VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu

https://forum.viry.cz:443/viewtopic.php?t=150695

Stránka 1 z 1

Prosím o kontrolu

Napsal: 28 lis 2016 21:38
od ota
Zdravím, prosím o kontrolu. Občas se PC nechová standartně. Díky

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016
Ran by Ota (administrator) on DESKTOP-TTIU2E3 (28-11-2016 21:32:15)
Running from C:\Users\Ota\Desktop
Loaded Profiles: Ota (Available Profiles: oem & Ota)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Lavasoft Limited) C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\nsbu.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\nsbu.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Windows\OETRN.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(© 2015 Microsoft Corporation) C:\Users\Ota\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9072128 2016-11-17] (Realtek Semiconductor)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058912 2012-04-02] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [CloneCDTray] => C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [57344 2009-01-29] (SlySoft, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-554986064-1367882024-3811459060-1005\...\Run: [OEXPRESS] => C:\Windows\OETRN.EXE [26624 2015-11-11] ()
HKU\S-1-5-21-554986064-1367882024-3811459060-1005\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27011712 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-21-554986064-1367882024-3811459060-1005\...\Run: [BingSvc] => C:\Users\Ota\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-554986064-1367882024-3811459060-1005\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [1795736 2016-11-24] (Lavasoft)
HKU\S-1-5-21-554986064-1367882024-3811459060-1005\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [779776 2014-03-13] (ZONER software)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security with Backup\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security with Backup\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security with Backup\Engine64\22.8.1.14\buShell.dll [2016-11-12] (Symantec Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog9 01 C:\WINDOWS\system32\LavasoftTcpService.dll No File
Winsock: Catalog9 02 C:\WINDOWS\system32\LavasoftTcpService.dll No File
Winsock: Catalog9 03 C:\WINDOWS\system32\LavasoftTcpService.dll No File
Winsock: Catalog9 04 C:\WINDOWS\system32\LavasoftTcpService.dll No File
Winsock: Catalog9 17 C:\WINDOWS\system32\LavasoftTcpService.dll No File
Winsock: Catalog9-x64 01 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2016-09-30] (Lavasoft Limited)
Winsock: Catalog9-x64 02 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2016-09-30] (Lavasoft Limited)
Winsock: Catalog9-x64 03 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2016-09-30] (Lavasoft Limited)
Winsock: Catalog9-x64 04 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2016-09-30] (Lavasoft Limited)
Winsock: Catalog9-x64 05 C:\WINDOWS\system32\LavasoftTcpService64.dll [425744 2016-09-30] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{8ceecf86-27ee-42ea-982d-bff6513a5ae9}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKU\S-1-5-21-554986064-1367882024-3811459060-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10270__160930__yaie
SearchScopes: HKU\S-1-5-21-554986064-1367882024-3811459060-1005 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10270__160930__yaie&p={searchTerms}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security with Backup\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-11-02] (Intel Security)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-25] (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security with Backup\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-11-02] (Intel Security)
Toolbar: HKU\S-1-5-21-554986064-1367882024-3811459060-1005 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security with Backup\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12] (Symantec Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021 [2016-11-28]
FF NewTab: Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021 -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10270__160930__yaff
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021 -> Yahoo®
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021 -> Yahoo®
FF Homepage: Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021 -> hxxps://www.seznam.cz/
FF Extension: (Flash Video Downloader - YouTube HD Download [4K]) - C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021\Extensions\artur.dubovoy@gmail.com [2016-11-13]
FF Extension: (WebTran) - C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021\Extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}.xpi [2015-11-10] [not signed]
FF Extension: (ImTranslator) - C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2016-11-12]
FF Extension: (DownThemAll!) - C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-09-29]
FF SearchPlugin: C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021\searchplugins\yahoo-lavasoft.xml [2016-10-06]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.5.4.24\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.5.4.24\coFFAddon [2016-11-25]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.5.4.24\coFFAddon
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-11-15] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-19] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-19] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-25] (Oracle Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default [2016-11-24]
CHR Extension: (Prezentace Google) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-01]
CHR Extension: (Dokumenty Google) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-01]
CHR Extension: (Disk Google) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-01]
CHR Extension: (YouTube) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-01]
CHR Extension: (Norton Security Toolbar) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-11-18]
CHR Extension: (Vyhledávání Google) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Tabulky Google) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-24]
CHR Extension: (Norton Identity Safe) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-11-05]
CHR Extension: (Skype) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-10-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-24]
CHR Extension: (Gmail) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-01]
CHR Extension: (Chrome Media Router) - C:\Users\Ota\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-06]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-18]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\Exts\Chrome.crx [2016-11-18]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
R2 LavasoftTcpService; C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751760 2016-11-24] (Lavasoft Limited)
R2 NSBU; C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\NSBU.exe [289080 2016-11-12] (Symantec Corporation)
R2 tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [60432 2015-06-23] (Advanced Micro Devices, Inc.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [990656 2016-10-28] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-10-28] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-10-28] (McAfee, Inc.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25232 2016-11-24] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 0244201479834853mcinstcleanup; C:\WINDOWS\TEMP\024420~1.EXE -cleanup -nolog [X]
S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc.)
S3 amdkmcsp; C:\WINDOWS\System32\drivers\amdkmcsp.sys [101104 2015-06-23] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [73976 2015-06-04] (Advanced Micro Devices, Inc.)
S3 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [277240 2015-06-23] (Advanced Micro Devices, Inc. )
R1 BHDrvx64; C:\Program Files (x86)\Norton Security with Backup\NortonData\22.5.4.24\Definitions\BASHDefs\20161121.001\BHDrvx64.sys [1874136 2016-11-07] (Symantec Corporation)
R1 ccSet_NSBU; C:\WINDOWS\system32\drivers\NSBUx64\1608010.00E\ccSetx64.sys [174328 2016-06-02] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-10-04] (Symantec Corporation)
R3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-10-04] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security with Backup\NortonData\22.5.4.24\Definitions\IPSDefs\20161125.001\IDSvia64.sys [1012952 2016-10-28] (Symantec Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-07-27] (Realtek )
R1 SRTSP; C:\WINDOWS\System32\Drivers\NSBUx64\1608010.00E\SRTSP64.SYS [784624 2016-11-12] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\NSBUx64\1608010.00E\SRTSPX64.SYS [49400 2016-11-12] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NSBUx64\1608010.00E\SYMEFASI64.SYS [1628888 2016-11-12] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NSBUx64\1608010.00E\SymELAM.sys [24192 2015-09-23] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-10-17] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\NSBUx64\1608010.00E\Ironx64.SYS [289520 2016-11-12] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\NSBUx64\1608010.00E\SYMNETS.SYS [567512 2016-11-12] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-28 21:32 - 2016-11-28 21:32 - 00021845 _____ C:\Users\Ota\Desktop\FRST.txt
2016-11-28 21:32 - 2016-11-28 21:32 - 00000000 ____D C:\FRST
2016-11-28 21:30 - 2016-11-28 21:31 - 02411520 _____ (Farbar) C:\Users\Ota\Desktop\FRST64.exe
2016-11-27 19:52 - 2016-11-27 19:52 - 00000000 ____D C:\Users\Ota\AppData\LocalLow\VDownloader
2016-11-27 19:09 - 2016-11-27 19:54 - 00000000 ____D C:\Users\Ota\AppData\Local\VDownloader
2016-11-27 19:09 - 2016-11-27 19:54 - 00000000 ____D C:\Program Files\VDownloader
2016-11-27 14:33 - 2016-11-27 21:50 - 00011264 _____ C:\Users\Ota\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-11-26 20:08 - 2016-11-26 20:08 - 00002547 _____ C:\Users\Ota\Desktop\Pinnacle Studio 15.lnk
2016-11-25 20:43 - 2016-11-28 21:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security with Backup
2016-11-25 20:36 - 2016-11-25 20:36 - 00003410 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2016-11-25 20:29 - 2016-11-25 20:31 - 00000000 ____D C:\Users\Ota\AppData\Roaming\Shark007
2016-11-25 20:29 - 2016-11-25 20:31 - 00000000 ____D C:\ProgramData\Shark007
2016-11-25 20:29 - 2016-11-25 20:30 - 00000000 ____D C:\Users\Ota\AppData\Roaming\Advanced
2016-11-25 20:29 - 2016-11-25 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shark007 Codecs
2016-11-25 20:29 - 2016-11-25 20:30 - 00000000 ____D C:\ProgramData\Advanced
2016-11-25 20:29 - 2016-11-25 20:29 - 00000000 ____D C:\Program Files\Shark007
2016-11-25 20:29 - 2016-11-25 20:29 - 00000000 ____D C:\Program Files (x86)\Shark007
2016-11-25 20:29 - 2016-05-08 05:19 - 03642880 _____ (x264vfw project) C:\WINDOWS\system32\x264vfw.dll
2016-11-25 20:29 - 2015-05-03 21:49 - 02034176 _____ (xy-VSFilter Team) C:\WINDOWS\system32\VSFilter.dll
2016-11-25 20:29 - 2015-03-04 20:45 - 00260184 _____ C:\WINDOWS\system32\unrar.dll
2016-11-25 20:29 - 2013-04-06 00:27 - 02231296 _____ C:\WINDOWS\system32\ac3filter.acm.new
2016-11-25 20:29 - 2013-04-06 00:27 - 02231296 _____ C:\WINDOWS\system32\ac3filter.acm
2016-11-25 20:29 - 2013-04-06 00:27 - 00324608 _____ (IntelleSoft) C:\WINDOWS\system32\BugTrap-x64.dll
2016-11-25 20:29 - 2009-08-11 21:22 - 00580096 _____ C:\WINDOWS\system32\ac3filter.acm.old
2016-11-25 20:29 - 2009-01-23 01:51 - 00124909 _____ (Open Source Software community project) C:\WINDOWS\system32\pthreadGC2.dll
2016-11-25 19:36 - 2016-11-25 19:53 - 00000000 ____D C:\Users\Ota\.smplayer
2016-11-25 19:36 - 2016-11-25 19:36 - 00000000 ____D C:\Users\Ota\AppData\Roaming\mpv
2016-11-24 17:45 - 2016-11-24 17:45 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-24 17:45 - 2016-11-24 17:45 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-11-24 17:44 - 2016-11-24 17:44 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-11-24 17:44 - 2016-11-24 17:44 - 00000000 ____D C:\Program Files\Realtek
2016-11-17 18:17 - 2016-11-17 18:17 - 03299816 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2016-11-17 18:17 - 2016-11-17 18:17 - 02190976 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2016-11-17 18:17 - 2016-11-17 18:17 - 01382232 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2016-11-17 18:17 - 2016-11-17 18:17 - 01337632 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2016-11-17 18:17 - 2016-11-17 18:17 - 00962120 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2016-11-17 18:17 - 2016-11-17 18:17 - 00601136 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2016-11-17 18:17 - 2016-11-17 18:17 - 00447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 02706856 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 01435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00873456 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00381408 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00341144 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00341144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00221960 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00209528 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00158688 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2016-11-17 18:16 - 2016-11-17 18:16 - 00075536 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 03283240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 02995000 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 01360512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 01003328 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00984904 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00965024 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00865912 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00859216 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00850408 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00721800 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00689880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00499152 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00231912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00090912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00088312 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2016-11-17 18:15 - 2016-11-17 18:15 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 13122576 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 12988336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 06198136 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV3apo.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 05793520 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 05593608 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 03200864 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 02828432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 02825096 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 01422920 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 01334376 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 01213656 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 01166152 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00999848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00923736 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00678176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00677664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00330552 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-11-17 18:14 - 2016-11-17 18:14 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 10532040 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 05347000 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 03295064 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 02444688 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 02110584 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 01965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 01959592 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 01780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 01591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 01508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00708304 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00618176 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00514520 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00500552 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00472304 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00445392 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00428224 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00366120 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00362048 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00360344 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00327448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00310416 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00258856 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00253856 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00203832 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00190928 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00190928 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2016-11-17 18:13 - 2016-11-17 18:13 - 00179592 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 72520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-11-17 18:12 - 2016-11-17 18:12 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 05463552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-11-17 18:12 - 2016-11-17 18:12 - 03204096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 03014144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-11-17 18:12 - 2016-11-17 18:12 - 02201088 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 01618768 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 01529136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 01003856 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 00574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 00272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 00118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2016-11-17 18:12 - 2016-11-17 18:12 - 00023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 14057248 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 07096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 06264632 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 02050168 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 01186816 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 01133584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 00931616 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 00416504 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 00378384 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 00154360 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 00122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-11-17 18:11 - 2016-11-17 18:11 - 00105304 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-11-17 18:10 - 2016-11-17 18:10 - 00118584 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-11-17 07:41 - 2016-11-17 07:41 - 07474044 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-11-17 07:41 - 2016-11-17 07:41 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2016-11-17 07:41 - 2016-11-17 07:41 - 01921016 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2016-11-16 18:01 - 2016-11-28 21:31 - 00000000 ____D C:\Users\Ota\AppData\LocalLow\Mozilla
