Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu z FRST

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Twig
Návštěvník
Návštěvník
Příspěvky: 58
Registrován: 24 led 2007 21:17
Kontaktovat uživatele:
Kontaktovat uživatele Twig

Prosím o kontrolu logu z FRST

#1 Příspěvek od Twig »

dobrý den,
Prosím o kontrolu logu z FRST. Dochází k samovolnému spouštění oken v prohlížeči google chrome.
Překročen max. počet znaků, proto odesílám i druhý soubor v zkomprimovaný. K zavirování došlo nejspíše dne 3. 10. 2015.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:03-10-2015
Ran by U62130 (administrator) on W-SK-N00050 (04-10-2015 10:47:21)
Running from C:\Users\u62130\Downloads
Loaded Profiles: Administrator & U62130 & (Available Profiles: Administrator & U62130)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(InstallMonetizer) C:\Program Files (x86)\Shop and Save Up\de54e495-805b-4d68-bf2b-ab58faabf525-6.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Identity Agent\IdentityAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Google) C:\Program Files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Users\u62130\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Program Files (x86)\HP HD Webcam [Fixed]\Monitor.exe
() C:\Program Files (x86)\Astaro\Astaro Secure Client\NcpBudgetGui.exe
() C:\Program Files (x86)\Astaro\Astaro Secure Client\rwsrsu.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(truconneXion, a. s.) C:\AuditPro\SCAN.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
() C:\Program Files (x86)\Samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXSPMGT.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IFXTCS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Identity Agent\MADService.exe
() C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
(IBM Corp) C:\Program Files (x86)\lotus\notes\ntmulti.exe
(NCP engineering GmbH) C:\Program Files (x86)\Astaro\Astaro Secure Client\ncpclcfg.exe
(NCP Engineering GmbH) C:\Program Files (x86)\Astaro\Astaro Secure Client\ncprwsnt.exe
() C:\Program Files (x86)\Astaro\Astaro Secure Client\NCPSEC.EXE
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe
() C:\Program Files (x86)\Astaro\Astaro Secure Client\rwsrsu.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Bin\ccSvcHst.exe
(ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Ericsson AB) C:\Program Files (x86)\Ericsson\Mobile Broadband Drivers\WMCore\mini_WMCore.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Bin\ccSvcHst.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Infineon Technologies AG) C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\PSDrt.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPConnectionManager.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSDKHelperx64.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Piriform Ltd) C:\Program Files\Defraggler\Defraggler64.exe
() C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
() C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
(InstallMonetizer) C:\Program Files (x86)\Shop and Save Up\de54e495-805b-4d68-bf2b-ab58faabf525-1-6.exe
(InstallMonetizer) C:\Program Files (x86)\Shop and Save Up\de54e495-805b-4d68-bf2b-ab58faabf525-10.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Bin\SymCorpUI.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Bin\SmcGui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MfeEpePcMonitor] => C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [200704 2013-02-01] ()
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-07-01] (IDT, Inc.)
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2816240 2014-09-14] (Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-23] (Apple Inc.)
HKLM-x32\...\Run: [File Sanitizer] => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12277248 2011-08-26] (Hewlett-Packard)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [112408 2013-07-01] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-26] (Intel Corporation)
HKLM-x32\...\Run: [HP HD Webcam [Fixed]_Monitor] => C:\Program Files (x86)\HP HD Webcam [Fixed]\monitor.exe [267128 2010-11-26] ()
HKLM-x32\...\Run: [IFXSPMGTx] => c:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1126264 2013-07-02] (Infineon Technologies AG)
HKLM-x32\...\Run: [NcpBudgetGui] => C:\Program Files (x86)\Astaro\Astaro Secure Client\NcpBudgetGui.exe [968192 2009-11-05] ()
HKLM-x32\...\Run: [NcpPopup] => C:\Program Files (x86)\Astaro\Astaro Secure Client\ncppopup.exe [578560 2009-08-26] ()
HKLM-x32\...\Run: [NcpMonitor] => C:\Program Files (x86)\Astaro\Astaro Secure Client\ncpmon.exe [6587904 2009-11-23] (NCP engineering GmbH)
HKLM-x32\...\Run: [NcpRsuGui] => C:\Program Files (x86)\Astaro\Astaro Secure Client\rwsrsu.exe [819712 2009-10-12] ()
HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2013-07-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-05-23] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [334240 2012-09-12] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IFXSPMGT] => C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1126264 2013-07-02] (Infineon Technologies AG)
HKLM-x32\...\Run: [DsMgr] => C:\Program Files (x86)\Hewlett-Packard\HP GPS and Location\dsMgr.exe [93240 2011-04-20] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-09-23] (Apple Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\DeviceNP-x32: DeviceNP.dll [X]
HKU\S-1-5-21-2326126467-407937288-474921760-13144\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152 2015-08-14] (Tonec Inc.)
HKU\S-1-5-21-2326126467-407937288-474921760-13144\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-2326126467-407937288-474921760-13144\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2326126467-407937288-474921760-13144\...\Run: [cz.seznam.software.autoupdate] => C:\Users\u62130\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2326126467-407937288-474921760-13144\...\Run: [cz.seznam.software.szndesktop] => C:\Users\u62130\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-2326126467-407937288-474921760-13144\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries)
Lsa: [Notification Packages] EpePcNp64 DPPassFilter scecli
ShellIconOverlayIdentifiers: [! IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\windows\system32\AcSignIcon.dll [2011-02-03] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2011-11-29]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Google Calendar Sync.lnk [2014-08-05]
ShortcutTarget: Google Calendar Sync.lnk -> C:\Program Files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe (Google)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

