWS\system32\propsys.dll
2016-07-14 14:17:42 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-07-14 14:17:42 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-07-14 14:17:41 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2016-07-14 14:17:41 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-07-14 14:17:40 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-14 14:17:39 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-14 14:17:39 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-07-14 14:17:38 ----A---- C:\WINDOWS\system32\gameux.dll
2016-07-14 14:17:37 ----A---- C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-14 14:17:37 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\WSService.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\Clipc.dll
2016-07-14 14:17:33 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-07-14 14:17:33 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\wiaaut.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-14 14:17:31 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-07-14 14:17:31 ----A---- C:\WINDOWS\system32\inetpp.dll
2016-07-14 14:17:30 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-07-14 14:17:30 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-14 14:17:29 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-14 14:17:29 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-07-14 14:17:28 ----A---- C:\WINDOWS\HelpPane.exe
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\winipcfile.dll
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\sbe.dll
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\ntprint.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-07-14 14:17:25 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-14 14:17:25 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-14 14:17:24 ----A---- C:\WINDOWS\system32\oemlicense.dll
2016-07-14 14:17:24 ----A---- C:\WINDOWS\system32\msieftp.dll
2016-07-14 14:17:23 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-14 14:17:22 ----A---- C:\WINDOWS\system32\WSClient.dll
2016-07-14 14:17:22 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-07-14 14:17:21 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-07-14 14:17:20 ----A---- C:\WINDOWS\system32\winmsipc.dll
2016-07-14 14:17:19 ----A---- C:\WINDOWS\system32\ieui.dll
2016-07-14 14:17:18 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-14 14:17:18 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-07-14 14:17:16 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-14 14:17:12 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-07-14 14:17:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-14 14:17:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-07-14 14:17:06 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-07-14 14:17:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-07-14 14:16:58 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\devinv.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-07-14 14:16:53 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-07-14 14:16:49 ----A---- C:\WINDOWS\system32\invagent.dll
2016-07-14 14:16:49 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-07-14 14:16:48 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-07-14 14:16:47 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-07-14 14:16:47 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-14 14:16:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-07-14 14:16:45 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-07-14 14:16:45 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\provengine.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-14 14:16:42 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-07-14 14:16:42 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-14 14:16:40 ----A---- C:\WINDOWS\system32\tquery.dll
2016-07-14 14:16:40 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\aepic.dll
2016-07-14 14:16:38 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-07-14 14:16:38 ----A---- C:\WINDOWS\system32\mf.dll
2016-07-14 14:16:37 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-07-14 14:16:35 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-14 14:16:35 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-14 14:16:34 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-07-14 14:16:34 ----A---- C:\WINDOWS\system32\provops.dll
2016-07-14 14:16:33 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-07-14 14:16:32 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-07-14 14:16:32 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-07-14 14:16:31 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-07-14 14:16:31 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-07-14 14:16:30 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\wldp.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-07-14 14:16:23 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-07-14 14:16:23 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\webio.dll
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\mssphtb.dll
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\mssph.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-07-14 14:16:20 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-07-14 14:16:20 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-14 14:16:19 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-07-14 14:16:19 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-14 14:16:17 ----A---- C:\WINDOWS\system32\fhengine.dll
2016-07-14 14:16:17 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-07-14 14:16:16 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-14 14:16:16 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-14 14:16:15 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-14 14:16:15 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\msscntrs.dll
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-14 14:16:09 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-07-14 14:16:08 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-07-14 14:16:08 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-07-14 14:16:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-07-14 14:16:07 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-07-14 14:16:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-07-14 14:16:04 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-07-14 14:16:04 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-07-14 14:16:03 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-07-14 14:16:02 ----A---- C:\WINDOWS\system32\taskeng.exe
2016-07-14 14:16:01 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-14 14:16:01 ----A---- C:\WINDOWS\system32\winload.exe
2016-07-14 14:16:00 ----A---- C:\WINDOWS\system32\winresume.exe
2016-07-14 14:16:00 ----A---- C:\WINDOWS\system32\schtasks.exe
2016-07-14 14:15:59 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-11 10:33:35 ----D---- C:\ProgramData\TrueKey
2016-07-11 10:31:38 ----D---- C:\Program Files\Intel
2016-07-11 10:31:22 ----D---- C:\Program Files\Intel Security
2016-07-11 10:27:53 ----D---- C:\Program Files\McAfee
2016-07-11 10:27:51 ----D---- C:\Program Files\Common Files\McAfee
2016-07-11 07:23:38 ----D---- C:\Program Files\TrueKey
2016-07-11 07:23:36 ----D---- C:\ProgramData\McAfee Security Scan
2016-07-11 07:23:11 ----D---- C:\Program Files\McAfee Security Scan
2016-07-11 07:23:10 ----D---- C:\ProgramData\McAfee
======List of files/folders modified in the last 1 month======
2016-07-19 22:50:01 ----D---- C:\Program Files\trend micro
2016-07-19 22:05:06 ----D---- C:\WINDOWS\Prefetch
2016-07-19 22:01:01 ----D---- C:\WINDOWS\System32
2016-07-19 22:01:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-19 22:00:59 ----D---- C:\WINDOWS\INF
2016-07-19 21:56:49 ----D---- C:\WINDOWS\Temp
2016-07-19 21:53:04 ----D---- C:\WINDOWS\system32\sru
2016-07-19 21:47:41 ----D---- C:\AdwCleaner
2016-07-19 21:43:17 ----D---- C:\WINDOWS\system32\DriverStore
2016-07-19 21:42:54 ----D---- C:\WINDOWS\system32\config
2016-07-19 14:40:53 ----D---- C:\WINDOWS\WinSxS
2016-07-19 14:30:23 ----D---- C:\WINDOWS\Microsoft.NET
2016-07-19 14:23:41 ----D---- C:\WINDOWS\system32\catroot2
2016-07-19 13:24:42 ----D---- C:\WINDOWS\AppReadiness
2016-07-19 13:24:40 ----HD---- C:\Program Files\WindowsApps
2016-07-15 03:04:49 ----D---- C:\WINDOWS\system32\wbem
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\oobe
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\migration
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\en-US
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\drivers
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\appraiser
2016-07-15 03:04:39 ----D---- C:\WINDOWS\Provisioning
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\PrintDialog
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\DevicesFlow
2016-07-15 03:04:38 ----D---- C:\WINDOWS\PolicyDefinitions
2016-07-15 03:04:38 ----D---- C:\WINDOWS\bcastdvr
2016-07-15 03:04:38 ----D---- C:\WINDOWS\apppatch
2016-07-15 03:04:37 ----D---- C:\Windows
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Photo Viewer
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Mail
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Journal
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Defender
2016-07-15 03:04:37 ----D---- C:\Program Files\Internet Explorer
2016-07-15 03:04:35 ----D---- C:\WINDOWS\system32\Boot
2016-07-15 01:40:56 ----SHD---- C:\WINDOWS\Installer
2016-07-15 01:40:56 ----HD---- C:\Config.Msi
2016-07-14 16:50:33 ----D---- C:\ProgramData\Microsoft Help
2016-07-14 16:48:03 ----D---- C:\WINDOWS\CbsTemp
2016-07-14 16:47:44 ----D---- C:\WINDOWS\system32\MRT
2016-07-14 16:37:50 ----A---- C:\WINDOWS\system32\MRT.exe
2016-07-14 16:24:45 ----SHD---- C:\System Volume Information
2016-07-12 19:48:48 ----AD---- C:\Program Files\Microsoft Silverlight
2016-07-12 16:06:17 ----D---- C:\WINDOWS\system32\Macromed
2016-07-11 10:33:35 ----HD---- C:\ProgramData
2016-07-11 10:31:38 ----RD---- C:\Program Files
2016-07-11 10:29:47 ----D---- C:\ProgramData\Package Cache
2016-07-11 10:28:01 ----D---- C:\Program Files\Common Files\AV
2016-07-11 10:27:51 ----D---- C:\Program Files\Common Files
2016-07-07 02:39:33 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-07-02 06:37:58 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-06-30 17:49:03 ----D---- C:\WINDOWS\Tasks
2016-06-30 17:49:03 ----D---- C:\WINDOWS\system32\Tasks
2016-06-28 19:56:50 ----D---- C:\WINDOWS\rescache
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R1 MpKsl9db7e20b;MpKsl9db7e20b; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2E58C55D-FEBD-452B-A56B-07381052947F}\MpKsl9db7e20b.sys [2016-07-19 39168]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-10-25 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-10-25 542192]
R3 athr;@netathr.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwn.sys [2015-10-30 3205632]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-10-27 82432]
R3 ETD;@oem8.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-10-10 514760]
R3 i8042HDR;@oem26.inf,%i8042HDR.SvcDesc%;Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [2006-10-20 13224]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2015-10-27 3586816]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 RTSUER;@oem4.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-08 301824]
R3 tap0901;@oem6.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2013-08-22 35288]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2015-10-30 184832]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 96768]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-04-23 46080]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-05-28 203104]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-04-23 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2016-04-23 48640]
S3 vhf;@%SystemRoot%\system32\drivers\vhf.sys,-100; C:\WINDOWS\System32\drivers\vhf.sys [2015-10-30 24064]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-10-25 223216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-08-21 276992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-10 124616]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc.exe [2016-05-06 2377368]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 OneSyncSvc_47af2;Hostitel synchronizace_47af2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-06-22 906208]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-06-22 16792]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 PimIndexMaintenanceSvc_47af2;Data kontaktů_47af2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 UnistoreSvc_47af2;Úložiště uživatelských dat_47af2; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 UserDataSvc_47af2;Přístup k uživatelským datům_47af2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 UsoSvc;@%systemroot%\system32\usocore.dll,-102; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_5c70d;Hostitel synchronizace_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2013-11-11 685568]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [2016-05-31 239880]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_47af2;Služba zasílání zpráv_47af2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_5c70d;Služba zasílání zpráv_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-03 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_5c70d;Data kontaktů_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 TrueKeyServiceHelper;Intel Security True Key Helper Service; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-06-22 73968]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_5c70d;Úložiště uživatelských dat_5c70d; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 UserDataSvc_5c70d;Přístup k uživatelským datům_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Palko at 2016-07-19 22:49:53
Microsoft Windows 10 Home
System drive C: has 266 GB (87%) free of 304 GB
Total RAM: 1660 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:50:11, on 19. 7. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0494)
Boot mode: Normal
Running processes:
C:\Program Files\Elantech\ETDCtrl.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
C:\WINDOWS\system32\svchost.exe
C:\Users\Palko\Desktop\RSIT.exe
C:\Program Files\trend micro\Palko.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Palko\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: Intel Security True Key Helper Service (TrueKeyServiceHelper) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
--
End of file - 7291 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\HPCeeScheduleForPalko.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPalko (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\
googletranslate.xml
youtube.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-06-28 983792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23 4445272]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-06-28 983792]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-10-27 14467328]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-10 2484424]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-08-21 748744]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"CanonQuickMenu"=C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [2014-01-17 1284680]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-06-29 53288576]
"OneDrive"=C:\Users\Palko\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-15 405584]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-03-11 6667992]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SppExtComObj.exe]
"Debugger="C:\Windows\SECOH-QAD.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-07-15 03:10:26 ----A---- C:\WINDOWS\system32\KMSServer.exe
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-14 14:19:42 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\olepro32.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\moshost.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-07-14 14:19:41 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-14 14:19:40 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-07-14 14:19:40 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-07-14 14:19:39 ----A---- C:\WINDOWS\system32\ole32.dll
2016-07-14 14:19:39 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-14 14:19:38 ----A---- C:\WINDOWS\system32\wininet.dll
2016-07-14 14:19:37 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-07-14 14:19:36 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-07-14 14:19:36 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-07-14 14:19:35 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-07-14 14:19:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-07-14 14:19:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-14 14:19:31 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-07-14 14:19:30 ----A---- C:\WINDOWS\system32\mos.dll
2016-07-14 14:19:28 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-07-14 14:19:26 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-14 14:19:24 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-07-14 14:19:23 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-07-14 14:19:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-07-14 14:19:20 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-07-14 14:19:18 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-07-14 14:19:16 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-07-14 14:19:16 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-07-14 14:19:15 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-07-14 14:19:14 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-07-14 14:19:13 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-07-14 14:19:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-07-14 14:19:12 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-07-14 14:19:11 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-07-14 14:19:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-07-14 14:19:09 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-07-14 14:19:08 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-07-14 14:19:07 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-07-14 14:19:07 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-07-14 14:19:06 ----A---- C:\WINDOWS\system32\Wpc.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-07-14 14:19:05 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-07-14 14:19:04 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2016-07-14 14:19:03 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-07-14 14:19:03 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-07-14 14:19:02 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-14 14:19:01 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-07-14 14:19:00 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-07-14 14:18:59 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-07-14 14:18:58 ----A---- C:\WINDOWS\system32\werconcpl.dll
2016-07-14 14:18:58 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-07-14 14:18:57 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-07-14 14:18:57 ----A---- C:\WINDOWS\system32\dui70.dll
2016-07-14 14:18:56 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2016-07-14 14:18:56 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-14 14:18:55 ----A---- C:\WINDOWS\system32\netshell.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-07-14 14:18:53 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-07-14 14:18:52 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-07-14 14:18:51 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-07-14 14:18:51 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-07-14 14:18:50 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-07-14 14:18:49 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-14 14:18:48 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-07-14 14:18:48 ----A---- C:\WINDOWS\system32\cdd.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\duser.dll
2016-07-14 14:18:47 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-07-14 14:18:46 ----A---- C:\WINDOWS\system32\StikyNot.exe