2016-11-15 23:57 - 2016-11-18 17:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-09 11:48 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-09 11:48 - 2016-11-02 13:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-09 11:48 - 2016-11-02 12:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-09 11:48 - 2016-11-02 12:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-09 11:48 - 2016-11-02 12:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-09 11:48 - 2016-11-02 12:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-09 11:48 - 2016-11-02 12:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-09 11:48 - 2016-11-02 12:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-09 11:48 - 2016-11-02 12:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-09 11:48 - 2016-11-02 12:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-09 11:48 - 2016-11-02 12:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-09 11:48 - 2016-11-02 12:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-09 11:48 - 2016-11-02 12:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-09 11:48 - 2016-11-02 12:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-09 11:48 - 2016-11-02 12:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-09 11:48 - 2016-11-02 12:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-09 11:48 - 2016-11-02 12:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-09 11:48 - 2016-11-02 12:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-09 11:48 - 2016-11-02 12:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-09 11:48 - 2016-11-02 12:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-09 11:48 - 2016-11-02 12:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-09 11:48 - 2016-11-02 11:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-09 11:48 - 2016-11-02 11:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-09 11:48 - 2016-11-02 11:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-09 11:48 - 2016-11-02 11:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-09 11:48 - 2016-11-02 11:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-09 11:48 - 2016-11-02 11:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-09 11:48 - 2016-11-02 11:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-09 11:48 - 2016-11-02 11:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-09 11:48 - 2016-11-02 11:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-09 11:48 - 2016-11-02 11:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-09 11:48 - 2016-11-02 11:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-09 11:48 - 2016-11-02 11:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-09 11:48 - 2016-11-02 11:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-09 11:48 - 2016-11-02 11:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-09 11:48 - 2016-11-02 11:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-09 11:48 - 2016-11-02 11:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-09 11:48 - 2016-11-02 11:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-09 11:48 - 2016-11-02 11:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-09 11:48 - 2016-11-02 11:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-09 11:48 - 2016-11-02 11:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-09 11:48 - 2016-11-02 11:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-09 11:48 - 2016-11-02 11:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-09 11:48 - 2016-11-02 11:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-09 11:48 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-09 11:48 - 2016-11-02 11:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-09 11:48 - 2016-11-02 11:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-09 11:48 - 2016-11-02 11:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-09 11:48 - 2016-11-02 11:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-09 11:48 - 2016-11-02 11:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-09 11:48 - 2016-11-02 11:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-09 11:48 - 2016-11-02 11:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-09 11:48 - 2016-11-02 11:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-09 11:48 - 2016-11-02 11:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-09 11:48 - 2016-11-02 11:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-09 11:48 - 2016-11-02 11:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-09 11:48 - 2016-11-02 11:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-09 11:48 - 2016-11-02 11:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-09 11:48 - 2016-11-02 11:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-09 11:48 - 2016-11-02 11:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-09 11:48 - 2016-11-02 11:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-09 11:48 - 2016-11-02 11:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-09 11:48 - 2016-11-02 11:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-09 11:48 - 2016-11-02 11:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-09 11:48 - 2016-11-02 11:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-09 11:48 - 2016-11-02 11:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-09 11:48 - 2016-11-02 11:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-09 11:48 - 2016-11-02 11:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-09 11:48 - 2016-11-02 11:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-09 11:48 - 2016-11-02 11:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-09 11:48 - 2016-11-02 11:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-09 11:48 - 2016-11-02 11:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-09 11:48 - 2016-11-02 11:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-09 11:48 - 2016-11-02 11:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-09 11:48 - 2016-11-02 11:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-09 11:48 - 2016-11-02 09:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-09 11:47 - 2016-11-02 12:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-09 11:47 - 2016-11-02 12:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-09 11:47 - 2016-11-02 12:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-09 11:47 - 2016-11-02 12:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-09 11:47 - 2016-11-02 12:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-09 11:47 - 2016-11-02 12:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-09 11:47 - 2016-11-02 12:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-09 11:47 - 2016-11-02 12:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-09 11:47 - 2016-11-02 12:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-09 11:47 - 2016-11-02 12:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-09 11:47 - 2016-11-02 12:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-09 11:47 - 2016-11-02 12:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-09 11:47 - 2016-11-02 12:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-09 11:47 - 2016-11-02 12:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-09 11:47 - 2016-11-02 12:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-09 11:47 - 2016-11-02 12:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-09 11:47 - 2016-11-02 12:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-09 11:47 - 2016-11-02 12:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-09 11:47 - 2016-11-02 12:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-09 11:47 - 2016-11-02 12:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-09 11:47 - 2016-11-02 12:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-09 11:47 - 2016-11-02 12:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-09 11:47 - 2016-11-02 12:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-09 11:47 - 2016-11-02 12:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-09 11:47 - 2016-11-02 12:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-09 11:47 - 2016-11-02 12:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-09 11:47 - 2016-11-02 12:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-09 11:47 - 2016-11-02 12:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-09 11:47 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-09 11:47 - 2016-11-02 11:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-09 11:47 - 2016-11-02 11:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-09 11:47 - 2016-11-02 11:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-09 11:47 - 2016-11-02 11:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-09 11:47 - 2016-11-02 11:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-09 11:47 - 2016-11-02 11:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-09 11:47 - 2016-11-02 11:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-09 11:47 - 2016-11-02 11:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-09 11:47 - 2016-11-02 11:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-09 11:47 - 2016-11-02 11:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-09 11:47 - 2016-11-02 11:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-09 11:47 - 2016-11-02 11:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-09 11:47 - 2016-11-02 11:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-09 11:47 - 2016-11-02 11:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-09 11:47 - 2016-11-02 11:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-09 11:47 - 2016-11-02 11:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-09 11:47 - 2016-11-02 11:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-09 11:47 - 2016-11-02 11:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-09 11:47 - 2016-11-02 11:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-09 11:47 - 2016-11-02 11:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-09 11:47 - 2016-11-02 11:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-09 11:47 - 2016-11-02 11:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-09 11:47 - 2016-11-02 11:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-09 11:47 - 2016-11-02 11:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-09 11:47 - 2016-11-02 11:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-09 11:47 - 2016-11-02 11:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-09 11:47 - 2016-11-02 11:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-09 11:47 - 2016-11-02 11:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-09 11:47 - 2016-11-02 11:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 11:47 - 2016-11-02 11:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-09 11:47 - 2016-11-02 11:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-09 11:47 - 2016-11-02 11:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-09 11:47 - 2016-11-02 11:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-09 11:47 - 2016-11-02 11:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-09 11:47 - 2016-11-02 11:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-09 11:47 - 2016-11-02 11:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-09 11:47 - 2016-11-02 11:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-09 11:47 - 2016-11-02 11:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-09 11:47 - 2016-11-02 11:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-09 11:47 - 2016-11-02 11:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-09 11:47 - 2016-11-02 11:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 11:47 - 2016-11-02 11:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-09 11:47 - 2016-11-02 11:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-09 11:47 - 2016-11-02 11:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-09 11:47 - 2016-11-02 11:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-09 11:47 - 2016-11-02 11:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-09 11:47 - 2016-11-02 11:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-09 11:47 - 2016-11-02 11:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-09 11:47 - 2016-11-02 11:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-09 11:47 - 2016-11-02 11:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-09 11:47 - 2016-11-02 11:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-09 11:47 - 2016-11-02 11:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-09 11:47 - 2016-11-02 11:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-09 11:47 - 2016-11-02 11:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-09 11:47 - 2016-11-02 11:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-09 11:47 - 2016-11-02 11:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-09 11:47 - 2016-11-02 11:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-09 11:47 - 2016-11-02 11:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-09 11:47 - 2016-11-02 11:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-09 11:47 - 2016-11-02 11:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-09 11:47 - 2016-11-02 11:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-09 11:47 - 2016-11-02 11:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-09 11:47 - 2016-11-02 11:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-09 11:47 - 2016-11-02 11:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-09 11:47 - 2016-11-02 11:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-09 11:47 - 2016-11-02 11:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-09 11:47 - 2016-11-02 11:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-09 11:47 - 2016-11-02 11:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-09 11:47 - 2016-11-02 11:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-09 11:47 - 2016-11-02 11:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-09 11:47 - 2016-11-02 11:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-09 11:47 - 2016-11-02 11:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-09 11:47 - 2016-11-02 11:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-09 11:47 - 2016-11-02 11:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-09 11:47 - 2016-11-02 11:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-09 11:47 - 2016-11-02 11:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-09 11:47 - 2016-11-02 11:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-09 11:47 - 2016-11-02 11:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-09 11:47 - 2016-11-02 11:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-09 11:47 - 2016-11-02 11:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-09 11:47 - 2016-11-02 11:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-09 11:47 - 2016-11-02 11:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 11:47 - 2016-11-02 11:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-09 11:47 - 2016-11-02 11:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-09 11:47 - 2016-11-02 11:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-09 11:47 - 2016-11-02 11:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-09 11:47 - 2016-11-02 11:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-09 11:47 - 2016-11-02 11:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-09 11:47 - 2016-11-02 11:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-09 11:47 - 2016-11-02 11:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-09 11:47 - 2016-11-02 11:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-09 11:47 - 2016-11-02 11:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-09 11:47 - 2016-11-02 11:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-09 11:47 - 2016-11-02 11:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-09 11:47 - 2016-11-02 11:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-09 11:47 - 2016-11-02 11:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-09 11:47 - 2016-11-02 11:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-09 11:47 - 2016-11-02 11:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-09 11:47 - 2016-11-02 11:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-09 11:47 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-09 11:47 - 2016-11-02 11:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-09 11:47 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-09 11:47 - 2016-11-02 11:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-09 11:47 - 2016-11-02 11:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-09 11:47 - 2016-11-02 11:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-09 11:47 - 2016-11-02 11:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-09 11:47 - 2016-11-02 11:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-09 11:47 - 2016-11-02 11:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-09 11:47 - 2016-11-02 11:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-09 11:47 - 2016-11-02 11:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-09 11:47 - 2016-11-02 11:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-09 11:47 - 2016-11-02 11:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-09 11:47 - 2016-11-02 11:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-09 11:47 - 2016-11-02 11:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-09 11:47 - 2016-11-02 11:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-09 11:47 - 2016-11-02 11:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-09 11:47 - 2016-11-02 11:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-09 11:47 - 2016-11-02 11:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-09 11:47 - 2016-11-02 11:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-09 11:47 - 2016-11-02 11:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-09 11:47 - 2016-11-02 11:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-09 11:47 - 2016-11-02 11:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-09 11:47 - 2016-11-02 11:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-09 11:47 - 2016-11-02 11:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 11:47 - 2016-11-02 11:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-09 11:47 - 2016-11-02 11:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-09 11:47 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-09 11:47 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-09 11:47 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 39862848 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 33479360 _____ (Intel Corporation) C:\WINDOWS\system32\igd11dxva64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 02393176 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 01816720 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 01814064 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00242160 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00205360 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00183984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00182960 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00160272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00160272 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2016-11-01 23:06 - 2016-11-01 23:06 - 00055248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 29101576 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 19861512 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\common_clang32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 15488928 _____ (Intel Corporation) C:\WINDOWS\system32\igc64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 13483208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igc32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 11742216 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 08732168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 05688840 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 05262856 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 04928528 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 04363784 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 04270680 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 04239704 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd12umd32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 03971592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmcl32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 01858640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 01590792 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 01178632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 01027056 _____ C:\WINDOWS\system32\igfxSDK.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00968168 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00964592 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00705032 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00536560 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00466920 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00448496 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00439304 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00416264 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00390152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00388616 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00350184 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00318472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00312304 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00301552 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00297168 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10idpp32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00273416 _____ C:\WINDOWS\system32\igfxCPL.cpl
2016-11-01 23:05 - 2016-11-01 23:05 - 00266248 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00254984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00237040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00232432 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00231920 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00225288 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00223248 _____ (Intel Corporation) C:\WINDOWS\system32\igdde64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00212488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4531.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00193032 _____ (Intel Corporation) C:\WINDOWS\system32\igdail64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00181840 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdde32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00175088 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2016-11-01 23:05 - 2016-11-01 23:05 - 00174088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdail32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00111624 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00103432 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00100872 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00095240 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00084488 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00052744 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00029192 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00027656 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-11-01 23:05 - 2016-11-01 23:05 - 00022536 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2016-11-01 20:27 - 2016-11-01 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2016-11-01 18:43 - 2016-11-26 22:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-10-29 19:13 - 2016-11-22 18:14 - 00001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-10-29 19:13 - 2016-10-29 19:15 - 00000000 ____D C:\Users\Ota\AppData\Local\tkdata
2016-10-29 19:13 - 2016-10-29 19:13 - 00000000 ____D C:\ProgramData\TrueKey
2016-10-29 19:13 - 2016-10-29 19:13 - 00000000 ____D C:\Program Files\Intel Security
2016-10-29 19:13 - 2016-10-29 19:13 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-10-29 19:12 - 2016-11-18 17:26 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-10-29 19:12 - 2016-10-29 19:12 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-29 19:12 - 2016-10-29 19:12 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-10-29 19:02 - 2016-11-25 20:35 - 00000000 ____D C:\Program Files\TrueKey
2016-10-29 19:02 - 2016-11-01 20:09 - 00000000 ____D C:\ProgramData\McAfee

