Dobrý večer, prosím o kontrolu logu. Notebook je zasekaný a nefungují mi aktualizace Windows Update. Spustím stažení a instalaci, ale ukazatel je pořád na 0%. Navíc mi pořád svítí a bliká dioda na nb ikdyž je v klidu a nepracuji na něm.
Logfile of random's system information tool 1.10 (written by random/random)
Run by ProBook at 2016-02-10 19:09:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 337 GB (57%) free of 589 GB
Total RAM: 3552 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:09:25, on 10.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files\trend micro\ProBook.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 12 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.12.0) - ABBYY Production LLC - C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtlISMServ - Realtek - C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
--
End of file - 12570 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
winlogon.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 30302000
\??\C:\windows\system32\conhost.exe "177874054611618952273206361151780201362-152449609118732720878146277581589023338
atieclxx
C:\windows\System32\spoolsv.exe
taskeng.exe {CCCA997E-2557-4752-8057-3CDBD4D16DBB}
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe" -service
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe" /i
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"taskhost.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
WLIDSvcM.exe 2720
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\windows\system32\GWX\GWX.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\servicing\TrustedInstaller.exe
"C:\Users\ProBook\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore1d04234cbce8726.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA1d04234cc19e920.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\HPCeeScheduleForProBook.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForProBook (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-05-09 117248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-05-09 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-05-11 1128448]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-05-24 200704]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-02-17 2774256]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-07-08 5595848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2012-09-23 3477640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-05-09 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-05-09 627360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager]
c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-05-23 103992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-03-17 13880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-04-22 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-05-14 318520]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-05-09 12277248]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-08-09 169528]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-26 343168]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-10 16:33:26 ----SHD---- C:\$RECYCLE.BIN
2016-02-10 16:31:57 ----D---- C:\ProgramData\Validity
2016-02-10 16:30:29 ----A---- C:\windows\zoek-delete.exe
2016-02-10 16:30:28 ----D---- C:\windows\Temp
2016-02-10 15:57:41 ----D---- C:\zoek_backup
2016-02-09 14:53:55 ----D---- C:\rsit
2016-02-07 18:34:45 ----D---- C:\Program Files (x86)\American Truck Simulator
2016-02-02 11:51:56 ----D---- C:\ProgramData\Wondershare
2016-01-30 23:49:25 ----D---- C:\AdwCleaner
2016-01-26 22:29:50 ----A---- C:\DelFix.txt
2016-01-26 20:48:08 ----D---- C:\ProgramData\Apple Computer
2016-01-22 21:14:09 ----D---- C:\Program Files (x86)\Euro Truck Simulator 2
2016-01-13 14:53:13 ----D---- C:\Users\ProBook\AppData\Roaming\StarTrekPC
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-01-13 14:50:41 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-01-13 14:50:41 ----A---- C:\windows\system32\xactengine3_7.dll
2016-01-13 14:50:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-01-13 14:50:38 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\system32\d3dx11_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\system32\d3dx10_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\system32\D3DX9_43.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-01-13 14:50:30 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-01-13 14:50:30 ----A---- C:\windows\system32\xactengine3_6.dll
2016-01-13 14:50:29 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-01-13 14:50:29 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-01-13 14:50:28 ----A---- C:\windows\system32\XAudio2_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\system32\xactengine3_5.dll
2016-01-13 14:50:25 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-01-13 14:50:25 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\system32\d3dx11_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\system32\D3DX9_42.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\d3dx10_41.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\system32\D3DX9_41.dll
2016-01-13 14:50:09 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-01-13 14:50:08 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-01-13 14:50:08 ----A---- C:\windows\system32\XAudio2_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\system32\xactengine3_4.dll
2016-01-13 14:50:06 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-01-13 14:50:06 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\system32\D3DX9_40.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-01-13 14:49:56 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-01-13 14:49:56 ----A---- C:\windows\system32\xactengine3_3.dll
2016-01-13 14:49:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-01-13 14:49:55 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-01-13 14:49:52 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-01-13 14:49:52 ----A---- C:\windows\system32\xactengine3_2.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\system32\D3DX9_39.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-01-13 14:49:43 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-01-13 14:49:43 ----A---- C:\windows\system32\xactengine3_1.dll
2016-01-13 14:49:42 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-01-13 14:49:42 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\system32\D3DX9_38.dll
2016-01-13 14:49:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-01-13 14:49:36 ----A---- C:\windows\system32\XAudio2_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\system32\xactengine3_0.dll
2016-01-13 14:49:34 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-01-13 14:49:34 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\system32\D3DX9_37.dll
2016-01-13 14:49:26 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-01-13 14:49:26 ----A---- C:\windows\system32\xactengine2_10.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\system32\d3dx9_36.dll
2016-01-13 14:49:18 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-01-13 14:49:18 ----A---- C:\windows\system32\xactengine2_9.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\system32\d3dx9_35.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\system32\d3dx9_34.dll
2016-01-13 14:49:02 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-01-13 14:49:02 ----A---- C:\windows\system32\xinput1_3.dll
2016-01-13 14:49:00 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-01-13 14:49:00 ----A---- C:\windows\system32\xactengine2_7.dll
2016-01-13 14:48:58 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-01-13 14:48:58 ----A---- C:\windows\system32\d3dx10_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\system32\d3dx9_33.dll
2016-01-13 14:48:53 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-01-13 14:48:53 ----A---- C:\windows\system32\xactengine2_6.dll
2016-01-13 14:48:51 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-01-13 14:48:51 ----A---- C:\windows\system32\xactengine2_5.dll
2016-01-13 14:48:50 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-01-13 14:48:50 ----A---- C:\windows\system32\d3dx10.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-01-13 14:48:43 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-01-13 14:48:43 ----A---- C:\windows\system32\d3dx9_31.dll
2016-01-13 14:48:42 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-01-13 14:48:42 ----A---- C:\windows\system32\xactengine2_3.dll
2016-01-13 14:48:40 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-01-13 14:48:40 ----A---- C:\windows\system32\xinput1_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\system32\xactengine2_2.dll
2016-01-13 14:48:38 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-01-13 14:48:38 ----A---- C:\windows\system32\xinput1_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\system32\xactengine2_1.dll
2016-01-13 14:48:26 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-01-13 14:48:26 ----A---- C:\windows\system32\d3dx9_30.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-01-13 14:48:21 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-01-13 14:48:21 ----A---- C:\windows\system32\d3dx9_29.dll
2016-01-13 14:48:18 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-01-13 14:48:18 ----A---- C:\windows\system32\d3dx9_28.dll
2016-01-13 14:48:15 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-01-13 14:48:15 ----A---- C:\windows\system32\d3dx9_27.dll
2016-01-13 14:48:08 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-01-13 14:48:08 ----A---- C:\windows\system32\d3dx9_26.dll
2016-01-13 14:47:59 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-01-13 14:47:59 ----A---- C:\windows\system32\d3dx9_25.dll
2016-01-13 14:47:56 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-01-13 14:47:56 ----A---- C:\windows\system32\d3dx9_24.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 13:29:04 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 13:29:02 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 13:29:00 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 13:28:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 13:28:56 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\occache.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 13:28:55 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 13:28:54 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 13:28:53 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 13:28:51 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 13:28:49 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 13:28:47 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 13:28:47 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 13:28:46 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieui.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 13:28:44 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 13:28:42 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript.dll
2016-01-13 13:28:41 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\wininet.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\msrating.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 13:28:37 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\system32\mf.dll
2016-01-13 13:27:22 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 13:27:21 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 13:27:20 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\quartz.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\evr.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMALFXGFXDSP.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\devenum.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\system32\qasf.dll
2016-01-13 13:27:16 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 13:27:11 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 13:27:11 ----A---- C:\windows\system32\qedit.dll
2016-01-13 13:27:10 ----A---- C:\windows\system32\aepic.dll
2016-01-13 13:27:10 ----A---- C:\windows\system32\aeinv.dll
2016-01-13 13:27:09 ----A---- C:\windows\system32\win32k.sys
2016-01-13 13:27:08 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 13:27:08 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 13:26:57 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 13:26:55 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 13:26:54 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 13:26:53 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\schannel.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 13:26:52 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 13:26:52 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 13:26:50 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\secur32.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 13:26:49 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\credssp.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\srcore.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\smss.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\lsass.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\conhost.exe
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 13:26:42 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 13:26:42 ----A---- C:\windows\system32\msobjs.dll
2016-01-13 13:26:24 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 13:26:23 ----A---- C:\windows\SYSWOW64\gdi32.dll
======List of files/folders modified in the last 1 month======
2016-02-10 19:09:21 ----D---- C:\Program Files\trend micro
2016-02-10 19:01:47 ----D---- C:\windows\system32\catroot2
2016-02-10 19:01:27 ----D---- C:\windows\winsxs
2016-02-10 19:00:19 ----D---- C:\windows\system32\config
2016-02-10 18:25:34 ----D---- C:\ProgramData\PDFC
2016-02-10 18:00:03 ----SHD---- C:\windows\Installer
2016-02-10 18:00:03 ----D---- C:\windows\Microsoft.NET
2016-02-10 17:57:05 ----SHD---- C:\System Volume Information
2016-02-10 16:31:57 ----HD---- C:\ProgramData