2016-07-14 14:18:46 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-07-14 14:18:45 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-07-14 14:18:45 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-07-14 14:18:44 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2016-07-14 14:18:44 ----A---- C:\WINDOWS\system32\rasgcw.dll
2016-07-14 14:18:43 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-07-14 14:18:43 ----A---- C:\WINDOWS\system32\certcli.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-14 14:18:42 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-07-14 14:18:41 ----A---- C:\WINDOWS\system32\WLanConn.dll
2016-07-14 14:18:41 ----A---- C:\WINDOWS\system32\msra.exe
2016-07-14 14:18:40 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-07-14 14:18:40 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-07-14 14:18:39 ----A---- C:\WINDOWS\system32\WmpDui.dll
2016-07-14 14:18:39 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-07-14 14:18:38 ----A---- C:\WINDOWS\system32\dot3ui.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-14 14:18:37 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-07-14 14:18:36 ----A---- C:\WINDOWS\system32\cdpreference.exe
2016-07-14 14:18:33 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-14 14:18:31 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-14 14:18:30 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-14 14:18:29 ----A---- C:\WINDOWS\system32\twinui.dll
2016-07-14 14:18:23 ----A---- C:\WINDOWS\system32\wmp.dll
2016-07-14 14:18:20 ----A---- C:\WINDOWS\explorer.exe
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-14 14:18:11 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-07-14 14:18:10 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-14 14:18:08 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-07-14 14:18:07 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-07-14 14:18:05 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-07-14 14:18:01 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-14 14:18:00 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-07-14 14:17:59 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-14 14:17:59 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-07-14 14:17:58 ----A---- C:\WINDOWS\system32\shell32.dll
2016-07-14 14:17:55 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-14 14:17:52 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-14 14:17:49 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-14 14:17:47 ----A---- C:\WINDOWS\system32\localspl.dll
2016-07-14 14:17:46 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-14 14:17:46 ----A---- C:\WINDOWS\system32\authui.dll
2016-07-14 14:17:45 ----A---- C:\WINDOWS\system32\usocore.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-07-14 14:17:44 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-07-14 14:17:43 ----A---- C:\WINDOWS\system32\winmde.dll
2016-07-14 14:17:43 ----A---- C:\WINDOWS\system32\propsys.dll
2016-07-14 14:17:42 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-07-14 14:17:42 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-07-14 14:17:41 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2016-07-14 14:17:41 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-07-14 14:17:40 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-14 14:17:39 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-14 14:17:39 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-07-14 14:17:38 ----A---- C:\WINDOWS\system32\gameux.dll
2016-07-14 14:17:37 ----A---- C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-14 14:17:37 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-07-14 14:17:36 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-14 14:17:35 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\WSService.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-07-14 14:17:34 ----A---- C:\WINDOWS\system32\Clipc.dll
2016-07-14 14:17:33 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-07-14 14:17:33 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\wiaaut.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-07-14 14:17:32 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-14 14:17:31 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-07-14 14:17:31 ----A---- C:\WINDOWS\system32\inetpp.dll
2016-07-14 14:17:30 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-07-14 14:17:30 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-14 14:17:29 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-14 14:17:29 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-07-14 14:17:28 ----A---- C:\WINDOWS\HelpPane.exe
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\winipcfile.dll
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\sbe.dll
2016-07-14 14:17:27 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\ntprint.dll
2016-07-14 14:17:26 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-07-14 14:17:25 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-14 14:17:25 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-14 14:17:24 ----A---- C:\WINDOWS\system32\oemlicense.dll
2016-07-14 14:17:24 ----A---- C:\WINDOWS\system32\msieftp.dll
2016-07-14 14:17:23 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-14 14:17:22 ----A---- C:\WINDOWS\system32\WSClient.dll
2016-07-14 14:17:22 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-07-14 14:17:21 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-07-14 14:17:20 ----A---- C:\WINDOWS\system32\winmsipc.dll
2016-07-14 14:17:19 ----A---- C:\WINDOWS\system32\ieui.dll
2016-07-14 14:17:18 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-14 14:17:18 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-07-14 14:17:16 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-14 14:17:12 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-07-14 14:17:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-14 14:17:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-07-14 14:17:06 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-07-14 14:17:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-07-14 14:16:58 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\devinv.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-07-14 14:16:54 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-07-14 14:16:53 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-07-14 14:16:49 ----A---- C:\WINDOWS\system32\invagent.dll
2016-07-14 14:16:49 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-07-14 14:16:48 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-07-14 14:16:47 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-07-14 14:16:47 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-14 14:16:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-07-14 14:16:45 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-07-14 14:16:45 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\provengine.dll
2016-07-14 14:16:43 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-14 14:16:42 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-07-14 14:16:42 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-07-14 14:16:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-14 14:16:40 ----A---- C:\WINDOWS\system32\tquery.dll
2016-07-14 14:16:40 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-14 14:16:39 ----A---- C:\WINDOWS\system32\aepic.dll
2016-07-14 14:16:38 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-07-14 14:16:38 ----A---- C:\WINDOWS\system32\mf.dll
2016-07-14 14:16:37 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-07-14 14:16:35 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-14 14:16:35 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-14 14:16:34 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-07-14 14:16:34 ----A---- C:\WINDOWS\system32\provops.dll
2016-07-14 14:16:33 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-07-14 14:16:32 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-07-14 14:16:32 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-07-14 14:16:31 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-07-14 14:16:31 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-07-14 14:16:30 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-14 14:16:25 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\wldp.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-07-14 14:16:24 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-07-14 14:16:23 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-07-14 14:16:23 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\webio.dll
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\mssphtb.dll
2016-07-14 14:16:22 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\mssph.dll
2016-07-14 14:16:21 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-07-14 14:16:20 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-07-14 14:16:20 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-14 14:16:19 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-07-14 14:16:19 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-07-14 14:16:18 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-14 14:16:17 ----A---- C:\WINDOWS\system32\fhengine.dll
2016-07-14 14:16:17 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-07-14 14:16:16 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-14 14:16:16 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-14 14:16:15 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-14 14:16:15 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\msscntrs.dll
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-07-14 14:16:14 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-14 14:16:09 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-07-14 14:16:08 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-07-14 14:16:08 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-07-14 14:16:07 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-07-14 14:16:07 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-07-14 14:16:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-07-14 14:16:04 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-07-14 14:16:04 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-07-14 14:16:03 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-07-14 14:16:02 ----A---- C:\WINDOWS\system32\taskeng.exe
2016-07-14 14:16:01 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-14 14:16:01 ----A---- C:\WINDOWS\system32\winload.exe
2016-07-14 14:16:00 ----A---- C:\WINDOWS\system32\winresume.exe
2016-07-14 14:16:00 ----A---- C:\WINDOWS\system32\schtasks.exe
2016-07-14 14:15:59 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-07-14 14:15:58 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-14 14:15:57 ----A---- C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-11 10:33:35 ----D---- C:\ProgramData\TrueKey
2016-07-11 10:31:38 ----D---- C:\Program Files\Intel
2016-07-11 10:31:22 ----D---- C:\Program Files\Intel Security
2016-07-11 10:27:53 ----D---- C:\Program Files\McAfee
2016-07-11 10:27:51 ----D---- C:\Program Files\Common Files\McAfee
2016-07-11 07:23:38 ----D---- C:\Program Files\TrueKey
2016-07-11 07:23:36 ----D---- C:\ProgramData\McAfee Security Scan
2016-07-11 07:23:11 ----D---- C:\Program Files\McAfee Security Scan
2016-07-11 07:23:10 ----D---- C:\ProgramData\McAfee
======List of files/folders modified in the last 1 month======
2016-07-19 22:50:01 ----D---- C:\Program Files\trend micro
2016-07-19 22:05:06 ----D---- C:\WINDOWS\Prefetch
2016-07-19 22:01:01 ----D---- C:\WINDOWS\System32
2016-07-19 22:01:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-19 22:00:59 ----D---- C:\WINDOWS\INF
2016-07-19 21:56:49 ----D---- C:\WINDOWS\Temp
2016-07-19 21:53:04 ----D---- C:\WINDOWS\system32\sru
2016-07-19 21:47:41 ----D---- C:\AdwCleaner
2016-07-19 21:43:17 ----D---- C:\WINDOWS\system32\DriverStore
2016-07-19 21:42:54 ----D---- C:\WINDOWS\system32\config
2016-07-19 14:40:53 ----D---- C:\WINDOWS\WinSxS
2016-07-19 14:30:23 ----D---- C:\WINDOWS\Microsoft.NET
2016-07-19 14:23:41 ----D---- C:\WINDOWS\system32\catroot2
2016-07-19 13:24:42 ----D---- C:\WINDOWS\AppReadiness
2016-07-19 13:24:40 ----HD---- C:\Program Files\WindowsApps
2016-07-15 03:04:49 ----D---- C:\WINDOWS\system32\wbem
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\oobe
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\migration
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\en-US
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\drivers
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\cs-CZ
2016-07-15 03:04:48 ----D---- C:\WINDOWS\system32\appraiser
2016-07-15 03:04:39 ----D---- C:\WINDOWS\Provisioning
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\PrintDialog
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-07-15 03:04:38 ----RD---- C:\WINDOWS\DevicesFlow
2016-07-15 03:04:38 ----D---- C:\WINDOWS\PolicyDefinitions
2016-07-15 03:04:38 ----D---- C:\WINDOWS\bcastdvr
2016-07-15 03:04:38 ----D---- C:\WINDOWS\apppatch
2016-07-15 03:04:37 ----D---- C:\Windows
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Photo Viewer
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Mail
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Journal
2016-07-15 03:04:37 ----D---- C:\Program Files\Windows Defender
2016-07-15 03:04:37 ----D---- C:\Program Files\Internet Explorer
2016-07-15 03:04:35 ----D---- C:\WINDOWS\system32\Boot
2016-07-15 01:40:56 ----SHD---- C:\WINDOWS\Installer
2016-07-15 01:40:56 ----HD---- C:\Config.Msi
2016-07-14 16:50:33 ----D---- C:\ProgramData\Microsoft Help
2016-07-14 16:48:03 ----D---- C:\WINDOWS\CbsTemp
2016-07-14 16:47:44 ----D---- C:\WINDOWS\system32\MRT
2016-07-14 16:37:50 ----A---- C:\WINDOWS\system32\MRT.exe
2016-07-14 16:24:45 ----SHD---- C:\System Volume Information
2016-07-12 19:48:48 ----AD---- C:\Program Files\Microsoft Silverlight
2016-07-12 16:06:17 ----D---- C:\WINDOWS\system32\Macromed
2016-07-11 10:33:35 ----HD---- C:\ProgramData
2016-07-11 10:31:38 ----RD---- C:\Program Files
2016-07-11 10:29:47 ----D---- C:\ProgramData\Package Cache
2016-07-11 10:28:01 ----D---- C:\Program Files\Common Files\AV
2016-07-11 10:27:51 ----D---- C:\Program Files\Common Files
2016-07-07 02:39:33 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-07-02 06:37:58 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-06-30 17:49:03 ----D---- C:\WINDOWS\Tasks
2016-06-30 17:49:03 ----D---- C:\WINDOWS\system32\Tasks
2016-06-28 19:56:50 ----D---- C:\WINDOWS\rescache
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R1 MpKsl9db7e20b;MpKsl9db7e20b; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2E58C55D-FEBD-452B-A56B-07381052947F}\MpKsl9db7e20b.sys [2016-07-19 39168]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-10-25 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-10-25 542192]
R3 athr;@netathr.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwn.sys [2015-10-30 3205632]
R3 AtiHDAudioService;@oem22.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-10-27 82432]
R3 ETD;@oem8.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-10-10 514760]
R3 i8042HDR;@oem26.inf,%i8042HDR.SvcDesc%;Keyboard Filter Driver; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [2006-10-20 13224]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2015-10-27 3586816]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-10-30 494080]
R3 RTSUER;@oem4.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-08 301824]
R3 tap0901;@oem6.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2013-08-22 35288]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2015-10-30 184832]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 96768]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-04-23 46080]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-05-28 203104]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-04-23 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2016-04-23 48640]
S3 vhf;@%SystemRoot%\system32\drivers\vhf.sys,-100; C:\WINDOWS\System32\drivers\vhf.sys [2015-10-30 24064]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-10-25 223216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-08-21 276992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-10 124616]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc.exe [2016-05-06 2377368]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 OneSyncSvc_47af2;Hostitel synchronizace_47af2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-06-22 906208]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-06-22 16792]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 PimIndexMaintenanceSvc_47af2;Data kontaktů_47af2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 UnistoreSvc_47af2;Úložiště uživatelských dat_47af2; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 UserDataSvc_47af2;Přístup k uživatelským datům_47af2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 UsoSvc;@%systemroot%\system32\usocore.dll,-102; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_5c70d;Hostitel synchronizace_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2013-11-11 685568]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [2016-05-31 239880]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_47af2;Služba zasílání zpráv_47af2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_5c70d;Služba zasílání zpráv_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-03 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_5c70d;Data kontaktů_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 TrueKeyServiceHelper;Intel Security True Key Helper Service; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-06-22 73968]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_5c70d;Úložiště uživatelských dat_5c70d; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 UserDataSvc_5c70d;Přístup k uživatelským datům_5c70d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý notebook
Všiml jsem si, že máte Win10. K němu se, bohužel RSIT nechová slušně. K mazání dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý notebook
Dobrý den přeji. vkládám log z FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-07-2016
Ran by Palko (administrator) on K53U (21-07-2016 13:45:45)
Running from C:\Users\Palko\Desktop\Viry
Loaded Profiles: Palko (Available Profiles: Palko)
Platform: Microsoft Windows 10 Home Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McT72FB.tmp
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.3DBuilder_11.1.9.0_x86__8wekyb3d8bbwe\Builder3D.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.486_none_1a2245026e1130f1\TiWorker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14467328 2015-10-27] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2484424 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-08-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1284680 2014-01-17] (CANON INC.)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6667992 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\MountPoints2: {38c85a69-1c5a-11e6-974f-f46d04a334b9} - "D:\HTC_Sync_Manager_PC.exe"
IFEO\SppExtComObj.exe: [Debugger] C:\Windows\SECOH-QAD.exe
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-09-01]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-07-12]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{110da1a8-7965-49c3-83d3-a99ca2d2b8c1}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{34f0bf5c-7140-4dfe-9a14-228b23e36405}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
FireFox:
========
FF ProfilePath: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default
FF Homepage: hxxp://www.centrum.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF SearchPlugin: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\googletranslate.xml [2015-05-26]
FF SearchPlugin: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\youtube.xml [2015-05-26]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\extensions\adblockpopups@jessehakanen.net.xpi [2016-05-02]
FF Extension: CodeViewer - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\extensions\codeviewer@wannasoft.mysmth.net.xpi [2016-05-02]
FF Extension: Adblock Plus - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 0093331469013192mcinstcleanup; C:\WINDOWS\TEMP\009333~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2015-08-21] (Advanced Micro Devices, Inc.) [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [124616 2015-10-10] (ELAN Microelectronics Corp.)