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-28 21:25 - 2016-10-03 17:24 - 00000000 ____D C:\Users\Ota
2016-11-28 21:21 - 2015-10-30 19:26 - 00000000 ____D C:\Users\Ota\AppData\Roaming\Skype
2016-11-28 21:20 - 2016-10-03 17:44 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-28 21:20 - 2016-10-03 17:20 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-28 21:20 - 2015-10-31 01:10 - 00000000 __SHD C:\Users\Ota\IntelGraphicsProfiles
2016-11-28 21:19 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-11-28 21:19 - 2015-08-18 12:04 - 03866362 _____ C:\WINDOWS\SysWOW64\rootpa.e2e
2016-11-28 20:30 - 2016-10-03 17:16 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-28 16:46 - 2016-10-03 17:44 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2016-11-27 20:49 - 2015-11-06 19:27 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2016-11-27 19:09 - 2015-11-01 19:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM
2016-11-27 19:09 - 2015-11-01 12:22 - 00001256 _____ C:\Users\Ota\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2016-11-27 18:57 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-27 13:42 - 2015-11-01 19:07 - 00000000 ____D C:\01 PC Home
2016-11-27 10:26 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-11-26 22:15 - 2016-10-03 17:16 - 00361936 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-26 22:15 - 2016-07-16 12:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-11-26 22:15 - 2015-10-31 19:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-26 20:08 - 2015-12-14 19:53 - 00000000 ____D C:\ProgramData\firebird
2016-11-25 20:37 - 2015-11-05 09:49 - 00000000 ____D C:\WINDOWS\system32\Drivers\NSBUx64
2016-11-25 20:36 - 2015-11-05 09:49 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security with Backup
2016-11-25 20:35 - 2015-11-07 19:00 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-25 20:30 - 2016-10-03 17:29 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-25 19:56 - 2015-11-05 09:42 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-11-24 17:44 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-24 17:43 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-23 17:28 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-22 19:49 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-20 20:37 - 2015-11-01 19:10 - 00000000 ____D C:\Users\Ota\AppData\Local\Google
2016-11-19 17:00 - 2016-10-03 17:44 - 00003900 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-11-19 17:00 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-19 17:00 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-19 17:00 - 2015-10-31 22:19 - 00000000 ____D C:\Users\Ota\AppData\Local\Adobe
2016-11-18 17:30 - 2016-07-16 23:25 - 00506984 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-18 17:30 - 2016-07-16 23:25 - 00102148 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-18 17:30 - 2015-08-18 12:14 - 01565746 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-16 17:45 - 2015-10-30 19:26 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-16 17:45 - 2015-10-30 19:26 - 00000000 ____D C:\ProgramData\Skype
2016-11-15 12:54 - 2015-11-01 19:10 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-10 18:38 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-09 14:24 - 2015-08-18 12:12 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-09 13:52 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-09 13:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-11-09 13:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-09 13:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-09 13:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-09 13:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-11-09 13:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-09 13:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-09 12:50 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 12:42 - 2015-10-31 19:25 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 12:40 - 2015-10-31 19:25 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-08 18:59 - 2016-10-03 17:44 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-11-07 12:22 - 2015-11-21 19:31 - 00000000 ____D C:\Users\Ota\AppData\Roaming\vlc
2016-11-07 12:13 - 2016-09-27 19:51 - 00000000 ____D C:\Users\Ota\AppData\Roaming\dvdcss
2016-11-05 21:25 - 2016-02-07 19:51 - 00000000 ____D C:\Users\Ota\Desktop\Lenka
2016-11-05 18:24 - 2015-11-27 20:30 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-02 20:13 - 2016-10-03 17:20 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-11-01 23:06 - 2016-05-27 14:53 - 38903912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2016-11-01 23:06 - 2016-05-27 14:53 - 34823872 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd11dxva32.dll
2016-11-01 23:06 - 2016-05-27 14:53 - 12680800 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2016-11-01 23:06 - 2016-05-27 14:53 - 06696832 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2016-11-01 23:06 - 2016-05-27 14:53 - 05140472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2016-11-01 23:05 - 2016-10-03 17:20 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-11-01 23:05 - 2016-10-03 17:20 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-11-01 23:05 - 2016-05-27 14:53 - 15837984 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2016-11-01 23:05 - 2016-05-27 14:50 - 07966192 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2016-11-01 23:05 - 2016-05-27 14:50 - 02142224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2016-11-01 23:05 - 2016-05-27 14:50 - 00756744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2016-11-01 23:05 - 2016-05-27 14:50 - 00401896 _____ C:\WINDOWS\system32\igfxTray.exe
2016-11-01 23:05 - 2016-05-27 14:50 - 00398856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2016-11-01 23:05 - 2016-05-27 14:50 - 00373744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2016-11-01 23:05 - 2016-05-27 14:50 - 00354800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2016-11-01 23:05 - 2016-05-27 14:50 - 00268784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2016-11-01 20:27 - 2015-11-01 19:10 - 00000000 ____D C:\Program Files (x86)\Google
2016-10-29 19:12 - 2016-03-17 17:26 - 00000000 ____D C:\Program Files\Common Files\AV
2016-10-29 19:02 - 2015-11-07 19:01 - 00000030 _____ C:\AVScanner.ini
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2016-11-27 14:33 - 2016-11-27 21:50 - 0011264 _____ () C:\Users\Ota\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-06 20:09 - 2015-11-06 20:16 - 0000041 ___SH () C:\ProgramData\.zreglib
2016-11-24 17:45 - 2016-11-24 17:45 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-11-24 11:46