2016-02-10 16:31:56 ----D---- C:\Windows
2016-02-10 16:23:43 ----D---- C:\Program Files (x86)\Common Files
2016-02-10 16:04:53 ----RD---- C:\Program Files (x86)
2016-02-10 16:01:15 ----D---- C:\windows\system32\drivers\etc
2016-02-10 15:57:43 ----D---- C:\windows\SysWOW64
2016-02-10 15:12:35 ----D---- C:\windows\inf
2016-02-10 13:27:46 ----D---- C:\windows\Prefetch
2016-02-10 12:52:01 ----D---- C:\windows\Tasks
2016-02-09 20:06:39 ----D---- C:\windows\System32
2016-02-09 20:06:38 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-02-09 14:45:34 ----D---- C:\windows\Logs
2016-02-09 14:45:34 ----D---- C:\windows\debug
2016-02-01 15:54:21 ----D---- C:\Users\ProBook\AppData\Roaming\ArcSoft
2016-01-31 18:01:43 ----D---- C:\Program Files\Calibre2
2016-01-26 21:53:34 ----D---- C:\Users\ProBook\AppData\Roaming\Apple Computer
2016-01-26 20:48:43 ----D---- C:\Program Files (x86)\QuickTime
2016-01-26 18:21:50 ----RD---- C:\Program Files
2016-01-14 17:27:56 ----D---- C:\windows\rescache
2016-01-14 14:10:08 ----D---- C:\windows\system32\Tasks
2016-01-13 16:15:56 ----RSD---- C:\windows\assembly
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sl-SI
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sk-SK
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\hr-HR
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 14:01:32 ----D---- C:\Program Files\Internet Explorer
2016-01-13 14:01:32 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 14:01:31 ----D---- C:\windows\system32\sl-SI
2016-01-13 14:01:31 ----D---- C:\windows\system32\sk-SK
2016-01-13 14:01:31 ----D---- C:\windows\system32\hr-HR
2016-01-13 14:01:31 ----D---- C:\windows\system32\en-US
2016-01-13 14:01:31 ----D---- C:\windows\system32\cs-CZ
2016-01-13 14:01:26 ----D---- C:\windows\system32\drivers
2016-01-13 14:01:26 ----D---- C:\windows\AppPatch
2016-01-13 14:01:25 ----D---- C:\windows\system32\DriverStore
2016-01-13 13:59:03 ----D---- C:\windows\system32\MRT
2016-01-13 13:39:27 ----A---- C:\windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\windows\system32\drivers\amd_sata.sys [2011-04-15 79488]
R0 amd_xata;amd_xata; C:\windows\system32\drivers\amd_xata.sys [2011-04-15 40064]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-05 30008]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-05-24 158280]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-07-14 255240]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-07-14 178520]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-07-14 168208]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-05 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\amdhub30.sys [2012-11-29 107688]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-10-25 10207744]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-10-25 317952]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\amdxhc.sys [2012-11-29 228008]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-04-21 2727424]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-05-09 29344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\drivers\HpqKbFiltr.sys [2011-05-14 25912]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2015-02-18 175928]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2011-04-07 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2011-05-11 523264]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2015-02-17 524016]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2015-02-17 58536]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-05-09 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-05-09 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-05-09 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-05-09 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-05-09 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-05-09 281760]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP; C:\windows\system32\DRIVERS\BthMtpEnum.sys [2009-07-14 64512]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-05-09 64312]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Corporate.12.0;ABBYY FineReader 12 CE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [2014-07-17 961744]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-10-25 204288]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-05-09 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-05-09 80032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-05-19 485712]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-07-08 1353720]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-03-17 132152]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-03-23 133688]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-05-09 320512]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-05-14 317496]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-05 30520]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-05-24 1318912]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-04-22 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 RtlISMServ;RtlISMServ; C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [2011-05-30 40960]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-05-11 301056]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-03-24 3161904]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-05-22 818232]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-05-09 464440]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-02-11 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-02-11 655624]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-05-23 1098296]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-28 51727736]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2015-01-24 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu, nefunguje Windows Update
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, nefunguje Windows Update
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, nefunguje Windows Update
# AdwCleaner v5.033 - Logfile created 10/02/2016 at 20:00:12
# Updated 07/02/2016 by Xplode
# Database : 2016-02-07.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : ProBook - PROBOOK-HP
# Running from : C:\Users\ProBook\Desktop\adwcleaner_5.033.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[#] Folder Deleted : C:\windows\SysNative\Tasks\com.flash.WidgetBrowser
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [759 bytes] ##########
# Updated 07/02/2016 by Xplode
# Database : 2016-02-07.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : ProBook - PROBOOK-HP
# Running from : C:\Users\ProBook\Desktop\adwcleaner_5.033.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[#] Folder Deleted : C:\windows\SysNative\Tasks\com.flash.WidgetBrowser
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [759 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, nefunguje Windows Update
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, nefunguje Windows Update
Logfile of random's system information tool 1.10 (written by random/random)
Run by ProBook at 2016-02-10 20:16:56
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 336 GB (57%) free of 589 GB
Total RAM: 3552 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:17:06, on 10.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files\trend micro\ProBook.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 12 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.12.0) - ABBYY Production LLC - C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtlISMServ - Realtek - C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
--
End of file - 12570 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
winlogon.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 30423440
\??\C:\windows\system32\conhost.exe "643947867-770658433-17849825573503571697068806411388243825-1798033286-1661571095
atieclxx
C:\windows\System32\spoolsv.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe" -service
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe" /i
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
C:\windows\Explorer.EXE
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
WLIDSvcM.exe 2148
C:\windows\system32\wbem\unsecapp.exe -Embedding
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\servicing\TrustedInstaller.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
taskeng.exe {EC1A02E1-D011-46D8-8E7A-6C11691F4F89}
"C:\Users\ProBook\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore1d04234cbce8726.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA1d04234cc19e920.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\HPCeeScheduleForProBook.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForProBook (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-05-09 117248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-05-09 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-05-11 1128448]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-05-24 200704]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-02-17 2774256]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-07-08 5595848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2012-09-23 3477640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-05-09 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-05-09 627360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager]
c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-05-23 103992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-03-17 13880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-04-22 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-05-14 318520]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-05-09 12277248]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-08-09 169528]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-26 343168]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-10 20:16:56 ----D---- C:\rsit
2016-02-10 19:57:17 ----D---- C:\AdwCleaner
2016-02-10 18:14:11 ----A---- C:\windows\system32\generaltel.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\devinv.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\appraiser.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\acmigration.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\invagent.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\aeinv.dll
2016-02-10 18:14:09 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-02-10 16:33:26 ----SHD---- C:\$RECYCLE.BIN
2016-02-10 16:31:57 ----D---- C:\ProgramData\Validity
2016-02-10 16:30:29 ----A---- C:\windows\zoek-delete.exe
2016-02-10 16:30:28 ----D---- C:\windows\Temp
2016-02-07 18:34:45 ----D---- C:\Program Files (x86)\American Truck Simulator
2016-02-02 11:51:56 ----D---- C:\ProgramData\Wondershare
2016-01-26 22:29:50 ----A---- C:\DelFix.txt
2016-01-26 20:48:08 ----D---- C:\ProgramData\Apple Computer
2016-01-22 21:14:09 ----D---- C:\Program Files (x86)\Euro Truck Simulator 2
2016-01-13 14:53:13 ----D---- C:\Users\ProBook\AppData\Roaming\StarTrekPC
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-01-13 14:50:41 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-01-13 14:50:41 ----A---- C:\windows\system32\xactengine3_7.dll
2016-01-13 14:50:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-01-13 14:50:38 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\system32\d3dx11_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\system32\d3dx10_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\system32\D3DX9_43.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-01-13 14:50:30 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-01-13 14:50:30 ----A---- C:\windows\system32\xactengine3_6.dll
2016-01-13 14:50:29 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-01-13 14:50:29 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-01-13 14:50:28 ----A---- C:\windows\system32\XAudio2_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\system32\xactengine3_5.dll
2016-01-13 14:50:25 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-01-13 14:50:25 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\system32\d3dx11_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\system32\D3DX9_42.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\d3dx10_41.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\system32\D3DX9_41.dll
2016-01-13 14:50:09 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-01-13 14:50:08 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-01-13 14:50:08 ----A---- C:\windows\system32\XAudio2_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\system32\xactengine3_4.dll
2016-01-13 14:50:06 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-01-13 14:50:06 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\system32\D3DX9_40.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-01-13 14:49:56 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-01-13 14:49:56 ----A---- C:\windows\system32\xactengine3_3.dll
2016-01-13 14:49:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-01-13 14:49:55 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-01-13 14:49:52 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-01-13 14:49:52 ----A---- C:\windows\system32\xactengine3_2.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\system32\D3DX9_39.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-01-13 14:49:43 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-01-13 14:49:43 ----A---- C:\windows\system32\xactengine3_1.dll
2016-01-13 14:49:42 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-01-13 14:49:42 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\system32\D3DX9_38.dll
2016-01-13 14:49:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-01-13 14:49:36 ----A---- C:\windows\system32\XAudio2_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\system32\xactengine3_0.dll
2016-01-13 14:49:34 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-01-13 14:49:34 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\system32\D3DX9_37.dll