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [696320 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc.exe [2377368 2016-05-06] (Intel(R) Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [239880 2016-05-31] (McAfee, Inc.)
S2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [685568 2013-11-11] () [File not signed]
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908792 2016-07-14] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16792 2016-07-14] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [73968 2016-07-14] (McAfee, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-07-01] (Microsoft Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\WINDOWS\System32\drivers\athwn.sys [3205632 2015-10-30] (Qualcomm Atheros Communications, Inc.)
R3 ETD; C:\WINDOWS\system32\DRIVERS\ETD.sys [514760 2015-10-10] (ELAN Microelectronics Corp.)
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
R1 MpKsl9db7e20b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2E58C55D-FEBD-452B-A56B-07381052947F}\MpKsl9db7e20b.sys [39168 2016-07-19] (Microsoft Corporation)
R1 MpKslf6fee392; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0C500E4B-458E-4C9C-B081-BEA3C6DAFC7A}\MpKslf6fee392.sys [39168 2016-07-20] (Microsoft Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [301824 2015-07-08] (Realsil Semiconductor Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-21 13:45 - 2016-07-21 13:45 - 00000000 ____D C:\FRST
2016-07-21 13:42 - 2016-07-21 13:45 - 00000000 ____D C:\Users\Palko\Desktop\Viry
2016-07-15 03:10 - 2016-07-19 21:53 - 00038454 _____ C:\WINDOWS\system32\KMSServer.exe
2016-07-14 14:19 - 2016-07-01 06:39 - 05793632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-07-14 14:19 - 2016-07-01 06:23 - 01334680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-07-14 14:19 - 2016-07-01 06:21 - 00260448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-07-14 14:19 - 2016-07-01 06:20 - 01300016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-07-14 14:19 - 2016-07-01 06:19 - 05598832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-07-14 14:19 - 2016-07-01 06:19 - 01337680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-07-14 14:19 - 2016-07-01 06:19 - 00633192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-07-14 14:19 - 2016-07-01 06:18 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-07-14 14:19 - 2016-07-01 06:18 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-07-14 14:19 - 2016-07-01 06:17 - 01536600 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-07-14 14:19 - 2016-07-01 06:12 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-07-14 14:19 - 2016-07-01 06:12 - 01866104 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 01712480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-07-14 14:19 - 2016-07-01 06:11 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 00521152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 00484192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-07-14 14:19 - 2016-07-01 06:10 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-07-14 14:19 - 2016-07-01 05:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-07-14 14:19 - 2016-07-01 05:45 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-07-14 14:19 - 2016-07-01 05:41 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-07-14 14:19 - 2016-07-01 05:39 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-14 14:19 - 2016-07-01 05:38 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-07-14 14:19 - 2016-07-01 05:38 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-14 14:19 - 2016-07-01 05:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-07-14 14:19 - 2016-07-01 05:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-14 14:19 - 2016-07-01 05:35 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-07-14 14:19 - 2016-07-01 05:33 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-07-14 14:19 - 2016-07-01 05:31 - 00424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-07-14 14:19 - 2016-07-01 05:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-07-14 14:19 - 2016-07-01 05:28 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-14 14:19 - 2016-07-01 05:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-07-14 14:19 - 2016-07-01 05:26 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-07-14 14:19 - 2016-07-01 05:25 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-07-14 14:19 - 2016-07-01 05:25 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-07-14 14:19 - 2016-07-01 05:25 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-07-14 14:19 - 2016-07-01 05:24 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-07-14 14:19 - 2016-07-01 05:22 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-07-14 14:19 - 2016-07-01 05:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-07-14 14:19 - 2016-07-01 05:18 - 02973696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-07-14 14:19 - 2016-07-01 05:16 - 01896960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02501632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 01498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 00705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-07-14 14:19 - 2016-07-01 05:12 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-14 14:18 - 2016-07-01 06:35 - 00792328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-07-14 14:18 - 2016-07-01 06:31 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-07-14 14:18 - 2016-07-01 06:19 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-07-14 14:18 - 2016-07-01 06:19 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-07-14 14:18 - 2016-07-01 06:18 - 00995296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-07-14 14:18 - 2016-07-01 06:11 - 00336224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-07-14 14:18 - 2016-07-01 05:41 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-14 14:18 - 2016-07-01 05:39 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2016-07-14 14:18 - 2016-07-01 05:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-14 14:18 - 2016-07-01 05:37 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-07-14 14:18 - 2016-07-01 05:36 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-14 14:18 - 2016-07-01 05:36 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-14 14:18 - 2016-07-01 05:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-07-14 14:18 - 2016-07-01 05:35 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-14 14:18 - 2016-07-01 05:34 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-07-14 14:18 - 2016-07-01 05:34 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-07-14 14:18 - 2016-07-01 05:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-07-14 14:18 - 2016-07-01 05:32 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-07-14 14:18 - 2016-07-01 05:32 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-07-14 14:18 - 2016-07-01 05:31 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-07-14 14:18 - 2016-07-01 05:28 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-14 14:18 - 2016-07-01 05:28 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-07-14 14:18 - 2016-07-01 05:26 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-14 14:18 - 2016-07-01 05:23 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-14 14:18 - 2016-07-01 05:23 - 01166848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2016-07-14 14:18 - 2016-07-01 05:22 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-07-14 14:18 - 2016-07-01 05:22 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-07-14 14:18 - 2016-07-01 05:20 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-07-14 14:18 - 2016-07-01 05:18 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-07-14 14:18 - 2016-07-01 05:17 - 01800704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-14 14:18 - 2016-07-01 05:16 - 01635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-07-14 14:18 - 2016-07-01 05:15 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-14 14:18 - 2016-07-01 05:15 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-07-14 14:18 - 2016-07-01 05:13 - 01900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-07-14 14:18 - 2016-07-01 05:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-07-14 14:18 - 2016-07-01 05:11 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-14 14:18 - 2016-07-01 05:08 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-14 14:17 - 2016-07-01 06:38 - 01862008 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-14 14:17 - 2016-07-01 06:32 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-07-14 14:17 - 2016-07-01 06:23 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-07-14 14:17 - 2016-07-01 06:20 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-07-14 14:17 - 2016-07-01 06:20 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-14 14:17 - 2016-07-01 06:19 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-07-14 14:17 - 2016-07-01 06:19 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-07-14 14:17 - 2016-07-01 06:18 - 00510880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-07-14 14:17 - 2016-07-01 06:18 - 00064584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2016-07-14 14:17 - 2016-07-01 05:40 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-14 14:17 - 2016-07-01 05:38 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-14 14:17 - 2016-07-01 05:34 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-07-14 14:17 - 2016-07-01 05:34 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-14 14:17 - 2016-07-01 05:33 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-07-14 14:17 - 2016-07-01 05:33 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-07-14 14:17 - 2016-07-01 05:30 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-07-14 14:17 - 2016-07-01 05:29 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-07-14 14:17 - 2016-07-01 05:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-14 14:17 - 2016-07-01 05:28 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2016-07-14 14:17 - 2016-07-01 05:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 01746944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-07-14 14:17 - 2016-07-01 05:25 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 01484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-07-14 14:17 - 2016-07-01 05:22 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-07-14 14:17 - 2016-07-01 05:21 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-07-14 14:17 - 2016-07-01 05:20 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-07-14 14:17 - 2016-07-01 05:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-07-14 14:17 - 2016-07-01 05:19 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-07-14 14:17 - 2016-07-01 05:18 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-07-14 14:17 - 2016-07-01 05:18 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-14 14:17 - 2016-07-01 05:17 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-14 14:17 - 2016-07-01 05:17 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-07-14 14:17 - 2016-07-01 05:16 - 00925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-07-14 14:17 - 2016-07-01 05:16 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2016-07-14 14:17 - 2016-07-01 05:15 - 04413440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-14 14:17 - 2016-07-01 05:14 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-07-14 14:17 - 2016-07-01 05:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-07-14 14:17 - 2016-07-01 05:13 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-07-14 14:17 - 2016-07-01 05:13 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-07-14 14:17 - 2016-07-01 05:11 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-07-14 14:17 - 2016-07-01 05:08 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 01303744 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00484544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00476864 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00266944 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00227008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-07-14 14:16 - 2016-07-01 07:14 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00045760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-14 14:16 - 2016-07-01 06:40 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-07-14 14:16 - 2016-07-01 06:39 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-07-14 14:16 - 2016-07-01 06:39 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-07-14 14:16 - 2016-07-01 06:39 - 00927080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-07-14 14:16 - 2016-07-01 06:39 - 00875992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-07-14 14:16 - 2016-07-01 06:39 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-07-14 14:16 - 2016-07-01 06:38 - 01083656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-07-14 14:16 - 2016-07-01 06:38 - 00032552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00925576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-07-14 14:16 - 2016-07-01 06:20 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-14 14:16 - 2016-07-01 06:19 - 00836760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-14 14:16 - 2016-07-01 06:07 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-14 14:16 - 2016-07-01 06:06 - 01861984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-07-14 14:16 - 2016-07-01 06:06 - 00403920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-07-14 14:16 - 2016-07-01 05:39 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-14 14:16 - 2016-07-01 05:35 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-07-14 14:16 - 2016-07-01 05:35 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-07-14 14:16 - 2016-07-01 05:34 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-07-14 14:16 - 2016-07-01 05:33 - 00326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-14 14:16 - 2016-07-01 05:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-14 14:16 - 2016-07-01 05:32 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 19347968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-07-14 14:16 - 2016-07-01 05:30 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-07-14 14:16 - 2016-07-01 05:29 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-14 14:16 - 2016-07-01 05:29 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-07-14 14:16 - 2016-07-01 05:27 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-14 14:16 - 2016-07-01 05:27 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-07-14 14:16 - 2016-07-01 05:27 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-07-14 14:16 - 2016-07-01 05:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-07-14 14:16 - 2016-07-01 05:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-07-14 14:16 - 2016-07-01 05:24 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-07-14 14:16 - 2016-07-01 05:24 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 01401856 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-07-14 14:16 - 2016-07-01 05:23 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-07-14 14:16 - 2016-07-01 05:21 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-07-14 14:16 - 2016-07-01 05:20 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-07-14 14:16 - 2016-07-01 05:20 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-07-14 14:16 - 2016-07-01 05:20 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-14 14:16 - 2016-07-01 05:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-07-14 14:16 - 2016-07-01 05:15 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-07-14 14:16 - 2016-07-01 05:15 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-14 14:16 - 2016-07-01 05:12 - 03483648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-07-14 14:16 - 2016-07-01 05:11 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 01976832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-07-14 14:16 - 2016-06-18 02:22 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-07-14 14:16 - 2016-02-09 06:29 - 00279376 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-07-14 14:15 - 2016-07-01 05:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-07-14 14:15 - 2016-07-01 05:38 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-14 14:15 - 2016-07-01 05:32 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-14 14:15 - 2016-07-01 05:31 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-14 14:15 - 2016-07-01 05:28 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-07-14 14:15 - 2016-07-01 05:26 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-14 14:15 - 2016-07-01 05:25 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-12 20:09 - 2016-07-12 20:09 - 00002118 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-07-12 20:09 - 2016-07-12 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-07-11 10:34 - 2016-07-11 10:34 - 00000000 ____D C:\Users\Palko\AppData\Local\CEF