==================== End of FRST.txt ============================

Re: Prosím o kontrolu

Napsal: 30 lis 2016 17:36
od Roli
Zdravím, smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

Re: Prosím o kontrolu

Napsal: 30 lis 2016 20:16
od ota
# AdwCleaner v6.030 - Logfile created 30/11/2016 at 20:09:28
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-29.1 [Server]
# Operating System : Windows 10 Home (X64)
# Username : Ota - DESKTOP-TTIU2E3
# Running from : C:\Users\Ota\Desktop\adwcleaner_6.030.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support



***** [ Services ] *****

[-] Service deleted: LavasoftTcpService
[-] Service deleted: WCAssistantService


***** [ Folders ] *****

[-] Folder deleted: C:\Users\Ota\AppData\Roaming\lavasoft\web companion
[-] Folder deleted: C:\ProgramData\lavasoft\web companion
[-] Folder deleted: C:\ProgramData\Application Data\lavasoft\web companion
[-] Folder deleted: C:\Program Files (x86)\lavasoft\web companion


***** [ Files ] *****

[#] File deleted: C:\WINDOWS\SysNative\LavasoftTcpService64.dll
[-] File deleted: C:\WINDOWS\SysNative\LavasoftTcpServiceOff.ini
[#] File deleted: C:\WINDOWS\SysWoW64\lavasofttcpservice.dll
[-] File deleted: C:\WINDOWS\SysWoW64\LavasoftTcpServiceOff.ini
[-] File deleted: C:\prefs.js
[-] File deleted: C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021\searchplugins\yahoo-lavasoft.xml
[-] File deleted: C:\searchplugins\yahoo-lavasoft.xml


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[-] Key deleted: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}
[-] Key deleted: HKU\S-1-5-21-554986064-1367882024-3811459060-1005\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\Conduit
[-] Key deleted: HKLM\SOFTWARE\Lavasoft\Web Companion
[#] Key deleted on reboot: [x64] HKCU\Software\Conduit
[-] Data restored: HKU\S-1-5-21-554986064-1367882024-3811459060-1005\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data restored: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data restored: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key deleted: HKU\S-1-5-21-554986064-1367882024-3811459060-1005\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}
[#] Key deleted on reboot: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}
[-] Value deleted: HKU\S-1-5-21-554986064-1367882024-3811459060-1005\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]
[-] Value deleted: HKU\S-1-5-21-554986064-1367882024-3811459060-1005\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Web Companion]
[#] Value deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]
[#] Value deleted on reboot: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
[-] Key deleted: HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com