2016-01-13 14:49:26 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-01-13 14:49:26 ----A---- C:\windows\system32\xactengine2_10.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\system32\d3dx9_36.dll
2016-01-13 14:49:18 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-01-13 14:49:18 ----A---- C:\windows\system32\xactengine2_9.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\system32\d3dx9_35.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\system32\d3dx9_34.dll
2016-01-13 14:49:02 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-01-13 14:49:02 ----A---- C:\windows\system32\xinput1_3.dll
2016-01-13 14:49:00 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-01-13 14:49:00 ----A---- C:\windows\system32\xactengine2_7.dll
2016-01-13 14:48:58 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-01-13 14:48:58 ----A---- C:\windows\system32\d3dx10_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\system32\d3dx9_33.dll
2016-01-13 14:48:53 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-01-13 14:48:53 ----A---- C:\windows\system32\xactengine2_6.dll
2016-01-13 14:48:51 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-01-13 14:48:51 ----A---- C:\windows\system32\xactengine2_5.dll
2016-01-13 14:48:50 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-01-13 14:48:50 ----A---- C:\windows\system32\d3dx10.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-01-13 14:48:43 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-01-13 14:48:43 ----A---- C:\windows\system32\d3dx9_31.dll
2016-01-13 14:48:42 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-01-13 14:48:42 ----A---- C:\windows\system32\xactengine2_3.dll
2016-01-13 14:48:40 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-01-13 14:48:40 ----A---- C:\windows\system32\xinput1_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\system32\xactengine2_2.dll
2016-01-13 14:48:38 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-01-13 14:48:38 ----A---- C:\windows\system32\xinput1_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\system32\xactengine2_1.dll
2016-01-13 14:48:26 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-01-13 14:48:26 ----A---- C:\windows\system32\d3dx9_30.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-01-13 14:48:21 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-01-13 14:48:21 ----A---- C:\windows\system32\d3dx9_29.dll
2016-01-13 14:48:18 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-01-13 14:48:18 ----A---- C:\windows\system32\d3dx9_28.dll
2016-01-13 14:48:15 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-01-13 14:48:15 ----A---- C:\windows\system32\d3dx9_27.dll
2016-01-13 14:48:08 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-01-13 14:48:08 ----A---- C:\windows\system32\d3dx9_26.dll
2016-01-13 14:47:59 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-01-13 14:47:59 ----A---- C:\windows\system32\d3dx9_25.dll
2016-01-13 14:47:56 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-01-13 14:47:56 ----A---- C:\windows\system32\d3dx9_24.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 13:29:04 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 13:29:02 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 13:29:00 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 13:28:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 13:28:56 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\occache.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 13:28:55 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 13:28:54 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 13:28:53 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 13:28:51 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 13:28:49 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 13:28:47 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 13:28:47 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 13:28:46 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieui.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 13:28:44 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 13:28:42 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript.dll
2016-01-13 13:28:41 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\wininet.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\msrating.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 13:28:37 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\system32\mf.dll
2016-01-13 13:27:22 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 13:27:21 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 13:27:20 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\quartz.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\evr.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMALFXGFXDSP.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\devenum.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\system32\qasf.dll
2016-01-13 13:27:16 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 13:27:11 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 13:27:11 ----A---- C:\windows\system32\qedit.dll
2016-01-13 13:27:10 ----A---- C:\windows\system32\aepic.dll
2016-01-13 13:27:09 ----A---- C:\windows\system32\win32k.sys
2016-01-13 13:27:08 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 13:27:08 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 13:26:57 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 13:26:55 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 13:26:54 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 13:26:53 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\schannel.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 13:26:52 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 13:26:52 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 13:26:50 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\secur32.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 13:26:49 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\credssp.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\srcore.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\smss.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\lsass.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\conhost.exe
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 13:26:42 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 13:26:42 ----A---- C:\windows\system32\msobjs.dll
2016-01-13 13:26:24 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 13:26:23 ----A---- C:\windows\SYSWOW64\gdi32.dll
======List of files/folders modified in the last 1 month======
2016-02-10 20:17:05 ----D---- C:\Program Files\trend micro
2016-02-10 20:02:38 ----D---- C:\windows\system32\config
2016-02-10 20:02:22 ----D---- C:\ProgramData\PDFC
2016-02-10 20:02:16 ----D---- C:\windows\inf
2016-02-10 19:56:11 ----D---- C:\windows\System32
2016-02-10 19:56:11 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-02-10 19:44:05 ----D---- C:\windows\Microsoft.NET
2016-02-10 19:36:57 ----D---- C:\windows\system32\MRT
2016-02-10 19:36:55 ----D---- C:\windows\debug
2016-02-10 19:36:52 ----A---- C:\windows\system32\MRT.exe
2016-02-10 19:36:44 ----SHD---- C:\windows\Installer
2016-02-10 19:32:47 ----D---- C:\windows\winsxs
2016-02-10 19:32:38 ----SD---- C:\windows\system32\CompatTel
2016-02-10 19:32:37 ----D---- C:\windows\system32\appraiser
2016-02-10 19:32:36 ----D---- C:\windows\AppPatch
2016-02-10 19:32:25 ----D---- C:\windows\system32\catroot2
2016-02-10 19:31:07 ----SHD---- C:\System Volume Information
2016-02-10 16:31:57 ----HD---- C:\ProgramData
2016-02-10 16:31:56 ----D---- C:\Windows
2016-02-10 16:23:43 ----D---- C:\Program Files (x86)\Common Files
2016-02-10 16:04:53 ----RD---- C:\Program Files (x86)
2016-02-10 16:01:15 ----D---- C:\windows\system32\drivers\etc
2016-02-10 15:57:43 ----D---- C:\windows\SysWOW64
2016-02-10 13:27:46 ----D---- C:\windows\Prefetch
2016-02-10 12:52:01 ----D---- C:\windows\Tasks
2016-02-09 14:45:34 ----D---- C:\windows\Logs
2016-02-01 15:54:21 ----D---- C:\Users\ProBook\AppData\Roaming\ArcSoft
2016-01-31 18:01:43 ----D---- C:\Program Files\Calibre2
2016-01-26 21:53:34 ----D---- C:\Users\ProBook\AppData\Roaming\Apple Computer
2016-01-26 20:48:43 ----D---- C:\Program Files (x86)\QuickTime
2016-01-26 18:21:50 ----RD---- C:\Program Files
2016-01-14 17:27:56 ----D---- C:\windows\rescache
2016-01-14 14:10:08 ----D---- C:\windows\system32\Tasks
2016-01-13 16:15:56 ----RSD---- C:\windows\assembly
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sl-SI
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sk-SK
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\hr-HR
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 14:01:32 ----D---- C:\Program Files\Internet Explorer
2016-01-13 14:01:32 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 14:01:31 ----D---- C:\windows\system32\sl-SI
2016-01-13 14:01:31 ----D---- C:\windows\system32\sk-SK
2016-01-13 14:01:31 ----D---- C:\windows\system32\hr-HR
2016-01-13 14:01:31 ----D---- C:\windows\system32\en-US
2016-01-13 14:01:31 ----D---- C:\windows\system32\cs-CZ
2016-01-13 14:01:26 ----D---- C:\windows\system32\drivers
2016-01-13 14:01:25 ----D---- C:\windows\system32\DriverStore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\windows\system32\drivers\amd_sata.sys [2011-04-15 79488]
R0 amd_xata;amd_xata; C:\windows\system32\drivers\amd_xata.sys [2011-04-15 40064]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-05 30008]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-05-24 158280]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-07-14 255240]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-07-14 178520]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-07-14 168208]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-05 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\amdhub30.sys [2012-11-29 107688]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-10-25 10207744]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-10-25 317952]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\amdxhc.sys [2012-11-29 228008]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-04-21 2727424]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-05-09 29344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\drivers\HpqKbFiltr.sys [2011-05-14 25912]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2015-02-18 175928]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2011-04-07 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2011-05-11 523264]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2015-02-17 524016]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2015-02-17 58536]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-05-09 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-05-09 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-05-09 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-05-09 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-05-09 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-05-09 281760]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP; C:\windows\system32\DRIVERS\BthMtpEnum.sys [2009-07-14 64512]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-05-09 64312]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Corporate.12.0;ABBYY FineReader 12 CE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [2014-07-17 961744]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-10-25 204288]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-05-09 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-05-09 80032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-05-19 485712]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-07-08 1353720]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-03-17 132152]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-03-23 133688]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-05-09 320512]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-05-14 317496]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-05 30520]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-05-24 1318912]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-04-22 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 RtlISMServ;RtlISMServ; C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [2011-05-30 40960]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-05-11 301056]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-03-24 3161904]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-05-22 818232]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-05-09 464440]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-02-11 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-02-11 655624]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-05-23 1098296]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-28 51727736]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2015-01-24 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Run by ProBook at 2016-02-10 20:16:56
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 336 GB (57%) free of 589 GB
Total RAM: 3552 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:17:06, on 10.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files\trend micro\ProBook.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 12 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.12.0) - ABBYY Production LLC - C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtlISMServ - Realtek - C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
--
End of file - 12570 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
winlogon.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 30423440
\??\C:\windows\system32\conhost.exe "643947867-770658433-17849825573503571697068806411388243825-1798033286-1661571095
atieclxx
C:\windows\System32\spoolsv.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe" -service
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe" /i
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
C:\windows\Explorer.EXE
