Logfile of random's system information tool 1.10 (written by random/random)
Run by smrzp at 2016-11-27 19:15:56
Microsoft Windows 10 Pro
System drive C: has 75 GB (61%) free of 122 GB
Total RAM: 3996 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:15:57, on 27.11.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal
Running processes:
C:\DIAGNOSTIKA\SYSINTERNALSSUITE\PROCESSEXPLORER\PROCEXP.EXE
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\trend micro\smrzp.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AccelerometerSysTrayApplet] "C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.Exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\smrzp\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'DefaultAppPool')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'DefaultAppPool')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @oem16.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\WINDOWS\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem28.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\AMT\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11235 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
winlogon.exe
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\AUDIODG.EXE 0x2a8
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
C:\WINDOWS\system32\AEADISRV.EXE
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe"
"C:\Program Files (x86)\Intel\AMT\LMS.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\SysWoW64\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe"
dashost.exe {ba422f00-4001-4244-8e329ee00b219bbe}
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\DIAGNOSTIKA\SYSINTERNALSSUITE\PROCESSEXPLORER\PROCEXP.EXE /t
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\DIAGNOSTIKA\SYSINTERNALSSUITE\PROCESSEXPLORER\PROCEXP.EXE /T
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe"
"C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe" -startup
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
KHALMNPR.EXE /API
"C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\accelerometerST.exe"
"C:\totalcmd\TOTALCMD64.EXE"
"C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe" /Start
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe" -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Diagnostika\RSIT\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d04258e6c26e76.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForsmrzp.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForsmrzp (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-24 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26 435320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-24 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-24 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26 366200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-24 186944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 2174760]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
"IAAnotif"=C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [2013-12-31 186904]
"picon"=C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe [2013-12-31 358936]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2015-08-26 3113592]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AccelerometerSysTrayApplet"=C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.Exe [2010-01-29 74552]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"OneDrive"=C:\Users\smrzp\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-11 554184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream]
C:\Users\smrzp\AppData\Roaming\ACEStream\engine\ace_engine.exe [2016-07-11 27000]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSKAppManager]
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe -tray []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
C:\Users\smrzp\AppData\Local\Akamai\netsession_win.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader]
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NCPluginUpdater]
c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe [2014-01-28 21720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16]
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-12-23 833240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^smrzp^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Lingea Update Center.lnk]
C:\PROGRA~2\COMMON~1\LINGEA~1\luc.exe [2008-08-06 275736]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"=C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"QlbCtrl.exe"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2010-02-25 287800]
""= []
"WirelessAssistant"=C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2010-05-20 500792]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2015-07-02 65992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
wlnotify.dll []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-11-27 19:15:56 ----D---- C:\rsit
2016-11-17 09:59:26 ----D---- C:\Users\smrzp\AppData\Roaming\EFX
2016-11-17 09:50:39 ----D---- C:\ProgramData\PTC
2016-11-17 00:20:33 ----D---- C:\temp
2016-11-17 00:14:00 ----AD---- C:\Program Files\Common Files\PTC
2016-11-17 00:04:25 ----AD---- C:\Program Files (x86)\PTC
2016-11-17 00:04:20 ----D---- C:\Program Files\PTC
2016-11-16 23:58:53 ----D---- C:\ptc_license
2016-11-16 22:38:52 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-11-11 00:11:23 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-11-11 00:11:22 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-11-11 00:11:22 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2016-11-11 00:11:21 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2016-11-11 00:11:21 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2016-11-11 00:11:21 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-11-11 00:11:21 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-11-11 00:11:21 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-11-11 00:11:21 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2016-11-11 00:11:19 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-11-11 00:11:19 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-11-11 00:11:18 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-11-11 00:11:15 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-11-11 00:11:15 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-11-11 00:11:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-11-11 00:11:14 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-11-11 00:11:12 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-11-11 00:11:12 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-11-11 00:11:12 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-11-11 00:11:12 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-11-11 00:11:12 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2016-11-11 00:11:12 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-11-11 00:11:12 ----A---- C:\WINDOWS\SYSWOW64\d3d8.dll
2016-11-11 00:11:12 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2016-11-11 00:11:10 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2016-11-11 00:11:07 ----A---- C:\WINDOWS\SYSWOW64\AuthExt.dll
2016-11-11 00:11:06 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-11-11 00:11:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-11 00:11:03 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2016-11-11 00:11:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-11-11 00:11:03 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-11-11 00:11:03 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\UIAnimation.dll
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-11-11 00:11:00 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-11-11 00:10:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-11-11 00:10:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-11-11 00:10:59 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-11-11 00:10:59 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-11-11 00:10:59 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-11-11 00:10:59 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-11-11 00:10:58 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2016-11-11 00:10:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-11-11 00:10:57 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-11-11 00:10:57 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-11-11 00:10:57 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-11-11 00:10:57 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-11-11 00:10:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-11 00:10:56 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-11-11 00:10:54 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-11-11 00:10:54 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-11-11 00:10:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-11-11 00:10:53 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-11-11 00:10:53 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-11-11 00:10:51 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2016-11-11 00:10:51 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2016-11-11 00:10:50 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-11-11 00:10:50 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-11-11 00:10:50 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-11-11 00:10:50 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-11-11 00:10:49 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-11-11 00:10:49 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-11-11 00:10:49 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2016-11-11 00:10:45 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-11-11 00:10:44 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-11-11 00:10:44 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-11-11 00:10:44 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-11-11 00:10:44 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2016-11-11 00:10:44 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-11-11 00:10:44 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-11-11 00:10:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-11-11 00:10:40 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2016-11-11 00:10:40 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-11-11 00:10:40 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-11-11 00:10:40 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2016-11-11 00:10:40 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-11-11 00:10:40 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-11-11 00:10:40 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-11-11 00:10:38 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2016-11-11 00:10:38 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-11-11 00:10:38 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-11-11 00:10:38 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-11-11 00:10:38 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2016-11-11 00:10:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-11 00:10:37 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-11-11 00:10:36 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-11-11 00:10:36 ----A---- C:\WINDOWS\SYSWOW64\chartv.dll
2016-11-11 00:10:36 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-11-11 00:10:35 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-11-11 00:10:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-11 00:10:34 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetailsUpdate.dll
2016-11-11 00:10:34 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2016-11-11 00:10:34 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-11-11 00:10:34 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-11-11 00:10:34 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2016-11-11 00:05:55 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-11-11 00:05:49 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-11 00:05:40 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-11-11 00:05:40 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-11-11 00:05:38 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-11 00:05:38 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-11-11 00:05:38 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-11-11 00:05:38 ----A---- C:\WINDOWS\system32\win32k.sys
2016-11-11 00:05:38 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-11-11 00:05:38 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-11 00:05:35 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-11-11 00:05:35 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-11-11 00:05:35 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-11-11 00:05:35 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-11 00:05:35 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-11-11 00:05:34 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-11 00:05:34 ----A---- C:\WINDOWS\system32\UIAnimation.dll
2016-11-11 00:05:33 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-11 00:05:33 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-11 00:05:33 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-11 00:05:33 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-11 00:05:33 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-11 00:05:32 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-11 00:05:32 ----A---- C:\WINDOWS\system32\ubpm.dll
2016-11-11 00:05:31 ----A---- C:\WINDOWS\system32\twinui.dll
2016-11-11 00:05:31 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-11-11 00:05:31 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-11 00:05:30 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-11-11 00:05:30 ----A---- C:\WINDOWS\system32\input.dll
2016-11-11 00:05:29 ----A---- C:\WINDOWS\system32\rdpshell.exe
2016-11-11 00:05:29 ----A---- C:\WINDOWS\system32\rdpinit.exe
2016-11-11 00:05:29 ----A---- C:\WINDOWS\system32\rdpcore.dll
2016-11-11 00:05:29 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-11-11 00:05:29 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-11-11 00:05:29 ----A---- C:\WINDOWS\system32\msctf.dll
2016-11-11 00:05:28 ----A---- C:\WINDOWS\system32\sud.dll
2016-11-11 00:05:28 ----A---- C:\WINDOWS\system32\stobject.dll
2016-11-11 00:05:26 ----A---- C:\WINDOWS\system32\shell32.dll
2016-11-11 00:05:25 ----A---- C:\WINDOWS\system32\shdocvw.dll
2016-11-11 00:05:25 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-11-11 00:05:24 ----A---- C:\WINDOWS\system32\TSpkg.dll
2016-11-11 00:05:24 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-11 00:05:24 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-11-11 00:05:24 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-11-11 00:05:24 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-11-11 00:05:23 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-11 00:05:23 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-11 00:05:23 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-11 00:05:22 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-11 00:05:20 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-11 00:05:19 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-11 00:05:18 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-11-11 00:05:18 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-11-11 00:05:13 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-11-11 00:05:13 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-11-11 00:05:13 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-11-11 00:05:13 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-11-11 00:05:13 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-11-11 00:05:13 ----A---- C:\WINDOWS\system32\cscui.dll
2016-11-11 00:05:13 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-11-11 00:05:12 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-11 00:05:12 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-11 00:05:12 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-11 00:05:12 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-11 00:05:12 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-11-11 00:05:12 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-11-11 00:05:11 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-11 00:05:10 ----A---- C:\WINDOWS\system32\NPSM.dll
2016-11-11 00:05:10 ----A---- C:\WINDOWS\system32\msinfo32.exe
2016-11-11 00:05:08 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-11-11 00:05:06 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-11-11 00:05:05 ----A---- C:\WINDOWS\system32\wmp.dll
2016-11-11 00:05:05 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-11-11 00:05:04 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-11-11 00:05:03 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-11 00:05:03 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-11-11 00:05:03 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-11-11 00:05:02 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-11 00:05:01 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-11-11 00:05:01 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-11-11 00:04:57 ----A---- C:\WINDOWS\system32\drivers\iorate.sys
2016-11-11 00:04:54 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-11-11 00:04:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-11-11 00:04:53 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-11-11 00:04:52 ----A---- C:\WINDOWS\system32\wininet.dll
2016-11-11 00:04:52 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-11-11 00:04:52 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-11-11 00:04:52 ----A---- C:\WINDOWS\system32\iepeers.dll