***** [ Web browsers ] *****

[-] Chrome preferences cleaned: "browser.newtab.url" - "hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10270__160930__yaff"
[-] Chrome preferences cleaned: "browser.newtabpage.url" - "hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10270__160930__yaff"


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1908 Bytes] - [02/03/2016 21:51:24]
C:\AdwCleaner\AdwCleaner[C2].txt - [1101 Bytes] - [19/04/2016 20:02:43]
C:\AdwCleaner\AdwCleaner[C3].txt - [1206 Bytes] - [19/04/2016 20:07:25]
C:\AdwCleaner\AdwCleaner[C4].txt - [4640 Bytes] - [03/07/2016 11:35:17]
C:\AdwCleaner\AdwCleaner[C5].txt - [1527 Bytes] - [03/07/2016 17:56:40]
C:\AdwCleaner\AdwCleaner[C6].txt - [2917 Bytes] - [21/07/2016 19:58:51]
C:\AdwCleaner\AdwCleaner[C7].txt - [3098 Bytes] - [14/09/2016 18:27:32]
C:\AdwCleaner\AdwCleaner[C8].txt - [7529 Bytes] - [30/11/2016 20:09:28]
C:\AdwCleaner\AdwCleaner[S1].txt - [1725 Bytes] - [02/03/2016 21:50:22]
C:\AdwCleaner\AdwCleaner[S2].txt - [1012 Bytes] - [19/04/2016 20:00:28]
C:\AdwCleaner\AdwCleaner[S3].txt - [1043 Bytes] - [19/04/2016 20:05:25]
C:\AdwCleaner\AdwCleaner[S4].txt - [4825 Bytes] - [03/07/2016 11:33:58]
C:\AdwCleaner\AdwCleaner[S5].txt - [1365 Bytes] - [03/07/2016 17:54:34]
C:\AdwCleaner\AdwCleaner[S6].txt - [2659 Bytes] - [21/07/2016 19:57:07]
C:\AdwCleaner\AdwCleaner[S7].txt - [3098 Bytes] - [14/09/2016 18:27:06]
C:\AdwCleaner\AdwCleaner[S8].txt - [2153 Bytes] - [14/09/2016 18:32:51]
C:\AdwCleaner\AdwCleaner[S9].txt - [8262 Bytes] - [30/11/2016 20:09:01]

########## EOF - C:\AdwCleaner\AdwCleaner[C8].txt - [8259 Bytes] ##########

Re: Prosím o kontrolu

Napsal: 01 pro 2016 17:03
od Roli
Spusť skener Cure It podle TOHOTO návodu

po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.

(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)

Re: Prosím o kontrolu

Napsal: 01 pro 2016 22:49
od ota
Total 307905969008 bytes in 347606 files scanned (560003 objects)
Total 347318 files (558572 objects) are clean
Total 24 files are infected
Total 265 files (1392 objects) are raised error condition
Scan time is 01:13:34.957

Re: Prosím o kontrolu

Napsal: 02 pro 2016 17:56
od Roli
Ještě poprosím o aktuální log.txt z Rsit a také písni jak se nyní PC chová.

Re: Prosím o kontrolu

Napsal: 02 pro 2016 20:22
od ota
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ota at 2016-12-02 20:03:10
Microsoft Windows 10 Home
System drive C: has 684 GB (72%) free of 953 GB
Total RAM: 8070 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:03:16, on 02.12.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\NSBU.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\coNatHst.exe
C:\Program Files\trend micro\Ota.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\coIEPlg.dll
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Ota\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Norton Security with Backup (NSBU) - Symantec Corporation - C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\NSBU.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: tbaseprovisioning - Advanced Micro Devices, Inc. - C:\WINDOWS\SysWOW64\tbaseprovisioning.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: Intel Security True Key Helper Service (TrueKeyServiceHelper) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11465 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\SysWOW64\tbaseprovisioning.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\NSBU.exe" /s "NSBU" /m "C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel

"C:\Program Files\TrueKey\McTkSchedulerService.exe"
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
C:\WINDOWS\system32\EscSvc64.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\NSBU.exe" /c /a /s UserSession
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\PROGRA~1\TrueKey\MCAFEE~2.EXE
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16102.10341.0_x64__8wekyb3d8bbwe\Music.UI.exe" -ServerName:Microsoft.ZuneMusic.AppX48dcrcgzqqdshm3kf61t0cm5e9pyd6h6.mca
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.16102.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"fontdrvhost.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\coNatHst.exe" firefox

C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x40c
"C:\Users\Ota\Desktop\Viry\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\Ota\Desktop\Viry\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

"{C1A2A613-35F1-4FCF-B27F-2840527B6556}"=C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.5.4.24\coFFAddon\


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.111.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppdf32.dll