2016-07-11 10:33 - 2016-07-21 13:42 - 00001348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-07-11 10:33 - 2016-07-11 10:35 - 00000000 ____D C:\Users\Palko\AppData\Local\tkdata
2016-07-11 10:33 - 2016-07-11 10:33 - 00001334 _____ C:\Users\Public\Desktop\True Key.lnk
2016-07-11 10:33 - 2016-07-11 10:33 - 00000000 ____D C:\ProgramData\TrueKey
2016-07-11 10:31 - 2016-07-11 10:31 - 00000000 ____D C:\Program Files\Intel Security
2016-07-11 10:31 - 2016-07-11 10:31 - 00000000 ____D C:\Program Files\Intel
2016-07-11 10:27 - 2016-07-20 13:12 - 00000000 ____D C:\Program Files\McAfee
2016-07-11 10:27 - 2016-07-11 10:28 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-07-11 07:23 - 2016-07-21 13:42 - 00000000 ____D C:\Program Files\TrueKey
2016-07-11 07:23 - 2016-07-15 01:43 - 00000000 ____D C:\ProgramData\McAfee
2016-07-11 07:23 - 2016-07-12 20:08 - 00000000 ____D C:\Program Files\McAfee Security Scan
2016-07-11 07:23 - 2016-07-11 07:23 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2016-06-28 18:54 - 2016-06-28 18:54 - 02696620 _____ C:\Users\Palko\Desktop\Tabulka_rekl.předmětů_2016.xlsx
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-21 13:42 - 2015-10-30 17:08 - 00716854 _____ C:\WINDOWS\system32\perfh005.dat
2016-07-21 13:42 - 2015-10-30 17:08 - 00143080 _____ C:\WINDOWS\system32\perfc005.dat
2016-07-21 13:42 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-07-21 13:42 - 2015-08-01 21:22 - 01683934 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-21 13:40 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-20 14:06 - 2015-06-02 10:09 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-07-20 10:29 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-20 01:52 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-07-19 22:50 - 2015-07-03 23:08 - 00000000 ____D C:\Program Files\trend micro
2016-07-19 21:52 - 2015-12-15 00:54 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-19 21:51 - 2015-12-15 00:28 - 00000000 ____D C:\Users\Palko
2016-07-19 21:51 - 2015-10-30 07:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-07-19 21:47 - 2015-07-04 08:27 - 00000000 ____D C:\AdwCleaner
2016-07-19 17:49 - 2016-04-12 15:39 - 00000330 _____ C:\WINDOWS\Tasks\HPCeeScheduleForPalko.job
2016-07-15 06:11 - 2015-08-01 21:32 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-07-15 03:04 - 2015-10-30 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\Provisioning
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Defender
2016-07-14 16:48 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-07-14 16:47 - 2015-05-21 21:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-07-14 16:37 - 2015-05-21 21:44 - 141983760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-12 19:48 - 2015-05-31 14:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-07-12 16:06 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-07-11 10:29 - 2015-12-15 00:21 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-11 10:28 - 2015-06-29 22:38 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-11 07:23 - 2015-06-02 10:07 - 00000000 ____D C:\Users\Palko\AppData\Local\Adobe
2016-07-07 02:39 - 2015-05-21 14:17 - 00400552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-02 06:37 - 2015-10-30 07:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-07-02 06:37 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-06-27 09:48 - 2015-05-31 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
==================== Files in the root of some directories =======
2015-04-14 18:28 - 2015-04-14 18:28 - 0001171 _____ () C:\Users\Palko\AppData\Roaming\9xfgtVfy1z2FUlEY
2015-04-14 18:28 - 2015-04-14 18:28 - 0001171 _____ () C:\Users\Palko\AppData\Roaming\maDz4SCmS
2015-06-29 21:54 - 2015-06-29 21:54 - 0000000 _____ () C:\Users\Palko\AppData\Local\Temp.dat
2015-09-01 13:03 - 2015-09-01 16:17 - 0001046 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\Palko\AppData\Local\Temp\libeay32.dll
C:\Users\Palko\AppData\Local\Temp\msvcr120.dll
C:\Users\Palko\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-07-19 14:16
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-07-2016
Ran by Palko (administrator) on K53U (21-07-2016 13:45:45)
Running from C:\Users\Palko\Desktop\Viry
Loaded Profiles: Palko (Available Profiles: Palko)
Platform: Microsoft Windows 10 Home Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McT72FB.tmp
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.3DBuilder_11.1.9.0_x86__8wekyb3d8bbwe\Builder3D.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.486_none_1a2245026e1130f1\TiWorker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14467328 2015-10-27] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2484424 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-08-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1284680 2014-01-17] (CANON INC.)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6667992 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\MountPoints2: {38c85a69-1c5a-11e6-974f-f46d04a334b9} - "D:\HTC_Sync_Manager_PC.exe"
IFEO\SppExtComObj.exe: [Debugger] C:\Windows\SECOH-QAD.exe
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-09-01]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-07-12]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{110da1a8-7965-49c3-83d3-a99ca2d2b8c1}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{34f0bf5c-7140-4dfe-9a14-228b23e36405}: [DhcpNameServer] 192.168.43.1
Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
FireFox:
========
FF ProfilePath: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default
FF Homepage: hxxp://www.centrum.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF SearchPlugin: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\googletranslate.xml [2015-05-26]
FF SearchPlugin: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\youtube.xml [2015-05-26]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\extensions\adblockpopups@jessehakanen.net.xpi [2016-05-02]
FF Extension: CodeViewer - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\extensions\codeviewer@wannasoft.mysmth.net.xpi [2016-05-02]
FF Extension: Adblock Plus - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 0093331469013192mcinstcleanup; C:\WINDOWS\TEMP\009333~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2015-08-21] (Advanced Micro Devices, Inc.) [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [124616 2015-10-10] (ELAN Microelectronics Corp.)
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [696320 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc.exe [2377368 2016-05-06] (Intel(R) Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [239880 2016-05-31] (McAfee, Inc.)
S2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [685568 2013-11-11] () [File not signed]
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908792 2016-07-14] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16792 2016-07-14] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [73968 2016-07-14] (McAfee, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-07-01] (Microsoft Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\WINDOWS\System32\drivers\athwn.sys [3205632 2015-10-30] (Qualcomm Atheros Communications, Inc.)
R3 ETD; C:\WINDOWS\system32\DRIVERS\ETD.sys [514760 2015-10-10] (ELAN Microelectronics Corp.)
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
R1 MpKsl9db7e20b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2E58C55D-FEBD-452B-A56B-07381052947F}\MpKsl9db7e20b.sys [39168 2016-07-19] (Microsoft Corporation)
R1 MpKslf6fee392; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0C500E4B-458E-4C9C-B081-BEA3C6DAFC7A}\MpKslf6fee392.sys [39168 2016-07-20] (Microsoft Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [301824 2015-07-08] (Realsil Semiconductor Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-21 13:45 - 2016-07-21 13:45 - 00000000 ____D C:\FRST
2016-07-21 13:42 - 2016-07-21 13:45 - 00000000 ____D C:\Users\Palko\Desktop\Viry
2016-07-15 03:10 - 2016-07-19 21:53 - 00038454 _____ C:\WINDOWS\system32\KMSServer.exe
2016-07-14 14:19 - 2016-07-01 06:39 - 05793632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-07-14 14:19 - 2016-07-01 06:23 - 01334680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-07-14 14:19 - 2016-07-01 06:21 - 00260448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-07-14 14:19 - 2016-07-01 06:20 - 01300016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-07-14 14:19 - 2016-07-01 06:19 - 05598832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-07-14 14:19 - 2016-07-01 06:19 - 01337680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-07-14 14:19 - 2016-07-01 06:19 - 00633192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-07-14 14:19 - 2016-07-01 06:18 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-07-14 14:19 - 2016-07-01 06:18 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-07-14 14:19 - 2016-07-01 06:17 - 01536600 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-07-14 14:19 - 2016-07-01 06:12 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-07-14 14:19 - 2016-07-01 06:12 - 01866104 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 01712480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-07-14 14:19 - 2016-07-01 06:11 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 00521152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 00484192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-07-14 14:19 - 2016-07-01 06:10 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-07-14 14:19 - 2016-07-01 05:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-07-14 14:19 - 2016-07-01 05:45 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-07-14 14:19 - 2016-07-01 05:41 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-07-14 14:19 - 2016-07-01 05:39 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-14 14:19 - 2016-07-01 05:38 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-07-14 14:19 - 2016-07-01 05:38 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-14 14:19 - 2016-07-01 05:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-07-14 14:19 - 2016-07-01 05:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-14 14:19 - 2016-07-01 05:35 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-07-14 14:19 - 2016-07-01 05:33 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-07-14 14:19 - 2016-07-01 05:31 - 00424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-07-14 14:19 - 2016-07-01 05:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-07-14 14:19 - 2016-07-01 05:28 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-14 14:19 - 2016-07-01 05:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-07-14 14:19 - 2016-07-01 05:26 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-07-14 14:19 - 2016-07-01 05:25 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-07-14 14:19 - 2016-07-01 05:25 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-07-14 14:19 - 2016-07-01 05:25 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-07-14 14:19 - 2016-07-01 05:24 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-07-14 14:19 - 2016-07-01 05:22 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-07-14 14:19 - 2016-07-01 05:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-07-14 14:19 - 2016-07-01 05:18 - 02973696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-07-14 14:19 - 2016-07-01 05:16 - 01896960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02501632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 01498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 00705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-07-14 14:19 - 2016-07-01 05:12 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-14 14:18 - 2016-07-01 06:35 - 00792328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-07-14 14:18 - 2016-07-01 06:31 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-07-14 14:18 - 2016-07-01 06:19 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-07-14 14:18 - 2016-07-01 06:19 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-07-14 14:18 - 2016-07-01 06:18 - 00995296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-07-14 14:18 - 2016-07-01 06:11 - 00336224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-07-14 14:18 - 2016-07-01 05:41 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-14 14:18 - 2016-07-01 05:39 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2016-07-14 14:18 - 2016-07-01 05:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-14 14:18 - 2016-07-01 05:37 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-07-14 14:18 - 2016-07-01 05:36 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-14 14:18 - 2016-07-01 05:36 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-14 14:18 - 2016-07-01 05:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-07-14 14:18 - 2016-07-01 05:35 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-14 14:18 - 2016-07-01 05:34 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-07-14 14:18 - 2016-07-01 05:34 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-07-14 14:18 - 2016-07-01 05:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-07-14 14:18 - 2016-07-01 05:32 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-07-14 14:18 - 2016-07-01 05:32 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-07-14 14:18 - 2016-07-01 05:31 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-07-14 14:18 - 2016-07-01 05:28 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-14 14:18 - 2016-07-01 05:28 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-07-14 14:18 - 2016-07-01 05:26 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-14 14:18 - 2016-07-01 05:23 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-14 14:18 - 2016-07-01 05:23 - 01166848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2016-07-14 14:18 - 2016-07-01 05:22 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-07-14 14:18 - 2016-07-01 05:22 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-07-14 14:18 - 2016-07-01 05:20 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-07-14 14:18 - 2016-07-01 05:18 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-07-14 14:18 - 2016-07-01 05:17 - 01800704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-14 