2016-11-11 00:04:52 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-11-11 00:04:52 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-11-11 00:04:52 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-11-11 00:04:52 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-11-11 00:04:51 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-11-11 00:04:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-11-11 00:04:45 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-11-11 00:04:43 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-11 00:04:43 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-11-11 00:04:43 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-11-11 00:04:43 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-11 00:04:43 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-11-11 00:04:43 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-11-11 00:04:43 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-11 00:04:43 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2016-11-11 00:04:42 ----A---- C:\WINDOWS\system32\WpcTok.exe
2016-11-11 00:04:42 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-11 00:04:42 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-11-11 00:04:42 ----A---- C:\WINDOWS\system32\gameux.dll
2016-11-11 00:04:42 ----A---- C:\WINDOWS\system32\fontext.dll
2016-11-11 00:04:42 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2016-11-11 00:04:42 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-11-11 00:04:37 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-11-11 00:04:37 ----A---- C:\WINDOWS\system32\weretw.dll
2016-11-11 00:04:37 ----A---- C:\WINDOWS\system32\wer.dll
2016-11-11 00:04:37 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-11 00:04:37 ----A---- C:\WINDOWS\system32\efsext.dll
2016-11-11 00:04:37 ----A---- C:\WINDOWS\explorer.exe
2016-11-11 00:04:36 ----A---- C:\WINDOWS\system32\ddraw.dll
2016-11-11 00:04:36 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-11-11 00:04:36 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-11-11 00:04:35 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-11 00:04:35 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-11-11 00:04:35 ----A---- C:\WINDOWS\system32\DeviceCenter.dll
2016-11-11 00:04:35 ----A---- C:\WINDOWS\system32\dab.dll
2016-11-11 00:04:31 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-11-11 00:04:31 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-11-11 00:04:30 ----A---- C:\WINDOWS\system32\ole32.dll
2016-11-11 00:04:30 ----A---- C:\WINDOWS\system32\chartv.dll
2016-11-11 00:04:29 ----A---- C:\WINDOWS\system32\cdp.dll
2016-11-11 00:04:24 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2016-11-11 00:04:24 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-11-11 00:04:24 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-11-11 00:04:23 ----A---- C:\WINDOWS\system32\winresume.exe
2016-11-11 00:04:23 ----A---- C:\WINDOWS\system32\winload.exe
2016-11-11 00:04:19 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-11-11 00:04:19 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-11-11 00:04:19 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-11-11 00:04:19 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-11 00:04:19 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-11 00:04:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-11 00:04:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-11 00:04:18 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-11 00:04:16 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-11 00:04:16 ----A---- C:\WINDOWS\system32\authui.dll
2016-11-11 00:04:13 ----A---- C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-11 00:04:13 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-11-11 00:04:13 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-11-11 00:04:10 ----A---- C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-11 00:04:10 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-11-11 00:03:58 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-11-01 19:39:10 ----D---- C:\ProgramData\ESET
2016-11-01 19:39:10 ----D---- C:\Program Files\ESET
2016-10-28 16:42:11 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-10-28 16:42:11 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-10-28 16:42:11 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-28 16:42:10 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-28 16:42:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-28 16:42:07 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-28 16:42:05 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-10-28 16:41:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-28 16:41:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 16:41:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 16:41:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 16:41:54 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-10-28 16:41:52 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-10-28 16:41:52 ----A---- C:\WINDOWS\system32\energy.dll
2016-10-28 16:41:52 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-10-28 16:41:51 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2016-10-28 16:41:51 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-10-28 16:41:51 ----A---- C:\WINDOWS\system32\usocore.dll
2016-10-28 16:41:51 ----A---- C:\WINDOWS\system32\user32.dll
2016-10-28 16:41:51 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-10-28 16:41:51 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-10-28 16:41:51 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2016-10-28 16:41:50 ----A---- C:\WINDOWS\SYSWOW64\iscsiwmi.dll
2016-10-28 16:41:50 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-10-28 16:41:49 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-28 16:41:49 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-28 16:41:46 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-28 16:41:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-28 16:41:45 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-28 16:41:45 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-28 16:41:40 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-10-28 16:41:40 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-10-28 16:41:40 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-28 16:41:39 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-10-28 16:41:39 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-10-28 16:41:39 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-10-28 16:41:39 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-10-28 16:41:38 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-10-28 16:41:38 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-10-28 16:41:38 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2016-10-28 16:41:38 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-10-28 16:41:38 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-28 16:41:38 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-10-28 16:41:37 ----A---- C:\WINDOWS\system32\powercfg.exe
2016-10-28 16:41:37 ----A---- C:\WINDOWS\system32\fhcpl.dll
2016-10-28 16:41:37 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-10-28 16:41:37 ----A---- C:\WINDOWS\system32\Display.dll
2016-10-28 16:41:37 ----A---- C:\WINDOWS\system32\autoplay.dll
2016-10-28 16:41:36 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2016-10-28 16:41:36 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-28 16:41:36 ----A---- C:\WINDOWS\system32\DevicePairingFolder.dll
2016-10-28 16:41:35 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-10-28 16:41:35 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-28 16:41:35 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-10-28 16:41:35 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-10-28 16:41:33 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-10-28 16:41:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-10-28 16:41:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-10-28 16:41:32 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-10-28 16:41:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-10-28 16:41:30 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-28 16:41:29 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-10-28 16:41:29 ----A---- C:\WINDOWS\system32\mispace.dll
2016-10-28 16:41:29 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-28 16:41:28 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-28 16:41:28 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-28 16:41:28 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-28 16:41:28 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-28 16:41:28 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-28 16:41:28 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-28 16:41:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-10-28 16:41:27 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-10-28 16:41:27 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-10-28 16:41:27 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-10-28 16:41:27 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-10-28 16:41:27 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-10-28 16:41:27 ----A---- C:\WINDOWS\splwow64.exe
2016-10-28 16:41:26 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-10-28 16:41:26 ----A---- C:\WINDOWS\system32\esent.dll
2016-10-28 16:41:25 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-10-28 16:41:25 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-28 16:41:25 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-28 16:41:24 ----A---- C:\WINDOWS\SYSWOW64\wmpeffects.dll
2016-10-28 16:41:24 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-10-28 16:41:24 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-10-28 16:41:24 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-10-28 16:41:24 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2016-10-28 16:41:24 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-10-28 16:41:24 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2016-10-28 16:41:23 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2016-10-28 16:41:23 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-10-28 16:41:23 ----A---- C:\WINDOWS\system32\wmpshell.dll
2016-10-28 16:41:23 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2016-10-28 16:41:23 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-10-28 16:41:23 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-28 16:41:23 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2016-10-28 16:41:23 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-10-28 16:41:23 ----A---- C:\WINDOWS\system32\cmifw.dll
2016-10-28 16:41:22 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2016-10-28 16:41:22 ----A---- C:\WINDOWS\SYSWOW64\esentutl.exe
2016-10-28 16:41:22 ----A---- C:\WINDOWS\system32\wups.dll
2016-10-28 16:41:22 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-10-28 16:41:22 ----A---- C:\WINDOWS\system32\esentutl.exe
2016-10-28 16:41:19 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-28 16:41:19 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-10-28 16:41:19 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-10-28 16:41:19 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-10-28 16:41:18 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-10-28 16:41:18 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-10-28 16:41:18 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-28 16:41:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-10-28 16:41:15 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-28 16:41:15 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-28 16:41:15 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-28 16:41:14 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-10-28 16:41:14 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-28 16:41:13 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-10-28 16:41:13 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-10-28 16:41:11 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-10-28 16:41:11 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-10-28 16:41:11 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-28 16:41:11 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-10-28 16:41:10 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 16:41:10 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 16:41:10 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 16:41:10 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-28 16:41:10 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-28 16:41:10 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-10-28 16:41:10 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-10-28 16:41:09 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-10-28 16:41:09 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-10-28 16:41:09 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-28 16:41:09 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\system32\combase.dll
2016-10-28 16:41:08 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-28 16:41:07 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-10-28 16:41:07 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-10-28 16:41:07 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-10-28 16:41:06 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2016-10-28 16:41:06 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-10-28 16:41:06 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-28 16:41:06 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-10-28 16:41:02 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2016-10-28 16:41:02 ----A---- C:\WINDOWS\SYSWOW64\autoplay.dll
2016-10-28 16:41:02 ----A---- C:\WINDOWS\system32\EncDec.dll
2016-10-28 16:41:02 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-28 16:41:02 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-10-28 16:41:00 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-10-28 16:40:59 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-28 16:40:59 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-10-28 16:40:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-10-28 16:40:58 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-28 16:40:57 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-10-28 16:40:56 ----A---- C:\WINDOWS\system32\winmde.dll
2016-10-28 16:40:56 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-10-28 16:40:56 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-10-28 16:40:55 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-28 16:40:55 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-10-28 16:40:54 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-28 16:40:53 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-10-28 16:40:52 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-10-28 16:40:52 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-10-28 16:40:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-28 16:40:51 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-10-28 16:40:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-10-28 16:40:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-10-28 16:40:44 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-10-28 16:40:43 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-10-28 16:40:43 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-10-28 16:40:43 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-10-28 16:40:43 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-10-28 16:40:43 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-28 16:40:43 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-28 16:40:43 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-10-28 16:40:43 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-28 16:40:42 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-10-28 16:40:42 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-10-28 16:40:42 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-10-28 16:40:41 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-10-28 16:40:41 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-10-28 16:40:41 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-10-28 16:40:41 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-10-28 16:40:41 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-10-28 16:40:41 ----A---- C:\WINDOWS\system32\cdd.dll
2016-10-28 16:40:40 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-28 16:40:38 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2016-10-28 16:40:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-10-28 16:40:38 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-10-28 16:40:38 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
======List of files/folders modified in the last 1 month======
2016-11-27 19:15:56 ----D---- C:\Program Files\trend micro
2016-11-27 19:15:13 ----D---- C:\WINDOWS\Temp
2016-11-27 19:13:06 ----D---- C:\WINDOWS\Prefetch
2016-11-27 19:12:25 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-11-27 19:11:42 ----D---- C:\WINDOWS\system32\sru
2016-11-27 19:09:51 ----D---- C:\Windows
2016-11-27 19:08:56 ----D---- C:\Program Files (x86)\Common Files
2016-11-27 19:05:18 ----D---- C:\Program Files\Common Files
2016-11-27 19:04:53 ----RD---- C:\Program Files
2016-11-27 18:59:57 ----HD---- C:\ProgramData
2016-11-27 17:17:45 ----D---- C:\Users\smrzp\AppData\Roaming\.ACEStream
2016-11-27 16:59:45 ----D---- C:\WINDOWS\system32\SleepStudy
2016-11-27 16:28:05 ----AD---- C:\WINDOWS\System32
2016-11-27 16:28:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-27 13:50:17 ----D---- C:\WINDOWS\system32\config
2016-11-27 12:05:07 ----RD---- C:\WINDOWS\Microsoft.NET
2016-11-27 11:45:54 ----D---- C:\WINDOWS\AppReadiness
2016-11-27 11:45:53 ----HD---- C:\Program Files\WindowsApps
2016-11-21 17:44:42 ----D---- C:\WINDOWS\WinSxS
2016-11-21 17:44:42 ----D---- C:\WINDOWS\system32\DriverStore
2016-11-21 17:28:46 ----AD---- C:\Program Files\SUPERAntiSpyware
2016-11-17 16:39:00 ----D---- C:\Users\smrzp\AppData\Roaming\uTorrent
2016-11-17 09:59:31 ----D---- C:\Users\smrzp\AppData\Roaming\PTC
2016-11-17 09:50:51 ----SHD---- C:\WINDOWS\Installer
2016-11-17 00:11:07 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-17 00:04:25 ----RD---- C:\Program Files (x86)
2016-11-12 19:10:06 ----D---- C:\WINDOWS\system32\catroot2
2016-11-12 18:12:49 ----D---- C:\WINDOWS\rescache
2016-11-11 20:15:28 ----D---- C:\WINDOWS\INF
2016-11-11 00:32:09 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-11-11 00:32:09 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-11-11 00:32:09 ----AD---- C:\WINDOWS\SysWOW64
2016-11-11 00:32:08 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-11-11 00:32:08 ----D---- C:\WINDOWS\system32\oobe
2016-11-11 00:32:08 ----D---- C:\WINDOWS\system32\migwiz
2016-11-11 00:32:08 ----D---- C:\WINDOWS\system32\migration
2016-11-11 00:32:08 ----D---- C:\WINDOWS\system32\cs-CZ
2016-11-11 00:32:08 ----D---- C:\WINDOWS\system32\Boot
2016-11-11 00:32:07 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-11-11 00:32:07 ----D---- C:\WINDOWS\ShellExperiences
2016-11-11 00:32:07 ----D---- C:\WINDOWS\bcastdvr
2016-11-11 00:32:07 ----D---- C:\WINDOWS\AppPatch
2016-11-11 00:32:06 ----D---- C:\WINDOWS\system32\drivers
2016-11-11 00:28:24 ----D---- C:\WINDOWS\CbsTemp
2016-11-11 00:23:01 ----D---- C:\WINDOWS\system32\MRT
2016-11-11 00:19:03 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-11-10 23:03:57 ----D---- C:\Users\smrzp\AppData\Roaming\MPC-HC
2016-11-10 23:03:15 ----D---- C:\WINDOWS\system32\Tasks
2016-11-01 19:40:12 ----D---- C:\WINDOWS\system32\CatRoot
2016-11-01 19:33:38 ----AD---- C:\Program Files (x86)\K-Lite Codec Pack
2016-10-29 14:50:56 ----RSD---- C:\WINDOWS\assembly
2016-10-29 00:56:11 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-28 17:12:22 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-10-28 17:12:21 ----D---- C:\WINDOWS\system32\wbem
2016-10-28 17:12:20 ----D---- C:\WINDOWS\system32\en-US
2016-10-28 17:12:20 ----D---- C:\WINDOWS\system32\appraiser
2016-10-28 17:12:19 ----RSD---- C:\WINDOWS\Fonts
2016-10-28 17:12:19 ----D---- C:\WINDOWS\PolicyDefinitions
2016-10-28 17:12:19 ----D---- C:\Program Files\Windows Media Player
2016-10-28 17:12:19 ----D---- C:\Program Files (x86)\Windows Media Player
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2016-10-13 212096]
R0 hpdskflt;@oem28.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;@oem12.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2013-12-31 409624]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2013-09-30 19152]
R1 dtsoftbus01;@oem8.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2016-05-14 283064]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-10-13 232072]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-10-13 177792]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2016-10-13 76416]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2016-10-13 91784]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 LUMDriver;LUMDriver; \??\C:\Windows\system32\drivers\LUMDriver.sys [2008-01-02 24848]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2016-10-13 48768]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 rismxdp;@oem66.inf,%DiskServiceDesc%;Ricoh xD-Picture Card Driver; C:\WINDOWS\System32\drivers\rixdpx64.sys [2006-11-18 55296]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 Accelerometer;@oem28.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 ADIHdAudAddService;@oem16.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2009-05-18 497152]
R3 AgereSoftModem;@mdmags64.inf,%FullProductName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2016-07-16 1146880]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 AtiHDAudioService;@oem58.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 ATSwpWDF;@oem98.inf,%ATSwpWDF.SvcDesc%;AuthenTec TruePrint USB WDF Driver; C:\WINDOWS\System32\Drivers\ATSwpWDF.sys [2013-12-31 549888]
R3 e1yexpress;@oem25.inf,%E1YExpress.Service.DispName%;Intel(R) Gigabit Network Connections Driver; C:\WINDOWS\system32\DRIVERS\e1y62x64.sys [2010-04-07 290008]
R3 HBtnKey;@oem100.inf,%CPQBTTN.SvcDesc%;HP Hotkey Device; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2010-02-25 19000]
R3 HECIx64;@oem47.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-12-31 56344]
R3 HpqKbFiltr;@oem32.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2009-04-29 18432]
R3 LEqdUsb;@oem40.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF USB Filter; C:\WINDOWS\system32\DRIVERS\LEqdUsb.Sys [2015-06-18 87696]
R3 LHidEqd;@oem50.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF HID Filter; C:\WINDOWS\system32\DRIVERS\LHidEqd.Sys [2015-06-18 23184]
R3 LHidFilt;@oem69.inf,%LHidFilt.SvcDesc%;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2015-06-18 86672]
R3 LMouFilt;@oem69.inf,%LMouFilt.SvcDesc%;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2015-06-18 69264]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-08-11 175616]
R3 NETwNs64;___ Ovladaè adaptéru øady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\WINDOWS\System32\drivers\NETwNs64.sys [2016-07-16 8604672]
R3 RICOH SmartCard Reader;@oem5.inf,%RICOH.DeviceDesc%;RICOH SmartCard Reader; C:\WINDOWS\system32\DRIVERS\rismcx64.sys [2006-10-03 79488]
R3 SynTP;@oem87.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2010-06-04 1379376]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2016-06-28 15488]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S1 EpfwLWF;@oem34.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2016-06-28 61608]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-16 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-16 141152]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-16 179040]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 12504]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-08-13 172344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AEADIFilters;@oem16.inf,%AEADISRV.SvcDesc%;Andrea ADI Filters Service; C:\WINDOWS\system32\AEADISRV.EXE [2008-07-15 111616]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_493c0;CDPUserSvc_493c0; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-10-11 2815520]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2013-05-13 270624]
R2 hpsrv;@oem28.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2011-05-13 30520]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2013-12-17 46904]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2013-12-31 354840]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\AMT\LMS.exe [2013-12-31 174616]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-08-11 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 OneSyncSvc_493c0;Hostitel synchronizace_493c0; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2014-07-27 76888]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_493c0;Data kontaktů_493c0; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-07-25 324224]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2015-07-02 356808]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_493c0;Služba zasílání zpráv_493c0; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-11-16 172488]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2016-05-15 2120712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-01-21 5132888]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-07 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-09-15 823136]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivní kontrola
# AdwCleaner v6.030 - Log soubor vytvořen 28/11/2016 na 21:44:03
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-28.2 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : smrzp - HP8530P
# Beží od : C:\Users\smrzp\Desktop\adwcleaner_6.030.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\smrzp\AppData\LocalLow\.acestream
[-] Adresář smazán:C:\Users\smrzp\AppData\Roaming\.acestream
[-] Adresář smazán:C:\Users\smrzp\AppData\Roaming\acestream
[-] Adresář smazán:C:\Users\smrzp\AppData\Roaming\wyupdate au
[-] Adresář smazán:C:\Users\smrzp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\.acelive
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\.acemedia
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\.acestream
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\.tslive
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\acestream
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\AceStream.file
[#] Klíč smazán po restartování:HKCU\Software\Classes\.acelive
[#] Klíč smazán po restartování:HKCU\Software\Classes\.acemedia
[#] Klíč smazán po restartování:HKCU\Software\Classes\.acestream
[#] Klíč smazán po restartování:HKCU\Software\Classes\.tslive
[#] Klíč smazán po restartování:HKCU\Software\Classes\acestream
[#] Klíč smazán po restartování:HKCU\Software\Classes\AceStream.file
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\.acelive
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\.acemedia
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\.acestream
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\.tslive
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\acestream
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\AceStream.file
[-] Klíč smazán:HKCU\Software\Classes\CLSID\{79690976-ED6E-403C-BBBA-F8928B5EDE17}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\AceStream
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\distromatic
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
[#] Klíč smazán po restartování:HKCU\Software\AceStream
[#] Klíč smazán po restartování:HKCU\Software\distromatic
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
[#] Klíč smazán po restartování:[x64] HKCU\Software\AceStream
[#] Klíč smazán po restartování:[x64] HKCU\Software\distromatic
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
[-] Klíč smazán:HKCU\Software\Classes\Applications\ace_player.exe
[-] Klíč smazán:HKCU\Software\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Classes\Applications\ace_player.exe
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Hodnota smazána:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[-] Klíč smazán:HKLM\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
***** [ Prohlížeče ] *****
[-] Firefox nastavení vyčištěno:"extensions.customizegoogle.web.search-links" - true
[-] Firefox nastavení vyčištěno:"weboftrust.search.ask.display" - "Ask.com Web Search"
[-] Firefox nastavení vyčištěno:"weboftrust.search.avg.url" - "^hxxp(s)?\\:\\/\\/isearch\\.avg\\.com\\/search\\?"
[-] [C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazání:jdownloader-portable.en.softonic.com
[-] [C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazání:jbolfgndggfhhpbnkgnpjkfhinclbigj
[-] [C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazání:kpckgflgdapkpabemgkielbefdildaio
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [7005 Bajtů] - [28/11/2016 21:44:03]
C:\AdwCleaner\AdwCleaner[S0].txt - [6732 Bajtů] - [28/11/2016 21:42:42]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7153 Bajtů] ##########
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-28.2 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : smrzp - HP8530P
# Beží od : C:\Users\smrzp\Desktop\adwcleaner_6.030.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\smrzp\AppData\LocalLow\.acestream
[-] Adresář smazán:C:\Users\smrzp\AppData\Roaming\.acestream
[-] Adresář smazán:C:\Users\smrzp\AppData\Roaming\acestream
[-] Adresář smazán:C:\Users\smrzp\AppData\Roaming\wyupdate au
[-] Adresář smazán:C:\Users\smrzp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\.acelive
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\.acemedia
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\.acestream
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\.tslive
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\acestream
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Classes\AceStream.file
[#] Klíč smazán po restartování:HKCU\Software\Classes\.acelive
[#] Klíč smazán po restartování:HKCU\Software\Classes\.acemedia
[#] Klíč smazán po restartování:HKCU\Software\Classes\.acestream
[#] Klíč smazán po restartování:HKCU\Software\Classes\.tslive
[#] Klíč smazán po restartování:HKCU\Software\Classes\acestream
[#] Klíč smazán po restartování:HKCU\Software\Classes\AceStream.file
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\.acelive
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\.acemedia
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\.acestream
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\.tslive
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\acestream
[#] Klíč smazán po restartování:[x64] HKCU\Software\Classes\AceStream.file
[-] Klíč smazán:HKCU\Software\Classes\CLSID\{79690976-ED6E-403C-BBBA-F8928B5EDE17}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\AceStream
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\distromatic
[-] Klíč smazán:HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
[#] Klíč smazán po restartování:HKCU\Software\AceStream
[#] Klíč smazán po restartování:HKCU\Software\distromatic
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
[#] Klíč smazán po restartování:[x64] HKCU\Software\AceStream
[#] Klíč smazán po restartování:[x64] HKCU\Software\distromatic
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
[-] Klíč smazán:HKCU\Software\Classes\Applications\ace_player.exe
[-] Klíč smazán:HKCU\Software\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acelive
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acemedia
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.acestream
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tslive
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Classes\Applications\ace_player.exe
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Hodnota smazána:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[#] Hodnota smazána po restartování:[x64] HKCU\Software\Mozilla\Firefox\Extensions [acewebextension_unlisted@acestream.org]
[-] Klíč smazán:HKLM\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
***** [ Prohlížeče ] *****
[-] Firefox nastavení vyčištěno:"extensions.customizegoogle.web.search-links" - true
[-] Firefox nastavení vyčištěno:"weboftrust.search.ask.display" - "Ask.com Web Search"
[-] Firefox nastavení vyčištěno:"weboftrust.search.avg.url" - "^hxxp(s)?\\:\\/\\/isearch\\.avg\\.com\\/search\\?"
[-] [C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazání:jdownloader-portable.en.softonic.com
[-] [C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazání:jbolfgndggfhhpbnkgnpjkfhinclbigj
[-] [C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazání:kpckgflgdapkpabemgkielbefdildaio
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [7005 Bajtů] - [28/11/2016 21:44:03]
C:\AdwCleaner\AdwCleaner[S0].txt - [6732 Bajtů] - [28/11/2016 21:42:42]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7153 Bajtů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivní kontrola
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016
Ran by smrzp (administrator) on HP8530P (28-11-2016 23:13:17)
Running from C:\Users\smrzp\Desktop
Loaded Profiles: smrzp & DefaultAppPool (Available Profiles: smrzp & DefaultAppPool)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\AMT\LMS.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intel Corporation) C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Sysinternals - www.sysinternals.com) C:\Diagnostika\SysinternalsSuite\ProcessExplorer\procexp.exe
(Sysinternals - www.sysinternals.com) C:\Users\smrzp\AppData\Local\Temp\PROCEXP64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation) C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\accelerometerST.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(forum.viry.cz) C:\Users\smrzp\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2013-12-31] (Intel Corporation)
HKLM\...\Run: [picon] => C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe [358936 2013-12-31] (Intel Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM-x32\...\Run: [SoundMAXPnP] => C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [500792 2010-05-20] (Hewlett-Packard Company)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-432802336-1180566547-3327458955-1001\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.Exe [74552 2010-01-29] (Hewlett-Packard)
HKU\S-1-5-21-432802336-1180566547-3327458955-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [152064 2016-07-16] (Microsoft Corporation)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 217.195.165.131 217.195.160.10
Tcpip\..\Interfaces\{323ada43-6402-42ad-a565-2c4023635e67}: [DhcpNameServer] 217.195.165.131 217.195.160.10
Tcpip\..\Interfaces\{34b2e893-c7cd-4cb1-a6bd-4873cb1093da}: [DhcpNameServer] 217.195.165.131 217.195.160.10
Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-24] (Oracle Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-24] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-24] (Oracle Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-24] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
FireFox:
========
FF DefaultProfile: ProfilFirefox
FF ProfilePath: D:\TEMP\ProfilFirefox [2016-11-28]
FF DefaultSearchEngine: D:\TEMP\ProfilFirefox -> DuckDuckGo
FF Homepage: D:\TEMP\ProfilFirefox -> about:home
FF Session Restore: D:\TEMP\ProfilFirefox -> is enabled.
FF NetworkProxy: D:\TEMP\ProfilFirefox -> autoconfig_url", "http://es-web1/proxy/taw.pac"
FF NetworkProxy: D:\TEMP\ProfilFirefox -> type", 4
FF Extension: (Adblock Plus Pop-up Addon) - D:\TEMP\ProfilFirefox\Extensions\adblockpopups@jessehakanen.net.xpi [2016-05-01]
FF Extension: (Český slovník pro kontrolu pravopisu) - D:\TEMP\ProfilFirefox\Extensions\cs@dictionaries.addons.mozilla.org [2016-08-14]
FF Extension: (Customizations for Adblock Plus) - D:\TEMP\ProfilFirefox\Extensions\customization@adblockplus.org.xpi [2016-05-10]
FF Extension: (Element Hiding Helper for Adblock Plus) - D:\TEMP\ProfilFirefox\Extensions\elemhidehelper@adblockplus.org.xpi [2016-10-29]
FF Extension: (Firebug) - D:\TEMP\ProfilFirefox\Extensions\firebug@software.joehewitt.com.xpi [2016-10-12]
FF Extension: (Xmarks) - D:\TEMP\ProfilFirefox\Extensions\foxmarks@kei.com [2016-05-28]
FF Extension: (HTTPS Everywhere) - D:\TEMP\ProfilFirefox\Extensions\https-everywhere@eff.org.xpi [2016-11-11]
FF Extension: (Proxy Switcher) - D:\TEMP\ProfilFirefox\Extensions\jid0-hjBdm7jJii7llLkqacvGnd3gHge@jetpack.xpi [2016-10-24]
FF Extension: (Czech (CZ) Language Pack) - D:\TEMP\ProfilFirefox\Extensions\langpack-cs@firefox.mozilla.org.xpi [2016-11-16]
FF Extension: (Omnibar) - D:\TEMP\ProfilFirefox\Extensions\omnibar@ajitk.com.xpi [2016-05-01]
FF Extension: (Private Tab) - D:\TEMP\ProfilFirefox\Extensions\privateTab@infocatcher.xpi [2016-09-06]
FF Extension: (Status-4-Evar) - D:\TEMP\ProfilFirefox\Extensions\status4evar@caligonstudios.com.xpi [2016-10-12]
FF Extension: (FlashGot) - D:\TEMP\ProfilFirefox\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-03-17]
FF Extension: (Microsoft .NET Framework Assistant) - D:\TEMP\ProfilFirefox\Extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi [2015-06-01]
FF Extension: (NoScript) - D:\TEMP\ProfilFirefox\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-11-27]
FF Extension: (Adblock Plus) - D:\TEMP\ProfilFirefox\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-27]
FF Extension: (Extended Statusbar) - D:\TEMP\ProfilFirefox\Extensions\{daf44bf7-a45e-4450-979c-91cf07434c3d}.xpi [2016-06-19]
FF SearchPlugin: D:\TEMP\ProfilFirefox\searchplugins\live-search.xml [2009-02-21]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-12-18] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-24] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [2014-05-26] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-24] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @ptc.com/IsoView -> C:\Program Files (x86)\Common Files\PTC\npisoview.dll [2015-11-12] (PTC Inc.)
FF Plugin-x32: @ptc.com/ProductViewLite -> C:\Program Files (x86)\Common Files\PTC\np6_pvapplite9.dll [2015-11-12] (PTC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-432802336-1180566547-3327458955-1001: @acestream.net/acestreamplugin,version=3.1.7 -> C:\Users\smrzp\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default [2016-11-28]
CHR Extension: (Překladač Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-11-17]
CHR Extension: (Xmarks Bookmark Sync) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2015-10-03]
CHR Extension: (Disk Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-28]
CHR Extension: (Vyhledávání Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Kalendář Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-23]
CHR Extension: (Bookmark Manager) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2016-01-31]
CHR Extension: (Classic) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkacjpbfdknhflllbcmjibkdeoafencn [2014-01-21]
CHR Extension: (Instant Translate: Select and Translate) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2016-09-06]
CHR Extension: (Evernote Web) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2014-03-01]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2013-12-30]
CHR Extension: (Ace Stream Web Extension) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2016-08-07]
CHR Extension: (Delicious Bookmarks Extension) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnaelnkmidnndgikjbiifihgklnocljd [2015-10-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Prohlížeč dokumentů ve formátu PDF/PowerPoint (od společnosti Google)) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn [2013-12-30]
CHR Extension: (Evernote Web Clipper) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2016-11-16]
CHR Extension: (Gmail) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-14]
CHR HKU\S-1-5-21-432802336-1180566547-3327458955-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-08-13] (SUPERAntiSpyware.com)
R2 AEADIFilters; C:\WINDOWS\system32\AEADISRV.EXE [111616 2008-07-15] (Andrea Electronics Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2815520 2016-10-11] (ESET)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [46904 2013-12-17] (Hewlett-Packard Company)
R2 LMS; C:\Program Files (x86)\Intel\AMT\LMS.exe [174616 2013-12-31] (Intel Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2120712 2016-05-15] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-07-27] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
R2 UNS; C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2058776 2013-12-31] (Intel Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2016-05-14] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [232072 2016-10-13] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [212096 2016-10-13] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [177792 2016-10-13] (ESET)
R2 ekbdflt; C:\WINDOWS\System32\DRIVERS\ekbdflt.sys [48768 2016-10-13] (ESET)
R1 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [76416 2016-10-13] (ESET)
U1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [61608 2016-06-28] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [91784 2016-10-13] (ESET)
R3 HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [19000 2010-02-25] (Hewlett-Packard Company)
R1 LUMDriver; C:\Windows\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 RICOH SmartCard Reader; C:\WINDOWS\system32\DRIVERS\rismcx64.sys [79488 2006-10-03] (RICOH Company, Ltd.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-28 23:13 - 2016-11-28 23:13 - 00021945 _____ C:\Users\smrzp\Desktop\FRST.txt
2016-11-28 23:07 - 2016-11-28 23:08 - 00112640 _____ (forum.viry.cz) C:\Users\smrzp\Desktop\FRSTLauncher.exe
2016-11-28 23:01 - 2016-11-28 23:13 - 00000000 ____D C:\FRST
2016-11-28 23:00 - 2016-11-28 23:01 - 02411520 _____ (Farbar) C:\Users\smrzp\Desktop\FRST64.exe
2016-11-28 21:40 - 2016-11-28 21:44 - 00000000 ____D C:\AdwCleaner
2016-11-28 21:39 - 2016-11-28 21:40 - 03910208 _____ C:\Users\smrzp\Desktop\adwcleaner_6.030.exe
2016-11-27 19:06 - 2016-11-27 19:06 - 00013296 _____ C:\Users\smrzp\Documents\cc_20161127_190639.reg
2016-11-23 21:49 - 2016-11-23 21:54 - 00026000 _____ C:\Users\Public\Documents\trail.txt.6
2016-11-23 21:40 - 2016-11-23 21:45 - 00012654 _____ C:\Users\Public\Documents\trail.txt.5
2016-11-18 19:56 - 2016-11-18 19:57 - 00010522 _____ C:\Users\Public\Documents\trail.txt.4
2016-11-18 19:52 - 2016-11-18 19:52 - 00036764 _____ C:\Users\Public\Documents\prof1_p_30x30_1.inf.2
2016-11-18 19:52 - 2016-11-18 19:52 - 00036764 _____ C:\Users\Public\Documents\prof1_p_30x30_1.inf.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00217655 _____ C:\Users\Public\Documents\prof1_p_30x30_7.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00217587 _____ C:\Users\Public\Documents\prof1_p_30x30_4.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00217587 _____ C:\Users\Public\Documents\prof1_p_30x30_2.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00217572 _____ C:\Users\Public\Documents\prof1_p_30x30_5.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00215822 _____ C:\Users\Public\Documents\prof1_p_30x30_8.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00215764 _____ C:\Users\Public\Documents\prof1_p_30x30_6.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00215745 _____ C:\Users\Public\Documents\prof1_p_30x30_3.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00215739 _____ C:\Users\Public\Documents\prof1_p_30x30_1.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00214333 _____ C:\Users\Public\Documents\prof1_p_30x30_9.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00214318 _____ C:\Users\Public\Documents\prof1_p_30x30_10.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00214279 _____ C:\Users\Public\Documents\prof1_p_30x30_11.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00214264 _____ C:\Users\Public\Documents\prof1_p_30x30_12.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00000000 ____D C:\Users\smrzp\Documents\CREO3_project
2016-11-18 19:48 - 2016-11-23 21:40 - 00003958 _____ C:\Users\Public\Documents\std.out
2016-11-18 19:28 - 2016-11-18 19:52 - 00259504 _____ C:\Users\Public\Documents\trail.txt.3
2016-11-17 14:43 - 2016-11-17 14:51 - 00013922 _____ C:\Users\Public\Documents\trail.txt.2
2016-11-17 14:38 - 2016-11-18 19:37 - 00000434 _____ C:\Users\Public\Documents\config.pro
2016-11-17 10:24 - 2016-11-17 10:24 - 00005420 _____ C:\Users\smrzp\Documents\cc_20161117_102412.reg
2016-11-17 09:59 - 2016-11-17 14:39 - 00510095 _____ C:\Users\Public\Documents\trail.txt.1
2016-11-17 09:59 - 2016-11-17 14:39 - 00000000 ____D C:\Users\smrzp\AppData\Local\PTC
2016-11-17 09:59 - 2016-11-17 09:59 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\EFX
2016-11-17 09:53 - 2016-11-17 09:53 - 00001976 _____ C:\Users\Public\Desktop\PTC Creo Parametric 3.0 M070.lnk
2016-11-17 09:53 - 2016-11-17 09:53 - 00001968 _____ C:\Users\Public\Desktop\PTC Creo Modelcheck 3.0 M070.lnk
2016-11-17 09:52 - 2016-11-17 09:52 - 00001912 _____ C:\Users\Public\Desktop\PTC Creo Direct 3.0 M070.lnk
2016-11-17 09:51 - 2016-11-17 09:51 - 00002050 _____ C:\Users\Public\Desktop\PTC Creo Options Modeler 3.0 M070.lnk
2016-11-17 09:51 - 2016-11-17 09:51 - 00001946 _____ C:\Users\Public\Desktop\PTC Creo Distributed Services Manager 3.0 M070.lnk
2016-11-17 09:51 - 2016-11-17 09:51 - 00001912 _____ C:\Users\Public\Desktop\PTC Creo Layout 3.0 M070.lnk
2016-11-17 09:50 - 2016-11-17 09:50 - 00000000 ____D C:\ProgramData\PTC
2016-11-17 09:50 - 2016-11-17 09:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTC
2016-11-17 09:35 - 2016-11-17 09:35 - 00003246 _____ C:\Users\smrzp\Downloads\PTC_Creo_LINKS.zip
2016-11-17 01:07 - 2016-11-17 01:07 - 00000772 _____ C:\Users\smrzp\Documents\cc_20161117_010745.reg
2016-11-17 00:20 - 2016-11-17 00:20 - 00000000 ____D C:\temp
2016-11-17 00:14 - 2016-11-17 00:14 - 00000000 ____D C:\Program Files\Common Files\PTC
2016-11-17 00:13 - 2016-11-17 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTC Creo
2016-11-17 00:12 - 2016-11-17 01:03 - 00001191 _____ C:\Users\smrzp\Documents\pim_installmgr.log.bak
2016-11-17 00:04 - 2016-11-17 09:50 - 00000000 ____D C:\Program Files\PTC
2016-11-17 00:04 - 2016-11-17 00:04 - 00000000 ____D C:\Program Files (x86)\PTC
2016-11-16 23:58 - 2016-11-17 01:05 - 00000000 ____D C:\ptc_license
2016-11-16 22:40 - 2016-11-28 23:10 - 00000000 ____D C:\Users\smrzp\AppData\LocalLow\Mozilla
2016-11-16 22:38 - 2016-11-17 00:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-12 19:08 - 2016-11-12 19:08 - 00001816 _____ C:\Users\smrzp\Documents\cc_20161112_190812.reg
2016-11-11 00:11 - 2016-11-02 12:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-11 00:11 - 2016-11-02 12:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-11 00:11 - 2016-11-02 12:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-11 00:11 - 2016-11-02 12:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-11 00:11 - 2016-11-02 12:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-11 00:11 - 2016-11-02 12:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-11 00:11 - 2016-11-02 11:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-11 00:11 - 2016-11-02 11:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-11 00:11 - 2016-11-02 11:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-11 00:11 - 2016-11-02 11:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-11 00:11 - 2016-11-02 11:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-11 00:11 - 2016-11-02 11:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-11 00:11 - 2016-11-02 11:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-11 00:11 - 2016-11-02 11:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-11 00:11 - 2016-11-02 11:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-11 00:11 - 2016-11-02 11:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-11 00:11 - 2016-11-02 11:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-11 00:11 - 2016-11-02 11:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-11 00:11 - 2016-11-02 11:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-11 00:11 - 2016-11-02 11:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-11 00:11 - 2016-11-02 11:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-11 00:11 - 2016-11-02 11:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-11 00:11 - 2016-11-02 11:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-11 00:11 - 2016-11-02 11:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-11 00:11 - 2016-11-02 11:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-11 00:11 - 2016-11-02 11:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-11 00:11 - 2016-11-02 11:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-11 00:11 - 2016-11-02 11:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-11 00:11 - 2016-11-02 11:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-11 00:10 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-11 00:10 - 2016-11-02 13:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-11 00:10 - 2016-11-02 12:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-11 00:10 - 2016-11-02 12:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-11 00:10 - 2016-11-02 12:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-11 00:10 - 2016-11-02 12:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-11 00:10 - 2016-11-02 12:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-11 00:10 - 2016-11-02 12:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-11 00:10 - 2016-11-02 12:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-11 00:10 - 2016-11-02 12:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-11 00:10 - 2016-11-02 12:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-11 00:10 - 2016-11-02 12:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-11 00:10 - 2016-11-02 12:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-11 00:10 - 2016-11-02 12:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-11 00:10 - 2016-11-02 12:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-11 00:10 - 2016-11-02 12:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-11 00:10 - 2016-11-02 12:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-11 00:10 - 2016-11-02 11:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-11 00:10 - 2016-11-02 11:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-11 00:10 - 2016-11-02 11:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-11 00:10 - 2016-11-02 11:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-11 00:10 - 2016-11-02 11:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-11 00:10 - 2016-11-02 11:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-11 00:10 - 2016-11-02 11:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-11 00:10 - 2016-11-02 11:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-11 00:10 - 2016-11-02 11:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-11 00:10 - 2016-11-02 11:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-11 00:10 - 2016-11-02 11:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-11 00:10 - 2016-11-02 11:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-11 00:10 - 2016-11-02 11:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-11 00:10 - 2016-11-02 11:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-11 00:10 - 2016-11-02 11:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-11 00:10 - 2016-11-02 11:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-11 00:10 - 2016-11-02 11:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-11 00:10 - 2016-11-02 11:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-11 00:10 - 2016-11-02 11:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-11 00:10 - 2016-11-02 11:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-11 00:10 - 2016-11-02 11:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-11 00:10 - 2016-11-02 11:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-11 00:10 - 2016-11-02 11:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-11 00:10 - 2016-11-02 11:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-11 00:10 - 2016-11-02 11:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-11 00:10 - 2016-11-02 11:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-11 00:10 - 2016-11-02 11:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-11 00:10 - 2016-11-02 11:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-11 00:10 - 2016-11-02 11:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-11 00:10 - 2016-11-02 11:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-11 00:10 - 2016-11-02 11:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-11 00:10 - 2016-11-02 11:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-11 00:10 - 2016-11-02 11:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-11 00:10 - 2016-11-02 11:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-11 00:10 - 2016-11-02 11:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-11 00:10 - 2016-11-02 11:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-11 00:10 - 2016-11-02 11:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-11 00:10 - 2016-11-02 11:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-11 00:10 - 2016-11-02 11:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-11 00:10 - 2016-11-02 11:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-11 00:10 - 2016-11-02 11:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-11 00:10 - 2016-11-02 11:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-11 00:10 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-11 00:10 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-11 00:10 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-11 00:05 - 2016-11-02 12:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-11 00:05 - 2016-11-02 12:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-11 00:05 - 2016-11-02 12:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-11 00:05 - 2016-11-02 12:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-11 00:05 - 2016-11-02 12:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-11 00:05 - 2016-11-02 12:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-11 00:05 - 2016-11-02 12:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-11 00:05 - 2016-11-02 12:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-11 00:05 - 2016-11-02 12:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-11 00:05 - 2016-11-02 12:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-11 00:05 - 2016-11-02 12:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-11 00:05 - 2016-11-02 12:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-11 00:05 - 2016-11-02 12:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-11 00:05 - 2016-11-02 11:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-11 00:05 - 2016-11-02 11:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-11 00:05 - 2016-11-02 11:37 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2016-11-11 00:05 - 2016-11-02 11:36 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2016-11-11 00:05 - 2016-11-02 11:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-11 00:05 - 2016-11-02 11:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-11 00:05 - 2016-11-02 11:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-11 00:05 - 2016-11-02 11:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-11 00:05 - 2016-11-02 11:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-11 00:05 - 2016-11-02 11:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-11 00:05 - 2016-11-02 11:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-11 00:05 - 2016-11-02 11:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-11 00:05 - 2016-11-02 11:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-11 00:05 - 2016-11-02 11:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-11 00:05 - 2016-11-02 11:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-11 00:05 - 2016-11-02 11:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-11 00:05 - 2016-11-02 11:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-11 00:05 - 2016-11-02 11:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-11 00:05 - 2016-11-02 11:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-11 00:05 - 2016-11-02 11:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-11 00:05 - 2016-11-02 11:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-11 00:05 - 2016-11-02 11:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-11 00:05 - 2016-11-02 11:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-11 00:05 - 2016-11-02 11:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-11 00:05 - 2016-11-02 11:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-11 00:05 - 2016-11-02 11:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-11 00:05 - 2016-11-02 11:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-11 00:05 - 2016-11-02 11:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-11 00:05 - 2016-11-02 11:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-11 00:05 - 2016-11-02 11:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-11 00:05 - 2016-11-02 11:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-11 00:05 - 2016-11-02 11:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-11 00:05 - 2016-11-02 11:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-11 00:05 - 2016-11-02 11:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-11 00:05 - 2016-11-02 11:18 - 00779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2016-11-11 00:05 - 2016-11-02 11:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-11 00:05 - 2016-11-02 11:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-11 00:05 - 2016-11-02 11:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-11 00:05 - 2016-11-02 11:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-11 00:05 - 2016-11-02 11:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-11 00:05 - 2016-11-02 11:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-11 00:05 - 2016-11-02 11:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-11 00:05 - 2016-11-02 11:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-11 00:05 - 2016-11-02 11:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-11 00:05 - 2016-11-02 09:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-11 00:04 - 2016-11-02 12:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-11 00:04 - 2016-11-02 12:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-11 00:04 - 2016-11-02 12:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-11 00:04 - 2016-11-02 12:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-11 00:04 - 2016-11-02 12:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-11 00:04 - 2016-11-02 12:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-11 00:04 - 2016-11-02 12:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-11 00:04 - 2016-11-02 12:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-11 00:04 - 2016-11-02 12:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-11 00:04 - 2016-11-02 12:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-11 00:04 - 2016-11-02 12:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-11 00:04 - 2016-11-02 12:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-11 00:04 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-11 00:04 - 2016-11-02 11:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-11 00:04 - 2016-11-02 11:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-11 00:04 - 2016-11-02 11:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-11 00:04 - 2016-11-02 11:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-11 00:04 - 2016-11-02 11:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-11 00:04 - 2016-11-02 11:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-11 00:04 - 2016-11-02 11:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-11 00:04 - 2016-11-02 11:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-11 00:04 - 2016-11-02 11:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-11 00:04 - 2016-11-02 11:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-11 00:04 - 2016-11-02 11:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-11 00:04 - 2016-11-02 11:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-11 00:04 - 2016-11-02 11:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-11 00:04 - 2016-11-02 11:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-11 00:04 - 2016-11-02 11:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-11 00:04 - 2016-11-02 11:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-11 00:04 - 2016-11-02 11:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-11 00:04 - 2016-11-02 11:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-11 00:04 - 2016-11-02 11:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-11 00:04 - 2016-11-02 11:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-11 00:04 - 2016-11-02 11:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-11 00:04 - 2016-11-02 11:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-11 00:04 - 2016-11-02 11:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-11 00:04 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-11 00:04 - 2016-11-02 11:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-11 00:04 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-11 00:04 - 2016-11-02 11:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-11 00:04 - 2016-11-02 11:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-11 00:04 - 2016-11-02 11:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-11 00:04 - 2016-11-02 11:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-11 00:04 - 2016-11-02 11:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-11 00:04 - 2016-11-02 11:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-11 00:04 - 2016-11-02 11:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-11 00:04 - 2016-11-02 11:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-11 00:04 - 2016-11-02 11:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-11 00:04 - 2016-11-02 11:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-11 00:04 - 2016-11-02 11:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-11 00:04 - 2016-11-02 11:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-11 00:03 - 2016-11-02 12:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-01 19:44 - 2016-11-01 19:44 - 12128951 _____ C:\Users\smrzp\Downloads\MusicBeePortable_3_0_Update3.zip
2016-11-01 19:39 - 2016-11-01 19:39 - 00002111 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2016-11-01 19:39 - 2016-11-01 19:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-11-01 19:39 - 2016-11-01 19:39 - 00000000 ____D C:\ProgramData\ESET
2016-11-01 19:39 - 2016-11-01 19:39 - 00000000 ____D C:\Program Files\ESET
2016-11-01 19:32 - 2016-11-01 19:37 - 03134592 _____ (ESET) C:\Users\smrzp\Downloads\eset_smart_security_live_installer.exe
2016-11-01 19:31 - 2016-11-01 19:32 - 28444531 _____ (KLCP ) C:\Users\smrzp\Downloads\K-Lite_Codec_Pack_1250_Standard.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-28 23:12 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-28 22:58 - 2013-12-30 23:53 - 00000000 ____D C:\Program Files\trend micro
2016-11-28 21:56 - 2016-08-11 11:19 - 03547686 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-28 21:56 - 2016-07-16 23:25 - 01488154 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-28 21:56 - 2016-07-16 23:25 - 00407390 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-28 21:54 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-28 21:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-28 21:52 - 2016-05-14 22:22 - 00042168 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2016-11-28 21:51 - 2016-08-11 11:31 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-28 21:51 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-11-28 21:48 - 2016-08-11 11:16 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-28 21:33 - 2014-01-28 19:34 - 00000332 _____ C:\WINDOWS\Tasks\HPCeeScheduleForsmrzp.job
2016-11-27 21:54 - 2014-08-03 12:09 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-27 20:57 - 2014-01-01 18:50 - 00000000 ____D C:\Users\smrzp\Documents\Lexicon
2016-11-27 20:25 - 2016-08-11 11:31 - 00003224 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForsmrzp
2016-11-27 18:58 - 2015-09-24 11:42 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-11-27 11:45 - 2016-05-14 22:21 - 00000000 ____D C:\Users\smrzp\AppData\Local\Packages
2016-11-21 17:28 - 2014-01-01 16:57 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-11-17 16:39 - 2014-02-02 17:59 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\uTorrent
2016-11-17 09:59 - 2014-01-21 21:38 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\PTC
2016-11-17 01:10 - 2016-08-11 11:19 - 00000000 ____D C:\Users\smrzp
2016-11-17 00:11 - 2014-01-01 20:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-12 18:12 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-11 20:20 - 2016-02-13 14:14 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-11 20:06 - 2016-08-11 11:16 - 00440008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-11 00:28 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-11 00:26 - 2013-12-30 19:19 - 00002361 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 00:23 - 2013-12-30 18:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-11 00:19 - 2013-12-30 18:14 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-10 23:04 - 2015-06-01 18:47 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-10 23:03 - 2016-08-11 11:31 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-11-10 23:03 - 2015-11-15 21:38 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\MPC-HC
2016-11-01 19:34 - 2016-08-11 11:31 - 00002776 _____ C:\WINDOWS\System32\Tasks\klcp_update
2016-11-01 19:33 - 2015-11-15 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-11-01 19:33 - 2013-12-31 14:05 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-11-01 18:46 - 2013-12-30 19:18 - 00000000 ____D C:\Users\smrzp\AppData\Local\Google
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2016-05-15 09:03 - 2016-05-15 10:35 - 0000452 _____ () C:\Users\smrzp\AppData\Roaming\burnaware.ini
2013-12-30 19:17 - 2013-12-30 19:17 - 0000000 _____ () C:\Users\smrzp\AppData\Local\AtStart.txt
2016-05-15 10:34 - 2016-05-15 10:34 - 0000031 _____ () C:\Users\smrzp\AppData\Local\burnaware.ini
2013-12-30 19:17 - 2013-12-30 19:17 - 0000000 _____ () C:\Users\smrzp\AppData\Local\DSwitch.txt
2013-12-30 19:17 - 2013-12-30 19:17 - 0000000 _____ () C:\Users\smrzp\AppData\Local\QSwitch.txt
2015-12-19 21:59 - 2015-08-15 16:33 - 0000824 _____ () C:\Users\smrzp\AppData\Local\recently-used.xbel
2013-12-30 23:43 - 2016-05-15 18:51 - 0007690 _____ () C:\Users\smrzp\AppData\Local\resmon.resmoncfg
2014-02-18 16:37 - 2016-05-14 18:31 - 0000179 _____ () C:\ProgramData\HPWALog.txt
Some files in TEMP:
====================
C:\Users\smrzp\AppData\Local\Temp\libeay32.dll
C:\Users\smrzp\AppData\Local\Temp\msvcr120.dll
C:\Users\smrzp\AppData\Local\Temp\PROCEXP64.exe
C:\Users\smrzp\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-27 12:04
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Místní disk) (Fixed) (Total:118.68 GB) (Free:72.86 GB) NTFS
Drive d: (Data disk) (Fixed) (Total:232.88 GB) (Free:10.73 GB) NTFS
Available physical RAM: 1895.94 MB
Total physical RAM: 3996.26 MB
Percentage of memory in use: 52%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: FAF7CD0B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=118.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=473 MB) - (Type=27)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 175FEE70)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d04258e6c26e76.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForsmrzp.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Smart Security 10.0.369.1 (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Smart Security 10.0.369.1 (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personální firewall (Disabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\smrzp\Desktop" je 7 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream
C:\Users\smrzp\AppData\Roaming\ACEStream\engine\ace_engine.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSKAppManager
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface
"C:\Users\smrzp\AppData\Local\Akamai\netsession_win.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader
"C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NCPluginUpdater
"c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^smrzp^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Lingea Update Center.lnk
C:\PROGRA~2\COMMON~1\LINGEA~1\luc.exe
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Ran by smrzp (administrator) on HP8530P (28-11-2016 23:13:17)
Running from C:\Users\smrzp\Desktop
Loaded Profiles: smrzp & DefaultAppPool (Available Profiles: smrzp & DefaultAppPool)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\AMT\LMS.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intel Corporation) C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Sysinternals - www.sysinternals.com) C:\Diagnostika\SysinternalsSuite\ProcessExplorer\procexp.exe
(Sysinternals - www.sysinternals.com) C:\Users\smrzp\AppData\Local\Temp\PROCEXP64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation) C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\accelerometerST.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(forum.viry.cz) C:\Users\smrzp\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2013-12-31] (Intel Corporation)
HKLM\...\Run: [picon] => C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe [358936 2013-12-31] (Intel Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM-x32\...\Run: [SoundMAXPnP] => C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [WirelessAssistant] => C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [500792 2010-05-20] (Hewlett-Packard Company)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-432802336-1180566547-3327458955-1001\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.Exe [74552 2010-01-29] (Hewlett-Packard)
HKU\S-1-5-21-432802336-1180566547-3327458955-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-432802336-1180566547-3327458955-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [152064 2016-07-16] (Microsoft Corporation)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 217.195.165.131 217.195.160.10
Tcpip\..\Interfaces\{323ada43-6402-42ad-a565-2c4023635e67}: [DhcpNameServer] 217.195.165.131 217.195.160.10
Tcpip\..\Interfaces\{34b2e893-c7cd-4cb1-a6bd-4873cb1093da}: [DhcpNameServer] 217.195.165.131 217.195.160.10
Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-24] (Oracle Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-24] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-24] (Oracle Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-24] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
FireFox:
========
FF DefaultProfile: ProfilFirefox
FF ProfilePath: D:\TEMP\ProfilFirefox [2016-11-28]
FF DefaultSearchEngine: D:\TEMP\ProfilFirefox -> DuckDuckGo
FF Homepage: D:\TEMP\ProfilFirefox -> about:home
FF Session Restore: D:\TEMP\ProfilFirefox -> is enabled.
FF NetworkProxy: D:\TEMP\ProfilFirefox -> autoconfig_url", "http://es-web1/proxy/taw.pac"
FF NetworkProxy: D:\TEMP\ProfilFirefox -> type", 4
FF Extension: (Adblock Plus Pop-up Addon) - D:\TEMP\ProfilFirefox\Extensions\adblockpopups@jessehakanen.net.xpi [2016-05-01]
FF Extension: (Český slovník pro kontrolu pravopisu) - D:\TEMP\ProfilFirefox\Extensions\cs@dictionaries.addons.mozilla.org [2016-08-14]
FF Extension: (Customizations for Adblock Plus) - D:\TEMP\ProfilFirefox\Extensions\customization@adblockplus.org.xpi [2016-05-10]
FF Extension: (Element Hiding Helper for Adblock Plus) - D:\TEMP\ProfilFirefox\Extensions\elemhidehelper@adblockplus.org.xpi [2016-10-29]
FF Extension: (Firebug) - D:\TEMP\ProfilFirefox\Extensions\firebug@software.joehewitt.com.xpi [2016-10-12]
FF Extension: (Xmarks) - D:\TEMP\ProfilFirefox\Extensions\foxmarks@kei.com [2016-05-28]
FF Extension: (HTTPS Everywhere) - D:\TEMP\ProfilFirefox\Extensions\https-everywhere@eff.org.xpi [2016-11-11]
FF Extension: (Proxy Switcher) - D:\TEMP\ProfilFirefox\Extensions\jid0-hjBdm7jJii7llLkqacvGnd3gHge@jetpack.xpi [2016-10-24]
FF Extension: (Czech (CZ) Language Pack) - D:\TEMP\ProfilFirefox\Extensions\langpack-cs@firefox.mozilla.org.xpi [2016-11-16]
FF Extension: (Omnibar) - D:\TEMP\ProfilFirefox\Extensions\omnibar@ajitk.com.xpi [2016-05-01]
FF Extension: (Private Tab) - D:\TEMP\ProfilFirefox\Extensions\privateTab@infocatcher.xpi [2016-09-06]
FF Extension: (Status-4-Evar) - D:\TEMP\ProfilFirefox\Extensions\status4evar@caligonstudios.com.xpi [2016-10-12]
FF Extension: (FlashGot) - D:\TEMP\ProfilFirefox\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-03-17]
FF Extension: (Microsoft .NET Framework Assistant) - D:\TEMP\ProfilFirefox\Extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi [2015-06-01]
FF Extension: (NoScript) - D:\TEMP\ProfilFirefox\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-11-27]
FF Extension: (Adblock Plus) - D:\TEMP\ProfilFirefox\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-27]
FF Extension: (Extended Statusbar) - D:\TEMP\ProfilFirefox\Extensions\{daf44bf7-a45e-4450-979c-91cf07434c3d}.xpi [2016-06-19]
FF SearchPlugin: D:\TEMP\ProfilFirefox\searchplugins\live-search.xml [2009-02-21]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-12-18] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-24] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-20] (VideoLAN)
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [2014-05-26] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-24] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @ptc.com/IsoView -> C:\Program Files (x86)\Common Files\PTC\npisoview.dll [2015-11-12] (PTC Inc.)
FF Plugin-x32: @ptc.com/ProductViewLite -> C:\Program Files (x86)\Common Files\PTC\np6_pvapplite9.dll [2015-11-12] (PTC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-432802336-1180566547-3327458955-1001: @acestream.net/acestreamplugin,version=3.1.7 -> C:\Users\smrzp\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default [2016-11-28]
CHR Extension: (Překladač Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-11-17]
CHR Extension: (Xmarks Bookmark Sync) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2015-10-03]
CHR Extension: (Disk Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-28]
CHR Extension: (Vyhledávání Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Kalendář Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-23]
CHR Extension: (Bookmark Manager) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2016-01-31]
CHR Extension: (Classic) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkacjpbfdknhflllbcmjibkdeoafencn [2014-01-21]
CHR Extension: (Instant Translate: Select and Translate) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2016-09-06]
CHR Extension: (Evernote Web) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol [2014-03-01]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2013-12-30]
CHR Extension: (Ace Stream Web Extension) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2016-08-07]
CHR Extension: (Delicious Bookmarks Extension) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnaelnkmidnndgikjbiifihgklnocljd [2015-10-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Prohlížeč dokumentů ve formátu PDF/PowerPoint (od společnosti Google)) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn [2013-12-30]
CHR Extension: (Evernote Web Clipper) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2016-11-16]
CHR Extension: (Gmail) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\smrzp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-14]
CHR HKU\S-1-5-21-432802336-1180566547-3327458955-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-08-13] (SUPERAntiSpyware.com)
R2 AEADIFilters; C:\WINDOWS\system32\AEADISRV.EXE [111616 2008-07-15] (Andrea Electronics Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2815520 2016-10-11] (ESET)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [46904 2013-12-17] (Hewlett-Packard Company)
R2 LMS; C:\Program Files (x86)\Intel\AMT\LMS.exe [174616 2013-12-31] (Intel Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2120712 2016-05-15] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-07-27] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
R2 UNS; C:\Program Files (x86)\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2058776 2013-12-31] (Intel Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2016-05-14] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [232072 2016-10-13] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [212096 2016-10-13] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [177792 2016-10-13] (ESET)
R2 ekbdflt; C:\WINDOWS\System32\DRIVERS\ekbdflt.sys [48768 2016-10-13] (ESET)
R1 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [76416 2016-10-13] (ESET)
U1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [61608 2016-06-28] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [91784 2016-10-13] (ESET)
R3 HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [19000 2010-02-25] (Hewlett-Packard Company)
R1 LUMDriver; C:\Windows\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 RICOH SmartCard Reader; C:\WINDOWS\system32\DRIVERS\rismcx64.sys [79488 2006-10-03] (RICOH Company, Ltd.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-28 23:13 - 2016-11-28 23:13 - 00021945 _____ C:\Users\smrzp\Desktop\FRST.txt
2016-11-28 23:07 - 2016-11-28 23:08 - 00112640 _____ (forum.viry.cz) C:\Users\smrzp\Desktop\FRSTLauncher.exe
2016-11-28 23:01 - 2016-11-28 23:13 - 00000000 ____D C:\FRST
2016-11-28 23:00 - 2016-11-28 23:01 - 02411520 _____ (Farbar) C:\Users\smrzp\Desktop\FRST64.exe
2016-11-28 21:40 - 2016-11-28 21:44 - 00000000 ____D C:\AdwCleaner
2016-11-28 21:39 - 2016-11-28 21:40 - 03910208 _____ C:\Users\smrzp\Desktop\adwcleaner_6.030.exe
2016-11-27 19:06 - 2016-11-27 19:06 - 00013296 _____ C:\Users\smrzp\Documents\cc_20161127_190639.reg
2016-11-23 21:49 - 2016-11-23 21:54 - 00026000 _____ C:\Users\Public\Documents\trail.txt.6
2016-11-23 21:40 - 2016-11-23 21:45 - 00012654 _____ C:\Users\Public\Documents\trail.txt.5
2016-11-18 19:56 - 2016-11-18 19:57 - 00010522 _____ C:\Users\Public\Documents\trail.txt.4
2016-11-18 19:52 - 2016-11-18 19:52 - 00036764 _____ C:\Users\Public\Documents\prof1_p_30x30_1.inf.2
2016-11-18 19:52 - 2016-11-18 19:52 - 00036764 _____ C:\Users\Public\Documents\prof1_p_30x30_1.inf.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00217655 _____ C:\Users\Public\Documents\prof1_p_30x30_7.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00217587 _____ C:\Users\Public\Documents\prof1_p_30x30_4.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00217587 _____ C:\Users\Public\Documents\prof1_p_30x30_2.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00217572 _____ C:\Users\Public\Documents\prof1_p_30x30_5.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00215822 _____ C:\Users\Public\Documents\prof1_p_30x30_8.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00215764 _____ C:\Users\Public\Documents\prof1_p_30x30_6.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00215745 _____ C:\Users\Public\Documents\prof1_p_30x30_3.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00215739 _____ C:\Users\Public\Documents\prof1_p_30x30_1.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00214333 _____ C:\Users\Public\Documents\prof1_p_30x30_9.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00214318 _____ C:\Users\Public\Documents\prof1_p_30x30_10.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00214279 _____ C:\Users\Public\Documents\prof1_p_30x30_11.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00214264 _____ C:\Users\Public\Documents\prof1_p_30x30_12.prt.1
2016-11-18 19:51 - 2016-11-18 19:51 - 00000000 ____D C:\Users\smrzp\Documents\CREO3_project
2016-11-18 19:48 - 2016-11-23 21:40 - 00003958 _____ C:\Users\Public\Documents\std.out
2016-11-18 19:28 - 2016-11-18 19:52 - 00259504 _____ C:\Users\Public\Documents\trail.txt.3
2016-11-17 14:43 - 2016-11-17 14:51 - 00013922 _____ C:\Users\Public\Documents\trail.txt.2
2016-11-17 14:38 - 2016-11-18 19:37 - 00000434 _____ C:\Users\Public\Documents\config.pro
2016-11-17 10:24 - 2016-11-17 10:24 - 00005420 _____ C:\Users\smrzp\Documents\cc_20161117_102412.reg
2016-11-17 09:59 - 2016-11-17 14:39 - 00510095 _____ C:\Users\Public\Documents\trail.txt.1
2016-11-17 09:59 - 2016-11-17 14:39 - 00000000 ____D C:\Users\smrzp\AppData\Local\PTC
2016-11-17 09:59 - 2016-11-17 09:59 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\EFX
2016-11-17 09:53 - 2016-11-17 09:53 - 00001976 _____ C:\Users\Public\Desktop\PTC Creo Parametric 3.0 M070.lnk
2016-11-17 09:53 - 2016-11-17 09:53 - 00001968 _____ C:\Users\Public\Desktop\PTC Creo Modelcheck 3.0 M070.lnk
2016-11-17 09:52 - 2016-11-17 09:52 - 00001912 _____ C:\Users\Public\Desktop\PTC Creo Direct 3.0 M070.lnk
2016-11-17 09:51 - 2016-11-17 09:51 - 00002050 _____ C:\Users\Public\Desktop\PTC Creo Options Modeler 3.0 M070.lnk
2016-11-17 09:51 - 2016-11-17 09:51 - 00001946 _____ C:\Users\Public\Desktop\PTC Creo Distributed Services Manager 3.0 M070.lnk
2016-11-17 09:51 - 2016-11-17 09:51 - 00001912 _____ C:\Users\Public\Desktop\PTC Creo Layout 3.0 M070.lnk
2016-11-17 09:50 - 2016-11-17 09:50 - 00000000 ____D C:\ProgramData\PTC
2016-11-17 09:50 - 2016-11-17 09:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTC
2016-11-17 09:35 - 2016-11-17 09:35 - 00003246 _____ C:\Users\smrzp\Downloads\PTC_Creo_LINKS.zip
2016-11-17 01:07 - 2016-11-17 01:07 - 00000772 _____ C:\Users\smrzp\Documents\cc_20161117_010745.reg
2016-11-17 00:20 - 2016-11-17 00:20 - 00000000 ____D C:\temp
2016-11-17 00:14 - 2016-11-17 00:14 - 00000000 ____D C:\Program Files\Common Files\PTC
2016-11-17 00:13 - 2016-11-17 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTC Creo
2016-11-17 00:12 - 2016-11-17 01:03 - 00001191 _____ C:\Users\smrzp\Documents\pim_installmgr.log.bak
2016-11-17 00:04 - 2016-11-17 09:50 - 00000000 ____D C:\Program Files\PTC
2016-11-17 00:04 - 2016-11-17 00:04 - 00000000 ____D C:\Program Files (x86)\PTC
2016-11-16 23:58 - 2016-11-17 01:05 - 00000000 ____D C:\ptc_license
2016-11-16 22:40 - 2016-11-28 23:10 - 00000000 ____D C:\Users\smrzp\AppData\LocalLow\Mozilla
2016-11-16 22:38 - 2016-11-17 00:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-12 19:08 - 2016-11-12 19:08 - 00001816 _____ C:\Users\smrzp\Documents\cc_20161112_190812.reg
2016-11-11 00:11 - 2016-11-02 12:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-11 00:11 - 2016-11-02 12:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-11 00:11 - 2016-11-02 12:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-11 00:11 - 2016-11-02 12:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-11 00:11 - 2016-11-02 12:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-11 00:11 - 2016-11-02 12:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-11 00:11 - 2016-11-02 11:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-11 00:11 - 2016-11-02 11:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-11 00:11 - 2016-11-02 11:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-11 00:11 - 2016-11-02 11:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-11 00:11 - 2016-11-02 11:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-11 00:11 - 2016-11-02 11:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-11 00:11 - 2016-11-02 11:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-11 00:11 - 2016-11-02 11:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-11 00:11 - 2016-11-02 11:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-11 00:11 - 2016-11-02 11:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-11 00:11 - 2016-11-02 11:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-11 00:11 - 2016-11-02 11:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-11 00:11 - 2016-11-02 11:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-11 00:11 - 2016-11-02 11:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-11 00:11 - 2016-11-02 11:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-11 00:11 - 2016-11-02 11:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-11 00:11 - 2016-11-02 11:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-11 00:11 - 2016-11-02 11:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-11 00:11 - 2016-11-02 11:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-11 00:11 - 2016-11-02 11:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-11 00:11 - 2016-11-02 11:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-11 00:11 - 2016-11-02 11:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-11 00:11 - 2016-11-02 11:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-11 00:11 - 2016-11-02 11:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-11 00:11 - 2016-11-02 11:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-11 00:10 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-11 00:10 - 2016-11-02 13:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-11 00:10 - 2016-11-02 12:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-11 00:10 - 2016-11-02 12:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-11 00:10 - 2016-11-02 12:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-11 00:10 - 2016-11-02 12:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-11 00:10 - 2016-11-02 12:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-11 00:10 - 2016-11-02 12:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-11 00:10 - 2016-11-02 12:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-11 00:10 - 2016-11-02 12:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-11 00:10 - 2016-11-02 12:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-11 00:10 - 2016-11-02 12:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-11 00:10 - 2016-11-02 12:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-11 00:10 - 2016-11-02 12:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-11 00:10 - 2016-11-02 12:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-11 00:10 - 2016-11-02 12:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-11 00:10 - 2016-11-02 12:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-11 00:10 - 2016-11-02 11:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-11 00:10 - 2016-11-02 11:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-11 00:10 - 2016-11-02 11:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-11 00:10 - 2016-11-02 11:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-11 00:10 - 2016-11-02 11:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-11 00:10 - 2016-11-02 11:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-11 00:10 - 2016-11-02 11:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-11 00:10 - 2016-11-02 11:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-11 00:10 - 2016-11-02 11:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-11 00:10 - 2016-11-02 11:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-11 00:10 - 2016-11-02 11:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-11 00:10 - 2016-11-02 11:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-11 00:10 - 2016-11-02 11:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-11 00:10 - 2016-11-02 11:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-11 00:10 - 2016-11-02 11:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-11 00:10 - 2016-11-02 11:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-11 00:10 - 2016-11-02 11:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-11 00:10 - 2016-11-02 11:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-11 00:10 - 2016-11-02 11:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-11 00:10 - 2016-11-02 11:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-11 00:10 - 2016-11-02 11:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-11 00:10 - 2016-11-02 11:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-11 00:10 - 2016-11-02 11:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-11 00:10 - 2016-11-02 11:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-11 00:10 - 2016-11-02 11:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-11 00:10 - 2016-11-02 11:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-11 00:10 - 2016-11-02 11:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-11 00:10 - 2016-11-02 11:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-11 00:10 - 2016-11-02 11:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-11 00:10 - 2016-11-02 11:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-11 00:10 - 2016-11-02 11:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-11 00:10 - 2016-11-02 11:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-11 00:10 - 2016-11-02 11:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-11 00:10 - 2016-11-02 11:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-11 00:10 - 2016-11-02 11:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-11 00:10 - 2016-11-02 11:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-11 00:10 - 2016-11-02 11:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-11 00:10 - 2016-11-02 11:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-11 00:10 - 2016-11-02 11:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-11 00:10 - 2016-11-02 11:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-11 00:10 - 2016-11-02 11:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-11 00:10 - 2016-11-02 11:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-11 00:10 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-11 00:10 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-11 00:10 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-11 00:05 - 2016-11-02 12:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-11 00:05 - 2016-11-02 12:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-11 00:05 - 2016-11-02 12:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-11 00:05 - 2016-11-02 12:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-11 00:05 - 2016-11-02 12:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-11 00:05 - 2016-11-02 12:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-11 00:05 - 2016-11-02 12:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-11 00:05 - 2016-11-02 12:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-11 00:05 - 2016-11-02 12:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-11 00:05 - 2016-11-02 12:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-11 00:05 - 2016-11-02 12:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-11 00:05 - 2016-11-02 12:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-11 00:05 - 2016-11-02 12:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-11 00:05 - 2016-11-02 11:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-11 00:05 - 2016-11-02 11:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-11 00:05 - 2016-11-02 11:37 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2016-11-11 00:05 - 2016-11-02 11:36 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2016-11-11 00:05 - 2016-11-02 11:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-11 00:05 - 2016-11-02 11:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-11 00:05 - 2016-11-02 11:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-11 00:05 - 2016-11-02 11:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-11 00:05 - 2016-11-02 11:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-11 00:05 - 2016-11-02 11:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-11 00:05 - 2016-11-02 11:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-11 00:05 - 2016-11-02 11:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-11 00:05 - 2016-11-02 11:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-11 00:05 - 2016-11-02 11:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-11 00:05 - 2016-11-02 11:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-11 00:05 - 2016-11-02 11:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-11 00:05 - 2016-11-02 11:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-11 00:05 - 2016-11-02 11:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-11 00:05 - 2016-11-02 11:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-11 00:05 - 2016-11-02 11:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-11 00:05 - 2016-11-02 11:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-11 00:05 - 2016-11-02 11:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-11 00:05 - 2016-11-02 11:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-11 00:05 - 2016-11-02 11:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-11 00:05 - 2016-11-02 11:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-11 00:05 - 2016-11-02 11:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-11 00:05 - 2016-11-02 11:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-11 00:05 - 2016-11-02 11:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-11 00:05 - 2016-11-02 11:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-11 00:05 - 2016-11-02 11:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-11 00:05 - 2016-11-02 11:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-11 00:05 - 2016-11-02 11:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-11 00:05 - 2016-11-02 11:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-11 00:05 - 2016-11-02 11:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-11 00:05 - 2016-11-02 11:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-11 00:05 - 2016-11-02 11:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-11 00:05 - 2016-11-02 11:18 - 00779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2016-11-11 00:05 - 2016-11-02 11:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-11 00:05 - 2016-11-02 11:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-11 00:05 - 2016-11-02 11:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-11 00:05 - 2016-11-02 11:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-11 00:05 - 2016-11-02 11:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-11 00:05 - 2016-11-02 11:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-11 00:05 - 2016-11-02 11:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-11 00:05 - 2016-11-02 11:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-11 00:05 - 2016-11-02 11:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-11 00:05 - 2016-11-02 11:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-11 00:05 - 2016-11-02 11:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-11 00:05 - 2016-11-02 09:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-11 00:04 - 2016-11-02 12:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-11 00:04 - 2016-11-02 12:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-11 00:04 - 2016-11-02 12:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-11 00:04 - 2016-11-02 12:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-11 00:04 - 2016-11-02 12:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-11 00:04 - 2016-11-02 12:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-11 00:04 - 2016-11-02 12:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-11 00:04 - 2016-11-02 12:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-11 00:04 - 2016-11-02 12:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-11 00:04 - 2016-11-02 12:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-11 00:04 - 2016-11-02 12:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-11 00:04 - 2016-11-02 12:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-11 00:04 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-11 00:04 - 2016-11-02 11:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-11 00:04 - 2016-11-02 11:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-11 00:04 - 2016-11-02 11:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-11 00:04 - 2016-11-02 11:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-11 00:04 - 2016-11-02 11:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-11 00:04 - 2016-11-02 11:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-11 00:04 - 2016-11-02 11:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-11 00:04 - 2016-11-02 11:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-11 00:04 - 2016-11-02 11:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-11 00:04 - 2016-11-02 11:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-11 00:04 - 2016-11-02 11:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-11 00:04 - 2016-11-02 11:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-11 00:04 - 2016-11-02 11:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-11 00:04 - 2016-11-02 11:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-11 00:04 - 2016-11-02 11:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-11 00:04 - 2016-11-02 11:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-11 00:04 - 2016-11-02 11:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-11 00:04 - 2016-11-02 11:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-11 00:04 - 2016-11-02 11:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-11 00:04 - 2016-11-02 11:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-11 00:04 - 2016-11-02 11:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-11 00:04 - 2016-11-02 11:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-11 00:04 - 2016-11-02 11:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-11 00:04 - 2016-11-02 11:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-11 00:04 - 2016-11-02 11:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-11 00:04 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-11 00:04 - 2016-11-02 11:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-11 00:04 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-11 00:04 - 2016-11-02 11:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-11 00:04 - 2016-11-02 11:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-11 00:04 - 2016-11-02 11:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-11 00:04 - 2016-11-02 11:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-11 00:04 - 2016-11-02 11:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-11 00:04 - 2016-11-02 11:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-11 00:04 - 2016-11-02 11:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-11 00:04 - 2016-11-02 11:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-11 00:04 - 2016-11-02 11:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-11 00:04 - 2016-11-02 11:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-11 00:04 - 2016-11-02 11:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-11 00:04 - 2016-11-02 11:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-11 00:04 - 2016-11-02 11:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-11 00:03 - 2016-11-02 12:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-01 19:44 - 2016-11-01 19:44 - 12128951 _____ C:\Users\smrzp\Downloads\MusicBeePortable_3_0_Update3.zip
2016-11-01 19:39 - 2016-11-01 19:39 - 00002111 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2016-11-01 19:39 - 2016-11-01 19:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-11-01 19:39 - 2016-11-01 19:39 - 00000000 ____D C:\ProgramData\ESET
2016-11-01 19:39 - 2016-11-01 19:39 - 00000000 ____D C:\Program Files\ESET
2016-11-01 19:32 - 2016-11-01 19:37 - 03134592 _____ (ESET) C:\Users\smrzp\Downloads\eset_smart_security_live_installer.exe
2016-11-01 19:31 - 2016-11-01 19:32 - 28444531 _____ (KLCP ) C:\Users\smrzp\Downloads\K-Lite_Codec_Pack_1250_Standard.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-28 23:12 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-28 22:58 - 2013-12-30 23:53 - 00000000 ____D C:\Program Files\trend micro
2016-11-28 21:56 - 2016-08-11 11:19 - 03547686 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-28 21:56 - 2016-07-16 23:25 - 01488154 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-28 21:56 - 2016-07-16 23:25 - 00407390 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-28 21:54 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-28 21:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-28 21:52 - 2016-05-14 22:22 - 00042168 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2016-11-28 21:51 - 2016-08-11 11:31 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-28 21:51 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-11-28 21:48 - 2016-08-11 11:16 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-28 21:33 - 2014-01-28 19:34 - 00000332 _____ C:\WINDOWS\Tasks\HPCeeScheduleForsmrzp.job
2016-11-27 21:54 - 2014-08-03 12:09 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-27 20:57 - 2014-01-01 18:50 - 00000000 ____D C:\Users\smrzp\Documents\Lexicon
2016-11-27 20:25 - 2016-08-11 11:31 - 00003224 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForsmrzp
2016-11-27 18:58 - 2015-09-24 11:42 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-11-27 11:45 - 2016-05-14 22:21 - 00000000 ____D C:\Users\smrzp\AppData\Local\Packages
2016-11-21 17:28 - 2014-01-01 16:57 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2016-11-17 16:39 - 2014-02-02 17:59 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\uTorrent
2016-11-17 09:59 - 2014-01-21 21:38 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\PTC
2016-11-17 01:10 - 2016-08-11 11:19 - 00000000 ____D C:\Users\smrzp
2016-11-17 00:11 - 2014-01-01 20:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-12 18:12 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-11 20:20 - 2016-02-13 14:14 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-11 20:06 - 2016-08-11 11:16 - 00440008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-11 00:32 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-11 00:28 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-11 00:26 - 2013-12-30 19:19 - 00002361 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 00:23 - 2013-12-30 18:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-11 00:19 - 2013-12-30 18:14 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-10 23:04 - 2015-06-01 18:47 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-10 23:03 - 2016-08-11 11:31 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-11-10 23:03 - 2015-11-15 21:38 - 00000000 ____D C:\Users\smrzp\AppData\Roaming\MPC-HC
2016-11-01 19:34 - 2016-08-11 11:31 - 00002776 _____ C:\WINDOWS\System32\Tasks\klcp_update
2016-11-01 19:33 - 2015-11-15 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-11-01 19:33 - 2013-12-31 14:05 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-11-01 18:46 - 2013-12-30 19:18 - 00000000 ____D C:\Users\smrzp\AppData\Local\Google
2016-10-29 00:56 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2016-05-15 09:03 - 2016-05-15 10:35 - 0000452 _____ () C:\Users\smrzp\AppData\Roaming\burnaware.ini
2013-12-30 19:17 - 2013-12-30 19:17 - 0000000 _____ () C:\Users\smrzp\AppData\Local\AtStart.txt
2016-05-15 10:34 - 2016-05-15 10:34 - 0000031 _____ () C:\Users\smrzp\AppData\Local\burnaware.ini
2013-12-30 19:17 - 2013-12-30 19:17 - 0000000 _____ () C:\Users\smrzp\AppData\Local\DSwitch.txt
2013-12-30 19:17 - 2013-12-30 19:17 - 0000000 _____ () C:\Users\smrzp\AppData\Local\QSwitch.txt
2015-12-19 21:59 - 2015-08-15 16:33 - 0000824 _____ () C:\Users\smrzp\AppData\Local\recently-used.xbel
2013-12-30 23:43 - 2016-05-15 18:51 - 0007690 _____ () C:\Users\smrzp\AppData\Local\resmon.resmoncfg
2014-02-18 16:37 - 2016-05-14 18:31 - 0000179 _____ () C:\ProgramData\HPWALog.txt
Some files in TEMP:
====================
C:\Users\smrzp\AppData\Local\Temp\libeay32.dll
C:\Users\smrzp\AppData\Local\Temp\msvcr120.dll
C:\Users\smrzp\AppData\Local\Temp\PROCEXP64.exe
C:\Users\smrzp\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-27 12:04
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Místní disk) (Fixed) (Total:118.68 GB) (Free:72.86 GB) NTFS
Drive d: (Data disk) (Fixed) (Total:232.88 GB) (Free:10.73 GB) NTFS
Available physical RAM: 1895.94 MB
Total physical RAM: 3996.26 MB
Percentage of memory in use: 52%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: FAF7CD0B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=118.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=473 MB) - (Type=27)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 175FEE70)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d04258e6c26e76.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForsmrzp.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Smart Security 10.0.369.1 (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Smart Security 10.0.369.1 (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personální firewall (Disabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\smrzp\Desktop" je 7 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AceStream
C:\Users\smrzp\AppData\Roaming\ACEStream\engine\ace_engine.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSKAppManager
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface
"C:\Users\smrzp\AppData\Local\Akamai\netsession_win.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader
"C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NCPluginUpdater
"c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^smrzp^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Lingea Update Center.lnk
C:\PROGRA~2\COMMON~1\LINGEA~1\luc.exe
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
U3 idsvc; no ImagePath
C:\WINDOWS\system32\ApnDatabase.xml
C:\Users\smrzp\AppData\Local\Temp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivní kontrola
Fix result of Farbar Recovery Scan Tool (x64) Version: 27-11-2016
Ran by smrzp (29-11-2016 20:27:57) Run:1
Running from C:\Users\smrzp\Desktop
Loaded Profiles: smrzp & DefaultAppPool (Available Profiles: smrzp & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
U3 idsvc; no ImagePath
C:\WINDOWS\system32\ApnDatabase.xml
C:\Users\smrzp\AppData\Local\Temp
EmptyTemp:
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
idsvc => service removed successfully
Could not move "C:\WINDOWS\system32\ApnDatabase.xml" => Scheduled to move on reboot.
"C:\Users\smrzp\AppData\Local\Temp" folder move:
Could not move "C:\Users\smrzp\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 1097928 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 114513608 B
Java, Flash, Steam htmlcache => 364764884 B
Windows/system/drivers => 47436411 B
Edge => 0 B
Chrome => 531769054 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 422506 B
NetworkService => 0 B
smrzp => 868194777 B
DefaultAppPool => 0 B
RecycleBin => 0 B
EmptyTemp: => 1.8 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 29-11-2016 20:29:33)
C:\WINDOWS\system32\ApnDatabase.xml => Is moved successfully
C:\Users\smrzp\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:29:33 ====
Ran by smrzp (29-11-2016 20:27:57) Run:1
Running from C:\Users\smrzp\Desktop
Loaded Profiles: smrzp & DefaultAppPool (Available Profiles: smrzp & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
U3 idsvc; no ImagePath
C:\WINDOWS\system32\ApnDatabase.xml
C:\Users\smrzp\AppData\Local\Temp
EmptyTemp:
End
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
idsvc => service removed successfully
Could not move "C:\WINDOWS\system32\ApnDatabase.xml" => Scheduled to move on reboot.
"C:\Users\smrzp\AppData\Local\Temp" folder move:
Could not move "C:\Users\smrzp\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 1097928 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 114513608 B
Java, Flash, Steam htmlcache => 364764884 B
Windows/system/drivers => 47436411 B
Edge => 0 B
Chrome => 531769054 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 422506 B
NetworkService => 0 B
smrzp => 868194777 B
DefaultAppPool => 0 B
RecycleBin => 0 B
EmptyTemp: => 1.8 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 29-11-2016 20:29:33)
C:\WINDOWS\system32\ApnDatabase.xml => Is moved successfully
C:\Users\smrzp\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:29:33 ====
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola
Smazáno, log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivní kontrola
Děkuji,
dají se nějakým programem promazat registry?
Myslím registry již odinstalovaných programů.
dají se nějakým programem promazat registry?
Myslím registry již odinstalovaných programů.
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola
Není zač! Dají. CCleanerem: http://forum.viry.cz/viewtopic.php?f=46&t=7478 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivní kontrola
Ještě jednou děkuji.
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?