C:\Users\Ota\AppData\Roaming\Mozilla\Firefox\Profiles\dwrkrxjf.default-1446579292021\extensions\
artur.dubovoy@gmail.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Security with Backup\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12 896688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25 438368]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-11-02 1052896]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201CF130-E29C-4E5C-A73F-CD197DEFA6AE}]
E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\coIEPlg.dll [2016-11-12 656560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-25 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-25 186944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25 438368]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Security with Backup\Engine64\22.8.1.14\coIEPlg.dll [2016-11-12 896688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\coIEPlg.dll [2016-11-12 656560]
{201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27 238576]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-11-02 1052896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-06-01 176952]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-11-17 9072128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Ota\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-10-03 633024]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-10-17 27011712]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2014-03-13 779776]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2012-04-02 1058912]
"CloneCDTray"=C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [2009-01-29 57344]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.x264"=x264vfw.dll
"msacm.ac3filter"=ac3filter.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-12-02 20:02:56 ----D---- C:\rsit
2016-11-30 19:57:52 ----A---- C:\WINDOWS\system32\startup.txt
2016-11-30 19:49:42 ----AD---- C:\Program Files\CCleaner
2016-11-28 21:32:12 ----D---- C:\FRST
2016-11-27 19:09:14 ----AD---- C:\Program Files\VDownloader
2016-11-25 20:29:58 ----D---- C:\Users\Ota\AppData\Roaming\Shark007
2016-11-25 20:29:58 ----D---- C:\ProgramData\Shark007
2016-11-25 20:29:56 ----A---- C:\WINDOWS\system32\BugTrap-x64.dll
2016-11-25 20:29:55 ----AD---- C:\Program Files\Shark007
2016-11-25 20:29:55 ----A---- C:\WINDOWS\system32\x264vfw.dll
2016-11-25 20:29:55 ----A---- C:\WINDOWS\system32\VSFilter.dll
2016-11-25 20:29:55 ----A---- C:\WINDOWS\system32\unrar.dll
2016-11-25 20:29:55 ----A---- C:\WINDOWS\system32\pthreadGC2.dll
2016-11-25 20:29:47 ----D---- C:\Users\Ota\AppData\Roaming\Advanced
2016-11-25 20:29:47 ----D---- C:\ProgramData\Advanced
2016-11-25 20:29:46 ----D---- C:\Program Files (x86)\Shark007
2016-11-25 19:36:21 ----D---- C:\Users\Ota\AppData\Roaming\mpv
2016-11-24 17:45:02 ----D---- C:\WINDOWS\system32\DAX2
2016-11-24 17:44:53 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-11-24 17:44:53 ----D---- C:\Program Files\Realtek
2016-11-17 18:17:12 ----A---- C:\WINDOWS\system32\YamahaAE2.dll
2016-11-17 18:17:08 ----A---- C:\WINDOWS\system32\YamahaAE.dll
2016-11-17 18:17:08 ----A---- C:\WINDOWS\system32\tossaemaxapo64.dll
2016-11-17 18:17:06 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2016-11-17 18:17:04 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2016-11-17 18:17:02 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2016-11-17 18:17:00 ----A---- C:\WINDOWS\system32\tosade.dll
2016-11-17 18:16:56 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2016-11-17 18:16:50 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2016-11-17 18:16:48 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2016-11-17 18:16:44 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2016-11-17 18:16:44 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2016-11-17 18:16:44 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2016-11-17 18:16:44 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2016-11-17 18:16:42 ----A---- C:\WINDOWS\system32\SRRPTR64.dll
2016-11-17 18:16:40 ----A---- C:\WINDOWS\system32\SRCOM64.dll
2016-11-17 18:16:36 ----A---- C:\WINDOWS\SYSWOW64\SRCOM.dll
2016-11-17 18:16:36 ----A---- C:\WINDOWS\system32\SRCOM.dll
2016-11-17 18:16:36 ----A---- C:\WINDOWS\system32\SRAPO64.dll
2016-11-17 18:16:24 ----A---- C:\WINDOWS\system32\sltech64.dll
2016-11-17 18:15:58 ----A---- C:\WINDOWS\system32\slcnt64.dll
2016-11-17 18:15:54 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2016-11-17 18:15:54 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2016-11-17 18:15:46 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2016-11-17 18:15:38 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2016-11-17 18:15:36 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2016-11-17 18:15:34 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2016-11-17 18:15:32 ----A---- C:\WINDOWS\system32\SEHDRA64.dll
2016-11-17 18:15:30 ----A---- C:\WINDOWS\SYSWOW64\SEHDHF32.dll
2016-11-17 18:15:30 ----A---- C:\WINDOWS\system32\SEHDHF64.dll
2016-11-17 18:15:30 ----A---- C:\WINDOWS\system32\SECOMN64.dll
2016-11-17 18:15:28 ----A---- C:\WINDOWS\SYSWOW64\SECOMN32.dll
2016-11-17 18:15:24 ----A---- C:\WINDOWS\system32\SEAPO64.dll
2016-11-17 18:15:24 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2016-11-17 18:15:22 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2016-11-17 18:15:12 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2016-11-17 18:15:10 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2016-11-17 18:15:08 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2016-11-17 18:15:08 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2016-11-17 18:15:06 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2016-11-17 18:15:06 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2016-11-17 18:15:04 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2016-11-17 18:15:00 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2016-11-17 18:14:58 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2016-11-17 18:14:56 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2016-11-17 18:14:54 ----A---- C:\WINDOWS\SYSWOW64\RltkAPO.dll
2016-11-17 18:14:54 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2016-11-17 18:14:52 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2016-11-17 18:14:50 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2016-11-17 18:14:48 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2016-11-17 18:14:46 ----A---- C:\WINDOWS\system32\NAHIMICV3apo.dll
2016-11-17 18:14:44 ----A---- C:\WINDOWS\system32\NAHIMICV2apo.dll
2016-11-17 18:14:44 ----A---- C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2016-11-17 18:14:42 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2016-11-17 18:14:26 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2016-11-17 18:14:24 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2016-11-17 18:14:24 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2016-11-17 18:14:18 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2016-11-17 18:14:16 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2016-11-17 18:14:08 ----A---- C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2016-11-17 18:14:06 ----A---- C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2016-11-17 18:14:04 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2016-11-17 18:14:02 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2016-11-17 18:14:00 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2016-11-17 18:14:00 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2016-11-17 18:13:52 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2016-11-17 18:13:50 ----A---- C:\WINDOWS\system32\IntelSSTAPO.dll
2016-11-17 18:13:46 ----A---- C:\WINDOWS\system32\ICEsoundAPO64.dll
2016-11-17 18:13:44 ----A---- C:\WINDOWS\system32\HMLimiter.dll
2016-11-17 18:13:42 ----A---- C:\WINDOWS\system32\HMHVS.dll
2016-11-17 18:13:42 ----A---- C:\WINDOWS\system32\HMEQ_Voice.dll
2016-11-17 18:13:42 ----A---- C:\WINDOWS\system32\HMEQ.dll
2016-11-17 18:13:40 ----A---- C:\WINDOWS\system32\HMClariFi.dll
2016-11-17 18:13:40 ----A---- C:\WINDOWS\system32\HMAPO.dll
2016-11-17 18:13:38 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2016-11-17 18:13:36 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-11-17 18:13:34 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2016-11-17 18:13:32 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2016-11-17 18:13:30 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2016-11-17 18:13:30 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-11-17 18:13:28 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-11-17 18:13:26 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-11-17 18:13:26 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-11-17 18:13:24 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-11-17 18:13:24 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-11-17 18:13:22 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-11-17 18:13:22 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-11-17 18:13:20 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-11-17 18:13:16 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-11-17 18:13:16 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-11-17 18:13:14 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2016-11-17 18:13:12 ----A---- C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2016-11-17 18:13:08 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2016-11-17 18:13:06 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2016-11-17 18:13:04 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2016-11-17 18:13:02 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2016-11-17 18:13:00 ----A---- C:\WINDOWS\system32\slprp64.dll
2016-11-17 18:13:00 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2016-11-17 18:13:00 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2016-11-17 18:12:58 ----A---- C:\WINDOWS\system32\DDPA64.dll
2016-11-17 18:12:58 ----A---- C:\WINDOWS\system32\CX64Proxy.dll
2016-11-17 18:12:56 ----A---- C:\WINDOWS\system32\CX64APO.dll
2016-11-17 18:12:54 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2016-11-17 18:12:50 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2016-11-17 18:12:48 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2016-11-17 18:12:44 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2016-11-17 18:12:42 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2016-11-17 18:12:34 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2016-11-17 18:12:30 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2016-11-17 18:12:20 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2016-11-17 18:12:08 ----A---- C:\WINDOWS\system32\NahimicAPONSControl.dll
2016-11-17 18:11:58 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2016-11-17 18:11:54 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2016-11-17 18:11:50 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2016-11-17 18:11:46 ----A---- C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2016-11-17 18:11:44 ----A---- C:\WINDOWS\system32\HMUI.dll
2016-11-17 18:11:44 ----A---- C:\WINDOWS\system32\HiFiDAX2API.dll
2016-11-17 18:11:42 ----A---- C:\WINDOWS\system32\HarmanAudioInterface.dll
2016-11-17 18:11:22 ----A---- C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2016-11-17 18:11:20 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2016-11-17 18:11:18 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2016-11-17 18:11:12 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2016-11-17 18:11:02 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2016-11-17 18:10:56 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-11-17 07:41:30 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2016-11-17 07:41:30 ----A---- C:\WINDOWS\system32\drivers\rtkSSTsetting.dat
2016-11-17 07:41:30 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2016-11-15 23:57:32 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-11-09 11:48:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-11-09 11:48:17 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-09 11:48:16 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-11-09 11:48:15 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2016-11-09 11:48:15 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-11-09 11:48:15 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-11-09 11:48:15 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-11-09 11:48:15 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-11-09 11:48:15 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-11-09 11:48:15 ----A---- C:\WINDOWS\system32\ole32.dll
2016-11-09 11:48:15 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-09 11:48:14 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2016-11-09 11:48:14 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-11-09 11:48:14 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-11-09 11:48:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-11-09 11:48:14 ----A---- C:\WINDOWS\SYSWOW64\chartv.dll
2016-11-09 11:48:14 ----A---- C:\WINDOWS\system32\wer.dll
2016-11-09 11:48:13 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-11-09 11:48:13 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-11-09 11:48:13 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-09 11:48:13 ----A---- C:\WINDOWS\system32\weretw.dll
2016-11-09 11:48:13 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-11-09 11:48:12 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-11-09 11:48:12 ----A---- C:\WINDOWS\system32\WpcTok.exe
2016-11-09 11:48:12 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-09 11:48:12 ----A---- C:\WINDOWS\system32\ubpm.dll
2016-11-09 11:48:12 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-09 11:48:12 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-11-09 11:48:12 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2016-11-09 11:48:12 ----A---- C:\WINDOWS\system32\ddraw.dll