14:18 - 2016-07-01 05:16 - 01635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-07-14 14:18 - 2016-07-01 05:15 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-14 14:18 - 2016-07-01 05:15 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-07-14 14:18 - 2016-07-01 05:13 - 01900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-07-14 14:18 - 2016-07-01 05:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-07-14 14:18 - 2016-07-01 05:11 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-14 14:18 - 2016-07-01 05:08 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-14 14:17 - 2016-07-01 06:38 - 01862008 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-14 14:17 - 2016-07-01 06:32 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-07-14 14:17 - 2016-07-01 06:23 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-07-14 14:17 - 2016-07-01 06:20 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-07-14 14:17 - 2016-07-01 06:20 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-14 14:17 - 2016-07-01 06:19 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-07-14 14:17 - 2016-07-01 06:19 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-07-14 14:17 - 2016-07-01 06:18 - 00510880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-07-14 14:17 - 2016-07-01 06:18 - 00064584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2016-07-14 14:17 - 2016-07-01 05:40 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-14 14:17 - 2016-07-01 05:38 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-14 14:17 - 2016-07-01 05:34 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-07-14 14:17 - 2016-07-01 05:34 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-14 14:17 - 2016-07-01 05:33 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-07-14 14:17 - 2016-07-01 05:33 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-07-14 14:17 - 2016-07-01 05:30 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-07-14 14:17 - 2016-07-01 05:29 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-07-14 14:17 - 2016-07-01 05:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-14 14:17 - 2016-07-01 05:28 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2016-07-14 14:17 - 2016-07-01 05:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 01746944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-07-14 14:17 - 2016-07-01 05:25 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 01484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-07-14 14:17 - 2016-07-01 05:22 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-07-14 14:17 - 2016-07-01 05:21 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-07-14 14:17 - 2016-07-01 05:20 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-07-14 14:17 - 2016-07-01 05:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-07-14 14:17 - 2016-07-01 05:19 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-07-14 14:17 - 2016-07-01 05:18 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-07-14 14:17 - 2016-07-01 05:18 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-14 14:17 - 2016-07-01 05:17 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-14 14:17 - 2016-07-01 05:17 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-07-14 14:17 - 2016-07-01 05:16 - 00925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-07-14 14:17 - 2016-07-01 05:16 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2016-07-14 14:17 - 2016-07-01 05:15 - 04413440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-14 14:17 - 2016-07-01 05:14 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-07-14 14:17 - 2016-07-01 05:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-07-14 14:17 - 2016-07-01 05:13 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-07-14 14:17 - 2016-07-01 05:13 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-07-14 14:17 - 2016-07-01 05:11 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-07-14 14:17 - 2016-07-01 05:08 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 01303744 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00484544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00476864 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00266944 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00227008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-07-14 14:16 - 2016-07-01 07:14 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00045760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-14 14:16 - 2016-07-01 06:40 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-07-14 14:16 - 2016-07-01 06:39 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-07-14 14:16 - 2016-07-01 06:39 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-07-14 14:16 - 2016-07-01 06:39 - 00927080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-07-14 14:16 - 2016-07-01 06:39 - 00875992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-07-14 14:16 - 2016-07-01 06:39 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-07-14 14:16 - 2016-07-01 06:38 - 01083656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-07-14 14:16 - 2016-07-01 06:38 - 00032552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00925576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-07-14 14:16 - 2016-07-01 06:20 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-14 14:16 - 2016-07-01 06:19 - 00836760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-14 14:16 - 2016-07-01 06:07 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-14 14:16 - 2016-07-01 06:06 - 01861984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-07-14 14:16 - 2016-07-01 06:06 - 00403920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-07-14 14:16 - 2016-07-01 05:39 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-14 14:16 - 2016-07-01 05:35 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-07-14 14:16 - 2016-07-01 05:35 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-07-14 14:16 - 2016-07-01 05:34 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-07-14 14:16 - 2016-07-01 05:33 - 00326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-14 14:16 - 2016-07-01 05:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-14 14:16 - 2016-07-01 05:32 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 19347968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-07-14 14:16 - 2016-07-01 05:30 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-07-14 14:16 - 2016-07-01 05:29 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-14 14:16 - 2016-07-01 05:29 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-07-14 14:16 - 2016-07-01 05:27 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-14 14:16 - 2016-07-01 05:27 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-07-14 14:16 - 2016-07-01 05:27 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-07-14 14:16 - 2016-07-01 05:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-07-14 14:16 - 2016-07-01 05:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-07-14 14:16 - 2016-07-01 05:24 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-07-14 14:16 - 2016-07-01 05:24 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 01401856 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-07-14 14:16 - 2016-07-01 05:23 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-07-14 14:16 - 2016-07-01 05:21 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-07-14 14:16 - 2016-07-01 05:20 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-07-14 14:16 - 2016-07-01 05:20 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-07-14 14:16 - 2016-07-01 05:20 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-14 14:16 - 2016-07-01 05:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-07-14 14:16 - 2016-07-01 05:15 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-07-14 14:16 - 2016-07-01 05:15 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-14 14:16 - 2016-07-01 05:12 - 03483648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-07-14 14:16 - 2016-07-01 05:11 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 01976832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-07-14 14:16 - 2016-06-18 02:22 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-07-14 14:16 - 2016-02-09 06:29 - 00279376 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-07-14 14:15 - 2016-07-01 05:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-07-14 14:15 - 2016-07-01 05:38 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-14 14:15 - 2016-07-01 05:32 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-14 14:15 - 2016-07-01 05:31 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-14 14:15 - 2016-07-01 05:28 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-07-14 14:15 - 2016-07-01 05:26 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-14 14:15 - 2016-07-01 05:25 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-12 20:09 - 2016-07-12 20:09 - 00002118 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-07-12 20:09 - 2016-07-12 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-07-11 10:34 - 2016-07-11 10:34 - 00000000 ____D C:\Users\Palko\AppData\Local\CEF
2016-07-11 10:33 - 2016-07-21 13:42 - 00001348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-07-11 10:33 - 2016-07-11 10:35 - 00000000 ____D C:\Users\Palko\AppData\Local\tkdata
2016-07-11 10:33 - 2016-07-11 10:33 - 00001334 _____ C:\Users\Public\Desktop\True Key.lnk
2016-07-11 10:33 - 2016-07-11 10:33 - 00000000 ____D C:\ProgramData\TrueKey
2016-07-11 10:31 - 2016-07-11 10:31 - 00000000 ____D C:\Program Files\Intel Security
2016-07-11 10:31 - 2016-07-11 10:31 - 00000000 ____D C:\Program Files\Intel
2016-07-11 10:27 - 2016-07-20 13:12 - 00000000 ____D C:\Program Files\McAfee
2016-07-11 10:27 - 2016-07-11 10:28 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-07-11 07:23 - 2016-07-21 13:42 - 00000000 ____D C:\Program Files\TrueKey
2016-07-11 07:23 - 2016-07-15 01:43 - 00000000 ____D C:\ProgramData\McAfee
2016-07-11 07:23 - 2016-07-12 20:08 - 00000000 ____D C:\Program Files\McAfee Security Scan
2016-07-11 07:23 - 2016-07-11 07:23 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2016-06-28 18:54 - 2016-06-28 18:54 - 02696620 _____ C:\Users\Palko\Desktop\Tabulka_rekl.předmětů_2016.xlsx
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-21 13:42 - 2015-10-30 17:08 - 00716854 _____ C:\WINDOWS\system32\perfh005.dat
2016-07-21 13:42 - 2015-10-30 17:08 - 00143080 _____ C:\WINDOWS\system32\perfc005.dat
2016-07-21 13:42 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-07-21 13:42 - 2015-08-01 21:22 - 01683934 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-21 13:40 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-20 14:06 - 2015-06-02 10:09 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-07-20 10:29 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-20 01:52 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-07-19 22:50 - 2015-07-03 23:08 - 00000000 ____D C:\Program Files\trend micro
2016-07-19 21:52 - 2015-12-15 00:54 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-19 21:51 - 2015-12-15 00:28 - 00000000 ____D C:\Users\Palko
2016-07-19 21:51 - 2015-10-30 07:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-07-19 21:47 - 2015-07-04 08:27 - 00000000 ____D C:\AdwCleaner
2016-07-19 17:49 - 2016-04-12 15:39 - 00000330 _____ C:\WINDOWS\Tasks\HPCeeScheduleForPalko.job
2016-07-15 06:11 - 2015-08-01 21:32 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-07-15 03:04 - 2015-10-30 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\Provisioning
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Defender
2016-07-14 16:48 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-07-14 16:47 - 2015-05-21 21:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-07-14 16:37 - 2015-05-21 21:44 - 141983760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-12 19:48 - 2015-05-31 14:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-07-12 16:06 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-07-11 10:29 - 2015-12-15 00:21 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-11 10:28 - 2015-06-29 22:38 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-11 07:23 - 2015-06-02 10:07 - 00000000 ____D C:\Users\Palko\AppData\Local\Adobe
2016-07-07 02:39 - 2015-05-21 14:17 - 00400552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-02 06:37 - 2015-10-30 07:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-07-02 06:37 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-06-27 09:48 - 2015-05-31 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
==================== Files in the root of some directories =======
2015-04-14 18:28 - 2015-04-14 18:28 - 0001171 _____ () C:\Users\Palko\AppData\Roaming\9xfgtVfy1z2FUlEY
2015-04-14 18:28 - 2015-04-14 18:28 - 0001171 _____ () C:\Users\Palko\AppData\Roaming\maDz4SCmS
2015-06-29 21:54 - 2015-06-29 21:54 - 0000000 _____ () C:\Users\Palko\AppData\Local\Temp.dat
2015-09-01 13:03 - 2015-09-01 16:17 - 0001046 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\Palko\AppData\Local\Temp\libeay32.dll
C:\Users\Palko\AppData\Local\Temp\msvcr120.dll
C:\Users\Palko\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-07-19 14:16
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý notebook
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\Palko\Desktop\Viry jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\MountPoints2: {38c85a69-1c5a-11e6-974f-f46d04a334b9} - "D:\HTC_Sync_Manager_PC.exe"
IFEO\SppExtComObj.exe: [Debugger] C:\Windows\SECOH-QAD.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-07-12]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe (McAfee, Inc.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [239880 2016-05-31] (McAfee, Inc.)
C:\Program Files\McAfee Security Scan
C:\ProgramData\McAfee Security Scan
C:\Users\Palko\AppData\Roaming\9xfgtVfy1z2FUlEY
C:\Users\Palko\AppData\Roaming\maDz4SCmS
C:\Users\Palko\AppData\Local\Temp.dat
C:\Users\Palko\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý notebook
Vkládám log po fix
Fix result of Farbar Recovery Scan Tool (x86) Version: 20-07-2016
Ran by Palko (2016-07-21 18:39:50) Run:1
Running from C:\Users\Palko\Desktop\Viry
Loaded Profiles: Palko (Available Profiles: Palko)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\MountPoints2: {38c85a69-1c5a-11e6-974f-f46d04a334b9} - "D:\HTC_Sync_Manager_PC.exe"
IFEO\SppExtComObj.exe: [Debugger] C:\Windows\SECOH-QAD.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-07-12]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe (McAfee, Inc.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [239880 2016-05-31] (McAfee, Inc.)
C:\Program Files\McAfee Security Scan
C:\ProgramData\McAfee Security Scan
C:\Users\Palko\AppData\Roaming\9xfgtVfy1z2FUlEY
C:\Users\Palko\AppData\Roaming\maDz4SCmS
C:\Users\Palko\AppData\Local\Temp.dat
C:\Users\Palko\AppData\Local\Temp
End
*****************
"HKU\S-1-5-21-4248476150-204346052-704469951-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{38c85a69-1c5a-11e6-974f-f46d04a334b9}" => key removed successfully.
HKCR\CLSID\{38c85a69-1c5a-11e6-974f-f46d04a334b9} => key not found.
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SppExtComObj.exe" => key removed successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk => moved successfully
C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe => moved successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
McComponentHostService => service removed successfully.
"C:\Program Files\McAfee Security Scan" folder move:
Could not move "C:\Program Files\McAfee Security Scan" => Scheduled to move on reboot.