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
WLIDSvcM.exe 2148
C:\windows\system32\wbem\unsecapp.exe -Embedding
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\servicing\TrustedInstaller.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
taskeng.exe {EC1A02E1-D011-46D8-8E7A-6C11691F4F89}
"C:\Users\ProBook\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore1d04234cbce8726.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA1d04234cc19e920.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\HPCeeScheduleForProBook.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForProBook (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-05-09 117248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-05-09 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-05-11 1128448]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-05-24 200704]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-02-17 2774256]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-07-08 5595848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2012-09-23 3477640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-05-09 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-05-09 627360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager]
c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-05-23 103992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-03-17 13880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-04-22 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-05-14 318520]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-05-09 12277248]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-08-09 169528]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-26 343168]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-10 20:16:56 ----D---- C:\rsit
2016-02-10 19:57:17 ----D---- C:\AdwCleaner
2016-02-10 18:14:11 ----A---- C:\windows\system32\generaltel.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\devinv.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\appraiser.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\acmigration.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\invagent.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\aeinv.dll
2016-02-10 18:14:09 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-02-10 16:33:26 ----SHD---- C:\$RECYCLE.BIN
2016-02-10 16:31:57 ----D---- C:\ProgramData\Validity
2016-02-10 16:30:29 ----A---- C:\windows\zoek-delete.exe
2016-02-10 16:30:28 ----D---- C:\windows\Temp
2016-02-07 18:34:45 ----D---- C:\Program Files (x86)\American Truck Simulator
2016-02-02 11:51:56 ----D---- C:\ProgramData\Wondershare
2016-01-26 22:29:50 ----A---- C:\DelFix.txt
2016-01-26 20:48:08 ----D---- C:\ProgramData\Apple Computer
2016-01-22 21:14:09 ----D---- C:\Program Files (x86)\Euro Truck Simulator 2
2016-01-13 14:53:13 ----D---- C:\Users\ProBook\AppData\Roaming\StarTrekPC
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-01-13 14:50:41 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-01-13 14:50:41 ----A---- C:\windows\system32\xactengine3_7.dll
2016-01-13 14:50:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-01-13 14:50:38 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\system32\d3dx11_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\system32\d3dx10_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\system32\D3DX9_43.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-01-13 14:50:30 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-01-13 14:50:30 ----A---- C:\windows\system32\xactengine3_6.dll
2016-01-13 14:50:29 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-01-13 14:50:29 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-01-13 14:50:28 ----A---- C:\windows\system32\XAudio2_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\system32\xactengine3_5.dll
2016-01-13 14:50:25 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-01-13 14:50:25 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\system32\d3dx11_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\system32\D3DX9_42.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\d3dx10_41.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\system32\D3DX9_41.dll
2016-01-13 14:50:09 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-01-13 14:50:08 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-01-13 14:50:08 ----A---- C:\windows\system32\XAudio2_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\system32\xactengine3_4.dll
2016-01-13 14:50:06 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-01-13 14:50:06 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\system32\D3DX9_40.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-01-13 14:49:56 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-01-13 14:49:56 ----A---- C:\windows\system32\xactengine3_3.dll
2016-01-13 14:49:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-01-13 14:49:55 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-01-13 14:49:52 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-01-13 14:49:52 ----A---- C:\windows\system32\xactengine3_2.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\system32\D3DX9_39.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-01-13 14:49:43 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-01-13 14:49:43 ----A---- C:\windows\system32\xactengine3_1.dll
2016-01-13 14:49:42 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-01-13 14:49:42 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\system32\D3DX9_38.dll
2016-01-13 14:49:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-01-13 14:49:36 ----A---- C:\windows\system32\XAudio2_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\system32\xactengine3_0.dll
2016-01-13 14:49:34 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-01-13 14:49:34 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\system32\D3DX9_37.dll
2016-01-13 14:49:26 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-01-13 14:49:26 ----A---- C:\windows\system32\xactengine2_10.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\system32\d3dx9_36.dll
2016-01-13 14:49:18 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-01-13 14:49:18 ----A---- C:\windows\system32\xactengine2_9.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\system32\d3dx9_35.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\system32\d3dx9_34.dll
2016-01-13 14:49:02 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-01-13 14:49:02 ----A---- C:\windows\system32\xinput1_3.dll
2016-01-13 14:49:00 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-01-13 14:49:00 ----A---- C:\windows\system32\xactengine2_7.dll
2016-01-13 14:48:58 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-01-13 14:48:58 ----A---- C:\windows\system32\d3dx10_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\system32\d3dx9_33.dll
2016-01-13 14:48:53 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-01-13 14:48:53 ----A---- C:\windows\system32\xactengine2_6.dll
2016-01-13 14:48:51 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-01-13 14:48:51 ----A---- C:\windows\system32\xactengine2_5.dll
2016-01-13 14:48:50 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-01-13 14:48:50 ----A---- C:\windows\system32\d3dx10.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-01-13 14:48:43 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-01-13 14:48:43 ----A---- C:\windows\system32\d3dx9_31.dll
2016-01-13 14:48:42 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-01-13 14:48:42 ----A---- C:\windows\system32\xactengine2_3.dll
2016-01-13 14:48:40 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-01-13 14:48:40 ----A---- C:\windows\system32\xinput1_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\system32\xactengine2_2.dll
2016-01-13 14:48:38 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-01-13 14:48:38 ----A---- C:\windows\system32\xinput1_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\system32\xactengine2_1.dll
2016-01-13 14:48:26 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-01-13 14:48:26 ----A---- C:\windows\system32\d3dx9_30.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-01-13 14:48:21 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-01-13 14:48:21 ----A---- C:\windows\system32\d3dx9_29.dll
2016-01-13 14:48:18 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-01-13 14:48:18 ----A---- C:\windows\system32\d3dx9_28.dll
2016-01-13 14:48:15 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-01-13 14:48:15 ----A---- C:\windows\system32\d3dx9_27.dll
2016-01-13 14:48:08 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-01-13 14:48:08 ----A---- C:\windows\system32\d3dx9_26.dll
2016-01-13 14:47:59 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-01-13 14:47:59 ----A---- C:\windows\system32\d3dx9_25.dll
2016-01-13 14:47:56 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-01-13 14:47:56 ----A---- C:\windows\system32\d3dx9_24.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 13:29:04 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 13:29:02 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 13:29:00 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 13:28:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 13:28:56 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\occache.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 13:28:55 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 13:28:54 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 13:28:53 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 13:28:51 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 13:28:49 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 13:28:47 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 13:28:47 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 13:28:46 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieui.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 13:28:44 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 13:28:42 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript.dll
2016-01-13 13:28:41 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\wininet.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\msrating.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 13:28:37 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\system32\mf.dll
2016-01-13 13:27:22 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 13:27:21 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 13:27:20 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\quartz.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\evr.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMALFXGFXDSP.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\devenum.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\system32\qasf.dll
2016-01-13 13:27:16 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 13:27:11 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 13:27:11 ----A---- C:\windows\system32\qedit.dll
2016-01-13 13:27:10 ----A---- C:\windows\system32\aepic.dll
2016-01-13 13:27:09 ----A---- C:\windows\system32\win32k.sys
2016-01-13 13:27:08 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 13:27:08 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 13:26:57 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 13:26:55 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 13:26:54 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 13:26:53 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\schannel.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 13:26:52 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 13:26:52 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 13:26:50 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\secur32.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 13:26:49 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\credssp.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\srcore.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\smss.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\lsass.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\conhost.exe
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 13:26:42 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 13:26:42 ----A---- C:\windows\system32\msobjs.dll
2016-01-13 13:26:24 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 13:26:23 ----A---- C:\windows\SYSWOW64\gdi32.dll
======List of files/folders modified in the last 1 month======
2016-02-10 20:17:05 ----D---- C:\Program Files\trend micro
2016-02-10 20:02:38 ----D---- C:\windows\system32\config
2016-02-10 20:02:22 ----D---- C:\ProgramData\PDFC
2016-02-10 20:02:16 ----D---- C:\windows\inf
2016-02-10 19:56:11 ----D---- C:\windows\System32
2016-02-10 19:56:11 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-02-10 19:44:05 ----D---- C:\windows\Microsoft.NET
2016-02-10 19:36:57 ----D---- C:\windows\system32\MRT
2016-02-10 19:36:55 ----D---- C:\windows\debug
2016-02-10 19:36:52 ----A---- C:\windows\system32\MRT.exe
2016-02-10 19:36:44 ----SHD---- C:\windows\Installer
2016-02-10 19:32:47 ----D---- C:\windows\winsxs
2016-02-10 19:32:38 ----SD---- C:\windows\system32\CompatTel
2016-02-10 19:32:37 ----D---- C:\windows\system32\appraiser
2016-02-10 19:32:36 ----D---- C:\windows\AppPatch
2016-02-10 19:32:25 ----D---- C:\windows\system32\catroot2
2016-02-10 19:31:07 ----SHD---- C:\System Volume Information
2016-02-10 16:31:57 ----HD---- C:\ProgramData
2016-02-10 16:31:56 ----D---- C:\Windows
2016-02-10 16:23:43 ----D---- C:\Program Files (x86)\Common Files
2016-02-10 16:04:53 ----RD---- C:\Program Files (x86)
2016-02-10 16:01:15 ----D---- C:\windows\system32\drivers\etc
2016-02-10 15:57:43 ----D---- C:\windows\SysWOW64
2016-02-10 13:27:46 ----D---- C:\windows\Prefetch
2016-02-10 12:52:01 ----D---- C:\windows\Tasks
2016-02-09 14:45:34 ----D---- C:\windows\Logs
2016-02-01 15:54:21 ----D---- C:\Users\ProBook\AppData\Roaming\ArcSoft
2016-01-31 18:01:43 ----D---- C:\Program Files\Calibre2