AutoConfigURL: [S-1-5-21-1717934716-1901788183-2191387696-500] => http://proxy.sec.trz.cz/proxy.pac
AutoConfigURL: [S-1-5-21-2326126467-407937288-474921760-15001] => http://proxy.sec.trz.cz/proxy.pac
Tcpip\Parameters: [DhcpNameServer] 212.80.66.7 212.80.66.8
Tcpip\..\Interfaces\{9A0FA6D1-DD9B-44F6-BD2D-65F184D04FBB}: [DhcpNameServer] 212.80.66.7 212.80.66.8

Internet Explorer:
==================
HKU\S-1-5-21-2326126467-407937288-474921760-13144\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-1717934716-1901788183-2191387696-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKU\S-1-5-21-1717934716-1901788183-2191387696-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://www.bing.com?pc=CMNTDF
HKU\S-1-5-21-1717934716-1901788183-2191387696-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-1717934716-1901788183-2191387696-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKU\S-1-5-21-1717934716-1901788183-2191387696-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-2326126467-407937288-474921760-12472\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKU\S-1-5-21-2326126467-407937288-474921760-12472\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://www.bing.com?pc=CMNTDF
HKU\S-1-5-21-2326126467-407937288-474921760-12472\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-2326126467-407937288-474921760-13144\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKU\S-1-5-21-2326126467-407937288-474921760-13144\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-2326126467-407937288-474921760-15001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/en/uk/business/securit ... /index.jsp
HKU\S-1-5-21-2326126467-407937288-474921760-15001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1717934716-1901788183-2191387696-1001 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKU\S-1-5-21-1717934716-1901788183-2191387696-1001 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-07-08] (Internet Download Manager, Tonec Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-07-08] (Internet Download Manager, Tonec Inc.)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-08-26] (Hewlett-Packard)
BHO-x32: Symantec Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\bin\IPS\IPSBHO.DLL [2015-08-27] (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Handler-x32: saphtmlp - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files (x86)\sap\frontend\sapgui\saphtmlp.dll [2006-12-29] (SAP AG, Walldorf)
Handler-x32: sapr3 - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files (x86)\sap\frontend\sapgui\saphtmlp.dll [2006-12-29] (SAP AG, Walldorf)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=14438909 ... NEAB812831

FireFox:
========
FF ProfilePath: C:\Users\u62130\AppData\Roaming\Mozilla\Firefox\Profiles\v3sshdwg.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-18] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2015-06-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-18] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-02-27] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2011-04-14] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-03] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2015-06-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2326126467-407937288-474921760-13144: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2015-06-08] (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\istartsurf.xml [2015-10-03]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml [2011-09-29]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\mystartsearch.xml [2015-10-03]
FF Extension: No Name - C:\Users\u62130\AppData\Roaming\Mozilla\Firefox\Profiles\v3sshdwg.default\Extensions\deskCutv2@gmail.com [2015-10-03]
FF Extension: Shop and Save Up - C:\Users\u62130\AppData\Roaming\Mozilla\Firefox\Profiles\v3sshdwg.default\Extensions\ffddf830-f24b-489e-9e90-a42d11893b1c@gmail.com [2015-10-03]
FF Extension: Seznam lištička - C:\Users\u62130\AppData\Roaming\Mozilla\Firefox\Profiles\v3sshdwg.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2015-07-03]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} [2012-06-12]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2012-06-13]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2012-09-03]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-06-30]
FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\u62130\AppData\Roaming\Mozilla\Firefox\Profiles\v3sshdwg.default\extensions\deskCutv2@gmail.com
FF HKU\S-1-5-21-2326126467-407937288-474921760-13144\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\u62130\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\u62130\AppData\Roaming\IDM\idmmzcc5 [2015-08-18]
FF HKU\S-1-5-21-2326126467-407937288-474921760-13144\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\u62130\AppData\Roaming\IDM\idmmzcc5
FF Extension: No Name - C:\Users\u62130\AppData\Roaming\Mozilla\Firefox\Profiles\v3sshdwg.default\extensions\6a1a03975fde4c8690f6b883c36bc1@7d88519bfe704d8cae3851239.com [not found]
FF Extension: No Name - C:\Users\u62130\AppData\Roaming\Mozilla\Firefox\Profiles\v3sshdwg.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [not found]
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.istartsurf.com/?type=sc&ts=14438909 ... NEAB812831

Chrome:
=======
CHR Profile: C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Shop and Save Up) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\ablgnpngfaaficpckehadaljnjgjkhbi [2015-10-04]
CHR Extension: (Google Docs) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-03-12]
CHR Extension: (Google Drive) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-03-12]
CHR Extension: (YouTube) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-03-12]
CHR Extension: (Google Search) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-03-12]
CHR Extension: (Google Docs Offline) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-03]
CHR Extension: (IDM Integration Module) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2015-02-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-07]
CHR Extension: (Gmail) - C:\Users\u62130\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-03-12]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-08-14]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-08-14]
CHR HKU\S-1-5-21-2326126467-407937288-474921760-13144\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-08-14]

Opera:
=======
StartMenuInternet: (HKLM) Opera - C:\Program Files (x86)\Opera\Opera.exe hxxp://www.mystartsearch.com/?type=sc&ts=14438 ... NEAB812831

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 absaroducu; C:\Users\u62130\AppData\Local\Xx-lex.exe [59392 2015-10-03] () [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
R2 AuditPro Scan; C:\AuditPro\Scan.exe [1598816 2011-05-23] (truconneXion, a. s.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 CDMA Device Service; C:\Program Files (x86)\Samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe [159232 2011-08-02] () [File not signed]
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [486224 2011-11-10] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [476728 2011-09-05] (Hewlett-Packard Company)
R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [762272 2015-09-11] (Garmin Ltd. or its subsidiaries)
R2 HPDayStarterService; C:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [133688 2011-03-23] (Hewlett-Packard Company)
R2 HPFSService; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [322048 2011-08-26] (Hewlett-Packard) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [523680 2012-09-12] (Hewlett-Packard Company)
R2 IFXSpMgtSrv; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxspmgt.exe [1126264 2013-07-02] (Infineon Technologies AG)
R2 IFXTCS; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\ifxtcs.exe [980856 2013-07-02] (Infineon Technologies AG)
R2 MADService; C:\Program Files (x86)\CheckPoint\Identity Agent\MADService.exe [1993256 2014-06-05] (Check Point Software Technologies Ltd.)
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1323008 2013-02-01] () [File not signed]
R2 Multi-user Cleanup Service; C:\Program Files (x86)\lotus\notes\ntmulti.exe [53248 2009-03-24] (IBM Corp) [File not signed]
R2 ncpclcfg; C:\Program Files (x86)\Astaro\Astaro Secure Client\ncpclcfg.exe [86016 2008-06-30] (NCP engineering GmbH) [File not signed]
R2 ncprwsnt; C:\Program Files (x86)\Astaro\Astaro Secure Client\ncprwsnt.exe [1381384 2009-10-27] (NCP Engineering GmbH)
R2 NcpSec; C:\Program Files (x86)\Astaro\Astaro Secure Client\ncpsec.exe [32768 2008-10-06] () [File not signed]
R2 PersonalSecureDriveService; C:\Program Files (x86)\Hewlett-Packard\Embedded Security Software\IfxPsdSv.exe [203640 2013-07-02] (Infineon Technologies AG)
R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [7743472 2015-08-19] (Reimage®)
R2 rwsrsu; C:\Program Files (x86)\Astaro\Astaro Secure Client\rwsrsu.exe [819712 2009-10-12] () [File not signed]
R2 SepMasterService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Bin\ccSvcHst.exe [145008 2015-08-27] (Symantec Corporation)
S3 SNAC; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Bin64\snac64.exe [396344 2015-08-27] (Symantec Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [323072 2013-07-01] (IDT, Inc.) [File not signed]
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [502464 2010-11-11] (ArcSoft, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WMCoreService; C:\Program Files (x86)\Ericsson\Mobile Broadband Drivers\WMCore\mini_WMCore.exe [689560 2012-10-18] (Ericsson AB)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ARCVCAM; C:\Windows\System32\DRIVERS\ArcSoftVCapture.sys [32192 2010-11-11] (ArcSoft, Inc.)
R1 BHDrvx64; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Data\Definitions\BASHDefs\20150925.011\BHDrvx64.sys [1650936 2015-08-27] (Symantec Corporation)
R1 ccSettings_{C50212F0-91E1-4AEF-8611-16DDA12941B6}; C:\Windows\System32\Drivers\SEP\0C011818\1770.105\x64\ccSetx64.sys [162392 2015-02-03] (Symantec Corporation)
S3 DAMDrv; C:\Windows\System32\DRIVERS\DAMDrv64.sys [63336 2011-03-03] (Hewlett-Packard Company)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2011-10-05] (Ericsson AB)
S3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [29736 2011-10-05] (Ericsson AB)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-07-28] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [155456 2015-09-04] (Symantec Corporation)
S3 FsUsbExDisk; C:\windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-05-22] () [File not signed]
S3 h36wgps; C:\Windows\System32\DRIVERS\h36wgps64.sys [103184 2012-03-01] (Ericsson AB)
R1 IDSvia64; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Data\Definitions\IPSDefs\20151002.012\IDSvia64.sys [671448 2015-09-04] (Symantec Corporation)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [44480 2011-05-17] (http://libusb-win32.sourceforge.net)
S3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [443648 2013-04-22] (MCCI Corporation)
S3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [455936 2013-04-22] (MCCI Corporation)
S3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [22272 2013-04-22] (MCCI Corporation)
S3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [508160 2013-04-22] (MCCI Corporation)
R0 MfeEpeOpal; C:\Windows\System32\Drivers\MfeEpeOpal.sys [101288 2013-02-01] (McAfee, Inc.)
R0 MfeEpePc; C:\Windows\System32\Drivers\MfeEpePc.sys [158888 2013-02-01] (McAfee, Inc.)
R3 NAVENG; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Data\Definitions\VirusDefs\20151002.016\ENG64.SYS [138488 2015-06-30] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Data\Definitions\VirusDefs\20151002.016\EX64.SYS [2146040 2015-06-30] (Symantec Corporation)
S3 ncpfilt; C:\Windows\System32\DRIVERS\ncplelhp.sys [151016 2009-10-08] (NCP Engineering GmbH)
R3 ncplelhp; C:\Windows\System32\DRIVERS\ncplelhp.sys [151016 2009-10-08] (NCP Engineering GmbH)
R1 PersonalSecureDrive; C:\Windows\System32\drivers\psd.sys [44576 2013-07-02] (Infineon Technologies AG)
S3 PTDrv; C:\Windows\System32\DRIVERS\PTDrv.sys [59072 2010-03-09] (Check Point Software Technologies)
R3 PTDrvMP; C:\Windows\System32\DRIVERS\PTDrv.sys [59072 2010-03-09] (Check Point Software Technologies)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2611704 2011-01-12] (Sunplus Technology)
R1 SRTSP; C:\Windows\System32\Drivers\SEP\0C011818\1770.105\x64\SRTSP64.SYS [890584 2015-08-27] (Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\Drivers\SEP\0C011818\1770.105\x64\SRTSPX64.SYS [37592 2015-02-03] (Symantec Corporation)
S3 SyDvCtrl; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.6168.6000.105\Bin64\SyDvCtrl64.sys [36952 2015-08-27] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\symefasi\0501010.002\symefasi.sys [1616088 2015-08-27] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [178392 2015-08-27] (Symantec Corporation)
R1 SymIRON; C:\Windows\System32\Drivers\SEP\0C011818\1770.105\x64\Ironx64.SYS [270040 2015-08-27] (Symantec Corporation)
R1 SYMNETS; C:\Windows\System32\Drivers\SEP\0C011818\1770.105\x64\SYMNETS.SYS [594136 2015-08-27] (Symantec Corporation)
R1 SysPlant; C:\Windows\System32\Drivers\SysPlant.sys [168304 2015-08-27] (Symantec Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [File not signed]
S3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [284912 2013-11-25] (Ericsson AB)
R3 cpuz134; \??\C:\Users\u62130\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-04 10:47 - 2015-10-04 10:47 - 977272832 ____C C:\DFOptimize_340.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_339.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_338.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_337.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_336.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_335.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_334.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_333.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_332.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_331.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_330.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_329.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_328.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_327.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_326.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 1073741824 ____C C:\DFOptimize_325.bin
2015-10-04 10:47 - 2015-10-04 10:47 - 00041226 ____C C:\Users\u62130\Downloads\FRST.txt
2015-10-04 10:47 - 2015-10-04 10:47 - 00000000 ___DC C:\FRST
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_324.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_323.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_322.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_321.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_320.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_319.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_318.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_317.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 1073741824 ____C C:\DFOptimize_316.bin
2015-10-04 10:46 - 2015-10-04 10:46 - 02193408 ____C (Farbar) C:\Users\u62130\Downloads\FRST64.exe
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_315.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_314.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_313.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_312.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_311.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_310.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_309.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_308.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_307.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_306.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_305.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_304.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_303.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_302.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_301.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_300.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_299.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_298.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_297.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_296.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_295.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_294.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_293.bin
2015-10-04 10:45 - 2015-10-04 10:45 - 1073741824 ____C C:\DFOptimize_292.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_291.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_290.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_289.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_288.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_287.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_286.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_285.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_284.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_283.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_282.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_281.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_280.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_279.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_278.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_277.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_276.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_275.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_274.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_273.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_272.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_271.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_270.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_269.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_268.bin
2015-10-04 10:44 - 2015-10-04 10:44 - 1073741824 ____C C:\DFOptimize_267.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_266.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_265.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_264.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_263.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_262.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_261.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_260.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_259.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_258.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_257.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_256.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_255.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_254.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_253.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_252.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_251.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_250.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_249.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_248.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_247.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_246.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_245.bin
2015-10-04 10:43 - 2015-10-04 10:43 - 1073741824 ____C C:\DFOptimize_244.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_243.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_242.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_241.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_240.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_239.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_238.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_237.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_236.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_235.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_234.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_233.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_232.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_231.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_230.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_229.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_228.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_227.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_226.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_225.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_224.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_223.bin
2015-10-04 10:42 - 2015-10-04 10:42 - 1073741824 ____C C:\DFOptimize_222.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_221.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_220.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_219.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_218.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_217.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_216.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_215.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_214.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_213.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_212.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_211.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_210.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_209.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_208.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_207.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_206.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_205.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_204.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_203.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_202.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_201.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_200.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_199.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_198.bin
2015-10-04 10:41 - 2015-10-04 10:41 - 1073741824 ____C C:\DFOptimize_197.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_196.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_195.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_194.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_193.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_192.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_191.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_190.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_189.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_188.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_187.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_186.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_185.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_184.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_183.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_182.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_181.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_180.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_179.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_178.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_177.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_176.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_175.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_174.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_173.bin
2015-10-04 10:40 - 2015-10-04 10:40 - 1073741824 ____C C:\DFOptimize_172.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_171.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_170.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_169.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_168.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_167.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_166.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_165.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_164.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_163.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_162.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_161.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_160.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_159.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_158.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_157.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_156.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_155.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_154.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_153.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_152.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_151.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_150.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_149.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_148.bin
2015-10-04 10:39 - 2015-10-04 10:39 - 1073741824 ____C C:\DFOptimize_147.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_146.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_145.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_144.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_143.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_142.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_141.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_140.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_139.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_138.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_137.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_136.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_135.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_134.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_133.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_132.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_131.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_130.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_129.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_128.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_127.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_126.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_125.bin
2015-10-04 10:38 - 2015-10-04 10:38 - 1073741824 ____C C:\DFOptimize_124.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_99.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_98.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_97.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_96.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_123.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_122.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_121.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_120.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_119.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_118.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_117.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_116.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_115.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_114.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_113.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_112.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_111.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_110.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_109.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_108.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_107.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_106.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_105.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_104.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_103.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_102.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_101.bin
2015-10-04 10:37 - 2015-10-04 10:37 - 1073741824 ____C C:\DFOptimize_100.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_95.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_94.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_93.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_92.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_91.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_90.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_89.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_88.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_87.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_86.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_85.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_84.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_83.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_82.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_81.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_80.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_79.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_78.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_77.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_76.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_75.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_74.bin
2015-10-04 10:36 - 2015-10-04 10:36 - 1073741824 ____C C:\DFOptimize_73.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_72.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_71.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_70.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_69.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_68.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_67.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_66.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_65.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_64.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_63.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_62.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_61.bin
2015-10-04 10:35 - 2015-10-04 10:35 - 1073741824 ____C C:\DFOptimize_60.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_59.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_58.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_57.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_56.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_55.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_54.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_53.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_52.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_51.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_50.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_49.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_48.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_47.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_46.bin
2015-10-04 10:34 - 2015-10-04 10:34 - 1073741824 ____C C:\DFOptimize_45.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_44.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_43.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_42.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_41.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_40.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_39.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_38.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_37.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_36.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_35.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_34.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_33.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_32.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_31.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_30.bin
2015-10-04 10:33 - 2015-10-04 10:33 - 1073741824 ____C C:\DFOptimize_29.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_28.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_27.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_26.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_25.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_24.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_23.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_22.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_21.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_20.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_19.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_18.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_17.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_16.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_15.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_14.bin
2015-10-04 10:32 - 2015-10-04 10:32 - 1073741824 ____C C:\DFOptimize_13.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_9.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_8.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_7.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_6.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_5.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_4.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_3.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_2.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_12.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_11.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_10.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_1.bin
2015-10-04 10:31 - 2015-10-04 10:31 - 1073741824 ____C C:\DFOptimize_0.bin
2015-10-04 09:54 - 2015-10-04 10:09 - 00000000 ___DC C:\Program Files\Reimage
2015-10-04 09:54 - 2015-10-04 09:54 - 00004268 ____C C:\windows\System32\Tasks\ReimageUpdater
2015-10-04 09:54 - 2015-10-04 09:54 - 00000000 ___DC C:\ProgramData\Reimage Protector
2015-10-04 09:53 - 2015-10-04 09:55 - 00000139 ____C C:\windows\Reimage.ini
2015-10-04 09:19 - 2015-10-04 10:03 - 00001078 ____C C:\windows\system32dbgraw.bmp
2015-10-04 09:19 - 2015-10-04 09:19 - 00000000 ____C C:\windows\setuperr.log
2015-10-04 09:19 - 2015-10-04 09:19 - 00000000 ____C C:\windows\setupact.log
2015-10-03 21:09 - 2015-10-03 21:09 - 00078622 ____C C:\Users\u62130\Documents\cc_20151003_210926.reg
2015-10-03 20:25 - 2015-10-03 20:25 - 00003142 ____C C:\windows\System32\Tasks\{9B3C3439-7625-4BE8-8A4B-CB6FF96F14DD}
2015-10-03 20:19 - 2015-10-04 09:19 - 00002438 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-5_user.job
2015-10-03 20:19 - 2015-10-04 09:19 - 00002438 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-5.job
2015-10-03 20:19 - 2015-10-03 20:19 - 00005468 ____C C:\windows\System32\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-5
2015-10-03 20:18 - 2015-10-04 10:18 - 00005510 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-6.job
2015-10-03 20:18 - 2015-10-04 10:18 - 00003130 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-1-6.job
2015-10-03 20:18 - 2015-10-04 10:18 - 00002104 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-10_user.job
2015-10-03 20:18 - 2015-10-04 09:19 - 00005510 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-7.job
2015-10-03 20:18 - 2015-10-04 09:19 - 00005176 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-11.job
2015-10-03 20:18 - 2015-10-04 09:19 - 00004486 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-4.job
2015-10-03 20:18 - 2015-10-04 09:19 - 00004150 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-3.job
2015-10-03 20:18 - 2015-10-04 09:19 - 00003130 ____C C:\windows\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-1-7.job
2015-10-03 20:18 - 2015-10-03 20:19 - 00000000 ___DC C:\Program Files (x86)\Shop and Save Up
2015-10-03 20:18 - 2015-10-03 20:18 - 00008540 ____C C:\windows\System32\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-7
2015-10-03 20:18 - 2015-10-03 20:18 - 00008538 ____C C:\windows\System32\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-6
2015-10-03 20:18 - 2015-10-03 20:18 - 00008206 ____C C:\windows\System32\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-11
2015-10-03 20:18 - 2015-10-03 20:18 - 00007516 ____C C:\windows\System32\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-4
2015-10-03 20:18 - 2015-10-03 20:18 - 00007180 ____C C:\windows\System32\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-3
2015-10-03 20:18 - 2015-10-03 20:18 - 00006160 ____C C:\windows\System32\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-1-7
2015-10-03 20:18 - 2015-10-03 20:18 - 00006158 ____C C:\windows\System32\Tasks\de54e495-805b-4d68-bf2b-ab58faabf525-1-6
2015-10-03 20:15 - 2015-10-03 20:15 - 00000000 ___DC C:\Users\u62130\AppData\Roaming\mystartsearch
2015-10-03 19:27 - 2015-10-03 19:27 - 00000000 ___DC C:\Users\u62130\AppData\Local\Macromedia
2015-10-03 18:49 - 2015-10-03 20:25 - 00000000 ___DC C:\Users\u62130\AppData\Roaming\istartsurf
2015-10-03 18:49 - 2015-10-03 18:50 - 00000102 ____C C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-10-03 18:48 - 2015-10-03 19:20 - 00000000 ___DC C:\Program Files\Concom
2015-10-03 18:48 - 2015-10-03 18:48 - 00059392 ____C C:\Users\u62130\AppData\Local\Xx-lex.exe
2015-10-03 18:45 - 2015-10-04 10:18 - 00000004 ____C C:\windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-10-03 18:27 - 2015-10-03 18:27 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-10-03 18:27 - 2015-10-03 18:27 - 00000000 ___DC C:\Program Files\iTunes
2015-10-03 18:27 - 2015-10-03 18:27 - 00000000 ___DC C:\Program Files\iPod
2015-10-03 18:25 - 2015-10-03 18:25 - 00000000 ___DC C:\windows\System32\Tasks\Apple
2015-10-03 18:25 - 2015-10-03 18:25 - 00000000 ___DC C:\Program Files\Bonjour
2015-10-03 18:25 - 2015-10-03 18:25 - 00000000 ___DC C:\Program Files (x86)\Bonjour
2015-10-03 18:25 - 2015-10-03 18:25 - 00000000 ___DC C:\Program Files (x86)\Apple Software Update
2015-09-27 13:09 - 2015-09-27 13:09 - 07077376 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 06131200 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 01148416 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 01116672 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 01057792 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00856064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00774656 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00743424 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00437760 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00429568 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2015-09-27 13:09 - 2015-09-27 13:09 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2015-09-27 13:09 - 2015-09-27 13:09 - 00017344 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2015-09-27 13:09 - 2015-09-27 13:09 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2015-09-27 13:08 - 2015-09-27 13:08 - 01743360 _____ (Microsoft Corporation) C:\windows\system32\sysmain.dll
2015-09-27 13:08 - 2015-09-27 13:08 - 00094656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2015-09-27 13:08 - 2015-09-27 13:08 - 00011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2015-09-27 13:06 - 2015-09-27 13:07 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\basesrv.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 25192448 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 19870208 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 14451200 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 12856832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 05923328 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 04520448 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 02885632 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2015-09-27 13:05 - 2015-09-27 13:06 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-09-27 13:05 - 2015-09-27 13:06 - 02427904 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 02279424 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 02125824 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-09-27 13:05 - 2015-09-27 13:06 - 02052608 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2015-09-27 13:05 - 2015-09-27 13:06 - 01951232 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 01545728 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 01310720 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-09-27 13:05 - 2015-09-27 13:06 - 00816640 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00720384 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-09-27 13:05 - 2015-09-27 13:06 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00689152 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00584192 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00490496 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00479232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00418304 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-09-27 13:05 - 2015-09-27 13:06 - 00389840 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00342736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2015-09-27 13:05 - 2015-09-27 13:06 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00285696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-09-27 13:05 - 2015-09-27 13:06 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2015-09-27 13:05 - 2015-09-27 13:06 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-09-27 13:05 - 2015-09-27 13:06 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2015-09-27 13:05 - 2015-09-27 13:06 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 01251328 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00372736 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00299520 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00260096 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00206848 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00082432 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2015-09-27 13:05 - 2015-09-27 13:05 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2015-09-27 13:04 - 2015-09-27 13:05 - 03208192 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-09-27 13:04 - 2015-09-27 13:05 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2015-09-27 13:04 - 2015-09-27 13:05 - 01987584 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2015-09-27 13:04 - 2015-09-27 13:05 - 01648128 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2015-09-27 13:04 - 2015-09-27 13:05 - 01180160 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2015-09-27 13:04 - 2015-09-27 13:05 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2015-09-27 13:04 - 2015-09-27 13:05 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2015-09-27 13:04 - 2015-09-27 13:05 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 05568960 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-09-27 13:03 - 2015-09-27 13:04 - 03989952 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2015-09-27 13:03 - 2015-09-27 13:04 - 03934656 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2015-09-27 13:03 - 2015-09-27 13:04 - 01730496 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 01461760 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 01390592 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 01311768 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 01216512 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00729088 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00686080 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00665088 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00641536 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00635392 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00552960 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2015-09-27 13:03 - 2015-09-27 13:04 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00309760 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-09-27 13:03 - 2015-09-27 13:04 - 00290816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2015-09-27 13:03 - 2015-09-27 13:04 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00248832 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00221184 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2015-09-27 13:03 - 2015-09-27 13:04 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-09-27 13:03 - 2015-09-27 13:04 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00129024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2015-09-27 13:03 - 2015-09-27 13:04 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-09-27 13:03 - 2015-09-27 13:04 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-09-27 13:03 - 2015-09-27 13:04 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-09-27 13:03 - 2015-09-27 13:04 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2015-09-27 13:03 - 2015-09-27 13:04 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2015-09-27 13:03 - 2015-09-27 13:04 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll


==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

art Menu\Programs\Internet Explorer.lnk
2015-10-03 20:25 - 2011-11-30 13:56 - 00001841 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-10-03 20:25 - 2011-11-30 13:56 - 00001150 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-03 20:22 - 2015-01-19 23:14 - 00000000 ___DC C:\Users\u62130\AppData\Local\JDownloader 2.0
2015-10-03 20:13 - 2013-07-10 15:50 - 00000000 ___DC C:\Program Files (x86)\Nokia
2015-10-03 20:12 - 2013-07-10 20:52 - 00000000 ___DC C:\Users\u62130\AppData\Roaming\Nokia Suite
2015-10-03 20:12 - 2013-07-10 16:00 - 00000000 ___DC C:\Users\u62130\AppData\Roaming\Nokia
2015-10-03 20:12 - 2013-07-10 15:52 - 00000000 ___DC C:\ProgramData\Nokia
2015-10-03 20:06 - 2015-07-01 20:25 - 00000000 ___DC C:\Users\u62130\AppData\Roaming\JAM Software
2015-10-03 19:50 - 2011-12-02 11:35 - 00000000 ___DC C:\Program Files (x86)\Google
2015-10-03 19:50 - 2011-12-01 10:47 - 00000000 ___DC C:\windows\system32\appmgmt
2015-10-03 19:47 - 2011-11-30 10:03 - 00000000 ___DC C:\Program Files (x86)\7-Zip
2015-10-03 19:46 - 2015-07-01 21:08 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-10-03 19:46 - 2015-07-01 21:08 - 00000000 ___DC C:\Program Files (x86)\Ashampoo
2015-10-03 19:45 - 2013-12-31 00:58 - 00000018 ____C C:\windows\hbcikrnl.ini
2015-10-03 19:45 - 2011-05-13 21:23 - 00000000 __HDC C:\Program Files (x86)\InstallShield Installation Information
2015-10-03 19:25 - 2013-03-17 01:26 - 00000000 ___DC C:\Users\u62130\AppData\Roaming\uTorrent
2015-10-03 19:17 - 2013-03-11 00:27 - 00003948 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-03 19:17 - 2013-03-11 00:27 - 00003696 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-03 19:13 - 2011-12-02 13:50 - 00000000 ___DC C:\ProgramData\Symantec
2015-10-03 18:53 - 2015-07-01 21:08 - 00000000 ___DC C:\ProgramData\Ashampoo
2015-10-03 18:46 - 2013-01-10 22:27 - 00003852 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-10-03 18:45 - 2013-01-10 22:27 - 00780488 ____C (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-10-03 18:45 - 2011-05-13 21:36 - 00142536 ____C (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-03 18:27 - 2014-04-07 08:38 - 00000000 ___DC C:\Program Files (x86)\iTunes
2015-10-03 18:27 - 2013-07-14 17:14 - 00000000 ___DC C:\Program Files\Common Files\Apple
2015-10-03 18:25 - 2015-07-01 18:29 - 00001378 ____C C:\Users\Public\Desktop\Apowersoft Phone Manager.lnk
2015-10-03 18:25 - 2013-07-14 17:14 - 00002563 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-10-03 18:13 - 2015-06-30 19:12 - 00000824 ____C C:\Users\Public\Desktop\CCleaner.lnk
2015-10-03 18:13 - 2013-03-10 14:57 - 00000000 ___DC C:\Program Files\CCleaner
2015-10-03 18:05 - 2009-07-14 06:45 - 00416592 ____C C:\windows\system32\FNTCACHE.DAT
2015-09-27 13:10 - 2015-07-29 07:17 - 00000000 ___DC C:\windows\system32\appraiser
2015-09-27 13:10 - 2014-05-25 16:36 - 00000000 __SDC C:\windows\system32\CompatTel
2015-09-27 13:09 - 2015-03-28 18:20 - 00003554 ____C C:\windows\System32\Tasks\GarminUpdaterTask
2015-09-27 13:09 - 2015-03-28 18:20 - 00001890 ____C C:\Users\Public\Desktop\Garmin Express.lnk
2015-09-27 13:09 - 2014-05-24 09:14 - 00000000 ___DC C:\Program Files (x86)\Garmin
2015-09-27 13:09 - 2014-05-24 09:13 - 00000000 ___DC C:\ProgramData\Package Cache
2015-09-27 13:08 - 2011-11-30 07:10 - 00000000 ___DC C:\ProgramData\Microsoft Help
2015-09-27 13:01 - 2009-07-14 04:34 - 00000512 ____C C:\windows\win.ini
2015-09-27 13:00 - 2011-12-02 12:05 - 00000932 _RSHC C:\Users\u62130\ntuser.pol
2015-09-27 13:00 - 2011-12-02 12:05 - 00000000 ___DC C:\Users\u62130
2015-09-04 22:19 - 2012-06-12 17:38 - 00000000 ___DC C:\Program Files\Microsoft Silverlight
2015-09-04 22:19 - 2012-06-12 17:38 - 00000000 ___DC C:\Program Files (x86)\Microsoft Silverlight
2015-09-04 22:18 - 2013-01-21 15:33 - 00000000 ___DC C:\Users\u62130\Documents\Soubory aplikace Outlook
2015-09-04 22:03 - 2012-06-12 17:39 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

==================== Files in the root of some directories =======

2011-11-30 09:34 - 2006-12-29 17:15 - 0040960 ____C (SAP-TECHNOLOGY) C:\Program Files (x86)\Common Files\DigitalSignature.ocx
2011-11-30 09:34 - 2006-12-07 12:26 - 1129984 ____C () C:\Program Files (x86)\Common Files\SAPActiveXL.xlt
2011-11-30 09:34 - 2006-12-07 12:26 - 1124864 ____C () C:\Program Files (x86)\Common Files\SAPActiveXL_nosig.xlt
2011-11-30 09:34 - 2006-12-29 17:15 - 0626688 ____C (SAP AG) C:\Program Files (x86)\Common Files\sapconsaccess.dll
2011-11-30 09:34 - 2006-12-29 17:15 - 0192512 ____C (SAP Tech Inc.) C:\Program Files (x86)\Common Files\sapconsr3.dll
2011-11-30 09:34 - 2006-12-29 17:15 - 3100672 ____C (SAP Technology,Inc) C:\Program Files (x86)\Common Files\sapxlhelper.dll
2013-07-01 22:26 - 2013-07-01 22:27 - 0101800 ____C () C:\Users\u62130\AppData\Roaming\QWInstall.log
2012-01-07 22:25 - 2013-03-15 01:09 - 0007649 ____C () C:\Users\u62130\AppData\Local\Resmon.ResmonCfg
2015-10-03 18:48 - 2015-10-03 18:48 - 0059392 ____C () C:\Users\u62130\AppData\Local\Xx-lex.exe
2015-10-03 18:48 - 2015-10-03 18:48 - 0000187 ____C () C:\Users\u62130\AppData\Local\Xx-lex.exe.config
2015-10-03 18:49 - 2015-10-03 18:50 - 0000102 ____C () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Files to move or delete:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


Some files in TEMP:
====================
C:\Users\a62431\AppData\Local\Temp\AcDeltree.exe
C:\Users\Administrator\AppData\Local\Temp\MSN18FE.exe
C:\Users\Administrator\AppData\Local\Temp\uninstall.exe
C:\Users\u62130\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Uzivatel\AppData\Local\Temp\CpqMC.dll
C:\Users\Uzivatel\AppData\Local\Temp\HPSWF.EXE
C:\Users\Uzivatel\AppData\Local\Temp\SWHelperQueryW.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-18 19:55

==================== End of FRST.txt ============================
Přílohy
FRST.zip
(16.65 KiB) Staženo 59 x
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu z FRST

#2 Příspěvek od vyosek »

Zdravim :)

Jen se zeptam, jedna se o domaci PC\NTB nebo nejake pracovni\firemni???
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Twig
Návštěvník
Návštěvník
Příspěvky: 58
Registrován: 24 led 2007 21:17
Kontaktovat uživatele:
Kontaktovat uživatele Twig

Re: Prosím o kontrolu logu z FRST

#3 Příspěvek od Twig »

Je to bohužel firemní NB ale s možností domácího používání.
Je s tím nějaký problém? :(
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu z FRST

#4 Příspěvek od vyosek »

Ano, bohuzel to problem je...

Je to firemni zarizeni a od toho ma firma sve IT oddeleni nebo nejakeho spravce, managera, ktery se o to ma starat. A my tu zdarma ve svem volnem case nebudeme delat praci za nej...

Doporucuji se tedy obratit na nej, at se stara...Pokud nevi jak na to, mohu nabidnout nasi sluzbu vzdalene pomoci www.neslape.cz

Je toto zmineno i v pravidlech fora
Fórum viry.cz se nezabývá odvirováním firemních PC - na toto jsou ve firmách placení (a někdy až hodně nadstandardně) IT technici, případně si je firma může najmout. My jsme tu zdarma a ve svém volném čase, nehodláme dělat práci za někoho jiného, kdo si pak jen slízne smetánku a plat. Taktéž ani neposkytujeme poradenství v oblasti zabezpečení firemních sítí či nastavení firemních sítí. Zkrátka a jednoduše, naše fórum poskytuje podporu pouze domácím uživatelům.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Twig
Návštěvník
Návštěvník
Příspěvky: 58
Registrován: 24 led 2007 21:17
Kontaktovat uživatele:
Kontaktovat uživatele Twig

Re: Prosím o kontrolu logu z FRST

#5 Příspěvek od Twig »

Bohužel jsem počítač zaviroval jako domácí uživatel Náš IT technik na to určitě nemá, takže poradenství budu muset bohužel zaplatit já. I pokud nemůžete v tomto případě udělat výjimku, stejně dík. Twig
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Prosím o kontrolu logu z FRST

#6 Příspěvek od vyosek »

I presto ze jste si to zaviroval doma, je to stale vec firmy a rekl bych ze asi i nekd ebude ze nemuzete delat ADMinistratorske zasahy, coz oprava je. Ale to jen hadat dle zkusenosti a zvyklosti.

Zkuste mu to dat a uvidite. Navic v PC jsou firemni dokumenty, nastaveni atd a na foru na ne nemuzeme nest zaruku. Nase sluzba vzdalene pomoci je pak osetrena obchodnimi podminkami pro tyto pripady.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“