C:\ProgramData\McAfee Security Scan => moved successfully
C:\Users\Palko\AppData\Roaming\9xfgtVfy1z2FUlEY => moved successfully
C:\Users\Palko\AppData\Roaming\maDz4SCmS => moved successfully
C:\Users\Palko\AppData\Local\Temp.dat => moved successfully
C:\Users\Palko\AppData\Local\Temp => moved successfully
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-07-21 18:43:05)
C:\Program Files\McAfee Security Scan => moved successfully
==== End of Fixlog 18:43:13 ====
Fix result of Farbar Recovery Scan Tool (x86) Version: 20-07-2016
Ran by Palko (2016-07-21 18:39:50) Run:1
Running from C:\Users\Palko\Desktop\Viry
Loaded Profiles: Palko (Available Profiles: Palko)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\MountPoints2: {38c85a69-1c5a-11e6-974f-f46d04a334b9} - "D:\HTC_Sync_Manager_PC.exe"
IFEO\SppExtComObj.exe: [Debugger] C:\Windows\SECOH-QAD.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-07-12]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe (McAfee, Inc.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe [239880 2016-05-31] (McAfee, Inc.)
C:\Program Files\McAfee Security Scan
C:\ProgramData\McAfee Security Scan
C:\Users\Palko\AppData\Roaming\9xfgtVfy1z2FUlEY
C:\Users\Palko\AppData\Roaming\maDz4SCmS
C:\Users\Palko\AppData\Local\Temp.dat
C:\Users\Palko\AppData\Local\Temp
End
*****************
"HKU\S-1-5-21-4248476150-204346052-704469951-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{38c85a69-1c5a-11e6-974f-f46d04a334b9}" => key removed successfully.
HKCR\CLSID\{38c85a69-1c5a-11e6-974f-f46d04a334b9} => key not found.
"HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SppExtComObj.exe" => key removed successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk => moved successfully
C:\Program Files\McAfee Security Scan\3.11.334\SSScheduler.exe => moved successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
McComponentHostService => service removed successfully.
"C:\Program Files\McAfee Security Scan" folder move:
Could not move "C:\Program Files\McAfee Security Scan" => Scheduled to move on reboot.
C:\ProgramData\McAfee Security Scan => moved successfully
C:\Users\Palko\AppData\Roaming\9xfgtVfy1z2FUlEY => moved successfully
C:\Users\Palko\AppData\Roaming\maDz4SCmS => moved successfully
C:\Users\Palko\AppData\Local\Temp.dat => moved successfully
C:\Users\Palko\AppData\Local\Temp => moved successfully
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-07-21 18:43:05)
C:\Program Files\McAfee Security Scan => moved successfully
==== End of Fixlog 18:43:13 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý notebook
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý notebook
Žádnou velmi viditelnou změnu nepozoruji. Možná se to malinko zrychlilo. Ale síš ne.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý notebook
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý notebook
Vkládám log z MBAM
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 22. 7. 2016
Čas skenování: 0:43
Protokol: sken mbam.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.07.21.07
Databáze rootkitů: v2016.05.27.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x86
Souborový systém: NTFS
Uživatel: Palko
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 468812
Uplynulý čas: 3 hod, 20 min, 35 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 4
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\goopdate.dll.vir, , [703b5dc95347cf678a78609d22deff01],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir, , [0e9d70b6b4e6b58126dc619c7c847a86],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files\Internet Speed Checker\Uninstall.exe.vir, , [d6d543e34951e84e48115f0f5aa73fc1],
HackTool.IdleKMS, C:\Windows\SECOH-QAD.exe, , [fdaea68033670e28d44c623f89785da3],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 22. 7. 2016
Čas skenování: 0:43
Protokol: sken mbam.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.07.21.07
Databáze rootkitů: v2016.05.27.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x86
Souborový systém: NTFS
Uživatel: Palko
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 468812
Uplynulý čas: 3 hod, 20 min, 35 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 4
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\goopdate.dll.vir, , [703b5dc95347cf678a78609d22deff01],
PUP.Optional.ModGoog, C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir, , [0e9d70b6b4e6b58126dc619c7c847a86],
PUP.Optional.CrossRider, C:\AdwCleaner\Quarantine\C\Program Files\Internet Speed Checker\Uninstall.exe.vir, , [d6d543e34951e84e48115f0f5aa73fc1],
HackTool.IdleKMS, C:\Windows\SECOH-QAD.exe, , [fdaea68033670e28d44c623f89785da3],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý notebook
Všechny nálezy smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý notebook
dobrý den přeji. Vše jsme smazal a notebook nevykazuje známky zrychlení. I když možná je vše malinko svižnější. Připojuji nový log z FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2016 01
Ran by Palko (administrator) on K53U (23-07-2016 12:16:26)
Running from C:\Users\Palko\Desktop\Viry
Loaded Profiles: Palko (Available Profiles: Palko)
Platform: Microsoft Windows 10 Home Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
Failed to access process -> Service_KMS.exe
(Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.486_none_1a2245026e1130f1\TiWorker.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
Failed to access process -> backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6965.41051.0_x86__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14467328 2015-10-27] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2484424 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-08-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1284680 2014-01-17] (CANON INC.)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6667992 2016-03-11] (Piriform Ltd)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-09-01]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{110da1a8-7965-49c3-83d3-a99ca2d2b8c1}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{34f0bf5c-7140-4dfe-9a14-228b23e36405}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{464dc299-8f27-4603-91de-050c56dfd353}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
FireFox:
========
FF ProfilePath: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default
FF Homepage: hxxp://www.centrum.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF SearchPlugin: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\googletranslate.xml [2015-05-26]
FF SearchPlugin: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\youtube.xml [2015-05-26]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\extensions\adblockpopups@jessehakanen.net.xpi [2016-05-02]
FF Extension: CodeViewer - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\extensions\codeviewer@wannasoft.mysmth.net.xpi [2016-05-02]
FF Extension: Adblock Plus - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2015-08-21] (Advanced Micro Devices, Inc.) [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [124616 2015-10-10] (ELAN Microelectronics Corp.)
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [696320 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc.exe [2377368 2016-05-06] (Intel(R) Corporation)
S2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [685568 2013-11-11] () [File not signed]
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908792 2016-07-14] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16792 2016-07-14] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [73968 2016-07-14] (McAfee, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-07-01] (Microsoft Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\WINDOWS\System32\drivers\athwn.sys [3205632 2015-10-30] (Qualcomm Atheros Communications, Inc.)
R3 ETD; C:\WINDOWS\system32\DRIVERS\ETD.sys [514760 2015-10-10] (ELAN Microelectronics Corp.)
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
R1 MpKsl7b23aca7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CE6E190D-965E-40AF-80EC-028A8BD7B9A5}\MpKsl7b23aca7.sys [39168 2016-07-22] (Microsoft Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [301824 2015-07-08] (Realsil Semiconductor Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-22 00:39 - 2016-07-22 00:43 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-07-22 00:39 - 2016-07-22 00:39 - 00001129 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-22 00:38 - 2016-07-22 00:39 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-07-22 00:38 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-07-22 00:38 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-07-22 00:38 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-07-21 13:45 - 2016-07-23 12:16 - 00000000 ____D C:\FRST
2016-07-21 13:42 - 2016-07-23 12:16 - 00000000 ____D C:\Users\Palko\Desktop\Viry
2016-07-14 14:19 - 2016-07-01 06:39 - 05793632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-07-14 14:19 - 2016-07-01 06:23 - 01334680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-07-14 14:19 - 2016-07-01 06:21 - 00260448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-07-14 14:19 - 2016-07-01 06:20 - 01300016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-07-14 14:19 - 2016-07-01 06:19 - 05598832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-07-14 14:19 - 2016-07-01 06:19 - 01337680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-07-14 14:19 - 2016-07-01 06:19 - 00633192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-07-14 14:19 - 2016-07-01 06:18 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-07-14 14:19 - 2016-07-01 06:18 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-07-14 14:19 - 2016-07-01 06:17 - 01536600 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-07-14 14:19 - 2016-07-01 06:12 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-07-14 14:19 - 2016-07-01 06:12 - 01866104 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 01712480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-07-14 14:19 - 2016-07-01 06:11 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 00521152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 00484192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-07-14 14:19 - 2016-07-01 06:10 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-07-14 14:19 - 2016-07-01 05:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-07-14 14:19 - 2016-07-01 05:45 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-07-14 14:19 - 2016-07-01 05:41 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-07-14 14:19 - 2016-07-01 05:39 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-14 14:19 - 2016-07-01 05:38 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-07-14 14:19 - 2016-07-01 05:38 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-14 14:19 - 2016-07-01 05:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-07-14 14:19 - 2016-07-01 05:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-14 14:19 - 2016-07-01 05:35 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-07-14 14:19 - 2016-07-01 05:33 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-07-14 14:19 - 2016-07-01 05:31 - 00424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-07-14 14:19 - 2016-07-01 05:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-07-14 14:19 - 2016-07-01 05:28 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-14 14:19 - 2016-07-01 05:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-07-14 14:19 - 2016-07-01 05:26 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-07-14 14:19 - 2016-07-01 05:25 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-07-14 14:19 - 2016-07-01 05:25 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-07-14 14:19 - 2016-07-01 05:25 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-07-14 14:19 - 2016-07-01 05:24 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-07-14 14:19 - 2016-07-01 05:22 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-07-14 14:19 - 2016-07-01 05:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-07-14 14:19 - 2016-07-01 05:18 - 02973696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-07-14 14:19 - 2016-07-01 05:16 - 01896960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02501632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 01498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 00705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-07-14 14:19 - 2016-07-01 05:12 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-14 14:18 - 2016-07-01 06:35 - 00792328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-07-14 14:18 - 2016-07-01 06:31 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-07-14 14:18 - 2016-07-01 06:19 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-07-14 14:18 - 2016-07-01 06:19 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-07-14 14:18 - 2016-07-01 06:18 - 00995296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-07-14 14:18 - 2016-07-01 06:11 - 00336224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-07-14 14:18 - 2016-07-01 05:41 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-14 14:18 - 2016-07-01 05:39 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2016-07-14 14:18 - 2016-07-01 05:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-14 14:18 - 2016-07-01 05:37 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-07-14 14:18 - 2016-07-01 05:36 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-14 14:18 - 2016-07-01 05:36 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-14 14:18 - 2016-07-01 05:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-07-14 14:18 - 2016-07-01 05:35 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-14 14:18 - 2016-07-01 05:34 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-07-14 14:18 - 2016-07-01 05:34 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-07-14 14:18 - 2016-07-01 05:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-07-14 14:18 - 2016-07-01 05:32 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-07-14 14:18 - 2016-07-01 05:32 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-07-14 14:18 - 2016-07-01 05:31 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-07-14 14:18 - 2016-07-01 05:28 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-14 14:18 - 2016-07-01 05:28 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-07-14 14:18 - 2016-07-01 05:26 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-14 14:18 - 2016-07-01 05:23 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-14 14:18 - 2016-07-01 05:23 - 01166848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2016-07-14 14:18 - 2016-07-01 05:22 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-07-14 14:18 - 2016-07-01 05:22 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-07-14 14:18 - 2016-07-01 05:20 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-07-14 14:18 - 2016-07-01 05:18 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-07-14 14:18 - 2016-07-01 05:17 - 01800704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-14 14:18 - 2016-07-01 05:16 - 01635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-07-14 14:18 - 2016-07-01 05:15 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-14 14:18 - 2016-07-01 05:15 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-07-14 14:18 - 2016-07-01 05:13 - 01900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-07-14 14:18 - 2016-07-01 05:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-07-14 14:18 - 2016-07-01 05:11 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-14 14:18 - 2016-07-01 05:08 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-14 14:17 - 2016-07-01 06:38 - 01862008 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-14 14:17 - 2016-07-01 06:32 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-07-14 14:17 - 2016-07-01 06:23 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-07-14 14:17 - 2016-07-01 06:20 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-07-14 14:17 - 2016-07-01 06:20 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-14 14:17 - 2016-07-01 06:19 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-07-14 14:17 - 2016-07-01 06:19 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-07-14 14:17 - 2016-07-01 06:18 - 00510880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-07-14 14:17 - 2016-07-01 06:18 - 00064584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2016-07-14 14:17 - 2016-07-01 05:40 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-14 14:17 - 2016-07-01 05:38 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-14 14:17 - 2016-07-01 05:34 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-07-14 14:17 - 2016-07-01 05:34 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-14 14:17 - 2016-07-01 05:33 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-07-14 14:17 - 2016-07-01 05:33 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-07-14 14:17 - 2016-07-01 05:30 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-07-14 14:17 - 2016-07-01 05:29 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-07-14 14:17 - 2016-07-01 05:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-14 14:17 - 2016-07-01 05:28 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2016-07-14 14:17 - 2016-07-01 05:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 01746944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-07-14 14:17 - 2016-07-01 05:25 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 01484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-07-14 14:17 - 2016-07-01 05:22 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-07-14 14:17 - 2016-07-01 05:21 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-07-14 14:17 - 2016-07-01 05:20 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-07-14 14:17 - 2016-07-01 05:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-07-14 14:17 - 2016-07-01 05:19 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-07-14 14:17 - 2016-07-01 05:18 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-07-14 14:17 - 2016-07-01 05:18 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-14 14:17 - 2016-07-01 05:17 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-14 14:17 - 2016-07-01 05:17 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-07-14 14:17 - 2016-07-01 05:16 - 00925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-07-14 14:17 - 2016-07-01 05:16 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2016-07-14 14:17 - 2016-07-01 05:15 - 04413440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-14 14:17 - 2016-07-01 05:14 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-07-14 14:17 - 2016-07-01 05:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-07-14 14:17 - 2016-07-01 05:13 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-07-14 14:17 - 2016-07-01 05:13 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-07-14 14:17 - 2016-07-01 05:11 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-07-14 14:17 - 2016-07-01 05:08 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 01303744 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00484544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00476864 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00266944 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00227008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-07-14 14:16 - 2016-07-01 07:14 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00045760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-14 14:16 - 2016-07-01 06:40 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-07-14 14:16 - 2016-07-01 06:39 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-07-14 14:16 - 2016-07-01 06:39 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-07-14 14:16 - 2016-07-01 06:39 - 00927080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-07-14 14:16 - 2016-07-01 06:39 - 00875992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-07-14 14:16 - 2016-07-01 06:39 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-07-14 14:16 - 2016-07-01 06:38 - 01083656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-07-14 14:16 - 2016-07-01 06:38 - 00032552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00925576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-07-14 14:16 - 2016-07-01 06:20 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-14 14:16 - 2016-07-01 06:19 - 00836760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-14 14:16 - 2016-07-01 06:07 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-14 14:16 - 2016-07-01 06:06 - 01861984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-07-14 14:16 - 2016-07-01 06:06 - 00403920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-07-14 14:16 - 2016-07-01 05:39 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-14 14:16 - 2016-07-01 05:35 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-07-14 14:16 - 2016-07-01 05:35 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-07-14 14:16 - 2016-07-01 05:34 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-07-14 14:16 - 2016-07-01 05:33 - 00326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-14 14:16 - 2016-07-01 05:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-14 14:16 - 2016-07-01 05:32 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 19347968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-07-14 14:16 - 2016-07-01 05:30 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-07-14 14:16 - 2016-07-01 05:29 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-14 14:16 - 2016-07-01 05:29 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-07-14 14:16 - 2016-07-01 05:27 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-14 14:16 - 2016-07-01 05:27 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-07-14 14:16 - 2016-07-01 05:27 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-07-14 14:16 - 2016-07-01 05:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-07-14 14:16 - 2016-07-01 05:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-07-14 14:16 - 2016-07-01 05:24 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-07-14 14:16 - 2016-07-01 05:24 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 01401856 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-07-14 14:16 - 2016-07-01 05:23 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-07-14 14:16 - 2016-07-01 05:21 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-07-14 14:16 - 2016-07-01 05:20 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-07-14 14:16 - 2016-07-01 05:20 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-07-14 14:16 - 2016-07-01 05:20 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-14 14:16 - 2016-07-01 05:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-07-14 14:16 - 2016-07-01 05:15 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-07-14 14:16 - 2016-07-01 05:15 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-14 14:16 - 2016-07-01 05:12 - 03483648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-07-14 14:16 - 2016-07-01 05:11 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 01976832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-07-14 14:16 - 2016-06-18 02:22 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-07-14 14:16 - 2016-02-09 06:29 - 00279376 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-07-14 14:15 - 2016-07-01 05:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-07-14 14:15 - 2016-07-01 05:38 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-14 14:15 - 2016-07-01 05:32 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-14 14:15 - 2016-07-01 05:31 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-14 14:15 - 2016-07-01 05:28 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-07-14 14:15 - 2016-07-01 05:26 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-14 14:15 - 2016-07-01 05:25 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-12 20:09 - 2016-07-12 20:09 - 00002118 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-07-12 20:09 - 2016-07-12 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-07-11 10:34 - 2016-07-11 10:34 - 00000000 ____D C:\Users\Palko\AppData\Local\CEF
2016-07-11 10:33 - 2016-07-21 13:42 - 00001348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-07-11 10:33 - 2016-07-11 10:35 - 00000000 ____D C:\Users\Palko\AppData\Local\tkdata
2016-07-11 10:33 - 2016-07-11 10:33 - 00001334 _____ C:\Users\Public\Desktop\True Key.lnk
2016-07-11 10:33 - 2016-07-11 10:33 - 00000000 ____D C:\ProgramData\TrueKey
2016-07-11 10:31 - 2016-07-11 10:31 - 00000000 ____D C:\Program Files\Intel Security
2016-07-11 10:31 - 2016-07-11 10:31 - 00000000 ____D C:\Program Files\Intel
2016-07-11 10:27 - 2016-07-21 18:41 - 00000000 ____D C:\Program Files\McAfee
2016-07-11 10:27 - 2016-07-11 10:28 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-07-11 07:23 - 2016-07-21 18:41 - 00000000 ____D C:\Program Files\TrueKey
2016-07-11 07:23 - 2016-07-15 01:43 - 00000000 ____D C:\ProgramData\McAfee
2016-06-28 18:54 - 2016-06-28 18:54 - 02696620 _____ C:\Users\Palko\Desktop\Tabulka_rekl.předmětů_2016.xlsx
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-22 13:36 - 2015-10-30 17:08 - 00716854 _____ C:\WINDOWS\system32\perfh005.dat
2016-07-22 13:36 - 2015-10-30 17:08 - 00143080 _____ C:\WINDOWS\system32\perfc005.dat
2016-07-22 13:36 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-07-22 13:36 - 2015-08-01 21:22 - 01683934 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-22 12:09 - 2015-12-15 00:54 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-22 12:09 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\Resources
2016-07-22 12:08 - 2015-10-30 07:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-07-22 12:06 - 2015-06-02 10:09 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-07-22 00:38 - 2015-07-04 08:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-21 18:28 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-20 10:29 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-20 01:52 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-07-19 22:50 - 2015-07-03 23:08 - 00000000 ____D C:\Program Files\trend micro
2016-07-19 21:51 - 2015-12-15 00:28 - 00000000 ____D C:\Users\Palko
2016-07-19 21:47 - 2015-07-04 08:27 - 00000000 ____D C:\AdwCleaner
2016-07-19 17:49 - 2016-04-12 15:39 - 00000330 _____ C:\WINDOWS\Tasks\HPCeeScheduleForPalko.job
2016-07-15 06:11 - 2015-08-01 21:32 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-07-15 03:04 - 2015-10-30 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\Provisioning
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Defender
2016-07-14 16:48 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-07-14 16:47 - 2015-05-21 21:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-07-14 16:37 - 2015-05-21 21:44 - 141983760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-12 19:48 - 2015-05-31 14:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-07-12 16:06 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-07-11 10:29 - 2015-12-15 00:21 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-11 10:28 - 2015-06-29 22:38 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-11 07:23 - 2015-06-02 10:07 - 00000000 ____D C:\Users\Palko\AppData\Local\Adobe
2016-07-07 02:39 - 2015-05-21 14:17 - 00400552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-02 06:37 - 2015-10-30 07:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-07-02 06:37 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-06-27 09:48 - 2015-05-31 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
==================== Files in the root of some directories =======
2015-09-01 13:03 - 2015-09-01 16:17 - 0001046 _____ () C:\ProgramData\hpzinstall.log
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-07-19 14:16
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2016 01
Ran by Palko (administrator) on K53U (23-07-2016 12:16:26)
Running from C:\Users\Palko\Desktop\Viry
Loaded Profiles: Palko (Available Profiles: Palko)
Platform: Microsoft Windows 10 Home Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
Failed to access process -> Service_KMS.exe
(Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.486_none_1a2245026e1130f1\TiWorker.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
Failed to access process -> backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6965.41051.0_x86__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14467328 2015-10-27] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2484424 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-08-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1284680 2014-01-17] (CANON INC.)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-4248476150-204346052-704469951-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6667992 2016-03-11] (Piriform Ltd)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-09-01]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{110da1a8-7965-49c3-83d3-a99ca2d2b8c1}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{34f0bf5c-7140-4dfe-9a14-228b23e36405}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{464dc299-8f27-4603-91de-050c56dfd353}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security)
FireFox:
========
FF ProfilePath: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default
FF Homepage: hxxp://www.centrum.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF SearchPlugin: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\googletranslate.xml [2015-05-26]
FF SearchPlugin: C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\searchplugins\youtube.xml [2015-05-26]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\extensions\adblockpopups@jessehakanen.net.xpi [2016-05-02]
FF Extension: CodeViewer - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\extensions\codeviewer@wannasoft.mysmth.net.xpi [2016-05-02]
FF Extension: Adblock Plus - C:\Users\Palko\AppData\Roaming\Mozilla\Firefox\Profiles\7w6gd3ua.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2015-08-21] (Advanced Micro Devices, Inc.) [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [124616 2015-10-10] (ELAN Microelectronics Corp.)
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [696320 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc.exe [2377368 2016-05-06] (Intel(R) Corporation)
S2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [685568 2013-11-11] () [File not signed]
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908792 2016-07-14] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16792 2016-07-14] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [73968 2016-07-14] (McAfee, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-07-01] (Microsoft Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\WINDOWS\System32\drivers\athwn.sys [3205632 2015-10-30] (Qualcomm Atheros Communications, Inc.)
R3 ETD; C:\WINDOWS\system32\DRIVERS\ETD.sys [514760 2015-10-10] (ELAN Microelectronics Corp.)
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
R1 MpKsl7b23aca7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CE6E190D-965E-40AF-80EC-028A8BD7B9A5}\MpKsl7b23aca7.sys [39168 2016-07-22] (Microsoft Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [301824 2015-07-08] (Realsil Semiconductor Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-22 00:39 - 2016-07-22 00:43 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-07-22 00:39 - 2016-07-22 00:39 - 00001129 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-22 00:38 - 2016-07-22 00:39 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-07-22 00:38 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-07-22 00:38 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-07-22 00:38 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-07-21 13:45 - 2016-07-23 12:16 - 00000000 ____D C:\FRST
2016-07-21 13:42 - 2016-07-23 12:16 - 00000000 ____D C:\Users\Palko\Desktop\Viry
2016-07-14 14:19 - 2016-07-01 06:39 - 05793632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-07-14 14:19 - 2016-07-01 06:23 - 01334680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-07-14 14:19 - 2016-07-01 06:21 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-07-14 14:19 - 2016-07-01 06:21 - 00260448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-07-14 14:19 - 2016-07-01 06:20 - 01300016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-07-14 14:19 - 2016-07-01 06:19 - 05598832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-07-14 14:19 - 2016-07-01 06:19 - 01337680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-07-14 14:19 - 2016-07-01 06:19 - 00633192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-07-14 14:19 - 2016-07-01 06:18 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-07-14 14:19 - 2016-07-01 06:18 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-07-14 14:19 - 2016-07-01 06:17 - 01536600 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-07-14 14:19 - 2016-07-01 06:12 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-07-14 14:19 - 2016-07-01 06:12 - 01866104 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 01712480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-07-14 14:19 - 2016-07-01 06:11 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 00521152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-07-14 14:19 - 2016-07-01 06:11 - 00484192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-07-14 14:19 - 2016-07-01 06:10 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-07-14 14:19 - 2016-07-01 05:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-07-14 14:19 - 2016-07-01 05:45 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-07-14 14:19 - 2016-07-01 05:41 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-07-14 14:19 - 2016-07-01 05:39 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-14 14:19 - 2016-07-01 05:38 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-07-14 14:19 - 2016-07-01 05:38 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-14 14:19 - 2016-07-01 05:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-07-14 14:19 - 2016-07-01 05:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-14 14:19 - 2016-07-01 05:35 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-07-14 14:19 - 2016-07-01 05:33 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-07-14 14:19 - 2016-07-01 05:31 - 00424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-07-14 14:19 - 2016-07-01 05:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-07-14 14:19 - 2016-07-01 05:28 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-14 14:19 - 2016-07-01 05:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-07-14 14:19 - 2016-07-01 05:26 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-07-14 14:19 - 2016-07-01 05:25 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-07-14 14:19 - 2016-07-01 05:25 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-07-14 14:19 - 2016-07-01 05:25 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-07-14 14:19 - 2016-07-01 05:24 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-07-14 14:19 - 2016-07-01 05:22 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-07-14 14:19 - 2016-07-01 05:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-07-14 14:19 - 2016-07-01 05:18 - 02973696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-07-14 14:19 - 2016-07-01 05:16 - 01896960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02501632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-14 14:19 - 2016-07-01 05:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 01498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-07-14 14:19 - 2016-07-01 05:14 - 00705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-07-14 14:19 - 2016-07-01 05:12 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-14 14:18 - 2016-07-01 06:35 - 00792328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-07-14 14:18 - 2016-07-01 06:31 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-07-14 14:18 - 2016-07-01 06:19 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-07-14 14:18 - 2016-07-01 06:19 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-07-14 14:18 - 2016-07-01 06:18 - 00995296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-07-14 14:18 - 2016-07-01 06:11 - 00336224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-07-14 14:18 - 2016-07-01 05:41 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-14 14:18 - 2016-07-01 05:39 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2016-07-14 14:18 - 2016-07-01 05:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-14 14:18 - 2016-07-01 05:37 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-07-14 14:18 - 2016-07-01 05:36 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-14 14:18 - 2016-07-01 05:36 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-14 14:18 - 2016-07-01 05:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-07-14 14:18 - 2016-07-01 05:35 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-14 14:18 - 2016-07-01 05:34 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-07-14 14:18 - 2016-07-01 05:34 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-07-14 14:18 - 2016-07-01 05:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-07-14 14:18 - 2016-07-01 05:32 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-07-14 14:18 - 2016-07-01 05:32 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-07-14 14:18 - 2016-07-01 05:31 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-07-14 14:18 - 2016-07-01 05:31 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-07-14 14:18 - 2016-07-01 05:30 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-14 14:18 - 2016-07-01 05:29 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-07-14 14:18 - 2016-07-01 05:28 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-14 14:18 - 2016-07-01 05:28 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-07-14 14:18 - 2016-07-01 05:27 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-07-14 14:18 - 2016-07-01 05:26 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-07-14 14:18 - 2016-07-01 05:25 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-14 14:18 - 2016-07-01 05:24 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-14 14:18 - 2016-07-01 05:23 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-14 14:18 - 2016-07-01 05:23 - 01166848 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2016-07-14 14:18 - 2016-07-01 05:22 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-07-14 14:18 - 2016-07-01 05:22 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-07-14 14:18 - 2016-07-01 05:20 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-14 14:18 - 2016-07-01 05:19 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-07-14 14:18 - 2016-07-01 05:18 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-07-14 14:18 - 2016-07-01 05:17 - 01800704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-14 14:18 - 2016-07-01 05:16 - 01635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-07-14 14:18 - 2016-07-01 05:15 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-14 14:18 - 2016-07-01 05:15 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-07-14 14:18 - 2016-07-01 05:13 - 01900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-07-14 14:18 - 2016-07-01 05:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-07-14 14:18 - 2016-07-01 05:11 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-14 14:18 - 2016-07-01 05:08 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-14 14:17 - 2016-07-01 06:38 - 01862008 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-14 14:17 - 2016-07-01 06:32 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-07-14 14:17 - 2016-07-01 06:23 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-07-14 14:17 - 2016-07-01 06:20 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-07-14 14:17 - 2016-07-01 06:20 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-14 14:17 - 2016-07-01 06:19 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-07-14 14:17 - 2016-07-01 06:19 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-07-14 14:17 - 2016-07-01 06:18 - 00510880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-07-14 14:17 - 2016-07-01 06:18 - 00064584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2016-07-14 14:17 - 2016-07-01 05:40 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-14 14:17 - 2016-07-01 05:38 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-14 14:17 - 2016-07-01 05:34 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-07-14 14:17 - 2016-07-01 05:34 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-14 14:17 - 2016-07-01 05:33 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-07-14 14:17 - 2016-07-01 05:33 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-07-14 14:17 - 2016-07-01 05:32 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-07-14 14:17 - 2016-07-01 05:30 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-07-14 14:17 - 2016-07-01 05:30 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-07-14 14:17 - 2016-07-01 05:29 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-07-14 14:17 - 2016-07-01 05:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-14 14:17 - 2016-07-01 05:28 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2016-07-14 14:17 - 2016-07-01 05:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-14 14:17 - 2016-07-01 05:27 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 01746944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-07-14 14:17 - 2016-07-01 05:26 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-07-14 14:17 - 2016-07-01 05:25 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-07-14 14:17 - 2016-07-01 05:25 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 01484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 00601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-07-14 14:17 - 2016-07-01 05:24 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-07-14 14:17 - 2016-07-01 05:23 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-07-14 14:17 - 2016-07-01 05:22 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-07-14 14:17 - 2016-07-01 05:21 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-07-14 14:17 - 2016-07-01 05:20 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-07-14 14:17 - 2016-07-01 05:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-07-14 14:17 - 2016-07-01 05:19 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-07-14 14:17 - 2016-07-01 05:18 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-07-14 14:17 - 2016-07-01 05:18 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-14 14:17 - 2016-07-01 05:17 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-14 14:17 - 2016-07-01 05:17 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-07-14 14:17 - 2016-07-01 05:16 - 00925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-07-14 14:17 - 2016-07-01 05:16 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2016-07-14 14:17 - 2016-07-01 05:15 - 04413440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-07-14 14:17 - 2016-07-01 05:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-14 14:17 - 2016-07-01 05:14 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-07-14 14:17 - 2016-07-01 05:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-07-14 14:17 - 2016-07-01 05:13 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-07-14 14:17 - 2016-07-01 05:13 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-07-14 14:17 - 2016-07-01 05:11 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-07-14 14:17 - 2016-07-01 05:08 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 01303744 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00484544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00476864 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00266944 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00227008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-07-14 14:16 - 2016-07-01 07:14 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-07-14 14:16 - 2016-07-01 07:14 - 00045760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-14 14:16 - 2016-07-01 06:40 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-07-14 14:16 - 2016-07-01 06:39 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-07-14 14:16 - 2016-07-01 06:39 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-07-14 14:16 - 2016-07-01 06:39 - 00927080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-07-14 14:16 - 2016-07-01 06:39 - 00875992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-07-14 14:16 - 2016-07-01 06:39 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-07-14 14:16 - 2016-07-01 06:38 - 01083656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-07-14 14:16 - 2016-07-01 06:38 - 00032552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00925576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-07-14 14:16 - 2016-07-01 06:23 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-07-14 14:16 - 2016-07-01 06:20 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-14 14:16 - 2016-07-01 06:19 - 00836760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-14 14:16 - 2016-07-01 06:07 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-14 14:16 - 2016-07-01 06:06 - 01861984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-07-14 14:16 - 2016-07-01 06:06 - 00403920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-07-14 14:16 - 2016-07-01 05:39 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-14 14:16 - 2016-07-01 05:35 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-07-14 14:16 - 2016-07-01 05:35 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-07-14 14:16 - 2016-07-01 05:34 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-07-14 14:16 - 2016-07-01 05:33 - 00326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-14 14:16 - 2016-07-01 05:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-14 14:16 - 2016-07-01 05:32 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 19347968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2016-07-14 14:16 - 2016-07-01 05:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-07-14 14:16 - 2016-07-01 05:30 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-07-14 14:16 - 2016-07-01 05:30 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-07-14 14:16 - 2016-07-01 05:29 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-14 14:16 - 2016-07-01 05:29 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-14 14:16 - 2016-07-01 05:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-07-14 14:16 - 2016-07-01 05:27 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-14 14:16 - 2016-07-01 05:27 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-07-14 14:16 - 2016-07-01 05:27 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-07-14 14:16 - 2016-07-01 05:26 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-07-14 14:16 - 2016-07-01 05:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-07-14 14:16 - 2016-07-01 05:25 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-07-14 14:16 - 2016-07-01 05:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-07-14 14:16 - 2016-07-01 05:24 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-07-14 14:16 - 2016-07-01 05:24 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 01401856 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-07-14 14:16 - 2016-07-01 05:23 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-07-14 14:16 - 2016-07-01 05:23 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-07-14 14:16 - 2016-07-01 05:21 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-07-14 14:16 - 2016-07-01 05:20 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-07-14 14:16 - 2016-07-01 05:20 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-07-14 14:16 - 2016-07-01 05:20 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-14 14:16 - 2016-07-01 05:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-07-14 14:16 - 2016-07-01 05:16 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-07-14 14:16 - 2016-07-01 05:15 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-07-14 14:16 - 2016-07-01 05:15 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-07-14 14:16 - 2016-07-01 05:13 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-14 14:16 - 2016-07-01 05:12 - 03483648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-07-14 14:16 - 2016-07-01 05:11 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 01976832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-07-14 14:16 - 2016-07-01 05:08 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-07-14 14:16 - 2016-06-18 02:22 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-07-14 14:16 - 2016-02-09 06:29 - 00279376 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-07-14 14:15 - 2016-07-01 05:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-07-14 14:15 - 2016-07-01 05:38 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-14 14:15 - 2016-07-01 05:32 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-14 14:15 - 2016-07-01 05:31 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-14 14:15 - 2016-07-01 05:28 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-07-14 14:15 - 2016-07-01 05:26 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-14 14:15 - 2016-07-01 05:25 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-12 20:09 - 2016-07-12 20:09 - 00002118 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2016-07-12 20:09 - 2016-07-12 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2016-07-11 10:34 - 2016-07-11 10:34 - 00000000 ____D C:\Users\Palko\AppData\Local\CEF
2016-07-11 10:33 - 2016-07-21 13:42 - 00001348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-07-11 10:33 - 2016-07-11 10:35 - 00000000 ____D C:\Users\Palko\AppData\Local\tkdata
2016-07-11 10:33 - 2016-07-11 10:33 - 00001334 _____ C:\Users\Public\Desktop\True Key.lnk
2016-07-11 10:33 - 2016-07-11 10:33 - 00000000 ____D C:\ProgramData\TrueKey
2016-07-11 10:31 - 2016-07-11 10:31 - 00000000 ____D C:\Program Files\Intel Security
2016-07-11 10:31 - 2016-07-11 10:31 - 00000000 ____D C:\Program Files\Intel
2016-07-11 10:27 - 2016-07-21 18:41 - 00000000 ____D C:\Program Files\McAfee
2016-07-11 10:27 - 2016-07-11 10:28 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-07-11 07:23 - 2016-07-21 18:41 - 00000000 ____D C:\Program Files\TrueKey
2016-07-11 07:23 - 2016-07-15 01:43 - 00000000 ____D C:\ProgramData\McAfee
2016-06-28 18:54 - 2016-06-28 18:54 - 02696620 _____ C:\Users\Palko\Desktop\Tabulka_rekl.předmětů_2016.xlsx
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-22 13:36 - 2015-10-30 17:08 - 00716854 _____ C:\WINDOWS\system32\perfh005.dat
2016-07-22 13:36 - 2015-10-30 17:08 - 00143080 _____ C:\WINDOWS\system32\perfc005.dat
2016-07-22 13:36 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-07-22 13:36 - 2015-08-01 21:22 - 01683934 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-22 12:09 - 2015-12-15 00:54 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-22 12:09 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\Resources
2016-07-22 12:08 - 2015-10-30 07:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-07-22 12:06 - 2015-06-02 10:09 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-07-22 00:38 - 2015-07-04 08:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-21 18:28 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-20 10:29 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-20 01:52 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-07-19 22:50 - 2015-07-03 23:08 - 00000000 ____D C:\Program Files\trend micro
2016-07-19 21:51 - 2015-12-15 00:28 - 00000000 ____D C:\Users\Palko
2016-07-19 21:47 - 2015-07-04 08:27 - 00000000 ____D C:\AdwCleaner
2016-07-19 17:49 - 2016-04-12 15:39 - 00000330 _____ C:\WINDOWS\Tasks\HPCeeScheduleForPalko.job
2016-07-15 06:11 - 2015-08-01 21:32 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-07-15 03:04 - 2015-10-30 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\Provisioning
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-07-15 03:04 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Defender
2016-07-14 16:48 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-07-14 16:47 - 2015-05-21 21:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-07-14 16:37 - 2015-05-21 21:44 - 141983760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-12 19:48 - 2015-05-31 14:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-07-12 16:06 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-07-11 10:29 - 2015-12-15 00:21 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-11 10:28 - 2015-06-29 22:38 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-11 07:23 - 2015-06-02 10:07 - 00000000 ____D C:\Users\Palko\AppData\Local\Adobe
2016-07-07 02:39 - 2015-05-21 14:17 - 00400552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-02 06:37 - 2015-10-30 07:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-07-02 06:37 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-06-27 09:48 - 2015-05-31 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
==================== Files in the root of some directories =======
2015-09-01 13:03 - 2015-09-01 16:17 - 0001046 _____ () C:\ProgramData\hpzinstall.log
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-07-19 14:16
==================== End of FRST.txt ============================
Přispějete na provoz fóra?