2016-11-09 11:48:11 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2016-11-09 11:48:11 ----A---- C:\WINDOWS\system32\TSpkg.dll
2016-11-09 11:48:11 ----A---- C:\WINDOWS\system32\dab.dll
2016-11-09 11:48:10 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-11-09 11:48:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-09 11:48:10 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-09 11:48:10 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-11-09 11:48:10 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2016-11-09 11:48:09 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-11-09 11:48:08 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-11-09 11:48:08 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-11-09 11:48:08 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-09 11:48:07 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-11-09 11:48:07 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-11-09 11:48:07 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-11-09 11:48:07 ----A---- C:\WINDOWS\system32\wmp.dll
2016-11-09 11:48:07 ----A---- C:\WINDOWS\system32\chartv.dll
2016-11-09 11:48:06 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-11-09 11:48:06 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-11-09 11:48:06 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-09 11:48:06 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-11-09 11:48:06 ----A---- C:\WINDOWS\system32\authui.dll
2016-11-09 11:48:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-11-09 11:48:05 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-11-09 11:48:05 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-11-09 11:48:05 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-11-09 11:48:05 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2016-11-09 11:48:05 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-11-09 11:48:04 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-11-09 11:48:04 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2016-11-09 11:48:04 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-11-09 11:48:03 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-11-09 11:48:03 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-11-09 11:48:03 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-11-09 11:48:02 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-09 11:48:02 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-11-09 11:48:01 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2016-11-09 11:48:01 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2016-11-09 11:48:01 ----A---- C:\WINDOWS\system32\rdpcore.dll
2016-11-09 11:48:01 ----A---- C:\WINDOWS\system32\efsext.dll
2016-11-09 11:48:01 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-11-09 11:48:00 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-11-09 11:48:00 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-11-09 11:48:00 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-11-09 11:48:00 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-11-09 11:47:59 ----A---- C:\WINDOWS\SYSWOW64\AuthExt.dll
2016-11-09 11:47:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-09 11:47:55 ----A---- C:\WINDOWS\system32\stobject.dll
2016-11-09 11:47:55 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-11-09 11:47:55 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-11-09 11:47:54 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-11-09 11:47:54 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-11-09 11:47:54 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-11-09 11:47:54 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-11-09 11:47:54 ----A---- C:\WINDOWS\system32\sud.dll
2016-11-09 11:47:54 ----A---- C:\WINDOWS\system32\fontext.dll
2016-11-09 11:47:54 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-11-09 11:47:54 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-09 11:47:53 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-11-09 11:47:53 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-09 11:47:53 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-11-09 11:47:53 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-11-09 11:47:53 ----A---- C:\WINDOWS\system32\gameux.dll
2016-11-09 11:47:53 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-11-09 11:47:53 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-11-09 11:47:52 ----A---- C:\WINDOWS\system32\twinui.dll
2016-11-09 11:47:52 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-11-09 11:47:52 ----A---- C:\WINDOWS\explorer.exe
2016-11-09 11:47:51 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-09 11:47:49 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-11-09 11:47:48 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-11-09 11:47:47 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-11-09 11:47:47 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-11-09 11:47:47 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-11-09 11:47:47 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-11-09 11:47:47 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-09 11:47:46 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-09 11:47:46 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-09 11:47:46 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-09 11:47:46 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-11-09 11:47:45 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-09 11:47:45 ----A---- C:\WINDOWS\system32\NPSM.dll
2016-11-09 11:47:45 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-09 11:47:45 ----A---- C:\WINDOWS\system32\DeviceCenter.dll
2016-11-09 11:47:44 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-11-09 11:47:44 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-11-09 11:47:44 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-11-09 11:47:43 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-11-09 11:47:43 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-11-09 11:47:42 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-11-09 11:47:42 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-11-09 11:47:41 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-11-09 11:47:41 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2016-11-09 11:47:41 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-11-09 11:47:41 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-09 11:47:41 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-11-09 11:47:40 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 11:47:39 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-11-09 11:47:39 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-11-09 11:47:39 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-11-09 11:47:38 ----A---- C:\WINDOWS\system32\shell32.dll
2016-11-09 11:47:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-11-09 11:47:37 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-11-09 11:47:37 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-11-09 11:47:37 ----A---- C:\WINDOWS\system32\shdocvw.dll
2016-11-09 11:47:37 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-11-09 11:47:36 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-11-09 11:47:36 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-11-09 11:47:36 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-09 11:47:35 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-11-09 11:47:35 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-09 11:47:35 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-11-09 11:47:34 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-11-09 11:47:34 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-11-09 11:47:34 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-11-09 11:47:34 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-11-09 11:47:33 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-11-09 11:47:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-11-09 11:47:32 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-11-09 11:47:32 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-11-09 11:47:32 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-09 11:47:31 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-09 11:47:31 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-11-09 11:47:31 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 11:47:30 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-11-09 11:47:29 ----A---- C:\WINDOWS\system32\wininet.dll
2016-11-09 11:47:29 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-09 11:47:29 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-11-09 11:47:29 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-11-09 11:47:29 ----A---- C:\WINDOWS\system32\cdp.dll
2016-11-09 11:47:29 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-11-09 11:47:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-11-09 11:47:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-09 11:47:26 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-09 11:47:25 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-09 11:47:24 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-11-09 11:47:24 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-11-09 11:47:24 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 11:47:24 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-09 11:47:24 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-11-09 11:47:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-09 11:47:22 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-11-09 11:47:22 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-11-09 11:47:21 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-11-09 11:47:21 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2016-11-09 11:47:21 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-09 11:47:21 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-11-09 11:47:21 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-11-09 11:47:20 ----A---- C:\WINDOWS\SYSWOW64\UIAnimation.dll
2016-11-09 11:47:20 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2016-11-09 11:47:20 ----A---- C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetailsUpdate.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\system32\iepeers.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-09 11:47:19 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-11-09 11:47:18 ----A---- C:\WINDOWS\system32\winload.exe
2016-11-09 11:47:17 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-11-09 11:47:17 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-11-09 11:47:17 ----A---- C:\WINDOWS\system32\winresume.exe
2016-11-09 11:47:17 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-11-09 11:47:17 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-11-09 11:47:17 ----A---- C:\WINDOWS\system32\msinfo32.exe
2016-11-09 11:47:16 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-11-09 11:47:16 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-11-09 11:47:16 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-11-09 11:47:16 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2016-11-09 11:47:16 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-11-09 11:47:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-11-09 11:47:15 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2016-11-09 11:47:15 ----A---- C:\WINDOWS\system32\msctf.dll
2016-11-09 11:47:14 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-11-09 11:47:14 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-11-09 11:47:14 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-09 11:47:14 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-11-09 11:47:13 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-11-09 11:47:13 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-11-09 11:47:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-11-09 11:47:12 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-11-09 11:47:12 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-11-09 11:47:12 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-11-09 11:47:12 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-11-09 11:47:12 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-11-09 11:47:12 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2016-11-09 11:47:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 11:47:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-09 11:47:11 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2016-11-09 11:47:11 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-11-09 11:47:11 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-09 11:47:11 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-11-09 11:47:10 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-11-09 11:47:10 ----A---- C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 11:47:10 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-09 11:47:10 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-09 11:47:10 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 11:47:10 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-09 11:47:10 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-11-09 11:47:09 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2016-11-09 11:47:09 ----A---- C:\WINDOWS\system32\win32k.sys
2016-11-09 11:47:09 ----A---- C:\WINDOWS\system32\input.dll
2016-11-09 11:47:09 ----A---- C:\WINDOWS\system32\drivers\iorate.sys
2016-11-09 11:47:08 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2016-11-09 11:47:08 ----A---- C:\WINDOWS\SYSWOW64\d3d8.dll
2016-11-09 11:47:08 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-11-09 11:47:08 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-11-09 11:47:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-11-09 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-11-09 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-11-09 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2016-11-09 11:47:05 ----A---- C:\WINDOWS\system32\atmlib.dll