2016-01-26 21:53:34 ----D---- C:\Users\ProBook\AppData\Roaming\Apple Computer
2016-01-26 20:48:43 ----D---- C:\Program Files (x86)\QuickTime
2016-01-26 18:21:50 ----RD---- C:\Program Files
2016-01-14 17:27:56 ----D---- C:\windows\rescache
2016-01-14 14:10:08 ----D---- C:\windows\system32\Tasks
2016-01-13 16:15:56 ----RSD---- C:\windows\assembly
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sl-SI
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sk-SK
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\hr-HR
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 14:01:32 ----D---- C:\Program Files\Internet Explorer
2016-01-13 14:01:32 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 14:01:31 ----D---- C:\windows\system32\sl-SI
2016-01-13 14:01:31 ----D---- C:\windows\system32\sk-SK
2016-01-13 14:01:31 ----D---- C:\windows\system32\hr-HR
2016-01-13 14:01:31 ----D---- C:\windows\system32\en-US
2016-01-13 14:01:31 ----D---- C:\windows\system32\cs-CZ
2016-01-13 14:01:26 ----D---- C:\windows\system32\drivers
2016-01-13 14:01:25 ----D---- C:\windows\system32\DriverStore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\windows\system32\drivers\amd_sata.sys [2011-04-15 79488]
R0 amd_xata;amd_xata; C:\windows\system32\drivers\amd_xata.sys [2011-04-15 40064]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-05 30008]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-05-24 158280]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-07-14 255240]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-07-14 178520]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-07-14 168208]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-05 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\amdhub30.sys [2012-11-29 107688]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-10-25 10207744]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-10-25 317952]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\amdxhc.sys [2012-11-29 228008]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-04-21 2727424]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-05-09 29344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\drivers\HpqKbFiltr.sys [2011-05-14 25912]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2015-02-18 175928]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2011-04-07 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2011-05-11 523264]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2015-02-17 524016]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2015-02-17 58536]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-05-09 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-05-09 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-05-09 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-05-09 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-05-09 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-05-09 281760]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP; C:\windows\system32\DRIVERS\BthMtpEnum.sys [2009-07-14 64512]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-05-09 64312]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Corporate.12.0;ABBYY FineReader 12 CE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [2014-07-17 961744]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-10-25 204288]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-05-09 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-05-09 80032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-05-19 485712]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-07-08 1353720]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-03-17 132152]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-03-23 133688]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-05-09 320512]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-05-14 317496]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-05 30520]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-05-24 1318912]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-04-22 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 RtlISMServ;RtlISMServ; C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [2011-05-30 40960]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-05-11 301056]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-03-24 3161904]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-05-22 818232]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-05-09 464440]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-02-11 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-02-11 655624]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-05-23 1098296]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-28 51727736]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2015-01-24 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, nefunguje Windows Update
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\windows\tasks\GoogleUpdateTaskMachineCore1d04234cbce8726.job
C:\windows\tasks\GoogleUpdateTaskMachineUA1d04234cc19e920.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, nefunguje Windows Update
All processes killed
========== FILES ==========
C:\windows\tasks\GoogleUpdateTaskMachineCore1d04234cbce8726.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineUA1d04234cc19e920.job moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: ProBook
->Temp folder emptied: 1596832 bytes
->Temporary Internet Files folder emptied: 1341101 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 150522521 bytes
->Flash cache emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16463201 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 293771298 bytes
Total Files Cleaned = 442,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: ProBook
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 02102016_213304
Files moved on Reboot...
C:\Users\ProBook\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
========== FILES ==========
C:\windows\tasks\GoogleUpdateTaskMachineCore1d04234cbce8726.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineUA1d04234cc19e920.job moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: ProBook
->Temp folder emptied: 1596832 bytes
->Temporary Internet Files folder emptied: 1341101 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 150522521 bytes
->Flash cache emptied: 0 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16463201 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 293771298 bytes
Total Files Cleaned = 442,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: ProBook
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 02102016_213304
Files moved on Reboot...
C:\Users\ProBook\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
Re: Prosím o kontrolu, nefunguje Windows Update
Logfile of random's system information tool 1.10 (written by random/random)
Run by ProBook at 2016-02-10 21:39:44
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 336 GB (57%) free of 589 GB
Total RAM: 3552 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:39:50, on 10.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files\trend micro\ProBook.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 12 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.12.0) - ABBYY Production LLC - C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtlISMServ - Realtek - C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
--
End of file - 12570 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
winlogon.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 38952128
\??\C:\windows\system32\conhost.exe "12577465301946775967606688324450083042-1336305852-1662489555300236053615533891
atieclxx
C:\windows\System32\spoolsv.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
taskeng.exe {231B8897-479E-4743-B837-144E625F442A}
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe" -service
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"taskhost.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe" /i
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2204
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\windows\system32\GWX\GWX.exe"
C:\windows\system32\wbem\wmiprvse.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\sppsvc.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\wbem\wmiprvse.exe
taskeng.exe {B845E9AF-3B79-4395-8ACE-59A121CF1BD9}
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\ProBook\Desktop\RSITx64.exe"
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForProBook.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForProBook (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-05-09 117248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-05-09 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-05-11 1128448]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-05-24 200704]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-02-17 2774256]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-07-08 5595848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2012-09-23 3477640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-05-09 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-05-09 627360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager]
c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-05-23 103992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-03-17 13880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-04-22 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-05-14 318520]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-05-09 12277248]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-08-09 169528]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-26 343168]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-10 21:33:04 ----D---- C:\_OTM
2016-02-10 20:34:25 ----D---- C:\Users\ProBook\AppData\Roaming\MPC-HC
2016-02-10 20:16:56 ----D---- C:\rsit
2016-02-10 19:57:17 ----D---- C:\AdwCleaner
2016-02-10 18:14:11 ----A---- C:\windows\system32\generaltel.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\devinv.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\appraiser.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\acmigration.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\invagent.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\aeinv.dll
2016-02-10 18:14:09 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-02-10 16:33:26 ----SHD---- C:\$RECYCLE.BIN
2016-02-10 16:31:57 ----D---- C:\ProgramData\Validity
2016-02-10 16:30:29 ----A---- C:\windows\zoek-delete.exe
2016-02-10 16:30:28 ----D---- C:\windows\Temp
2016-02-07 18:34:45 ----D---- C:\Program Files (x86)\American Truck Simulator
2016-02-02 11:51:56 ----D---- C:\ProgramData\Wondershare
2016-01-26 22:29:50 ----A---- C:\DelFix.txt
2016-01-26 20:48:08 ----D---- C:\ProgramData\Apple Computer
2016-01-22 21:14:09 ----D---- C:\Program Files (x86)\Euro Truck Simulator 2
2016-01-13 14:53:13 ----D---- C:\Users\ProBook\AppData\Roaming\StarTrekPC
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-01-13 14:50:41 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-01-13 14:50:41 ----A---- C:\windows\system32\xactengine3_7.dll
2016-01-13 14:50:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-01-13 14:50:38 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\system32\d3dx11_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\system32\d3dx10_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\system32\D3DX9_43.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-01-13 14:50:30 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-01-13 14:50:30 ----A---- C:\windows\system32\xactengine3_6.dll
2016-01-13 14:50:29 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-01-13 14:50:29 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-01-13 14:50:28 ----A---- C:\windows\system32\XAudio2_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\system32\xactengine3_5.dll
2016-01-13 14:50:25 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-01-13 14:50:25 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\system32\d3dx11_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\system32\D3DX9_42.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\d3dx10_41.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\system32\D3DX9_41.dll
2016-01-13 14:50:09 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-01-13 14:50:08 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-01-13 14:50:08 ----A---- C:\windows\system32\XAudio2_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\system32\xactengine3_4.dll
2016-01-13 14:50:06 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-01-13 14:50:06 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\system32\D3DX9_40.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-01-13 14:49:56 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-01-13 14:49:56 ----A---- C:\windows\system32\xactengine3_3.dll
2016-01-13 14:49:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-01-13 14:49:55 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-01-13 14:49:52 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-01-13 14:49:52 ----A---- C:\windows\system32\xactengine3_2.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\system32\D3DX9_39.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-01-13 14:49:43 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-01-13 14:49:43 ----A---- C:\windows\system32\xactengine3_1.dll
2016-01-13 14:49:42 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-01-13 14:49:42 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\system32\D3DX9_38.dll
2016-01-13 14:49:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-01-13 14:49:36 ----A---- C:\windows\system32\XAudio2_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\system32\xactengine3_0.dll
2016-01-13 14:49:34 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-01-13 14:49:34 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\system32\D3DX9_37.dll
2016-01-13 14:49:26 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-01-13 14:49:26 ----A---- C:\windows\system32\xactengine2_10.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\system32\d3dx9_36.dll
2016-01-13 14:49:18 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-01-13 14:49:18 ----A---- C:\windows\system32\xactengine2_9.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\system32\d3dx9_35.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\system32\d3dx9_34.dll
2016-01-13 14:49:02 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-01-13 14:49:02 ----A---- C:\windows\system32\xinput1_3.dll
2016-01-13 14:49:00 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-01-13 14:49:00 ----A---- C:\windows\system32\xactengine2_7.dll
2016-01-13 14:48:58 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-01-13 14:48:58 ----A---- C:\windows\system32\d3dx10_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\system32\d3dx9_33.dll
2016-01-13 14:48:53 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-01-13 14:48:53 ----A---- C:\windows\system32\xactengine2_6.dll
2016-01-13 14:48:51 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-01-13 14:48:51 ----A---- C:\windows\system32\xactengine2_5.dll
2016-01-13 14:48:50 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-01-13 14:48:50 ----A---- C:\windows\system32\d3dx10.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-01-13 14:48:43 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-01-13 14:48:43 ----A---- C:\windows\system32\d3dx9_31.dll
2016-01-13 14:48:42 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-01-13 14:48:42 ----A---- C:\windows\system32\xactengine2_3.dll
2016-01-13 14:48:40 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-01-13 14:48:40 ----A---- C:\windows\system32\xinput1_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\system32\xactengine2_2.dll
2016-01-13 14:48:38 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-01-13 14:48:38 ----A---- C:\windows\system32\xinput1_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\system32\xactengine2_1.dll
2016-01-13 14:48:26 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-01-13 14:48:26 ----A---- C:\windows\system32\d3dx9_30.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-01-13 14:48:21 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-01-13 14:48:21 ----A---- C:\windows\system32\d3dx9_29.dll
2016-01-13 14:48:18 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-01-13 14:48:18 ----A---- C:\windows\system32\d3dx9_28.dll
2016-01-13 14:48:15 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-01-13 14:48:15 ----A---- C:\windows\system32\d3dx9_27.dll
2016-01-13 14:48:08 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-01-13 14:48:08 ----A---- C:\windows\system32\d3dx9_26.dll
2016-01-13 14:47:59 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-01-13 14:47:59 ----A---- C:\windows\system32\d3dx9_25.dll
2016-01-13 14:47:56 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-01-13 14:47:56 ----A---- C:\windows\system32\d3dx9_24.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 13:29:04 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 13:29:02 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 13:29:00 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 13:28:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 13:28:56 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\occache.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 13:28:55 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 13:28:54 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 13:28:53 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 13:28:51 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 13:28:49 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 13:28:47 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 13:28:47 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 13:28:46 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieui.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 13:28:44 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 13:28:42 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript.dll
2016-01-13 13:28:41 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\wininet.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\msrating.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 13:28:37 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\system32\mf.dll
2016-01-13 13:27:22 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 13:27:21 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 13:27:20 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\quartz.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\evr.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMALFXGFXDSP.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\devenum.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\system32\qasf.dll
2016-01-13 13:27:16 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 13:27:11 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 13:27:11 ----A---- C:\windows\system32\qedit.dll
2016-01-13 13:27:10 ----A---- C:\windows\system32\aepic.dll
2016-01-13 13:27:09 ----A---- C:\windows\system32\win32k.sys
2016-01-13 13:27:08 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 13:27:08 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 13:26:57 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 13:26:55 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 13:26:54 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 13:26:53 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\schannel.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 13:26:52 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 13:26:52 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 13:26:50 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\secur32.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 13:26:49 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\credssp.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\srcore.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\smss.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\lsass.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\conhost.exe
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 13:26:42 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 13:26:42 ----A---- C:\windows\system32\msobjs.dll
2016-01-13 13:26:24 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 13:26:23 ----A---- C:\windows\SYSWOW64\gdi32.dll
======List of files/folders modified in the last 1 month======
2016-02-10 21:39:48 ----D---- C:\Program Files\trend micro
2016-02-10 21:36:05 ----D---- C:\windows\system32\config
2016-02-10 21:35:59 ----D---- C:\ProgramData\PDFC
2016-02-10 21:33:07 ----D---- C:\windows\Tasks
2016-02-10 20:02:16 ----D---- C:\windows\inf
2016-02-10 19:56:11 ----D---- C:\windows\System32
2016-02-10 19:56:11 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-02-10 19:47:35 ----D---- C:\windows\system32\MRT
2016-02-10 19:44:05 ----D---- C:\windows\Microsoft.NET
2016-02-10 19:36:55 ----D---- C:\windows\debug
2016-02-10 19:36:52 ----A---- C:\windows\system32\MRT.exe
2016-02-10 19:36:44 ----SHD---- C:\windows\Installer
2016-02-10 19:32:47 ----D---- C:\windows\winsxs
2016-02-10 19:32:38 ----SD---- C:\windows\system32\CompatTel
2016-02-10 19:32:37 ----D---- C:\windows\system32\appraiser
2016-02-10 19:32:36 ----D---- C:\windows\AppPatch
2016-02-10 19:32:25 ----D---- C:\windows\system32\catroot2
2016-02-10 19:31:07 ----SHD---- C:\System Volume Information
2016-02-10 16:31:57 ----HD---- C:\ProgramData
2016-02-10 16:31:56 ----D---- C:\Windows
2016-02-10 16:23:43 ----D---- C:\Program Files (x86)\Common Files
2016-02-10 16:04:53 ----RD---- C:\Program Files (x86)
2016-02-10 16:01:15 ----D---- C:\windows\system32\drivers\etc
2016-02-10 15:57:43 ----D---- C:\windows\SysWOW64
2016-02-10 13:27:46 ----D---- C:\windows\Prefetch
2016-02-09 14:45:34 ----D---- C:\windows\Logs
2016-02-01 15:54:21 ----D---- C:\Users\ProBook\AppData\Roaming\ArcSoft
2016-01-31 18:01:43 ----D---- C:\Program Files\Calibre2
2016-01-26 21:53:34 ----D---- C:\Users\ProBook\AppData\Roaming\Apple Computer
2016-01-26 20:48:43 ----D---- C:\Program Files (x86)\QuickTime
2016-01-26 18:21:50 ----RD---- C:\Program Files
2016-01-14 17:27:56 ----D---- C:\windows\rescache
2016-01-14 14:10:08 ----D---- C:\windows\system32\Tasks
2016-01-13 16:15:56 ----RSD---- C:\windows\assembly
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sl-SI
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sk-SK
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\hr-HR
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 14:01:32 ----D---- C:\Program Files\Internet Explorer
2016-01-13 14:01:32 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 14:01:31 ----D---- C:\windows\system32\sl-SI
2016-01-13 14:01:31 ----D---- C:\windows\system32\sk-SK
2016-01-13 14:01:31 ----D---- C:\windows\system32\hr-HR
2016-01-13 14:01:31 ----D---- C:\windows\system32\en-US
2016-01-13 14:01:31 ----D---- C:\windows\system32\cs-CZ
2016-01-13 14:01:26 ----D---- C:\windows\system32\drivers
2016-01-13 14:01:25 ----D---- C:\windows\system32\DriverStore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\windows\system32\drivers\amd_sata.sys [2011-04-15 79488]
R0 amd_xata;amd_xata; C:\windows\system32\drivers\amd_xata.sys [2011-04-15 40064]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-05 30008]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-05-24 158280]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-07-14 255240]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-07-14 178520]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-07-14 168208]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-05 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\amdhub30.sys [2012-11-29 107688]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-10-25 10207744]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-10-25 317952]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\amdxhc.sys [2012-11-29 228008]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-04-21 2727424]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-05-09 29344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\drivers\HpqKbFiltr.sys [2011-05-14 25912]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2015-02-18 175928]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2011-04-07 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2011-05-11 523264]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2015-02-17 524016]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2015-02-17 58536]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-05-09 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-05-09 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-05-09 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-05-09 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-05-09 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-05-09 281760]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP; C:\windows\system32\DRIVERS\BthMtpEnum.sys [2009-07-14 64512]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-05-09 64312]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Corporate.12.0;ABBYY FineReader 12 CE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [2014-07-17 961744]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-10-25 204288]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-05-09 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-05-09 80032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-05-19 485712]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-07-08 1353720]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-03-17 132152]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-03-23 133688]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-05-09 320512]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-05-14 317496]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-05 30520]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-05-24 1318912]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-04-22 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 RtlISMServ;RtlISMServ; C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [2011-05-30 40960]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-05-11 301056]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-03-24 3161904]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-05-22 818232]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-05-09 464440]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-02-11 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-02-11 655624]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-05-23 1098296]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-28 51727736]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2015-01-24 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Run by ProBook at 2016-02-10 21:39:44
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 336 GB (57%) free of 589 GB
Total RAM: 3552 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:39:50, on 10.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files\trend micro\ProBook.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 12 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.12.0) - ABBYY Production LLC - C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtlISMServ - Realtek - C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
--
End of file - 12570 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
winlogon.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 38952128
\??\C:\windows\system32\conhost.exe "12577465301946775967606688324450083042-1336305852-1662489555300236053615533891
atieclxx
C:\windows\System32\spoolsv.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
taskeng.exe {231B8897-479E-4743-B837-144E625F442A}
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe" -service
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"taskhost.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe" /i
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2204
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\windows\system32\GWX\GWX.exe"
C:\windows\system32\wbem\wmiprvse.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\sppsvc.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\wbem\wmiprvse.exe
taskeng.exe {B845E9AF-3B79-4395-8ACE-59A121CF1BD9}
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\ProBook\Desktop\RSITx64.exe"
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForProBook.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForProBook (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-05-09 117248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-05-09 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-05-11 1128448]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-05-24 200704]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-02-17 2774256]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-07-08 5595848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2012-09-23 3477640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-05-09 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-05-09 627360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager]
c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-05-23 103992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-03-17 13880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-04-22 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-05-14 318520]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-05-09 12277248]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-08-09 169528]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-26 343168]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-10 21:33:04 ----D---- C:\_OTM
2016-02-10 20:34:25 ----D---- C:\Users\ProBook\AppData\Roaming\MPC-HC
2016-02-10 20:16:56 ----D---- C:\rsit
2016-02-10 19:57:17 ----D---- C:\AdwCleaner
2016-02-10 18:14:11 ----A---- C:\windows\system32\generaltel.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\devinv.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\appraiser.dll
2016-02-10 18:14:11 ----A---- C:\windows\system32\acmigration.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\invagent.dll
2016-02-10 18:14:10 ----A---- C:\windows\system32\aeinv.dll
2016-02-10 18:14:09 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-02-10 16:33:26 ----SHD---- C:\$RECYCLE.BIN
2016-02-10 16:31:57 ----D---- C:\ProgramData\Validity
2016-02-10 16:30:29 ----A---- C:\windows\zoek-delete.exe
2016-02-10 16:30:28 ----D---- C:\windows\Temp
2016-02-07 18:34:45 ----D---- C:\Program Files (x86)\American Truck Simulator
2016-02-02 11:51:56 ----D---- C:\ProgramData\Wondershare
2016-01-26 22:29:50 ----A---- C:\DelFix.txt
2016-01-26 20:48:08 ----D---- C:\ProgramData\Apple Computer
2016-01-22 21:14:09 ----D---- C:\Program Files (x86)\Euro Truck Simulator 2
2016-01-13 14:53:13 ----D---- C:\Users\ProBook\AppData\Roaming\StarTrekPC
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAudio2_7.dll
2016-01-13 14:50:42 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-01-13 14:50:41 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-01-13 14:50:41 ----A---- C:\windows\system32\xactengine3_7.dll
2016-01-13 14:50:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-01-13 14:50:38 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-01-13 14:50:37 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-01-13 14:50:36 ----A---- C:\windows\system32\d3dx11_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-01-13 14:50:35 ----A---- C:\windows\system32\d3dx10_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-01-13 14:50:32 ----A---- C:\windows\system32\D3DX9_43.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-01-13 14:50:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-01-13 14:50:30 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-01-13 14:50:30 ----A---- C:\windows\system32\xactengine3_6.dll
2016-01-13 14:50:29 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-01-13 14:50:29 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-01-13 14:50:28 ----A---- C:\windows\system32\XAudio2_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-01-13 14:50:27 ----A---- C:\windows\system32\xactengine3_5.dll
2016-01-13 14:50:25 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-01-13 14:50:25 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-01-13 14:50:21 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-01-13 14:50:20 ----A---- C:\windows\system32\d3dx11_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-01-13 14:50:17 ----A---- C:\windows\system32\D3DX9_42.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\d3dx10_41.dll
2016-01-13 14:50:14 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-01-13 14:50:10 ----A---- C:\windows\system32\D3DX9_41.dll
2016-01-13 14:50:09 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-01-13 14:50:08 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-01-13 14:50:08 ----A---- C:\windows\system32\XAudio2_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-01-13 14:50:07 ----A---- C:\windows\system32\xactengine3_4.dll
2016-01-13 14:50:06 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-01-13 14:50:06 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\d3dx10_40.dll
2016-01-13 14:50:03 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-01-13 14:49:59 ----A---- C:\windows\system32\D3DX9_40.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAudio2_3.dll
2016-01-13 14:49:57 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-01-13 14:49:56 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-01-13 14:49:56 ----A---- C:\windows\system32\xactengine3_3.dll
2016-01-13 14:49:55 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-01-13 14:49:55 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAudio2_2.dll
2016-01-13 14:49:53 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-01-13 14:49:52 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-01-13 14:49:52 ----A---- C:\windows\system32\xactengine3_2.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\d3dx10_39.dll
2016-01-13 14:49:50 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-01-13 14:49:47 ----A---- C:\windows\system32\D3DX9_39.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAudio2_1.dll
2016-01-13 14:49:45 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-01-13 14:49:43 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-01-13 14:49:43 ----A---- C:\windows\system32\xactengine3_1.dll
2016-01-13 14:49:42 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-01-13 14:49:42 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\d3dx10_38.dll
2016-01-13 14:49:40 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-01-13 14:49:37 ----A---- C:\windows\system32\D3DX9_38.dll
2016-01-13 14:49:36 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-01-13 14:49:36 ----A---- C:\windows\system32\XAudio2_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-01-13 14:49:35 ----A---- C:\windows\system32\xactengine3_0.dll
2016-01-13 14:49:34 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-01-13 14:49:34 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\d3dx10_37.dll
2016-01-13 14:49:32 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-01-13 14:49:28 ----A---- C:\windows\system32\D3DX9_37.dll
2016-01-13 14:49:26 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-01-13 14:49:26 ----A---- C:\windows\system32\xactengine2_10.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\d3dx10_36.dll
2016-01-13 14:49:23 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-01-13 14:49:20 ----A---- C:\windows\system32\d3dx9_36.dll
2016-01-13 14:49:18 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-01-13 14:49:18 ----A---- C:\windows\system32\xactengine2_9.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\d3dx10_35.dll
2016-01-13 14:49:14 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-01-13 14:49:10 ----A---- C:\windows\system32\d3dx9_35.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\xactengine2_8.dll
2016-01-13 14:49:08 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\d3dx10_34.dll
2016-01-13 14:49:06 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-01-13 14:49:03 ----A---- C:\windows\system32\d3dx9_34.dll
2016-01-13 14:49:02 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-01-13 14:49:02 ----A---- C:\windows\system32\xinput1_3.dll
2016-01-13 14:49:00 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-01-13 14:49:00 ----A---- C:\windows\system32\xactengine2_7.dll
2016-01-13 14:48:58 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-01-13 14:48:58 ----A---- C:\windows\system32\d3dx10_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-01-13 14:48:57 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-01-13 14:48:54 ----A---- C:\windows\system32\d3dx9_33.dll
2016-01-13 14:48:53 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-01-13 14:48:53 ----A---- C:\windows\system32\xactengine2_6.dll
2016-01-13 14:48:51 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-01-13 14:48:51 ----A---- C:\windows\system32\xactengine2_5.dll
2016-01-13 14:48:50 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-01-13 14:48:50 ----A---- C:\windows\system32\d3dx10.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\xactengine2_4.dll
2016-01-13 14:48:46 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-01-13 14:48:43 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-01-13 14:48:43 ----A---- C:\windows\system32\d3dx9_31.dll
2016-01-13 14:48:42 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-01-13 14:48:42 ----A---- C:\windows\system32\xactengine2_3.dll
2016-01-13 14:48:40 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-01-13 14:48:40 ----A---- C:\windows\system32\xinput1_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-01-13 14:48:39 ----A---- C:\windows\system32\xactengine2_2.dll
2016-01-13 14:48:38 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-01-13 14:48:38 ----A---- C:\windows\system32\xinput1_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-01-13 14:48:37 ----A---- C:\windows\system32\xactengine2_1.dll
2016-01-13 14:48:26 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-01-13 14:48:26 ----A---- C:\windows\system32\d3dx9_30.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\xactengine2_0.dll
2016-01-13 14:48:23 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-01-13 14:48:21 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-01-13 14:48:21 ----A---- C:\windows\system32\d3dx9_29.dll
2016-01-13 14:48:18 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-01-13 14:48:18 ----A---- C:\windows\system32\d3dx9_28.dll
2016-01-13 14:48:15 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-01-13 14:48:15 ----A---- C:\windows\system32\d3dx9_27.dll
2016-01-13 14:48:08 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-01-13 14:48:08 ----A---- C:\windows\system32\d3dx9_26.dll
2016-01-13 14:47:59 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-01-13 14:47:59 ----A---- C:\windows\system32\d3dx9_25.dll
2016-01-13 14:47:56 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-01-13 14:47:56 ----A---- C:\windows\system32\d3dx9_24.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 13:29:04 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 13:29:04 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 13:29:03 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 13:29:03 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 13:29:02 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 13:29:01 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 13:29:01 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 13:29:00 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 13:29:00 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 13:28:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 13:28:56 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\occache.dll
2016-01-13 13:28:56 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 13:28:55 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 13:28:55 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 13:28:54 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 13:28:54 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 13:28:54 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 13:28:53 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 13:28:51 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 13:28:49 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 13:28:49 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 13:28:48 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 13:28:47 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 13:28:47 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 13:28:46 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieui.dll
2016-01-13 13:28:45 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 13:28:44 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 13:28:43 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 13:28:42 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 13:28:42 ----A---- C:\windows\system32\jscript.dll
2016-01-13 13:28:41 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\wininet.dll
2016-01-13 13:28:40 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\msrating.dll
2016-01-13 13:28:38 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 13:28:37 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 13:27:29 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 13:27:26 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 13:27:25 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 13:27:25 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 13:27:24 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 13:27:23 ----A---- C:\windows\system32\mf.dll
2016-01-13 13:27:22 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 13:27:21 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 13:27:21 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 13:27:21 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 13:27:20 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 13:27:20 ----A---- C:\windows\system32\quartz.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\evr.dll
2016-01-13 13:27:20 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 13:27:19 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 13:27:19 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\WMALFXGFXDSP.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 13:27:18 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 13:27:18 ----A---- C:\windows\system32\devenum.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 13:27:17 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 13:27:17 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 13:27:16 ----A---- C:\windows\system32\qasf.dll
2016-01-13 13:27:16 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfps.dll
2016-01-13 13:27:14 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 13:27:14 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\mferror.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 13:27:13 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 13:27:11 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 13:27:11 ----A---- C:\windows\system32\qedit.dll
2016-01-13 13:27:10 ----A---- C:\windows\system32\aepic.dll
2016-01-13 13:27:09 ----A---- C:\windows\system32\win32k.sys
2016-01-13 13:27:08 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 13:27:08 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 13:26:57 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 13:26:55 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 13:26:55 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 13:26:54 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 13:26:53 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\schannel.dll
2016-01-13 13:26:53 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 13:26:52 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 13:26:52 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 13:26:51 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 13:26:50 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 13:26:50 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\secur32.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 13:26:49 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 13:26:49 ----A---- C:\windows\system32\credssp.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 13:26:48 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\wow64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\srcore.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\smss.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\lsass.exe
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 13:26:48 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 13:26:48 ----A---- C:\windows\system32\conhost.exe
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:47 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\srclient.dll
2016-01-13 13:26:47 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 13:26:47 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 13:26:46 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 13:26:45 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 13:26:44 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 13:26:43 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 13:26:43 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 13:26:42 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 13:26:42 ----A---- C:\windows\system32\msobjs.dll
2016-01-13 13:26:24 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 13:26:23 ----A---- C:\windows\SYSWOW64\gdi32.dll
======List of files/folders modified in the last 1 month======
2016-02-10 21:39:48 ----D---- C:\Program Files\trend micro
2016-02-10 21:36:05 ----D---- C:\windows\system32\config
2016-02-10 21:35:59 ----D---- C:\ProgramData\PDFC
2016-02-10 21:33:07 ----D---- C:\windows\Tasks
2016-02-10 20:02:16 ----D---- C:\windows\inf
2016-02-10 19:56:11 ----D---- C:\windows\System32
2016-02-10 19:56:11 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-02-10 19:47:35 ----D---- C:\windows\system32\MRT
2016-02-10 19:44:05 ----D---- C:\windows\Microsoft.NET
2016-02-10 19:36:55 ----D---- C:\windows\debug
2016-02-10 19:36:52 ----A---- C:\windows\system32\MRT.exe
2016-02-10 19:36:44 ----SHD---- C:\windows\Installer
2016-02-10 19:32:47 ----D---- C:\windows\winsxs
2016-02-10 19:32:38 ----SD---- C:\windows\system32\CompatTel
2016-02-10 19:32:37 ----D---- C:\windows\system32\appraiser
2016-02-10 19:32:36 ----D---- C:\windows\AppPatch
2016-02-10 19:32:25 ----D---- C:\windows\system32\catroot2
2016-02-10 19:31:07 ----SHD---- C:\System Volume Information
2016-02-10 16:31:57 ----HD---- C:\ProgramData
2016-02-10 16:31:56 ----D---- C:\Windows
2016-02-10 16:23:43 ----D---- C:\Program Files (x86)\Common Files
2016-02-10 16:04:53 ----RD---- C:\Program Files (x86)
2016-02-10 16:01:15 ----D---- C:\windows\system32\drivers\etc
2016-02-10 15:57:43 ----D---- C:\windows\SysWOW64
2016-02-10 13:27:46 ----D---- C:\windows\Prefetch
2016-02-09 14:45:34 ----D---- C:\windows\Logs
2016-02-01 15:54:21 ----D---- C:\Users\ProBook\AppData\Roaming\ArcSoft
2016-01-31 18:01:43 ----D---- C:\Program Files\Calibre2
2016-01-26 21:53:34 ----D---- C:\Users\ProBook\AppData\Roaming\Apple Computer
2016-01-26 20:48:43 ----D---- C:\Program Files (x86)\QuickTime
2016-01-26 18:21:50 ----RD---- C:\Program Files
2016-01-14 17:27:56 ----D---- C:\windows\rescache
2016-01-14 14:10:08 ----D---- C:\windows\system32\Tasks
2016-01-13 16:15:56 ----RSD---- C:\windows\assembly
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sl-SI
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\sk-SK
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\hr-HR
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 14:01:32 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 14:01:32 ----D---- C:\Program Files\Internet Explorer
2016-01-13 14:01:32 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 14:01:31 ----D---- C:\windows\system32\sl-SI
2016-01-13 14:01:31 ----D---- C:\windows\system32\sk-SK
2016-01-13 14:01:31 ----D---- C:\windows\system32\hr-HR
2016-01-13 14:01:31 ----D---- C:\windows\system32\en-US
2016-01-13 14:01:31 ----D---- C:\windows\system32\cs-CZ
2016-01-13 14:01:26 ----D---- C:\windows\system32\drivers
2016-01-13 14:01:25 ----D---- C:\windows\system32\DriverStore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\windows\system32\drivers\amd_sata.sys [2011-04-15 79488]
R0 amd_xata;amd_xata; C:\windows\system32\drivers\amd_xata.sys [2011-04-15 40064]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-05 30008]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-05-24 158280]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-07-14 255240]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-07-14 178520]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-07-14 168208]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-05 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\amdhub30.sys [2012-11-29 107688]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-10-25 10207744]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-10-25 317952]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\amdxhc.sys [2012-11-29 228008]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-04-21 2727424]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-05-09 29344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\drivers\HpqKbFiltr.sys [2011-05-14 25912]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2015-02-18 175928]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2011-04-07 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2011-05-11 523264]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2015-02-17 524016]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2015-02-17 58536]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-05-09 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-05-09 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-05-09 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-05-09 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-05-09 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-05-09 281760]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP; C:\windows\system32\DRIVERS\BthMtpEnum.sys [2009-07-14 64512]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-05-09 64312]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Corporate.12.0;ABBYY FineReader 12 CE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\12.00\Licensing\CE\NetworkLicenseServer.exe [2014-07-17 961744]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-10-25 204288]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-05-09 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-05-09 80032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-05-19 485712]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-07-08 1353720]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2011-02-23 125496]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-03-17 132152]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-03-23 133688]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-05-09 320512]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-05-14 317496]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-05 30520]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-05-24 1318912]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-04-22 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 RtlISMServ;RtlISMServ; C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [2011-05-30 40960]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-05-11 301056]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-03-24 3161904]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-05-22 818232]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-05-09 464440]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-02-11 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-02-11 655624]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-05-23 1098296]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-28 51727736]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2015-01-24 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, nefunguje Windows Update
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, nefunguje Windows Update
OTM smazáno. Bohužel beze změny...
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, nefunguje Windows Update
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, nefunguje Windows Update
Nevím proč, ale windows update mi stále nefunguje. Když dám vyhledat aktualizace, tak mi to ukazuje že stále vyhledává, ale jinak nic. V tomhle stavu jsem to měl 50 minut beze změny. Pak jsem v procesech vypnul svchost.exe (Host Process for Windows Services), který zatěžoval procesor. Vyhledávání se ukončilo. Dřív mi aktualizace šly bez problému.
Databáze rootkitů: v2016.02.08.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: ProBook
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 349099
Uplynulý čas: 35 min, 43 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Databáze rootkitů: v2016.02.08.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: ProBook
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 349099
Uplynulý čas: 35 min, 43 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Prosím o kontrolu, nefunguje Windows Update
PS: Tak se mi nakonec podařilo ty aktualizace nainstalovat. Ale asi mi nefunguje to vyhledává aktualizací. Mám to nastaveno na "Vyhledávat aktualizace, ale dotázat se, zda mají být staženy a nainstalovány." Když kliknu na vyhledat aktualizace, tak to začne vyhledávat, ale v tomto stavu to už zůstane. Takže se nedozvím, zda jsou nové aktualizace, nebo ne.
Re: Prosím o kontrolu, nefunguje Windows Update
Po nainstalování aktualizací, jsem to ještě jednou projel MBAM a našlo mi to 3 hrozby:
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 11.2.2016
Čas skenování: 15:52
Protokol: test.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.02.11.03
Databáze rootkitů: v2016.02.08.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: ProBook
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 349550
Uplynulý čas: 37 min, 48 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 3
CrackTool.Agent, C:\Users\ProBook\AppData\Local\Tempxf-mccs6.exe, , [e986e37c5c3d3204b7b59acdce33b947],
Trojan.BitCoinMiner, C:\Users\ProBook\AppData\Roaming\com.flash.WidgetBrowser\bfgminer.bat, , [a0cf520d69300e286dcfaa1cbd46b34d],
Trojan.BitCoinMiner, C:\Users\ProBook\AppData\Roaming\com.flash.WidgetBrowser\bfgminer.vbs, , [2847da854b4eac8ae25befd7fe051ae6],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 11.2.2016
Čas skenování: 15:52
Protokol: test.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.02.11.03
Databáze rootkitů: v2016.02.08.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: ProBook
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 349550
Uplynulý čas: 37 min, 48 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 3
CrackTool.Agent, C:\Users\ProBook\AppData\Local\Tempxf-mccs6.exe, , [e986e37c5c3d3204b7b59acdce33b947],
Trojan.BitCoinMiner, C:\Users\ProBook\AppData\Roaming\com.flash.WidgetBrowser\bfgminer.bat, , [a0cf520d69300e286dcfaa1cbd46b34d],
Trojan.BitCoinMiner, C:\Users\ProBook\AppData\Roaming\com.flash.WidgetBrowser\bfgminer.vbs, , [2847da854b4eac8ae25befd7fe051ae6],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, nefunguje Windows Update
Nálezy smažte. Aktualizace od MS jsou pravidelně každou 2. středu v měsíci. Byly tedy včera. Pokud se PC dosud neaktualizoval, měl by je najít.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?