Serveur minecraft

Problèmes de longue date, veuillez aider – Aide sur la suppression des virus, chevaux de Troie, logiciels espions et programmes malveillants – Resoudre les problemes d’un serveur MineCraft

Par Titanfall , le 17 juin 2020 - 32 minutes de lecture

Merci d'avance pour votre aide. J'apprécie beaucoup votre aide. Cela a été une énorme douleur.

Voici le contenu du fichier FRST .txt.

Par rapport à votre commentaire de script de post, il y a certainement une synchronisation. La machine est tombée en panne quelques heures après avoir posté cela hier et j'ai dû faire une restauration du système et je suis toujours sur l'IE préinstallé. Malheureusement, la restauration n'a pas résolu le problème.

En regardant dans les journaux de l'observateur d'événements, il semble qu'il y ait eu une connexion RDP hier soir après que je me sois arrêté pour la nuit, et en examinant le lecteur C: ce matin, SkyDrive apparaît des données synchronisées au moment de la corrélation où la connexion RDP s'est produite.

Voici l'un des noms de dossier de fichiers sur le lecteur C de cette période.

amd64_microsoft-windows-skydrive-shell_31bf3856ad364e35_6.3.9600.16507_none_244adbd081753f65

Résultat de l'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2020 01
Ran by againfromsquareone on NAP-PC (Hewlett-Packard HP Pavilion 11 x360 PC) (17-05-2020 17:22:23)
Exécution à partir de C: Users againfromsquareone Desktop
Profils chargés: againfromsquareone
Plateforme: Windows 8.1 (X64) Langue: anglais (États-Unis)
Navigateur par défaut: IE
Mode de démarrage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (liste blanche) =================

(Si une entrée est incluse dans la liste de correctifs, le processus sera fermé. Le fichier ne sera pas déplacé.)

() [File not signed] C: Program Files Hewlett-Packard SimplePass cachesrvr.exe
() [File not signed] C: Program Files Hewlett-Packard SimplePass opvapp.exe
(CyberLink Corp. -> CyberLink Corp.) C: Program Files (x86) CyberLink YouCam YouCamService.exe
(CyberLink Corp. -> CyberLink) C: Program Files (x86) CyberLink Power2Go8 CLMLSvc_P2G8.exe
(CyberLink Corp. -> CyberLink) C: Program Files (x86) CyberLink PowerDVD12 Kernel DMS CLMSMonitorServicePDVD12.exe
(CyberLink Corp. -> CyberLink) C: Program Files (x86) CyberLink PowerDVD12 Kernel DMS CLMSServerPDVD12.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C: Program Files (x86) Hewlett-Packard HP 3D DriveGuard AccelerometerSt.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C: Program Files (x86) Hewlett-Packard Shared hpqwmiex.exe
(Société Hewlett-Packard -> Société Hewlett-Packard) C: Windows System32 hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C: Program Files (x86) Hewlett-Packard HP CoolSense CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C: Program Files (x86) Hewlett-Packard HP System Event HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C: Program Files (x86) Hewlett-Packard HP System Event HPWMISVC.exe
(Société Hewlett-Packard) [File not signed] C: Program Files (x86) Hewlett-Packard HP Support Framework HPSA_Service.exe
(Intel Corporation – Produits logiciels et micrologiciels -> Intel Corporation) C: Windows System32 hkcmd.exe
(Intel Corporation – Logiciels et micrologiciels -> Intel Corporation) C: Windows System32 igfxpers.exe
(Intel Corporation – Logiciels et micrologiciels -> Intel Corporation) C: Windows System32 igfxsrvc.exe
(Intel® Corporation) [File not signed] C: Program Files Intel TXE Components TCS HeciServer.exe
(Logiciel Intel® Smart Connect ->) C: Program Files Intel Intel® Smart Connect Technology Agent iSCTAgent.exe
(Logiciel Intel® Smart Connect -> Intel Corporation) C: Program Files Intel Intel® Smart Connect Technology Agent iSCTsysTray8.exe
(Microsoft Corporation -> Microsoft Corporation) C: Program Files Windows Defender MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C: Program Files Windows Defender NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C: Windows Microsoft.NET Framework64 v3.0 WPF PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows FileManager FileManager.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows ImmersiveControlPanel SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 cmd.exe
(Composant d'application tiers Microsoft Windows -> Adobe Systems Incorporated) C: Windows System32 Macromed Flash FlashUtil_ActiveX.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C: Program Files Realtek Audio HDA RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C: Program Files Realtek Audio HDA RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C: Program Files Realtek Audio HDA RtkNGUI64.exe
(Softex Inc.) [File not signed] C: Program Files Hewlett-Packard SimplePass OmniServ.exe
(Softex Incorporated -> Hewlett-Packard) C: Program Files Hewlett-Packard SimplePass HPSmplPass.exe
(Softex Incorporated -> Hewlett-Packard) C: Program Files Hewlett-Packard SimplePass OPBHOBroker.exe
(Softex Incorporated -> Hewlett-Packard) C: Program Files Hewlett-Packard SimplePass OPBHOBrokerDsktop.exe
(Synaptics Incorporated -> Synaptics Incorporated) C: Program Files Synaptics SynTP SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C: Program Files Synaptics SynTP SynTPHelper.exe

==================== Registre (liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, l'élément de registre sera restauré par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM … Run: [RTHDVCPL] => C: Program Files Realtek Audio HDA RtkNGUI64.exe [7510896 2014-01-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM … Run: [SimplePass] => C: Program Files Hewlett-Packard SimplePass HPSmplPass.exe [2758200 2013-10-14] (Softex Incorporated -> Hewlett-Packard)
HKLM … Run: [OPBHOBroker] => C: Program Files Hewlett-Packard SimplePass OPBHOBroker.exe [155704 2013-10-14] (Softex Incorporated -> Hewlett-Packard)
HKLM … Run: [OPBHOBrokerDesktop] => C: Program Files Hewlett-Packard SimplePass OPBHOBrokerDsktop.exe [155704 2013-10-14] (Softex Incorporated -> Hewlett-Packard)
HKLM … Run: [SynTPEnh] => C: Program Files Synaptics SynTP SynTPEnh.exe [2803440 2014-01-06] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32 … Exécuter: [AccelerometerSysTrayApplet] => C: Program Files (x86) Hewlett-Packard HP 3D DriveGuard AccelerometerST.exe [77088 2013-07-24] (Société Hewlett-Packard -> Société Hewlett-Packard)
HKLM-x32 … Exécuter: [HPMessageService] => C: Program Files (x86) Hewlett-Packard HP System Event HPMSGSVC.exe [1045304 2013-12-25] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM Software … Authentication Credential Providers: [538C240D-3DEE-4032-AB4C-08A3A6EB0861] -> C: Program Files (x86) CyberLink YouCam CLCredProv x64 CLCredProv.dll [2013-12-17] (CyberLink Corp. -> CyberLink)
HKLM Software … Authentication Credential Providers: [F3F1B0FA-4775-41d8-8578-436772D93FB4] -> C: Program Files Hewlett-Packard SimplePass OmniPassCredProv.dll [2013-10-14] (Softex Inc.) [File not signed]
HKLM Software … Authentication Credential Provider Filters: [F3F1B0FA-4775-41d8-8578-436772D93FB4] -> C: Program Files Hewlett-Packard SimplePass OmniPassCredProv.dll [2013-10-14] (Softex Inc.) [File not signed]
Démarrage: C: ProgramData Microsoft Windows Start Menu Programs Startup ISCTSystray.lnk [2020-05-16]
ShortcutTarget: ISCTSystray.lnk -> C: Program Files Intel Intel® Smart Connect Technology Agent iSCTsysTray8.exe (logiciel Intel® Smart Connect -> Intel Corporation)

==================== Tâches planifiées (liste blanche) ============

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

Tâche: 0FCA717C-D2BE-454C-AE97-1F4A8B8A2ABD – System32 Tasks Hewlett-Packard HP Support Assistant PC Health Analysis => C: Program Files (x86) Hewlett-Packard HP Support Framework HPSF. EXE [542008 2014-01-13] (Société Hewlett-Packard -> Société Hewlett-Packard)
Tâche: 287AB24C-FA24-4CE0-8074-FF9C682AB494 – System32 Tasks Hewlett-Packard HP Support Assistant Opt-in For HP Support Assistant Quick Start => C: Program Files (x86) Hewlett-Packard HP Support Framework HPSF_Utils.exe [28472 2014-01-13] (Société Hewlett-Packard -> Société Hewlett-Packard)
Tâche: 2A31B9BD-ED9A-4085-89B8-ED0F073B37F2 – System32 Tasks Synaptics TouchPad Enhancements => C: Program Files Synaptics SynTP SynTPEnh.exe [2803440 2014-01-06] (Synaptics Incorporated -> Synaptics Incorporated)
Tâche: 2D678882-56CC-4CB4-AE9A-89F63EA19D61 – System32 Tasks CLVDLauncher => C: Program Files (x86) CyberLink Power2Go8 CLVDLauncher.exe [339008 2013-03-12] (CyberLink Corp. -> CyberLink Corp.)
Tâche: 8CA412A3-2B36-4361-8CC2-1505CE6BBC6E – System32 Tasks Hewlett-Packard HP Support Assistant WarrantyChecker => C: Program Files (x86) Hewlett-Packard HP Support Framework Resources HPWarrantyCheck HPWarrantyChecker.exe [1586392 2013-12-18] (Société Hewlett-Packard -> Hewlett-Packard)
Tâche: 980D9B3F-C462-4756-B4AD-2574FA2FC77D – System32 Tasks Hewlett-Packard HP CoolSense HP CoolSense Start at Logon => C: Program Files (x86) Hewlett-Packard HP CoolSense CoolSense. EXE [1354552 2013-11-01] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
Tâche: 9FB212CB-814F-41DF-BA7E-5CD9BFBD2398 – System32 Tasks YCMServiceAgent => C: Program Files (x86) CyberLink YouCam YouCamService.exe [267224 2013-12-17] (CyberLink Corp. -> CyberLink Corp.)
Tâche: A02B7825-02F5-4DBD-8531-5DC8C6E47582 – System32 Tasks Hewlett-Packard HP Support Assistant WarrantyChecker_DeviceScan => C: Program Files (x86) Hewlett-Packard HP Support Framework Resources HPWarrantyCheck HPWarrantyChecker.exe [1586392 2013-12-18] (Société Hewlett-Packard -> Hewlett-Packard)
Tâche: B5EDB5C5-9C28-41F1-8021-97D42AFC7082 – System32 Tasks Hewlett-Packard HP Support Assistant HP Support Assistant Quick Start => C: Program Files (x86) Hewlett-Packard HP Support Framework HPSF.exe [542008 2014-01-13] (Société Hewlett-Packard -> Société Hewlett-Packard)
Tâche: C031F8DD-46BD-4CEA-A180-92A46E984C72 – System32 Tasks HPGenoobeReminder => C: Program Files (x86) Hewlett-Packard HP Registration Service HP GenOOBE HPGenOOBE.exe [31520 2013-12-13] (Société Hewlett-Packard ->)
Tâche: CFBC4356-7A60-47C3-B327-6D97030F8D83 – System32 Tasks Hewlett-Packard HP Support Assistant Update Check => C: ProgramData Hewlett-Packard HP Support Framework Resources Updater7 HPSFUpdater.exe [603008 2012-11-29] (Société Hewlett-Packard -> Société Hewlett-Packard)
Tâche: FF17C229-A7B2-4FD0-9FBD-E8076C813FE8 – System32 Tasks CLMLSvc_P2G8 => C: Program Files (x86) CyberLink Power2Go8 CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink Corp. -> CyberLink)

(Si une entrée est incluse dans la liste de correctifs, le fichier de tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

==================== Internet (liste blanche) ====================

(Si un élément est inclus dans la liste de correctifs, s'il s'agit d'un élément du registre, il sera supprimé ou restauré par défaut.)

Tcpip Paramètres: [DhcpNameServer] 192.168.128.1
Tcpip .. Interfaces 50DB7EB4-8FEB-4CCE-8146-FE5CF54BE8A1: [DhcpNameServer] 192.168.128.1

Internet Explorer:
==================
HKU S-1-5-21-2115989572-3578079797-2401233899-1001 Software Microsoft Internet Explorer Main, page de démarrage Redirection Cache = hxxp: //www.msn.com/? Ocid = iehp
BHO: HP Network Check Helper -> E76FD755-C1BA-4DCB-9F13-99BD91223ADE -> C: Program Files (x86) Hewlett-Packard HP Support Framework Resources HPNetworkCheck HPNetworkCheckPluginx64.dll [2013-08-28] (Société Hewlett-Packard -> Hewlett-Packard)
BHO-x32: HP Network Check Helper -> E76FD755-C1BA-4DCB-9F13-99BD91223ADE -> C: Program Files (x86) Hewlett-Packard HP Support Framework Resources HPNetworkCheck HPNetworkCheckPlugin.dll [2013-08-28] (Société Hewlett-Packard -> Hewlett-Packard)

==================== Services (liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

Serveur R2 Cachedrv; C: Program Files Hewlett-Packard SimplePass cachesrvr.exe [109568 2013-10-14] () [File not signed]
R2 CyberLink PowerDVD 12 Media Monitor Monitor Service; C: Program Files (x86) CyberLink PowerDVD12 Kernel DMS CLMSMonitorServicePDVD12.exe [77576 2013-10-18] (CyberLink Corp. -> CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C: Program Files (x86) CyberLink PowerDVD12 Kernel DMS CLMSServerPDVD12.exe [298760 2013-10-18] (CyberLink Corp. -> CyberLink)
R2 HP Support Assistant Service; C: Program Files (x86) Hewlett-Packard HP Support Framework hpsa_service.exe [92160 2014-01-13] (Société Hewlett-Packard) [File not signed]
R2 HPWMISVC; C: Program Files (x86) Hewlett-Packard HP System Event HPWMISVC.exe [1039160 2013-12-25] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
Interface de service de licence de capacité Intel® R2; C: Program Files Intel TXE Components TCS HeciServer.exe [733696 2013-07-01] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C: Program Files Intel TXE Components TCS SocketHeciServer.exe [822232 2013-07-01] (Service Intel® Trusted Connect -> Intel® Corporation)
R2 ISCTAgent; C: Program Files Intel Intel® Smart Connect Technology Agent iSCTAgent.exe [200168 2013-12-04] (Logiciel Intel® Smart Connect ->)
R2 omniserv; C: Program Files Hewlett-Packard SimplePass OmniServ.exe [87552 2013-10-14] (Softex Inc.) [File not signed]
R2 RtkAudioService; C: Program Files Realtek Audio HDA RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R3 WdNisSvc; C: Program Files Windows Defender NisSrv.exe [348392 2020-05-16] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C: Program Files Windows Defender MsMpEng.exe [23824 2020-05-16] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (sur liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

Accéléromètre R3; C: Windows system32 DRIVERS Accelerometer.sys [43320 2013-07-23] (Société Hewlett-Packard -> Hewlett-Packard)
R3 GPIO; C: Windows System32 drivers iaiogpioe.sys [31232 2013-11-11] (Éditeur de compatibilité matérielle Microsoft Windows -> Intel Corporation)
R0 hpdskflt; C: Windows System32 DRIVERS hpdskflt.sys [30520 2013-07-23] (Société Hewlett-Packard -> Hewlett-Packard)
R3 iaioi2c; C: Windows System32 drivers iaioi2ce.sys [67584 2013-11-11] (Éditeur de compatibilité matérielle Microsoft Windows -> Intel Corporation)
R3 ikbevent; C: Windows system32 DRIVERS ikbevent.sys [21408 2013-08-13] (Logiciel Intel® Smart Connect ->)
R3 imsevent; C: Windows system32 DRIVERS imsevent.sys [21920 2013-08-13] (Logiciel Intel® Smart Connect ->)
R3 INETMON; C: Windows System32 Drivers INETMON.sys [29088 2013-08-13] (Logiciel Intel® Smart Connect ->)
R3 ISCT; C: Windows System32 drivers ISCTD64.sys [46568 2013-08-13] (Logiciel Intel® Smart Connect ->)
R0 MBI; C: Windows System32 drivers MBI.sys [29464 2013-10-11] (Logiciel Intel® -> Intel Corporation)
R3 netr28x; C: Windows system32 DRIVERS netr28x.sys [2483376 2013-11-26] (Mediatek Inc. -> Ralink Technology, Corp.)
S3 rtbth; C: Windows System32 drivers rtbth.sys [1204424 2013-12-24] (Mediatek Inc. -> Ralink Technology, Corp.)
R3 RTSPER; C: Windows system32 DRIVERS RtsPer.sys [445656 2013-11-08] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 SensorsServiceDriver; C: Windows system32 DRIVERS WUDFRd.sys [230912 2013-08-22] (Microsoft Windows -> Microsoft Corporation)
S3 SmbDrv; C: Windows System32 drivers Smb_driver_AMDASF.sys [29936 2014-01-06] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C: Windows system32 DRIVERS Smb_driver_Intel.sys [31472 2014-01-06] (Synaptics Incorporated -> Synaptics Incorporated)
R3 TXEIx64; C: Windows System32 drivers TXEIx64.sys [87568 2013-07-01] (Intel Corporation – Groupe des composants clients -> Intel Corporation)
R3 VirtualButtons; C: Windows System32 drivers VirtualButtons.sys [32024 2013-10-04] (Logiciel Intel® -> Intel Corporation)
S0 WdBoot; C: Windows System32 drivers WdBoot.sys [35856 2020-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C: Windows System32 drivers WdFilter.sys [236888 2020-05-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C: Windows System32 Drivers WdNisDrv.sys [124760 2020-05-16] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver; C: Windows System32 drivers WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (liste blanche) ====================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

==================== Un mois (créé) ===================

(Si une entrée est incluse dans la liste de correctifs, le fichier / dossier sera déplacé.)

2020-05-17 17:22 – 2020-05-17 17:23 – 000016330 _____ C: Users againfromsquareone Desktop FRST.txt
2020-05-17 17:21 – 2020-05-17 17:21 – 002286080 _____ (Farbar) C: Users againfromsquareone Desktop FRST64.exe
2020-05-17 17:17 – 2020-05-17 17:22 – 000000000 ____D C: FRST
2020-05-17 07:36 – 2020-05-17 16:52 – 000000000 ____D C: Users againfromsquareone Documents Youcam
2020-05-16 23:02 – 2020-05-16 23:02 – 000004046 _____ C: Windows system32 Tasks HPGenoobeReminder
2020-05-16 22:54 – 2020-05-16 22:54 – 000000000 ____H C: Users againfromsquareone Documents Default.rdp
2020-05-16 22:50 – 2020-05-16 22:50 – 000000000 ____D C: Users againfromsquareone AppData Roaming hpqlog
2020-05-16 22:42 – 2020-05-17 11:09 – 000003600 _____ C: Windows system32 Tasks Optimize Start Menu Cache Files-S-1-5-21-2115989572-3578079797-2401233899-1001
2020-05-16 22:41 – 2020-05-16 23:01 – 000000000 ____D C: Users againfromsquareone AppData Roaming Hewlett-Packard
2020-05-16 22:39 – 2020-05-16 22:39 – 000000000 ____D C: Users againfromsquareone AppData Local CyberLink
2020-05-16 22:38 – 2020-05-16 23:02 – 000000000 ____D C: Users againfromsquareone AppData Local Hewlett-Packard
2020-05-16 22:38 – 2020-05-16 22:38 – 000000000 ____D C: Users againfromsquareone AppData Roaming Synaptics
2020-05-16 22:38 – 2020-05-16 22:38 – 000000000 ____D C: Users againfromsquareone AppData Local Power2Go8
2020-05-16 22:38 – 2020-05-16 22:38 – 000000000 ____D C: ProgramData Synaptics
2020-05-16 22:37 – 2020-05-16 23:01 – 000000000 ____D C: Users againfromsquareone AppData Local Packages
2020-05-16 22:37 – 2020-05-16 22:37 – 000001453 _____ C: Users againfromsquareone AppData Roaming Microsoft Windows Menu Démarrer Programmes Internet Explorer.lnk
2020-05-16 22:37 – 2020-05-16 22:37 – 000000020 ___SH C: Users againfromsquareone ntuser.ini
2020-05-16 22:37 – 2020-05-16 22:37 – 000000000 ____D C: Users againfromsquareone AppData Roaming Adobe
2020-05-16 22:37 – 2020-05-16 22:37 – 000000000 ____D C: Users againfromsquareone AppData Local VirtualStore
2020-05-16 22:37 – 2020-05-16 22:37 – 000000000 ____D C: Users againfromsquareone
2020-05-16 22:32 – 2020-05-16 22:32 – 000000000 __RHD C: Users Public AccountPictures
2020-05-16 22:25 – 2020-05-16 22:25 – 000002324 _____ C: Windows system32 Tasks Optimize Start Menu Cache Files-S-1-5-21-2115989572-3578079797-2401233899-500
2020-05-16 22:12 – 2020-05-16 22:12 – 000000058 _____ C: Windows system32 ndCPrepLog
2020-05-16 22:11 – 2014-02-22 08:16 – 000139776 _____ (Microsoft Corporation) C: Windows system32 poqexec.exe
2020-05-16 22:11 – 2014-02-22 07:24 – 000124416 _____ (Microsoft Corporation) C: Windows SysWOW64 poqexec.exe
2020-05-16 21:57 – 2020-05-16 21:57 – 023133184 _____ (Microsoft Corporation) C: Windows system32 mshtml.dll
2020-05-16 21:57 – 2020-05-16 21:57 – 017074688 _____ (Microsoft Corporation) C: Windows SysWOW64 mshtml.dll
2020-05-16 21:56 – 2020-05-16 21:56 – 004189184 _____ (Microsoft Corporation) C: Windows system32 win32k.sys
2020-05-16 21:56 – 2020-05-16 21:56 – 000617472 _____ (Microsoft Corporation) C: Windows SysWOW64 apphelp.dll
2020-05-16 21:56 – 2020-05-16 21:56 – 000545792 _____ (Microsoft Corporation) C: Windows system32 apphelp.dll
2020-05-16 21:56 – 2020-05-16 21:56 – 000007168 _____ (Microsoft Corporation) C: Windows system32 shimeng.dll
2020-05-16 21:55 – 2020-05-16 21:55 – 000586240 _____ (Microsoft Corporation) C: Windows system32 qedit.dll
2020-05-16 21:55 – 2020-05-16 21:55 – 000488448 _____ (Microsoft Corporation) C: Windows SysWOW64 qedit.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 006640640 _____ (Microsoft Corporation) C: Windows system32 mstscax.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 006353960 _____ (Microsoft Corporation) C: Windows system32 sppsvc.exe
2020-05-16 21:54 – 2020-05-16 21:54 – 005770752 _____ (Microsoft Corporation) C: Windows SysWOW64 mstscax.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 004175360 _____ (Microsoft Corporation) C: Windows system32 dbgeng.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 002873344 _____ (Microsoft Corporation) C: Windows SysWOW64 dbgeng.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 002543960 _____ (Microsoft Corporation) C: Windows system32 Drivers tcpip.sys
2020-05-16 21:54 – 2020-05-16 21:54 – 002143960 _____ (Microsoft Corporation) C: Windows SysWOW64 mfcore.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 002133208 _____ (Microsoft Corporation) C: Windows system32 mfcore.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 001928144 _____ (Microsoft Corporation) C: Windows system32 combase.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 001486848 _____ (Microsoft Corporation) C: Windows system32 dbghelp.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 001371824 _____ (Microsoft Corporation) C: Windows SysWOW64 combase.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 001287064 _____ (Microsoft Corporation) C: Windows system32 kernel32.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 001238016 _____ (Microsoft Corporation) C: Windows SysWOW64 dbghelp.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 001057280 _____ (Microsoft Corporation) C: Windows system32 rdvidcrl.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 001036288 _____ (Microsoft Corporation) C: Windows SysWOW64 kernel32.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000855552 _____ (Microsoft Corporation) C: Windows SysWOW64 rdvidcrl.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000764864 _____ (Microsoft Corporation) C: Windows system32 mfmpeg2srcsnk.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000716288 _____ (Microsoft Corporation) C: Windows system32 swprv.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000669352 _____ (Microsoft Corporation) C: Windows SysWOW64 mfmpeg2srcsnk.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000458616 _____ (Microsoft Corporation) C: Windows system32 WerFault.exe
2020-05-16 21:54 – 2020-05-16 21:54 – 000447488 _____ (Microsoft Corporation) C: Windows system32 sppcomapi.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000408480 _____ (Microsoft Corporation) C: Windows SysWOW64 WerFault.exe
2020-05-16 21:54 – 2020-05-16 21:54 – 000407024 _____ (Microsoft Corporation) C: Windows system32 Faultrep.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000386722 _____ C: Windows system32 ApnDatabase.xml
2020-05-16 21:54 – 2020-05-16 21:54 – 000369280 _____ (Microsoft Corporation) C: Windows SysWOW64 Faultrep.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000311640 _____ (Microsoft Corporation) C: Windows system32 Drivers volsnap.sys
2020-05-16 21:54 – 2020-05-16 21:54 – 000249856 _____ (Microsoft Corporation) C: Windows system32 rdpencom.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000233920 _____ (Microsoft Corporation) C: Windows system32 mfps.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000208896 _____ (Microsoft Corporation) C: Windows SysWOW64 rdpencom.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000160256 _____ (Microsoft Corporation) C: Windows system32 DWWIN.EXE
2020-05-16 21:54 – 2020-05-16 21:54 – 000138752 _____ (Microsoft Corporation) C: Windows SysWOW64 DWWIN.EXE
2020-05-16 21:54 – 2020-05-16 21:54 – 000064512 _____ (Microsoft Corporation) C: Windows system32 tsgqec.dll
2020-05-16 21:54 – 2020-05-16 21:54 – 000053248 _____ (Microsoft Corporation) C: Windows SysWOW64 tsgqec.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 013051904 _____ (Microsoft Corporation) C: Windows system32 ieframe.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 011266048 _____ (Microsoft Corporation) C: Windows SysWOW64 ieframe.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 005768704 _____ (Microsoft Corporation) C: Windows system32 jscript9.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 004244480 _____ (Microsoft Corporation) C: Windows SysWOW64 jscript9.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 002765824 _____ (Microsoft Corporation) C: Windows system32 iertutil.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 002334208 _____ (Microsoft Corporation) C: Windows system32 wininet.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 002168320 _____ (Microsoft Corporation) C: Windows SysWOW64 iertutil.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 002041856 _____ (Microsoft Corporation) C: Windows system32 inetcpl.cpl
2020-05-16 21:53 – 2020-05-16 21:53 – 001964032 _____ (Microsoft Corporation) C: Windows SysWOW64 inetcpl.cpl
2020-05-16 21:53 – 2020-05-16 21:53 – 001820160 _____ (Microsoft Corporation) C: Windows SysWOW64 wininet.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 001393664 _____ (Microsoft Corporation) C: Windows system32 urlmon.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 001156096 _____ (Microsoft Corporation) C: Windows SysWOW64 urlmon.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000817664 _____ (Microsoft Corporation) C: Windows system32 ieapfltr.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000708608 _____ (Microsoft Corporation) C: Windows system32 jscript9diag.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000703488 _____ (Microsoft Corporation) C: Windows SysWOW64 ieapfltr.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000627200 _____ (Microsoft Corporation) C: Windows system32 msfeeds.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000553472 _____ (Microsoft Corporation) C: Windows SysWOW64 jscript9diag.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000524288 _____ (Microsoft Corporation) C: Windows SysWOW64 msfeeds.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000218624 _____ (Microsoft Corporation) C: Windows system32 ie4uinit.exe
2020-05-16 21:53 – 2020-05-16 21:53 – 000195584 _____ (Microsoft Corporation) C: Windows system32 msrating.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000164864 _____ (Microsoft Corporation) C: Windows SysWOW64 msrating.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000139264 _____ (Microsoft Corporation) C: Windows system32 ieUnatt.exe
2020-05-16 21:53 – 2020-05-16 21:53 – 000112128 _____ (Microsoft Corporation) C: Windows SysWOW64 ieUnatt.exe
2020-05-16 21:53 – 2020-05-16 21:53 – 000111616 _____ (Microsoft Corporation) C: Windows system32 ieetwcollector.exe
2020-05-16 21:53 – 2020-05-16 21:53 – 000066048 _____ (Microsoft Corporation) C: Windows system32 iesetup.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000061952 _____ (Microsoft Corporation) C: Windows SysWOW64 iesetup.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000053760 _____ (Microsoft Corporation) C: Windows system32 jsproxy.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000051200 _____ (Microsoft Corporation) C: Windows SysWOW64 ieetwproxystub.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000048640 _____ (Microsoft Corporation) C: Windows system32 ieetwproxystub.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000043008 _____ (Microsoft Corporation) C: Windows SysWOW64 jsproxy.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000033792 _____ (Microsoft Corporation) C: Windows system32 iernonce.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000032768 _____ (Microsoft Corporation) C: Windows SysWOW64 iernonce.dll
2020-05-16 21:53 – 2020-05-16 21:53 – 000004096 _____ (Microsoft Corporation) C: Windows system32 ieetwcollectorres.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 004217344 _____ (Microsoft Corporation) C: Windows system32 SyncEngine.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 002804224 _____ (Microsoft Corporation) C: Windows system32 actxprxy.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 001020928 _____ (Microsoft Corporation) C: Windows SysWOW64 actxprxy.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 000919040 _____ (Microsoft Corporation) C: Windows system32 MrmCoreR.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 000870912 _____ (Microsoft Corporation) C: Windows system32 SkyDrive.exe
2020-05-16 21:52 – 2020-05-16 21:52 – 000720384 _____ (Microsoft Corporation) C: Windows system32 SkyDriveTelemetry.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 000628736 _____ (Microsoft Corporation) C: Windows SysWOW64 MrmCoreR.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 000121344 _____ (Microsoft Corporation) C: Windows system32 SkyDriveShell.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 000115712 _____ (Microsoft Corporation) C: Windows system32 winbici.dll
2020-05-16 21:52 – 2020-05-16 21:52 – 000105984 _____ (Microsoft Corporation) C: Windows SysWOW64 SkyDriveShell.dll
2020-05-16 21:51 – 2020-05-16 21:51 – 000018944 _____ (Microsoft Corporation) C: Windows system32 pcaui.exe
2020-05-16 21:51 – 2020-05-16 21:51 – 000017408 _____ (Microsoft Corporation) C: Windows SysWOW64 pcaui.exe
2020-05-16 21:50 – 2020-05-16 21:50 – 013209088 _____ (Microsoft Corporation) C: Windows system32 twinui.dll
2020-05-16 21:50 – 2020-05-16 21:50 – 011702272 _____ (Microsoft Corporation) C: Windows SysWOW64 twinui.dll
2020-05-16 21:50 – 2020-05-16 21:50 – 007416832 _____ (Microsoft Corporation) C: Windows system32 Windows.UI.Search.dll
2020-05-16 21:50 – 2020-05-16 21:50 – 004961792 _____ (Microsoft Corporation) C: Windows SysWOW64 Windows.UI.Search.dll
2020-05-16 21:50 – 2020-05-16 21:50 – 001462216 _____ (Microsoft Corporation) C: Windows system32 propsys.dll
2020-05-16 21:50 – 2020-05-16 21:50 – 001202888 _____ (Microsoft Corporation) C: Windows SysWOW64 propsys.dll
2020-05-16 21:50 – 2020-05-16 21:50 – 001105408 _____ (Microsoft Corporation) C: Windows system32 SearchFolder.dll
2020-05-16 21:50 – 2020-05-16 21:50 – 000830976 _____ (Microsoft Corporation) C: Windows SysWOW64 SearchFolder.dll
2020-05-16 21:50 – 2020-05-16 21:50 – 000009701 _____ C: Windows SysWOW64 connectedsearch-results.searchconnector-ms
2020-05-16 21:50 – 2020-05-16 21:50 – 000009701 _____ C: Windows system32 connectedsearch-results.searchconnector-ms
2020-05-16 21:49 – 2020-05-16 21:49 – 000063488 _____ (Microsoft Corporation) C: Windows system32 Drivers bthmodem.sys
2020-05-16 21:48 – 2020-05-16 21:48 – 021199256 _____ (Microsoft Corporation) C: Windows system32 shell32.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 018643560 _____ (Microsoft Corporation) C: Windows SysWOW64 shell32.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 018576384 _____ (Microsoft Corporation) C: Windows system32 Windows.UI.Xaml.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 013949440 _____ (Microsoft Corporation) C: Windows SysWOW64 Windows.UI.Xaml.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 001720560 _____ (Microsoft Corporation) C: Windows system32 ntdll.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 001530712 _____ (Microsoft Corporation) C: Windows system32 Drivers dxgkrnl.sys
2020-05-16 21:48 – 2020-05-16 21:48 – 001472048 _____ (Microsoft Corporation) C: Windows SysWOW64 ntdll.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 001214976 _____ (Microsoft Corporation) C: Windows system32 schedsvc.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000960512 _____ (Microsoft Corporation) C: Windows system32 MFMediaEngine.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000947712 _____ (Microsoft Corporation) C: Windows system32 reseteng.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000914944 _____ (Microsoft Corporation) C: Windows system32 ReAgent.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000842752 _____ (Microsoft Corporation) C: Windows system32 MsSpellCheckingFacility.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000802816 _____ (Microsoft Corporation) C: Windows SysWOW64 MFMediaEngine.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000770560 _____ (Microsoft Corporation) C: Windows SysWOW64 ReAgent.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000749056 _____ (Microsoft Corporation) C: Windows system32 SettingSyncCore.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000630272 _____ (Microsoft Corporation) C: Windows SysWOW64 MsSpellCheckingFacility.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000628736 _____ (Microsoft Corporation) C: Windows system32 SettingSyncHost.exe
2020-05-16 21:48 – 2020-05-16 21:48 – 000588800 _____ (Microsoft Corporation) C:WindowsSysWOW64SettingSyncCore.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000481944 _____ (Microsoft Corporation) C:Windowssystem32mfsvr.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000478208 _____ (Microsoft Corporation) C:WindowsSysWOW64SettingSyncHost.exe
2020-05-16 21:48 – 2020-05-16 21:48 – 000461312 _____ (Microsoft Corporation) C:Windowssystem32XpsGdiConverter.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000419160 _____ (Microsoft Corporation) C:Windowssystem32hal.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000408576 _____ (Microsoft Corporation) C:Windowssystem32Driversrdbss.sys
2020-05-16 21:48 – 2020-05-16 21:48 – 000382808 _____ (Microsoft Corporation) C:Windowssystem32Driversdxgmms1.sys
2020-05-16 21:48 – 2020-05-16 21:48 – 000381168 _____ (Microsoft Corporation) C:WindowsSysWOW64mfsvr.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000376320 _____ (Microsoft Corporation) C:Windowssystem32pnrpsvc.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000336896 _____ (Microsoft Corporation) C:WindowsSysWOW64XpsGdiConverter.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000325464 _____ (Microsoft Corporation) C:Windowssystem32DriversUSBXHCI.SYS
2020-05-16 21:48 – 2020-05-16 21:48 – 000303616 _____ (Microsoft Corporation) C:Windowssystem32sti.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000218112 _____ (Microsoft Corporation) C:WindowsSysWOW64sti.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000206336 _____ (Microsoft Corporation) C:Windowssystem32WSClient.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000178176 _____ (Microsoft Corporation) C:Windowssystem32easwrt.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000174592 _____ (Microsoft Corporation) C:WindowsSysWOW64WSClient.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000140800 _____ (Microsoft Corporation) C:WindowsSysWOW64easwrt.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000138240 _____ C:Windowssystem32OEMLicense.dll
2020-05-16 21:48 – 2020-05-16 21:48 – 000131160 _____ (Microsoft Corporation) C:Windowssystem32easinvoker.exe
2020-05-16 21:48 – 2020-05-16 21:48 – 000103936 _____ C:WindowsSysWOW64OEMLicense.dll
2020-05-16 21:46 – 2020-05-16 21:46 – 004604416 _____ (Microsoft Corporation) C:Windowssystem32d2d1.dll
2020-05-16 21:46 – 2020-05-16 21:46 – 003936256 _____ (Microsoft Corporation) C:WindowsSysWOW64d2d1.dll
2020-05-16 21:46 – 2020-05-16 21:46 – 002397184 _____ (Microsoft Corporation) C:Windowssystem32d3d10warp.dll
2020-05-16 21:46 – 2020-05-16 21:46 – 002071552 _____ (Microsoft Corporation) C:WindowsSysWOW64d3d10warp.dll
2020-05-16 21:44 – 2020-05-16 21:44 – 000548864 _____ (Microsoft Corporation) C:Windowssystem32vbscript.dll
2020-05-16 21:44 – 2020-05-16 21:44 – 000454656 _____ (Microsoft Corporation) C:WindowsSysWOW64vbscript.dll
2020-05-16 21:43 – 2020-05-16 21:43 – 001113040 _____ (Microsoft Corporation) C:Windowssystem32KernelBase.dll
2020-05-16 21:43 – 2020-05-16 21:43 – 000835584 _____ (Microsoft Corporation) C:WindowsSysWOW64KernelBase.dll
2020-05-16 21:43 – 2020-05-16 21:43 – 000236888 _____ (Microsoft Corporation) C:Windowssystem32DriversWdFilter.sys
2020-05-16 21:43 – 2020-05-16 21:43 – 000124760 _____ (Microsoft Corporation) C:Windowssystem32DriversWdNisDrv.sys
2020-05-16 21:43 – 2020-05-16 21:43 – 000035856 _____ (Microsoft Corporation) C:Windowssystem32DriversWdBoot.sys
2020-05-16 21:42 – 2020-05-16 21:42 – 000570880 _____ (Microsoft Corporation) C:Windowssystem32msdrm.dll
2020-05-16 21:42 – 2020-05-16 21:42 – 000444928 _____ (Microsoft Corporation) C:WindowsSysWOW64msdrm.dll
2020-05-16 21:40 – 2014-03-19 15:29 – 000035397 _____ C:WindowsCore.xml
2020-05-16 21:28 – 2020-05-16 21:28 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsHP
2020-05-16 21:27 – 2020-05-16 21:27 – 000003160 _____ C:Windowssystem32TasksCLVDLauncher
2020-05-16 21:27 – 2020-05-16 21:27 – 000003160 _____ C:Windowssystem32TasksCLMLSvc_P2G8
2020-05-16 21:27 – 2020-05-16 21:27 – 000000000 __RSH C:WindowsSysWOW64Drivers103C_HP_cNB_Pavilion 11 x360 PC_Y5335KV_0U_QCND5040MRB_E754181-002_4A_I2209_SHP_V57.37_BF.15_T141111_W8101-0_L409_M3985_J500_7Intel_8678_92.16_#200516_N18143290;10EC8136_(F9J18UA#ABA)_XMOBILE_CN10_Z.MRK
2020-05-16 21:27 – 2020-05-16 21:27 – 000000000 __RSH C:Windowssystem32Drivers103C_HP_cNB_Pavilion 11 x360 PC_Y5335KV_0U_QCND5040MRB_E754181-002_4A_I2209_SHP_V57.37_BF.15_T141111_W8101-0_L409_M3985_J500_7Intel_8678_92.16_#200516_N18143290;10EC8136_(F9J18UA#ABA)_XMOBILE_CN10_Z.MRK
2020-05-16 21:27 – 2020-05-16 21:27 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSecurity and Protection
2020-05-16 21:27 – 2013-03-05 15:01 – 000091712 _____ (CyberLink) C:Windowssystem32DriversCLVirtualDrive.sys
2020-05-16 21:26 – 2020-05-16 21:58 – 000000000 ____D C:UsersPublicDocumentsCyberLink
2020-05-16 21:26 – 2020-05-16 21:58 – 000000000 ____D C:ProgramDataDocumentsCyberLink
2020-05-16 21:26 – 2020-05-16 21:26 – 000000000 ____D C:UsersPublicCyberLink
2020-05-16 21:24 – 2020-05-16 21:24 – 000003156 _____ C:Windowssystem32TasksYCMServiceAgent
2020-05-16 21:24 – 2020-05-16 21:24 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsCommunication and Chat
2020-05-16 21:24 – 2013-10-14 21:49 – 000041704 _____ (CyberLink Corporation) C:Windowssystem32Driversclwvd.sys
2020-05-16 21:23 – 2020-05-16 22:41 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsProductivity and Tools
2020-05-16 21:23 – 2020-05-16 22:16 – 000000000 ____D C:ProgramDataCyberLink
2020-05-16 21:21 – 2020-05-16 22:47 – 000000000 ____D C:Program Files (x86)CyberLink
2020-05-16 21:21 – 2020-05-16 21:36 – 000000000 ____D C:ProgramDataTemp
2020-05-16 21:21 – 2020-05-16 21:36 – 000000000 ____D C:ProgramDatainstall_clap
2020-05-16 21:20 – 2020-05-16 21:20 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsHP Help and Support
2020-05-16 21:19 – 2020-05-16 21:21 – 000000000 ____D C:Windowssystem32TasksHewlett-Packard
2020-05-16 21:17 – 2020-05-16 21:17 – 000017034 _____ C:Windowssystem32results.xml
2020-05-16 21:17 – 2020-05-16 21:17 – 000000000 ____D C:ProgramDataC19CA186-4F06-4E22-A1E6-6BAB4723A0DE
2020-05-16 21:16 – 2020-05-16 21:16 – 000000000 ____H C:Windowssystem32DriversMsft_Kernel_INETMON_01011.Wdf
2020-05-16 21:16 – 2013-08-13 19:02 – 000029088 _____ C:Windowssystem32DriversINETMON.sys
2020-05-16 21:15 – 2020-05-16 21:15 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsIntel
2020-05-16 21:15 – 2020-05-16 21:15 – 000000000 ____D C:ProgramDataApple
2020-05-16 21:15 – 2013-08-10 02:44 – 000226816 _____ (Hewlett-Packard) C:Windowssystem32hpbprtmonui.dll
2020-05-16 21:15 – 2013-08-10 02:43 – 000424960 _____ (Hewlett-Packard) C:Windowssystem32hpbrprtmon.dll
2020-05-16 21:15 – 2013-08-10 02:42 – 000404992 _____ (Hewlett-Packard) C:Windowssystem32hpbprtmon.dll
2020-05-16 21:13 – 2020-05-16 21:13 – 000002990 _____ C:Windowssystem32TasksSynaptics TouchPad Enhancements
2020-05-16 21:13 – 2020-05-16 21:13 – 000000000 ____H C:Windowssystem32DriversMsft_Kernel_SynTP_01011.Wdf
2020-05-16 21:13 – 2020-05-16 21:13 – 000000000 ____H C:Windowssystem32DriversMsft_Kernel_Smb_driver_Intel_01011.Wdf
2020-05-16 21:13 – 2020-05-16 21:13 – 000000000 ____D C:WindowsSysWOW64sda
2020-05-16 21:13 – 2020-05-16 21:13 – 000000000 ____D C:Program FilesSynaptics
2020-05-16 21:13 – 2013-11-08 19:02 – 000445656 _____ (Realsil Semiconductor Corporation) C:Windowssystem32DriversRtsPer.sys
2020-05-16 21:13 – 2013-04-25 22:12 – 009889352 _____ (Realtek Semiconductor Corp.) C:WindowsSysWOW64RtsPerIcon.dll
2020-05-16 21:12 – 2020-05-16 22:47 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsMusic, Photos and Videos
2020-05-16 21:11 – 2020-05-16 21:13 – 000000000 ___HD C:Program Files (x86)Temp
2020-05-16 21:11 – 2020-05-16 21:11 – 000000000 ____H C:Windowssystem32DriversMsft_User_SensorsServiceDriver_01_11_00.Wdf
2020-05-16 21:11 – 2020-05-16 21:11 – 000000000 ____H C:Windowssystem32DriversMsft_User_SensorsHIDClassDriver_01_11_00.Wdf
2020-05-16 21:11 – 2020-05-16 21:11 – 000000000 ____D C:WindowsSysWOW64RTCOM
2020-05-16 21:11 – 2020-05-16 21:11 – 000000000 ____D C:Windowssystem32SRSLabs
2020-05-16 21:11 – 2020-05-16 21:11 – 000000000 ____D C:Program FilesRealtek
2020-05-16 21:11 – 2014-01-13 23:49 – 003830360 _____ (Realtek Semiconductor Corp.) C:Windowssystem32DriversRTKVHD64.sys
2020-05-16 21:11 – 2014-01-13 23:00 – 047783936 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoRes64.dat
2020-05-16 21:11 – 2014-01-13 21:28 – 000721325 _____ C:Windowssystem32DriversRTAIODAT.DAT
2020-05-16 21:11 – 2014-01-10 19:08 – 000156888 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoInstII64.dll
2020-05-16 21:11 – 2014-01-07 21:30 – 002787032 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkAPO64.dll
2020-05-16 21:11 – 2014-01-03 20:02 – 001022680 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkApi64.dll
2020-05-16 21:11 – 2013-12-31 15:16 – 002825432 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtPgEx64.dll
2020-05-16 21:11 – 2013-12-27 18:58 – 000624344 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtDataProc64.dll
2020-05-16 21:11 – 2013-12-04 20:27 – 001958616 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTSnMg64.cpl
2020-05-16 21:11 – 2013-11-25 21:20 – 002080472 _____ (Realtek Semiconductor Corp.) C:WindowsRtlExUpd.dll
2020-05-16 21:11 – 2013-11-14 19:49 – 001286872 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTCOM64.dll
2020-05-16 21:11 – 2013-11-11 13:54 – 000067584 _____ (Intel Corporation) C:Windowssystem32Driversiaioi2ce.sys
2020-05-16 21:11 – 2013-10-16 07:43 – 000209096 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAC64.dll
2020-05-16 21:11 – 2013-10-11 16:47 – 000113576 _____ (Real Sound Lab SIA) C:Windowssystem32CONEQMSAPOGUILibrary.dll
2020-05-16 21:11 – 2012-03-08 15:47 – 000108640 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAR64.dll
2020-05-16 21:11 – 2011-12-20 19:32 – 000331880 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtlCPAPI64.dll
2020-05-16 21:11 – 2011-11-22 20:28 – 000014952 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCoLDR64.dll
2020-05-16 21:11 – 2010-11-08 11:31 – 000375128 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEP64A.dll
2020-05-16 21:11 – 2010-11-08 11:31 – 000310104 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DHT64.dll
2020-05-16 21:11 – 2010-11-08 11:31 – 000310104 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DAA64.dll
2020-05-16 21:11 – 2010-11-08 11:31 – 000204120 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEED64A.dll
2020-05-16 21:11 – 2010-11-08 11:31 – 000101208 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEL64A.dll
2020-05-16 21:11 – 2010-11-08 11:31 – 000078680 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEG64A.dll
2020-05-16 21:11 – 2010-11-03 22:30 – 000149608 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCfg64.dll
2020-05-16 21:11 – 2009-11-24 13:55 – 000518896 _____ (SRS Labs, Inc.) C:Windowssystem32SRSTSX64.dll
2020-05-16 21:11 – 2009-11-24 13:55 – 000155888 _____ (SRS Labs, Inc.) C:Windowssystem32SRSWOW64.dll
2020-05-16 21:10 – 2020-05-16 21:16 – 000000000 ____D C:ProgramDataIntel
2020-05-16 21:10 – 2013-11-11 13:54 – 000031232 _____ (Intel Corporation) C:Windowssystem32Driversiaiogpioe.sys
2020-05-16 21:09 – 2020-05-16 21:13 – 000000000 ____D C:Program Files (x86)Realtek
2020-05-16 21:09 – 2020-05-16 21:09 – 000000000 ____D C:WindowsHewlett-Packard
2020-05-16 21:09 – 2013-08-15 18:28 – 000830680 _____ (Realtek ) C:Windowssystem32DriversRt630x64.sys
2020-05-16 21:09 – 2013-08-15 18:28 – 000074456 _____ (Realtek Semiconductor Corporation) C:Windowssystem32RtNicProp64.dll
2020-05-16 21:08 – 2020-05-16 22:48 – 000000000 ___HD C:Program Files (x86)InstallShield Installation Information
2020-05-16 21:08 – 2020-05-16 21:39 – 000000000 ____D C:Program Files (x86)Hewlett-Packard
2020-05-16 21:08 – 2020-05-16 21:08 – 000000000 ____D C:ProgramDataRalink Driver
2020-05-16 21:08 – 2020-05-16 21:08 – 000000000 ____D C:ProgramDataPackage Cache
2020-05-16 21:08 – 2013-11-26 19:34 – 002483376 _____ (Ralink Technology, Corp.) C:Windowssystem32Driversnetr28x.sys
2020-05-16 21:08 – 2013-10-08 21:58 – 000013973 _____ C:Windowssystem32RaCoInst.dat
2020-05-16 21:08 – 2013-07-03 12:46 – 000331568 _____ (Ralink Technology, Inc.) C:Windowssystem32RaCoInstx.dll
2020-05-16 21:06 – 2020-05-17 16:48 – 000000032 _____ C:Windows
2020-05-16 21:06 – 2020-05-16 21:06 – 000000000 _____ C:Windowssystem32
2020-05-16 21:05 – 2020-05-16 21:14 – 000000000 ____D C:Program FilesIntel
2020-05-16 21:05 – 2013-11-25 20:38 – 000064000 _____ (Khronos Group) C:Windowssystem32OpenCL.DLL
2020-05-16 21:05 – 2013-11-25 20:38 – 000060416 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.DLL
2020-05-16 21:04 – 2020-05-16 22:14 – 000000000 ____D C:ProgramDataHewlett-Packard
2020-05-16 21:03 – 2020-05-16 21:13 – 000000000 ____D C:Program Files (x86)Intel
2020-05-16 21:03 – 2020-05-16 21:04 – 000000000 ____D C:Intel
2020-05-16 21:03 – 2013-10-28 23:37 – 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:WindowsSysWOW64CSVer.dll
2020-05-16 20:59 – 2020-05-16 22:20 – 000003596 _____ C:Windowssystem32TasksOptimize Start Menu Cache Files-S-1-5-21-1576211782-1060819713-4044840146-500
2020-05-16 19:51 – 2020-05-16 20:39 – 000000000 ____D C:ESD
2020-05-16 19:42 – 2020-05-16 19:42 – 000000000 ___HD C:$Windows.~WS
2020-05-16 19:42 – 2020-05-16 19:42 – 000000000 ____D C:$WINDOWS.~BT

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-17 17:11 – 2013-08-22 11:36 – 000000000 ____D C:Windowssystem32FxsTmp
2020-05-17 16:54 – 2013-08-26 02:09 – 000956412 _____ C:Windowssystem32PerfStringBackup.INI
2020-05-17 16:54 – 2013-08-22 09:36 – 000000000 ____D C:WindowsInf
2020-05-17 16:50 – 2013-08-22 10:45 – 000000006 ____H C:WindowsTasksSA.DAT
2020-05-17 16:49 – 2013-08-22 09:25 – 000262144 ___SH C:Windowssystem32configBBI
2020-05-16 22:55 – 2013-08-22 11:36 – 000000000 ____D C:WindowsAppReadiness
2020-05-16 22:50 – 2013-08-22 11:36 – 000000000 ___HD C:Program FilesWindowsApps
2020-05-16 22:37 – 2013-08-31 22:03 – 000000000 ___HD C:SYSTEM.SAV
2020-05-16 22:29 – 2013-08-22 11:36 – 000000000 ____D C:Windowsrescache
2020-05-16 22:27 – 2013-08-31 23:49 – 000000000 ____D C:SWSetup
2020-05-16 22:21 – 2013-08-22 09:36 – 000000000 ____D C:Windowssystem32Sysprep
2020-05-16 22:11 – 2013-08-22 11:20 – 000000000 ____D C:WindowsCbsTemp
2020-05-16 21:58 – 2013-08-22 11:36 – 000262144 _____ C:Windowssystem32configBCD-Template
2020-05-16 21:58 – 2013-08-22 10:44 – 000348936 _____ C:Windowssystem32FNTCACHE.DAT
2020-05-16 21:56 – 2013-08-22 11:38 – 000693240 _____ (Adobe Systems Incorporated) C:WindowsSysWOW64FlashPlayerApp.exe
2020-05-16 21:56 – 2013-08-22 11:38 – 000105464 _____ (Adobe Systems Incorporated) C:WindowsSysWOW64FlashPlayerCPLApp.cpl
2020-05-16 21:52 – 2013-08-22 11:36 – 000000000 ____D C:WindowsMediaViewer
2020-05-16 21:52 – 2013-08-22 11:36 – 000000000 ____D C:WindowsFileManager
2020-05-16 21:52 – 2013-08-22 11:36 – 000000000 ____D C:WindowsCamera
2020-05-16 21:50 – 2013-08-22 11:36 – 000000000 ___RD C:WindowsToastData
2020-05-16 21:43 – 2013-08-22 11:36 – 000000000 ____D C:Program FilesWindows Defender
2020-05-16 21:43 – 2013-08-22 11:36 – 000000000 ____D C:Program Files (x86)Windows Defender
2020-05-16 21:41 – 2014-03-19 14:55 – 000000012 _____ C:WindowsCSUP.txt
2020-05-16 21:40 – 2013-08-22 11:36 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2020-05-16 21:37 – 2013-12-16 17:48 – 000000000 ____D C:Program FilesHewlett-Packard
2020-05-16 21:06 – 2013-08-22 11:36 – 000000000 ____D C:Program FilesCommon Filesmicrosoft shared
2020-05-16 20:40 – 2013-08-22 11:36 – 000000000 ____D C:Windowssystem32NDF
2020-05-16 20:39 – 2013-08-26 02:57 – 000000000 ____D C:WindowsPanther

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Edited by jaso334048, 17 May 2020 – 04:39 PM.

Click to rate this post!
[Total: 0 Average: 0]

Commentaires

Laisser un commentaire

Votre commentaire sera révisé par les administrateurs si besoin.