======List of files/folders modified in the last 1 month======

2016-12-02 20:03:15 ----D---- C:\Program Files\trend micro
2016-12-02 20:03:10 ----D---- C:\WINDOWS\Temp
2016-12-02 20:03:05 ----D---- C:\WINDOWS\Prefetch
2016-12-02 20:01:00 ----D---- C:\WINDOWS\system32\sru
2016-12-02 20:00:59 ----D---- C:\Users\Ota\AppData\Roaming\Skype
2016-12-02 20:00:57 ----RD---- C:\WINDOWS\Microsoft.NET
2016-12-02 18:56:33 ----D---- C:\WINDOWS\AppReadiness
2016-12-02 18:04:19 ----D---- C:\WINDOWS\system32\SleepStudy
2016-12-02 18:00:14 ----D---- C:\WINDOWS\System32
2016-12-02 18:00:14 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-12-02 11:07:45 ----HD---- C:\Program Files\WindowsApps
2016-12-02 11:05:16 ----D---- C:\WINDOWS\LiveKernelReports
2016-12-01 22:44:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-01 22:44:45 ----D---- C:\WINDOWS\system32\drivers
2016-12-01 22:44:34 ----SHD---- C:\System Volume Information
2016-12-01 21:17:53 ----D---- C:\WINDOWS\SysWOW64
2016-12-01 18:13:03 ----D---- C:\WINDOWS\debug
2016-11-30 21:47:39 ----D---- C:\WINDOWS\SoftwareDistribution
2016-11-30 21:47:39 ----D---- C:\Windows
2016-11-30 20:09:28 ----D---- C:\AdwCleaner
2016-11-30 20:09:16 ----D---- C:\searchplugins
2016-11-30 20:09:15 ----D---- C:\Program Files (x86)\Lavasoft
2016-11-30 20:09:11 ----D---- C:\ProgramData\Lavasoft
2016-11-30 20:09:10 ----D---- C:\Users\Ota\AppData\Roaming\Lavasoft
2016-11-30 20:01:07 ----D---- C:\Program Files\TrueKey
2016-11-30 19:52:34 ----DC---- C:\WINDOWS\Panther
2016-11-30 19:52:34 ----D---- C:\WINDOWS\INF
2016-11-30 19:49:45 ----D---- C:\WINDOWS\system32\Tasks
2016-11-30 19:49:42 ----RD---- C:\Program Files
2016-11-30 18:24:37 ----D---- C:\Users\Ota\AppData\Roaming\vlc
2016-11-29 12:06:21 ----SHDC---- C:\WINDOWS\Installer
2016-11-27 13:42:45 ----D---- C:\01 PC Home
2016-11-26 22:15:34 ----HD---- C:\WINDOWS\ELAMBKUP
2016-11-26 22:15:34 ----AD---- C:\Program Files (x86)\Mozilla Thunderbird
2016-11-26 21:09:01 ----RSD---- C:\WINDOWS\Fonts
2016-11-26 20:08:14 ----D---- C:\ProgramData\firebird
2016-11-25 20:42:41 ----RSD---- C:\WINDOWS\assembly
2016-11-25 20:37:46 ----D---- C:\WINDOWS\system32\drivers\NSBUx64
2016-11-25 20:29:58 ----HD---- C:\ProgramData
2016-11-25 20:29:46 ----RD---- C:\Program Files (x86)
2016-11-25 20:29:36 ----D---- C:\WINDOWS\system32\catroot2
2016-11-25 19:56:58 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-11-24 17:44:40 ----D---- C:\WINDOWS\system32\DriverStore
2016-11-22 19:49:53 ----D---- C:\WINDOWS\system32\NDF
2016-11-19 17:00:40 ----D---- C:\WINDOWS\system32\Macromed
2016-11-19 17:00:38 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-11-19 10:04:03 ----D---- C:\WINDOWS\system32\config
2016-11-18 17:30:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-18 17:26:46 ----D---- C:\Program Files (x86)\McAfee
2016-11-16 17:45:29 ----D---- C:\ProgramData\Skype
2016-11-16 17:45:25 ----RD---- C:\Program Files (x86)\Skype
2016-11-16 17:45:25 ----D---- C:\Program Files (x86)\Common Files
2016-11-10 18:38:10 ----D---- C:\WINDOWS\rescache
2016-11-09 18:25:46 ----D---- C:\WINDOWS\WinSxS
2016-11-09 13:52:40 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-11-09 13:52:40 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-11-09 13:52:40 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-11-09 13:52:40 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-11-09 13:52:38 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-11-09 13:52:38 ----D---- C:\WINDOWS\system32\oobe
2016-11-09 13:52:38 ----D---- C:\WINDOWS\system32\migwiz
2016-11-09 13:52:38 ----D---- C:\WINDOWS\system32\migration
2016-11-09 13:52:36 ----D---- C:\WINDOWS\system32\en-US
2016-11-09 13:52:36 ----D---- C:\WINDOWS\system32\en-GB
2016-11-09 13:52:36 ----D---- C:\WINDOWS\system32\cs-CZ
2016-11-09 13:52:36 ----D---- C:\WINDOWS\system32\Boot
2016-11-09 13:52:35 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-11-09 13:52:35 ----D---- C:\WINDOWS\ShellExperiences
2016-11-09 13:52:35 ----D---- C:\WINDOWS\bcastdvr
2016-11-09 13:52:35 ----D---- C:\WINDOWS\AppPatch
2016-11-09 12:50:27 ----D---- C:\WINDOWS\CbsTemp
2016-11-09 12:42:24 ----D---- C:\WINDOWS\system32\MRT
2016-11-09 12:40:16 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-11-07 12:13:35 ----D---- C:\Users\Ota\AppData\Roaming\dvdcss

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem25.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-06-04 73976]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 SymEFASI;Symantec Extended File Attributes (SI); C:\WINDOWS\system32\drivers\NSBUx64\1608010.00E\SYMEFASI64.SYS [2016-11-12 1628888]
R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Security with Backup\NortonData\22.5.4.24\Definitions\BASHDefs\20161201.001\BHDrvx64.sys [2016-11-07 1874136]
R1 ccSet_NSBU;NSBU Settings Manager; C:\WINDOWS\system32\drivers\NSBUx64\1608010.00E\ccSetx64.sys [2016-06-02 174328]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-10-04 497368]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 31400]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Security with Backup\NortonData\22.5.4.24\Definitions\IPSDefs\20161201.001\IDSvia64.sys [2016-10-28 1012952]
R1 SRTSP;Symantec Real Time Storage Protection x64; C:\WINDOWS\System32\Drivers\NSBUx64\1608010.00E\SRTSP64.SYS [2016-11-12 784624]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\WINDOWS\system32\drivers\NSBUx64\1608010.00E\SRTSPX64.SYS [2016-11-12 49400]
R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NSBUx64\1608010.00E\Ironx64.SYS [2016-11-12 289520]
R1 SymNetS;Symantec Network Security WFP Driver; C:\WINDOWS\System32\Drivers\NSBUx64\1608010.00E\SYMNETS.SYS [2016-11-12 567512]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 40648]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2016-10-04 156888]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-11-01 7966192]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-11-17 5463552]
R3 MarvinBus;@oem8.inf,%MarvinBus.SVCDESC%;Pinnacle Marvin Bus 64; C:\WINDOWS\System32\drivers\MarvinBus64.sys [2005-09-23 261120]
R3 MEIx64;@oem35.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2015-06-29 184096]
R3 rt640x64;@oem72.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-27 886528]
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [2016-10-17 100592]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S0 SymELAM;Symantec ELAM Driver; C:\WINDOWS\system32\drivers\NSBUx64\1608010.00E\SymELAM.sys [2015-09-23 24192]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 amdkmafd;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-06-03 31992]
S3 amdkmcsp;AMD Kernel Mode CSP Service; C:\WINDOWS\System32\drivers\amdkmcsp.sys [2015-06-23 101104]
S3 amdpsp;AMD PSP Service; C:\WINDOWS\System32\drivers\amdpsp.sys [2015-06-23 277240]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-10-03 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 lvrs64;@oem67.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2015-11-01 351520]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-07-16 263008]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2016-07-16 96608]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-07-16 137056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_366eec;CDPUserSvc_366eec; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 EpsonScanSvc;Epson Scanner Service; C:\WINDOWS\system32\EscSvc64.exe [2011-12-12 135824]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-11-01 373744]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
R2 NSBU;Norton Security with Backup; C:\Program Files (x86)\Norton Security with Backup\Engine\22.8.1.14\NSBU.exe [2016-11-12 289080]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-06-17 937616]
R2 OneSyncSvc_366eec;Hostitel synchronizace_366eec; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 tbaseprovisioning;tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [2015-06-23 60432]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-10-28 990656]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-10-28 16248]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_366eec;Data kontaktů_366eec; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-01 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-19 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-11-01 301552]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-01 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-06-01 651576]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_366eec;Služba zasílání zpráv_366eec; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-01 172488]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-10-03 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S3 TrueKeyServiceHelper;Intel Security True Key Helper Service; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-10-28 86864]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------
U nestardantních problémů (nevyžádaný restart, nenadálá okna W10 start, atd.) jsem bohužel nebyl já, ale vždy někdo z blízkých. Zdá se že OS momentálně běží svižněji a nezaznamenal jsem zatím žádné nestandartní chování. Ale jsem překvapen množstvím ohrožených souborů v cureit.log. Je potřeba to řešit?

Re: Prosím o kontrolu

Napsal: 04 pro 2016 17:25
od Roli
ota píše:U nestardantních problémů (nevyžádaný restart, nenadálá okna W10 start, atd.) jsem bohužel nebyl já, ale vždy někdo z blízkých.
Aha tak že, vlestně nevíme co s tím kdo prováděl.
ota píše:Zdá se že OS momentálně běží svižněji a nezaznamenal jsem zatím žádné nestandartní chování.
Proto jsme jej vyčistili.
ota píše:Ale jsem překvapen množstvím ohrožených souborů v cureit.log. Je potřeba to řešit?
Není, důležité je to, že jsme odstranili ty infikované a udělali trochu větší úklid.


Ještě PC nějaký den pozoruj a pak dej vědět než to tu zamknu.

Re: Prosím o kontrolu

Napsal: 06 pro 2016 20:47
od ota
Takže zatím velký dík za pomoc a dám za týden signál. Zatím vše OK. Ota

Re: Prosím o kontrolu

Napsal: 07 pro 2016 17:17
od Roli
ota píše:Takže zatím velký dík za pomoc a dám za týden signál. Zatím vše OK. Ota
OK budu tady :)

Re: Prosím o kontrolu

Napsal: 15 pro 2016 18:24
od ota
PC šlape, celou dobu žádný problém. Díky

Re: Prosím o kontrolu

Napsal: 18 pro 2016 16:38
od Roli
ota píše:Díky
Není zač a :closed:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz