dobrý deň, prosim Vas o okontrolu logu, PC zacina pisat dva znaky po sebe a trosku pomalsie reaguje... Dakujem!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2017
Ran by Filip (administrator) on FILIPICKO (03-05-2017 19:39:20)
Running from C:\Users\Filip\Desktop
Loaded Profiles: UpdatusUser & Filip (Available Profiles: UpdatusUser & Filip)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(PornTime) C:\Users\Filip\AppData\Roaming\PT\updater.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo) C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Filip\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [404376 2015-08-09] ()
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-08] (Intel Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2891080 2013-10-17] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2013-10-17] (Realtek semiconductor)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-05] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-15] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2014-11-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2014-11-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [Spotify Web Helper] => C:\Users\Filip\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-04-20] (Spotify Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [Spotify] => C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe [7064176 2017-04-20] (Spotify Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {2f326c19-d66f-11e5-8286-d07e3530f132} - "F:\Startme.exe"
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {3eeef355-e29e-11e4-8265-d07e3530f132} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {3eeef395-e29e-11e4-8265-d07e3530f132} - "F:\HTC_Sync_Manager_PC.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
AutoConfigURL: [S-1-5-21-2823346003-503312802-3612261594-1002] => 85.214.61.81
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{185554A0-140C-4C6A-8229-85F7A3FE1298}: [DhcpNameServer] 192.168.200.1
Tcpip\..\Interfaces\{1DA3C2B7-9E93-427A-A6C4-5D1C87B81ADA}: [DhcpNameServer] 10.0.0.1
ManualProxies: 085.214.61.81
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
URLSearchHook: [S-1-5-21-2823346003-503312802-3612261594-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2823346003-503312802-3612261594-1002 -> DefaultScope {5A8B2DE6-6FBB-404B-9D11-83A0D217EAD9} URL =
SearchScopes: HKU\S-1-5-21-2823346003-503312802-3612261594-1002 -> {5A8B2DE6-6FBB-404B-9D11-83A0D217EAD9} URL =
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-19] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-19] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default [2017-04-04]
CHR Extension: (Prezentácie Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-23]
CHR Extension: (Dokumenty Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-23]
CHR Extension: (Disk Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Nepi Jano!) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiebaglkdeebobffhbomapifjjjjakj [2017-02-17]
CHR Extension: (Tabuľky Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-23]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (AdBlock) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-04]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\kanbnempkjnhadplbfgdaagijdbdbjeb [2016-12-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Gmail) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-20]
CHR Profile: C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-05-03]
CHR Extension: (Dokumenty Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-04]
CHR Extension: (Disk Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-04]
CHR Extension: (YouTube) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-04]
CHR Extension: (Adobe Acrobat) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-04]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-04]
CHR Extension: (AdBlock) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-17]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kanbnempkjnhadplbfgdaagijdbdbjeb [2017-04-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-04]
CHR Extension: (Gmail) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-03]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2016-08-18] () [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [99632 2013-10-09] (ELAN Microelectronics Corp.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-08] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-11-27] (Lenovo(beijing) Limited)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-11-21] ()
R2 PornTime Updater; C:\Users\Filip\AppData\Roaming\PT\updater.exe [165888 2015-06-15] (PornTime) [File not signed]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2013-11-21] (Intel® Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 Andbus; C:\windows\System32\drivers\lgandbus64.sys [19456 2012-03-02] (LG Electronics Inc.)
S3 AndDiag; C:\windows\system32\DRIVERS\lganddiag64.sys [27648 2012-03-02] (LG Electronics Inc.)
S3 AndGps; C:\windows\system32\DRIVERS\lgandgps64.sys [27136 2012-03-02] (LG Electronics Inc.)
S3 ANDModem; C:\windows\system32\DRIVERS\lgandmodem64.sys [34304 2012-03-02] (LG Electronics Inc.)
S3 androidusb; C:\windows\System32\Drivers\lgandadb.sys [31744 2010-08-02] (Google Inc)
R3 btmaux; C:\windows\system32\DRIVERS\btmaux.sys [140600 2013-07-23] (Motorola Solutions, Inc.)
R3 btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [1408824 2013-10-19] (Motorola Solutions, Inc.)
S3 dtlitescsibus; C:\windows\System32\drivers\dtlitescsibus.sys [30352 2015-04-27] (Disc Soft Ltd)
R3 ibtusb; C:\windows\system32\DRIVERS\ibtusb.sys [142280 2013-10-18] (Intel Corporation)
R3 LgBttPort; C:\windows\system32\DRIVERS\lgbtpt64.sys [16384 2009-09-29] (LG Electronics Inc.)
R3 lgbusenum; C:\windows\System32\drivers\lgbtbs64.sys [14848 2009-09-29] (LG Electronics Inc.)
R3 LGVMODEM; C:\windows\system32\DRIVERS\lgvmdm64.sys [17408 2009-09-29] (LG Electronics Inc.)
R3 MEIx64; C:\windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NETwNb64; C:\windows\system32\DRIVERS\NETwbw02.sys [3609568 2013-12-25] (Intel Corporation)
S3 NETwNe64; C:\windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 rtsuvc; C:\windows\system32\DRIVERS\rtsuvc.sys [8876248 2013-10-17] (Realtek Semiconductor Corp.)
S3 SWDUMon; C:\windows\system32\DRIVERS\SWDUMon.sys [16056 2016-04-23] (SlimWare Utilities, Inc.)
S0 WdBoot; C:\windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 wdm_usb; C:\windows\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
R3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 wsvd; C:\windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-03 19:39 - 2017-05-03 19:40 - 00022596 _____ C:\Users\Filip\Desktop\FRST.txt
2017-05-03 19:37 - 2017-05-03 19:37 - 00112640 _____ (forum.viry.cz) C:\Users\Filip\Desktop\FRSTLauncher.exe
2017-05-03 19:33 - 2017-05-03 19:33 - 02428928 _____ (Farbar) C:\Users\Filip\Desktop\FRST64.exe
2017-05-03 19:29 - 2017-05-03 19:29 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Google
2017-05-03 19:28 - 2017-05-03 19:28 - 00000022 _____ C:\windows\S.dirmngr
2017-05-03 19:21 - 2017-05-03 19:21 - 00001527 _____ C:\Users\Filip\Documents\petaa.txt
2017-05-03 16:33 - 2017-05-03 16:34 - 50881720 _____ C:\Users\Filip\Downloads\torbrowser-install-6.5.2_en-US.exe
2017-04-28 17:16 - 2011-06-22 07:14 - 00000000 ____D C:\Users\Filip\Downloads\Marek Brezovský-Hrana
2017-04-28 17:13 - 2017-04-28 17:15 - 183661618 _____ C:\Users\Filip\Downloads\Marek-Brezovský-Hrana.rar
2017-04-26 20:56 - 2017-05-03 16:36 - 00000000 ____D C:\Users\Filip\Downloads\Billions.S02E10.WEBRip.XviD-FUM[ettv]
2017-04-26 19:58 - 2017-04-26 19:58 - 00081874 _____ C:\Users\Filip\Documents\cc_20170426_195801.reg
2017-04-26 19:53 - 2017-04-26 19:53 - 09390672 _____ (Piriform Ltd) C:\Users\Filip\Downloads\ccsetup529.exe
2017-04-25 17:15 - 2017-04-25 17:15 - 00000000 ____D C:\Users\Filip\Downloads\The.Red.Turtle.2016.BRRip.XviD.AC3-EVO
2017-04-24 18:12 - 2017-04-24 18:12 - 00000000 ____D C:\Users\Filip\Downloads\kingthings_trypewriter
2017-04-24 18:10 - 2017-04-24 18:11 - 00075028 _____ C:\Users\Filip\Downloads\kingthings_trypewriter.zip
2017-04-23 12:09 - 2017-04-25 00:18 - 00000000 ____D C:\Users\Filip\Downloads\Control (2007) - 720p
2017-04-21 17:25 - 2017-04-21 18:12 - 00000000 ____D C:\Users\Filip\Downloads\Love.2015.V2.HDRip.XviD.AC3-EVO
2017-04-17 11:42 - 2017-04-17 11:57 - 268849663 ____R C:\Users\Filip\Downloads\Billions.S02E09.HDTV.x264-SVA[eztv].mkv
2017-04-17 00:23 - 2017-04-01 03:12 - 00835576 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2017-04-17 00:23 - 2017-04-01 03:12 - 00177656 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-14 16:23 - 2017-04-14 16:40 - 1396549774 _____ C:\Users\Filip\Downloads\WHyr.CIN-Baader-Meinhof-Komplex-Der-Baader-Meinhof-Komplex-2008-83%.mkv
2017-04-13 18:37 - 2017-04-13 18:37 - 00062665 _____ C:\Users\Filip\Downloads\Billions.S02E08.720p.HDTV.x264-AVS (+SVA+FLEET).srt
2017-04-13 18:27 - 2017-03-21 15:11 - 00875712 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00869568 _____ (Microsoft Corporation) C:\windows\system32\msvcr120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00678592 _____ (Microsoft Corporation) C:\windows\system32\msvcp120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00536768 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp120_clr0400.dll
2017-04-13 18:18 - 2017-04-13 18:22 - 244360825 ____R C:\Users\Filip\Downloads\Billions.S02E08.HDTV.x264-SVA[eztv].mkv
2017-04-13 18:11 - 2017-04-13 18:32 - 00000000 ____D C:\Users\Filip\Downloads\Finding Vivian Maier (2013)
2017-04-13 18:08 - 2017-03-25 21:39 - 20284416 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2017-04-13 18:08 - 2017-03-25 21:07 - 04604416 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2017-04-13 18:08 - 2017-03-25 21:06 - 13654016 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2017-04-13 18:08 - 2017-03-25 20:55 - 02767360 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2017-04-13 18:08 - 2017-03-25 20:52 - 02289152 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2017-04-13 18:08 - 2017-03-25 20:51 - 01313280 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2017-04-13 18:08 - 2017-03-25 20:48 - 00499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2017-04-13 18:08 - 2017-03-25 20:47 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2017-04-13 18:08 - 2017-03-25 20:47 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2017-04-13 18:08 - 2017-03-25 20:45 - 00880640 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2017-04-13 18:08 - 2017-03-25 20:45 - 00330752 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2017-04-13 18:08 - 2017-03-25 20:13 - 00576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2017-04-13 18:08 - 2017-03-25 20:10 - 02898432 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2017-04-13 18:08 - 2017-03-25 19:56 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2017-04-13 18:08 - 2017-03-25 19:52 - 25746944 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2017-04-13 18:08 - 2017-03-25 19:41 - 06045696 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2017-04-13 18:08 - 2017-03-25 19:12 - 01033216 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2017-04-13 18:08 - 2017-03-25 19:04 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2017-04-13 18:08 - 2017-03-25 19:00 - 00725504 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2017-04-13 18:08 - 2017-03-25 19:00 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2017-04-13 18:08 - 2017-03-25 18:59 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2017-04-13 18:08 - 2017-03-25 18:57 - 02131456 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2017-04-13 18:08 - 2017-03-25 18:28 - 15259136 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2017-04-13 18:08 - 2017-03-25 18:24 - 03241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2017-04-13 18:08 - 2017-03-25 18:10 - 01546240 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2017-04-13 18:08 - 2017-03-25 18:01 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2017-04-13 18:08 - 2017-03-25 06:43 - 01375960 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2017-04-13 18:08 - 2017-03-24 20:24 - 01094656 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2017-04-13 18:08 - 2017-03-14 21:06 - 00136904 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2017-04-13 18:08 - 2017-03-14 16:26 - 03714560 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2017-04-13 18:08 - 2017-03-14 16:09 - 02240512 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2017-04-13 18:08 - 2017-03-14 16:08 - 00897024 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2017-04-13 18:08 - 2017-03-14 16:06 - 00726528 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2017-04-13 18:08 - 2017-03-13 18:13 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2017-04-13 18:08 - 2017-03-13 18:12 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2017-04-13 18:08 - 2017-03-13 18:08 - 00409088 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2017-04-13 18:08 - 2017-03-13 18:08 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2017-04-13 18:08 - 2017-03-13 17:59 - 00124928 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2017-04-13 18:08 - 2017-03-13 17:59 - 00029696 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2017-04-13 18:08 - 2017-03-13 17:56 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2017-04-13 18:08 - 2017-03-12 17:04 - 00033792 ____C (Microsoft Corporation) C:\windows\system32\Drivers\BasicRender.sys
2017-04-13 18:08 - 2017-03-11 05:59 - 01763888 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2017-04-13 18:08 - 2017-03-11 05:56 - 01489608 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2017-04-13 18:08 - 2017-03-11 05:49 - 01549144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2017-04-13 18:08 - 2017-03-11 05:49 - 00388440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2017-04-13 18:08 - 2017-03-11 05:44 - 00373080 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2017-04-13 18:08 - 2017-03-11 05:41 - 00315224 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2017-04-13 18:08 - 2017-03-09 23:13 - 04169216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2017-04-13 18:08 - 2017-03-09 23:08 - 00044032 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2017-04-13 18:08 - 2017-03-09 21:29 - 00035840 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2017-04-13 18:08 - 2017-03-08 01:25 - 01661064 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2017-04-13 18:08 - 2017-03-08 01:21 - 01212760 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2017-04-13 18:08 - 2017-03-04 21:24 - 00132096 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2017-04-13 18:08 - 2017-03-04 21:06 - 00091648 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2017-04-13 18:08 - 2017-03-04 20:15 - 00077824 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2017-04-13 18:08 - 2017-03-04 18:37 - 03547648 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2017-04-13 18:08 - 2017-03-03 17:11 - 01697792 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2017-04-13 18:08 - 2017-03-03 17:10 - 00138752 _____ (Microsoft Corporation) C:\windows\system32\mfmjpegdec.dll
2017-04-13 18:08 - 2017-03-03 17:06 - 01501184 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2017-04-13 18:08 - 2017-03-03 17:04 - 00092672 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmjpegdec.dll
2017-04-13 18:08 - 2017-02-11 20:18 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
2017-04-13 18:08 - 2017-02-11 19:00 - 00865792 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2017-04-13 18:08 - 2017-02-11 18:49 - 00269824 _____ (Microsoft Corporation) C:\windows\system32\DafPrintProvider.dll
2017-04-13 18:08 - 2017-02-11 18:42 - 00204288 _____ (Microsoft Corporation) C:\windows\SysWOW64\DafPrintProvider.dll
2017-04-13 18:08 - 2017-02-10 21:06 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2017-04-13 18:08 - 2017-02-10 16:37 - 00046600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdBoot.sys
2017-04-13 18:08 - 2017-02-04 19:53 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2017-04-13 18:08 - 2017-02-04 19:51 - 00842240 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2017-04-13 18:08 - 2017-02-04 19:19 - 00065024 _____ (Microsoft Corporation) C:\windows\SysWOW64\samlib.dll
2017-04-13 18:08 - 2017-02-01 21:44 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2017-04-13 18:08 - 2017-02-01 21:42 - 00401408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2017-04-13 18:08 - 2017-01-19 04:18 - 01113944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2017-04-13 18:08 - 2017-01-18 16:35 - 00994760 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2017-04-13 18:08 - 2017-01-18 16:34 - 00922432 _____ (Microsoft Corporation) C:\windows\SysWOW64\ucrtbase.dll
2017-04-13 18:08 - 2017-01-14 22:32 - 00955016 _____ (Microsoft Corporation) C:\windows\system32\mfmp4srcsnk.dll
2017-04-13 18:08 - 2017-01-14 21:18 - 00787688 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmp4srcsnk.dll
2017-04-13 18:08 - 2017-01-14 16:37 - 00447095 _____ C:\windows\system32\ApnDatabase.xml
2017-04-13 18:08 - 2017-01-12 18:51 - 00274776 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdFilter.sys
2017-04-13 18:08 - 2017-01-12 18:51 - 00117592 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdNisDrv.sys
2017-04-13 18:08 - 2017-01-12 08:12 - 00990040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2017-04-13 18:08 - 2017-01-11 21:12 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\SessEnv.dll
2017-04-13 18:08 - 2017-01-11 19:28 - 00422744 ____C (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2017-04-13 18:08 - 2017-01-11 17:09 - 00296960 _____ (Microsoft Corporation) C:\windows\SysWOW64\SessEnv.dll
2017-04-13 18:08 - 2017-01-11 00:37 - 00138752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2017-04-13 18:08 - 2017-01-10 23:06 - 00840192 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2017-04-13 18:08 - 2017-01-10 22:46 - 01388544 _____ (Microsoft Corporation) C:\windows\system32\mispace.dll
2017-04-13 18:08 - 2017-01-10 21:20 - 00696832 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2017-04-13 18:08 - 2017-01-10 21:09 - 01108480 _____ (Microsoft Corporation) C:\windows\SysWOW64\mispace.dll
2017-04-13 18:08 - 2017-01-06 19:25 - 02513408 _____ (Microsoft Corporation) C:\windows\system32\storagewmi.dll
2017-04-13 18:08 - 2017-01-06 19:04 - 01495552 _____ (Microsoft Corporation) C:\windows\SysWOW64\storagewmi.dll
2017-04-13 18:08 - 2016-12-25 03:21 - 00040960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\scfilter.sys
2017-04-13 18:08 - 2016-12-25 03:14 - 00242176 _____ (Microsoft Corporation) C:\windows\system32\WinSCard.dll
2017-04-13 18:08 - 2016-12-25 02:48 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\certprop.dll
2017-04-13 18:08 - 2016-12-25 02:19 - 00170496 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSCard.dll
2017-04-13 18:08 - 2016-12-25 01:39 - 00133120 _____ (Microsoft Corporation) C:\windows\system32\ScDeviceEnum.dll
2017-04-13 18:08 - 2016-12-09 10:08 - 00379736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2017-04-13 17:47 - 2017-04-13 19:39 - 00000000 ____D C:\Users\Filip\Downloads\Waking Life (2001) 720p BRrip_sujaidr_TMRG
2017-04-09 22:10 - 2017-04-09 22:16 - 00000000 ____D C:\Users\Filip\Downloads\Farväl Falkenberg (Jesper Ganslandt, 2006)
2017-04-09 21:57 - 2017-04-09 22:09 - 826130728 _____ C:\Users\Filip\Downloads\Farväl-Falkenberg-(Jesper-Ganslandt,-2006).rar
2017-04-09 21:16 - 2017-04-13 18:33 - 00000000 ____D C:\Users\Filip\Downloads\The Perks of Being a Wallflower (2012) [1080p]
2017-04-03 16:55 - 2017-04-03 17:24 - 249430751 ____R C:\Users\Filip\Downloads\Billions.S02E07.HDTV.x264-SVA[eztv].mkv
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-03 19:39 - 2016-04-17 13:50 - 00000000 ____D C:\FRST
2017-05-03 19:35 - 2015-03-31 11:55 - 01515520 ___SH C:\Users\Filip\Downloads\Thumbs.db
2017-05-03 19:34 - 2015-03-23 01:36 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Spotify
2017-05-03 19:34 - 2014-11-27 23:06 - 00731772 _____ C:\windows\system32\perfh005.dat
2017-05-03 19:34 - 2014-11-27 23:06 - 00152016 _____ C:\windows\system32\perfc005.dat
2017-05-03 19:34 - 2014-03-18 11:53 - 01749406 _____ C:\windows\system32\PerfStringBackup.INI
2017-05-03 19:34 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf
2017-05-03 19:33 - 2015-03-20 19:39 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2823346003-503312802-3612261594-1002
2017-05-03 19:29 - 2015-03-23 01:37 - 00000000 ____D C:\Users\Filip\AppData\Local\Spotify
2017-05-03 19:28 - 2016-02-03 01:43 - 00000000 __SHD C:\Users\Filip\IntelGraphicsProfiles
2017-05-03 19:28 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2017-05-03 19:27 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\BBI
2017-05-03 19:25 - 2016-09-13 16:04 - 00000000 ____D C:\Betcoin Poker
2017-05-03 19:22 - 2015-03-20 19:33 - 00000000 ____D C:\Users\Filip
2017-05-03 19:22 - 2013-08-22 16:44 - 00496880 _____ C:\windows\system32\FNTCACHE.DAT
2017-05-03 16:36 - 2016-09-15 13:24 - 00000000 ____D C:\Users\Filip\Downloads\Embrace.of.the.Serpent.2015.720p.BRRip.x264.Spanish.AAC-ETRG
2017-05-03 16:35 - 2015-04-09 12:58 - 00901120 ___SH C:\Users\Filip\Desktop\Thumbs.db
2017-05-02 20:03 - 2015-03-23 01:24 - 00002238 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-02 20:03 - 2015-03-23 01:24 - 00002226 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-30 21:53 - 2016-02-26 14:02 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Microgaming
2017-04-30 09:49 - 2015-05-18 21:29 - 00003368 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA1d091a0fb3aca02
2017-04-30 09:49 - 2015-03-23 01:24 - 00003240 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-28 00:43 - 2015-04-03 18:02 - 00000000 ____D C:\Users\Filip\AppData\Roaming\uTorrent
2017-04-26 20:04 - 2017-02-12 03:11 - 00000000 ____D C:\Users\Filip\AppData\Roaming\PacificPoker
2017-04-26 19:59 - 2017-02-12 03:11 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2017-04-26 19:56 - 2016-04-24 23:48 - 00000000 ____D C:\windows\Minidump
2017-04-26 19:56 - 2015-05-13 11:04 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-04-26 19:56 - 2015-04-20 12:48 - 00000000 ____D C:\Users\Filip\AppData\Local\PDFCreator
2017-04-26 19:55 - 2016-04-19 23:01 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-04-23 16:16 - 2015-09-03 21:08 - 00000000 ____D C:\KMPlayer
2017-04-20 12:10 - 2014-11-27 22:29 - 00000000 ____D C:\Users\UpdatusUser
2017-04-17 14:04 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache
2017-04-17 12:03 - 2016-08-08 23:09 - 00000000 ____D C:\Users\Filip\Downloads\Subs
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ___RD C:\windows\ToastData
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-04-15 12:38 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness
2017-04-13 18:35 - 2015-03-24 08:36 - 00000000 ____D C:\windows\system32\MRT
2017-04-13 18:32 - 2015-03-24 08:36 - 148601744 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2017-04-13 18:31 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2017-04-12 16:46 - 2015-05-11 17:35 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2017-04-12 16:45 - 2015-05-11 17:34 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-08 00:06 - 2015-05-27 15:20 - 00532136 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2016-12-11 18:40 - 2016-12-11 18:40 - 0001719 _____ () C:\Users\Filip\AppData\Local\recently-used.xbel
2016-04-19 21:50 - 2016-06-01 21:53 - 0007625 _____ () C:\Users\Filip\AppData\Local\Resmon.ResmonCfg
2014-11-27 22:40 - 2014-11-27 22:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2017-04-26 20:04 - 2017-02-12 01:42 - 0641072 _____ (Random-Logic) C:\Users\Filip\AppData\Local\Temp\WebInstallerSD.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Filip\Desktop" je 5 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o kokntrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
- Návštěvník
- Příspěvky: 69
- Registrován: 17 lis 2005 14:23
prosím o kokntrolu logu
- Přílohy
-
- Addition.rar
- (5.12 KiB) Staženo 95 x
Re: prosím o kokntrolu logu
Additional log je neuplny, skontrolujte to a poslite ho znova.
EDIT - Chybu additional logu mozno sposobil FRSTLauncheru, skuste spravit znova scan cisto len s FRST64.exe
EDIT - Chybu additional logu mozno sposobil FRSTLauncheru, skuste spravit znova scan cisto len s FRST64.exe
-
- Návštěvník
- Příspěvky: 69
- Registrován: 17 lis 2005 14:23
Re: prosím o kokntrolu logu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-05-2017 02
Ran by Filip (administrator) on FILIPICKO (06-05-2017 09:09:58)
Running from C:\Users\Filip\Desktop
Loaded Profiles: UpdatusUser & Filip (Available Profiles: UpdatusUser & Filip)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(PornTime) C:\Users\Filip\AppData\Roaming\PT\updater.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo) C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winamp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Filip\Desktop\FRST-OlderVersion\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [404376 2015-08-09] ()
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-08] (Intel Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2891080 2013-10-17] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2013-10-17] (Realtek semiconductor)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-05] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-15] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2014-11-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2014-11-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [Spotify Web Helper] => C:\Users\Filip\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-04-20] (Spotify Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [Spotify] => C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe [7064176 2017-04-20] (Spotify Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {2f326c19-d66f-11e5-8286-d07e3530f132} - "F:\Startme.exe"
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {3eeef355-e29e-11e4-8265-d07e3530f132} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {3eeef395-e29e-11e4-8265-d07e3530f132} - "F:\HTC_Sync_Manager_PC.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
AutoConfigURL: [S-1-5-21-2823346003-503312802-3612261594-1002] => 85.214.61.81
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{185554A0-140C-4C6A-8229-85F7A3FE1298}: [DhcpNameServer] 192.168.200.1
Tcpip\..\Interfaces\{1DA3C2B7-9E93-427A-A6C4-5D1C87B81ADA}: [DhcpNameServer] 10.0.0.1
ManualProxies: 085.214.61.81
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
URLSearchHook: [S-1-5-21-2823346003-503312802-3612261594-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2823346003-503312802-3612261594-1002 -> DefaultScope {5A8B2DE6-6FBB-404B-9D11-83A0D217EAD9} URL =
SearchScopes: HKU\S-1-5-21-2823346003-503312802-3612261594-1002 -> {5A8B2DE6-6FBB-404B-9D11-83A0D217EAD9} URL =
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-19] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-19] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default [2017-04-04]
CHR Extension: (Prezentácie Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-23]
CHR Extension: (Dokumenty Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-23]
CHR Extension: (Disk Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Nepi Jano!) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiebaglkdeebobffhbomapifjjjjakj [2017-02-17]
CHR Extension: (Tabuľky Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-23]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (AdBlock) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-04]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\kanbnempkjnhadplbfgdaagijdbdbjeb [2016-12-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Gmail) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-20]
CHR Profile: C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-05-06]
CHR Extension: (Dokumenty Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-04]
CHR Extension: (Disk Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-04]
CHR Extension: (YouTube) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-04]
CHR Extension: (Adobe Acrobat) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-04]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-04]
CHR Extension: (AdBlock) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-17]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kanbnempkjnhadplbfgdaagijdbdbjeb [2017-04-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-04]
CHR Extension: (Gmail) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-03]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2016-08-18] () [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [99632 2013-10-09] (ELAN Microelectronics Corp.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-08] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-11-27] (Lenovo(beijing) Limited)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-11-21] ()
R2 PornTime Updater; C:\Users\Filip\AppData\Roaming\PT\updater.exe [165888 2015-06-15] (PornTime) [File not signed]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2013-11-21] (Intel® Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 Andbus; C:\windows\System32\drivers\lgandbus64.sys [19456 2012-03-02] (LG Electronics Inc.)
S3 AndDiag; C:\windows\system32\DRIVERS\lganddiag64.sys [27648 2012-03-02] (LG Electronics Inc.)
S3 AndGps; C:\windows\system32\DRIVERS\lgandgps64.sys [27136 2012-03-02] (LG Electronics Inc.)
S3 ANDModem; C:\windows\system32\DRIVERS\lgandmodem64.sys [34304 2012-03-02] (LG Electronics Inc.)
S3 androidusb; C:\windows\System32\Drivers\lgandadb.sys [31744 2010-08-02] (Google Inc)
R3 btmaux; C:\windows\system32\DRIVERS\btmaux.sys [140600 2013-07-23] (Motorola Solutions, Inc.)
R3 btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [1408824 2013-10-19] (Motorola Solutions, Inc.)
S3 dtlitescsibus; C:\windows\System32\drivers\dtlitescsibus.sys [30352 2015-04-27] (Disc Soft Ltd)
R3 ibtusb; C:\windows\system32\DRIVERS\ibtusb.sys [142280 2013-10-18] (Intel Corporation)
R3 LgBttPort; C:\windows\system32\DRIVERS\lgbtpt64.sys [16384 2009-09-29] (LG Electronics Inc.)
R3 lgbusenum; C:\windows\System32\drivers\lgbtbs64.sys [14848 2009-09-29] (LG Electronics Inc.)
R3 LGVMODEM; C:\windows\system32\DRIVERS\lgvmdm64.sys [17408 2009-09-29] (LG Electronics Inc.)
R3 MEIx64; C:\windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NETwNb64; C:\windows\system32\DRIVERS\NETwbw02.sys [3609568 2013-12-25] (Intel Corporation)
S3 NETwNe64; C:\windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 rtsuvc; C:\windows\system32\DRIVERS\rtsuvc.sys [8876248 2013-10-17] (Realtek Semiconductor Corp.)
S3 SWDUMon; C:\windows\system32\DRIVERS\SWDUMon.sys [16056 2016-04-23] (SlimWare Utilities, Inc.)
S0 WdBoot; C:\windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 wdm_usb; C:\windows\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
R3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 wsvd; C:\windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-06 09:09 - 2017-05-06 09:10 - 00023351 _____ C:\Users\Filip\Desktop\FRST.txt
2017-05-06 09:09 - 2017-05-06 09:09 - 00000000 ____D C:\Users\Filip\Desktop\FRST-OlderVersion
2017-05-03 19:46 - 2017-05-03 19:46 - 00005246 _____ C:\Users\Filip\Desktop\Addition.rar
2017-05-03 19:33 - 2017-05-06 09:09 - 02429440 _____ (Farbar) C:\Users\Filip\Desktop\FRST64.exe
2017-05-03 19:29 - 2017-05-03 19:29 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Google
2017-05-03 19:28 - 2017-05-03 19:28 - 00000022 _____ C:\windows\S.dirmngr
2017-05-03 19:21 - 2017-05-03 19:21 - 00001527 _____ C:\Users\Filip\Documents\petaa.txt
2017-05-03 16:33 - 2017-05-03 16:34 - 50881720 _____ C:\Users\Filip\Downloads\torbrowser-install-6.5.2_en-US.exe
2017-04-28 17:16 - 2011-06-22 07:14 - 00000000 ____D C:\Users\Filip\Downloads\Marek Brezovský-Hrana
2017-04-28 17:13 - 2017-04-28 17:15 - 183661618 _____ C:\Users\Filip\Downloads\Marek-Brezovský-Hrana.rar
2017-04-26 20:56 - 2017-05-03 16:36 - 00000000 ____D C:\Users\Filip\Downloads\Billions.S02E10.WEBRip.XviD-FUM[ettv]
2017-04-26 19:58 - 2017-04-26 19:58 - 00081874 _____ C:\Users\Filip\Documents\cc_20170426_195801.reg
2017-04-26 19:53 - 2017-04-26 19:53 - 09390672 _____ (Piriform Ltd) C:\Users\Filip\Downloads\ccsetup529.exe
2017-04-25 17:15 - 2017-05-04 18:05 - 00000000 ____D C:\Users\Filip\Downloads\The.Red.Turtle.2016.BRRip.XviD.AC3-EVO
2017-04-24 18:12 - 2017-04-24 18:12 - 00000000 ____D C:\Users\Filip\Downloads\kingthings_trypewriter
2017-04-24 18:10 - 2017-04-24 18:11 - 00075028 _____ C:\Users\Filip\Downloads\kingthings_trypewriter.zip
2017-04-23 12:09 - 2017-04-25 00:18 - 00000000 ____D C:\Users\Filip\Downloads\Control (2007) - 720p
2017-04-21 17:25 - 2017-04-21 18:12 - 00000000 ____D C:\Users\Filip\Downloads\Love.2015.V2.HDRip.XviD.AC3-EVO
2017-04-17 11:42 - 2017-04-17 11:57 - 268849663 ____R C:\Users\Filip\Downloads\Billions.S02E09.HDTV.x264-SVA[eztv].mkv
2017-04-17 00:23 - 2017-04-01 03:12 - 00835576 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2017-04-17 00:23 - 2017-04-01 03:12 - 00177656 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-14 16:23 - 2017-04-14 16:40 - 1396549774 _____ C:\Users\Filip\Downloads\WHyr.CIN-Baader-Meinhof-Komplex-Der-Baader-Meinhof-Komplex-2008-83%.mkv
2017-04-13 18:37 - 2017-04-13 18:37 - 00062665 _____ C:\Users\Filip\Downloads\Billions.S02E08.720p.HDTV.x264-AVS (+SVA+FLEET).srt
2017-04-13 18:27 - 2017-03-21 15:11 - 00875712 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00869568 _____ (Microsoft Corporation) C:\windows\system32\msvcr120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00678592 _____ (Microsoft Corporation) C:\windows\system32\msvcp120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00536768 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp120_clr0400.dll
2017-04-13 18:18 - 2017-04-13 18:22 - 244360825 ____R C:\Users\Filip\Downloads\Billions.S02E08.HDTV.x264-SVA[eztv].mkv
2017-04-13 18:11 - 2017-04-13 18:32 - 00000000 ____D C:\Users\Filip\Downloads\Finding Vivian Maier (2013)
2017-04-13 18:08 - 2017-03-25 21:39 - 20284416 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2017-04-13 18:08 - 2017-03-25 21:07 - 04604416 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2017-04-13 18:08 - 2017-03-25 21:06 - 13654016 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2017-04-13 18:08 - 2017-03-25 20:55 - 02767360 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2017-04-13 18:08 - 2017-03-25 20:52 - 02289152 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2017-04-13 18:08 - 2017-03-25 20:51 - 01313280 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2017-04-13 18:08 - 2017-03-25 20:48 - 00499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2017-04-13 18:08 - 2017-03-25 20:47 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2017-04-13 18:08 - 2017-03-25 20:47 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2017-04-13 18:08 - 2017-03-25 20:45 - 00880640 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2017-04-13 18:08 - 2017-03-25 20:45 - 00330752 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2017-04-13 18:08 - 2017-03-25 20:13 - 00576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2017-04-13 18:08 - 2017-03-25 20:10 - 02898432 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2017-04-13 18:08 - 2017-03-25 19:56 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2017-04-13 18:08 - 2017-03-25 19:52 - 25746944 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2017-04-13 18:08 - 2017-03-25 19:41 - 06045696 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2017-04-13 18:08 - 2017-03-25 19:12 - 01033216 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2017-04-13 18:08 - 2017-03-25 19:04 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2017-04-13 18:08 - 2017-03-25 19:00 - 00725504 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2017-04-13 18:08 - 2017-03-25 19:00 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2017-04-13 18:08 - 2017-03-25 18:59 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2017-04-13 18:08 - 2017-03-25 18:57 - 02131456 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2017-04-13 18:08 - 2017-03-25 18:28 - 15259136 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2017-04-13 18:08 - 2017-03-25 18:24 - 03241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2017-04-13 18:08 - 2017-03-25 18:10 - 01546240 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2017-04-13 18:08 - 2017-03-25 18:01 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2017-04-13 18:08 - 2017-03-25 06:43 - 01375960 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2017-04-13 18:08 - 2017-03-24 20:24 - 01094656 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2017-04-13 18:08 - 2017-03-14 21:06 - 00136904 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2017-04-13 18:08 - 2017-03-14 16:26 - 03714560 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2017-04-13 18:08 - 2017-03-14 16:09 - 02240512 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2017-04-13 18:08 - 2017-03-14 16:08 - 00897024 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2017-04-13 18:08 - 2017-03-14 16:06 - 00726528 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2017-04-13 18:08 - 2017-03-13 18:13 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2017-04-13 18:08 - 2017-03-13 18:12 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2017-04-13 18:08 - 2017-03-13 18:08 - 00409088 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2017-04-13 18:08 - 2017-03-13 18:08 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2017-04-13 18:08 - 2017-03-13 17:59 - 00124928 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2017-04-13 18:08 - 2017-03-13 17:59 - 00029696 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2017-04-13 18:08 - 2017-03-13 17:56 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2017-04-13 18:08 - 2017-03-12 17:04 - 00033792 ____C (Microsoft Corporation) C:\windows\system32\Drivers\BasicRender.sys
2017-04-13 18:08 - 2017-03-11 05:59 - 01763888 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2017-04-13 18:08 - 2017-03-11 05:56 - 01489608 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2017-04-13 18:08 - 2017-03-11 05:49 - 01549144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2017-04-13 18:08 - 2017-03-11 05:49 - 00388440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2017-04-13 18:08 - 2017-03-11 05:44 - 00373080 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2017-04-13 18:08 - 2017-03-11 05:41 - 00315224 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2017-04-13 18:08 - 2017-03-09 23:13 - 04169216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2017-04-13 18:08 - 2017-03-09 23:08 - 00044032 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2017-04-13 18:08 - 2017-03-09 21:29 - 00035840 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2017-04-13 18:08 - 2017-03-08 01:25 - 01661064 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2017-04-13 18:08 - 2017-03-08 01:21 - 01212760 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2017-04-13 18:08 - 2017-03-04 21:24 - 00132096 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2017-04-13 18:08 - 2017-03-04 21:06 - 00091648 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2017-04-13 18:08 - 2017-03-04 20:15 - 00077824 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2017-04-13 18:08 - 2017-03-04 18:37 - 03547648 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2017-04-13 18:08 - 2017-03-03 17:11 - 01697792 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2017-04-13 18:08 - 2017-03-03 17:10 - 00138752 _____ (Microsoft Corporation) C:\windows\system32\mfmjpegdec.dll
2017-04-13 18:08 - 2017-03-03 17:06 - 01501184 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2017-04-13 18:08 - 2017-03-03 17:04 - 00092672 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmjpegdec.dll
2017-04-13 18:08 - 2017-02-11 20:18 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
2017-04-13 18:08 - 2017-02-11 19:00 - 00865792 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2017-04-13 18:08 - 2017-02-11 18:49 - 00269824 _____ (Microsoft Corporation) C:\windows\system32\DafPrintProvider.dll
2017-04-13 18:08 - 2017-02-11 18:42 - 00204288 _____ (Microsoft Corporation) C:\windows\SysWOW64\DafPrintProvider.dll
2017-04-13 18:08 - 2017-02-10 21:06 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2017-04-13 18:08 - 2017-02-10 16:37 - 00046600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdBoot.sys
2017-04-13 18:08 - 2017-02-04 19:53 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2017-04-13 18:08 - 2017-02-04 19:51 - 00842240 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2017-04-13 18:08 - 2017-02-04 19:19 - 00065024 _____ (Microsoft Corporation) C:\windows\SysWOW64\samlib.dll
2017-04-13 18:08 - 2017-02-01 21:44 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2017-04-13 18:08 - 2017-02-01 21:42 - 00401408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2017-04-13 18:08 - 2017-01-19 04:18 - 01113944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2017-04-13 18:08 - 2017-01-18 16:35 - 00994760 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2017-04-13 18:08 - 2017-01-18 16:34 - 00922432 _____ (Microsoft Corporation) C:\windows\SysWOW64\ucrtbase.dll
2017-04-13 18:08 - 2017-01-14 22:32 - 00955016 _____ (Microsoft Corporation) C:\windows\system32\mfmp4srcsnk.dll
2017-04-13 18:08 - 2017-01-14 21:18 - 00787688 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmp4srcsnk.dll
2017-04-13 18:08 - 2017-01-14 16:37 - 00447095 _____ C:\windows\system32\ApnDatabase.xml
2017-04-13 18:08 - 2017-01-12 18:51 - 00274776 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdFilter.sys
2017-04-13 18:08 - 2017-01-12 18:51 - 00117592 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdNisDrv.sys
2017-04-13 18:08 - 2017-01-12 08:12 - 00990040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2017-04-13 18:08 - 2017-01-11 21:12 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\SessEnv.dll
2017-04-13 18:08 - 2017-01-11 19:28 - 00422744 ____C (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2017-04-13 18:08 - 2017-01-11 17:09 - 00296960 _____ (Microsoft Corporation) C:\windows\SysWOW64\SessEnv.dll
2017-04-13 18:08 - 2017-01-11 00:37 - 00138752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2017-04-13 18:08 - 2017-01-10 23:06 - 00840192 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2017-04-13 18:08 - 2017-01-10 22:46 - 01388544 _____ (Microsoft Corporation) C:\windows\system32\mispace.dll
2017-04-13 18:08 - 2017-01-10 21:20 - 00696832 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2017-04-13 18:08 - 2017-01-10 21:09 - 01108480 _____ (Microsoft Corporation) C:\windows\SysWOW64\mispace.dll
2017-04-13 18:08 - 2017-01-06 19:25 - 02513408 _____ (Microsoft Corporation) C:\windows\system32\storagewmi.dll
2017-04-13 18:08 - 2017-01-06 19:04 - 01495552 _____ (Microsoft Corporation) C:\windows\SysWOW64\storagewmi.dll
2017-04-13 18:08 - 2016-12-25 03:21 - 00040960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\scfilter.sys
2017-04-13 18:08 - 2016-12-25 03:14 - 00242176 _____ (Microsoft Corporation) C:\windows\system32\WinSCard.dll
2017-04-13 18:08 - 2016-12-25 02:48 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\certprop.dll
2017-04-13 18:08 - 2016-12-25 02:19 - 00170496 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSCard.dll
2017-04-13 18:08 - 2016-12-25 01:39 - 00133120 _____ (Microsoft Corporation) C:\windows\system32\ScDeviceEnum.dll
2017-04-13 18:08 - 2016-12-09 10:08 - 00379736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2017-04-13 17:47 - 2017-04-13 19:39 - 00000000 ____D C:\Users\Filip\Downloads\Waking Life (2001) 720p BRrip_sujaidr_TMRG
2017-04-09 22:10 - 2017-04-09 22:16 - 00000000 ____D C:\Users\Filip\Downloads\Farväl Falkenberg (Jesper Ganslandt, 2006)
2017-04-09 21:57 - 2017-04-09 22:09 - 826130728 _____ C:\Users\Filip\Downloads\Farväl-Falkenberg-(Jesper-Ganslandt,-2006).rar
2017-04-09 21:16 - 2017-04-13 18:33 - 00000000 ____D C:\Users\Filip\Downloads\The Perks of Being a Wallflower (2012) [1080p]
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-06 09:00 - 2015-03-23 01:36 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Spotify
2017-05-05 23:10 - 2015-03-23 01:37 - 00000000 ____D C:\Users\Filip\AppData\Local\Spotify
2017-05-05 01:04 - 2015-05-11 17:35 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-04 18:06 - 2015-03-31 11:55 - 01515520 ___SH C:\Users\Filip\Downloads\Thumbs.db
2017-05-03 21:03 - 2015-03-20 19:39 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2823346003-503312802-3612261594-1002
2017-05-03 20:17 - 2014-11-27 23:06 - 00731772 _____ C:\windows\system32\perfh005.dat
2017-05-03 20:17 - 2014-11-27 23:06 - 00152016 _____ C:\windows\system32\perfc005.dat
2017-05-03 20:17 - 2014-03-18 11:53 - 01749406 _____ C:\windows\system32\PerfStringBackup.INI
2017-05-03 20:17 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf
2017-05-03 19:39 - 2016-04-17 13:50 - 00000000 ____D C:\FRST
2017-05-03 19:28 - 2016-02-03 01:43 - 00000000 __SHD C:\Users\Filip\IntelGraphicsProfiles
2017-05-03 19:28 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2017-05-03 19:27 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\BBI
2017-05-03 19:25 - 2016-09-13 16:04 - 00000000 ____D C:\Betcoin Poker
2017-05-03 19:22 - 2015-03-20 19:33 - 00000000 ____D C:\Users\Filip
2017-05-03 19:22 - 2013-08-22 16:44 - 00496880 _____ C:\windows\system32\FNTCACHE.DAT
2017-05-03 16:36 - 2016-09-15 13:24 - 00000000 ____D C:\Users\Filip\Downloads\Embrace.of.the.Serpent.2015.720p.BRRip.x264.Spanish.AAC-ETRG
2017-05-03 16:35 - 2015-04-09 12:58 - 00901120 ___SH C:\Users\Filip\Desktop\Thumbs.db
2017-05-02 20:03 - 2015-03-23 01:24 - 00002238 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-02 20:03 - 2015-03-23 01:24 - 00002226 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-30 21:53 - 2016-02-26 14:02 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Microgaming
2017-04-30 09:49 - 2015-05-18 21:29 - 00003368 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA1d091a0fb3aca02
2017-04-30 09:49 - 2015-03-23 01:24 - 00003240 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-28 00:43 - 2015-04-03 18:02 - 00000000 ____D C:\Users\Filip\AppData\Roaming\uTorrent
2017-04-26 20:04 - 2017-02-12 03:11 - 00000000 ____D C:\Users\Filip\AppData\Roaming\PacificPoker
2017-04-26 19:59 - 2017-02-12 03:11 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2017-04-26 19:56 - 2016-04-24 23:48 - 00000000 ____D C:\windows\Minidump
2017-04-26 19:56 - 2015-05-13 11:04 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-04-26 19:56 - 2015-04-20 12:48 - 00000000 ____D C:\Users\Filip\AppData\Local\PDFCreator
2017-04-26 19:55 - 2016-04-19 23:01 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-04-23 16:16 - 2015-09-03 21:08 - 00000000 ____D C:\KMPlayer
2017-04-20 12:10 - 2014-11-27 22:29 - 00000000 ____D C:\Users\UpdatusUser
2017-04-17 14:04 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache
2017-04-17 12:03 - 2016-08-08 23:09 - 00000000 ____D C:\Users\Filip\Downloads\Subs
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ___RD C:\windows\ToastData
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-04-15 12:38 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness
2017-04-13 18:35 - 2015-03-24 08:36 - 00000000 ____D C:\windows\system32\MRT
2017-04-13 18:32 - 2015-03-24 08:36 - 148601744 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2017-04-13 18:31 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2017-04-12 16:45 - 2015-05-11 17:34 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-08 00:06 - 2015-05-27 15:20 - 00532136 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2016-12-11 18:40 - 2016-12-11 18:40 - 0001719 _____ () C:\Users\Filip\AppData\Local\recently-used.xbel
2016-04-19 21:50 - 2016-06-01 21:53 - 0007625 _____ () C:\Users\Filip\AppData\Local\Resmon.ResmonCfg
2014-11-27 22:40 - 2014-11-27 22:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2017-04-26 20:04 - 2017-02-12 01:42 - 0641072 _____ (Random-Logic) C:\Users\Filip\AppData\Local\Temp\WebInstallerSD.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Filip\Desktop" je 7 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by Filip (administrator) on FILIPICKO (06-05-2017 09:09:58)
Running from C:\Users\Filip\Desktop
Loaded Profiles: UpdatusUser & Filip (Available Profiles: UpdatusUser & Filip)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(PornTime) C:\Users\Filip\AppData\Roaming\PT\updater.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo) C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Spotify Ltd) C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winamp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Filip\Desktop\FRST-OlderVersion\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [404376 2015-08-09] ()
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-08] (Intel Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2891080 2013-10-17] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2013-10-17] (Realtek semiconductor)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-05] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-15] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2014-11-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2014-11-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [Spotify Web Helper] => C:\Users\Filip\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-04-20] (Spotify Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [Spotify] => C:\Users\Filip\AppData\Roaming\Spotify\Spotify.exe [7064176 2017-04-20] (Spotify Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd)
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {2f326c19-d66f-11e5-8286-d07e3530f132} - "F:\Startme.exe"
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {3eeef355-e29e-11e4-8265-d07e3530f132} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\...\MountPoints2: {3eeef395-e29e-11e4-8265-d07e3530f132} - "F:\HTC_Sync_Manager_PC.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
AutoConfigURL: [S-1-5-21-2823346003-503312802-3612261594-1002] => 85.214.61.81
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{185554A0-140C-4C6A-8229-85F7A3FE1298}: [DhcpNameServer] 192.168.200.1
Tcpip\..\Interfaces\{1DA3C2B7-9E93-427A-A6C4-5D1C87B81ADA}: [DhcpNameServer] 10.0.0.1
ManualProxies: 085.214.61.81
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2823346003-503312802-3612261594-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
URLSearchHook: [S-1-5-21-2823346003-503312802-3612261594-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2823346003-503312802-3612261594-1002 -> DefaultScope {5A8B2DE6-6FBB-404B-9D11-83A0D217EAD9} URL =
SearchScopes: HKU\S-1-5-21-2823346003-503312802-3612261594-1002 -> {5A8B2DE6-6FBB-404B-9D11-83A0D217EAD9} URL =
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-19] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-19] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default [2017-04-04]
CHR Extension: (Prezentácie Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-23]
CHR Extension: (Dokumenty Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-23]
CHR Extension: (Disk Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Nepi Jano!) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiebaglkdeebobffhbomapifjjjjakj [2017-02-17]
CHR Extension: (Tabuľky Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-23]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (AdBlock) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-04]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\kanbnempkjnhadplbfgdaagijdbdbjeb [2016-12-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Gmail) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-20]
CHR Profile: C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-05-06]
CHR Extension: (Dokumenty Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-04]
CHR Extension: (Disk Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-04]
CHR Extension: (YouTube) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-04]
CHR Extension: (Adobe Acrobat) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-04]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-04]
CHR Extension: (AdBlock) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-17]
CHR Extension: (Auto Replay for YouTube™) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kanbnempkjnhadplbfgdaagijdbdbjeb [2017-04-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-04]
CHR Extension: (Gmail) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-03]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2016-08-18] () [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [99632 2013-10-09] (ELAN Microelectronics Corp.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-08] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-11-27] (Lenovo(beijing) Limited)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-11-21] ()
R2 PornTime Updater; C:\Users\Filip\AppData\Roaming\PT\updater.exe [165888 2015-06-15] (PornTime) [File not signed]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2013-11-21] (Intel® Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 Andbus; C:\windows\System32\drivers\lgandbus64.sys [19456 2012-03-02] (LG Electronics Inc.)
S3 AndDiag; C:\windows\system32\DRIVERS\lganddiag64.sys [27648 2012-03-02] (LG Electronics Inc.)
S3 AndGps; C:\windows\system32\DRIVERS\lgandgps64.sys [27136 2012-03-02] (LG Electronics Inc.)
S3 ANDModem; C:\windows\system32\DRIVERS\lgandmodem64.sys [34304 2012-03-02] (LG Electronics Inc.)
S3 androidusb; C:\windows\System32\Drivers\lgandadb.sys [31744 2010-08-02] (Google Inc)
R3 btmaux; C:\windows\system32\DRIVERS\btmaux.sys [140600 2013-07-23] (Motorola Solutions, Inc.)
R3 btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [1408824 2013-10-19] (Motorola Solutions, Inc.)
S3 dtlitescsibus; C:\windows\System32\drivers\dtlitescsibus.sys [30352 2015-04-27] (Disc Soft Ltd)
R3 ibtusb; C:\windows\system32\DRIVERS\ibtusb.sys [142280 2013-10-18] (Intel Corporation)
R3 LgBttPort; C:\windows\system32\DRIVERS\lgbtpt64.sys [16384 2009-09-29] (LG Electronics Inc.)
R3 lgbusenum; C:\windows\System32\drivers\lgbtbs64.sys [14848 2009-09-29] (LG Electronics Inc.)
R3 LGVMODEM; C:\windows\system32\DRIVERS\lgvmdm64.sys [17408 2009-09-29] (LG Electronics Inc.)
R3 MEIx64; C:\windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NETwNb64; C:\windows\system32\DRIVERS\NETwbw02.sys [3609568 2013-12-25] (Intel Corporation)
S3 NETwNe64; C:\windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 rtsuvc; C:\windows\system32\DRIVERS\rtsuvc.sys [8876248 2013-10-17] (Realtek Semiconductor Corp.)
S3 SWDUMon; C:\windows\system32\DRIVERS\SWDUMon.sys [16056 2016-04-23] (SlimWare Utilities, Inc.)
S0 WdBoot; C:\windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 wdm_usb; C:\windows\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
R3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 wsvd; C:\windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-06 09:09 - 2017-05-06 09:10 - 00023351 _____ C:\Users\Filip\Desktop\FRST.txt
2017-05-06 09:09 - 2017-05-06 09:09 - 00000000 ____D C:\Users\Filip\Desktop\FRST-OlderVersion
2017-05-03 19:46 - 2017-05-03 19:46 - 00005246 _____ C:\Users\Filip\Desktop\Addition.rar
2017-05-03 19:33 - 2017-05-06 09:09 - 02429440 _____ (Farbar) C:\Users\Filip\Desktop\FRST64.exe
2017-05-03 19:29 - 2017-05-03 19:29 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Google
2017-05-03 19:28 - 2017-05-03 19:28 - 00000022 _____ C:\windows\S.dirmngr
2017-05-03 19:21 - 2017-05-03 19:21 - 00001527 _____ C:\Users\Filip\Documents\petaa.txt
2017-05-03 16:33 - 2017-05-03 16:34 - 50881720 _____ C:\Users\Filip\Downloads\torbrowser-install-6.5.2_en-US.exe
2017-04-28 17:16 - 2011-06-22 07:14 - 00000000 ____D C:\Users\Filip\Downloads\Marek Brezovský-Hrana
2017-04-28 17:13 - 2017-04-28 17:15 - 183661618 _____ C:\Users\Filip\Downloads\Marek-Brezovský-Hrana.rar
2017-04-26 20:56 - 2017-05-03 16:36 - 00000000 ____D C:\Users\Filip\Downloads\Billions.S02E10.WEBRip.XviD-FUM[ettv]
2017-04-26 19:58 - 2017-04-26 19:58 - 00081874 _____ C:\Users\Filip\Documents\cc_20170426_195801.reg
2017-04-26 19:53 - 2017-04-26 19:53 - 09390672 _____ (Piriform Ltd) C:\Users\Filip\Downloads\ccsetup529.exe
2017-04-25 17:15 - 2017-05-04 18:05 - 00000000 ____D C:\Users\Filip\Downloads\The.Red.Turtle.2016.BRRip.XviD.AC3-EVO
2017-04-24 18:12 - 2017-04-24 18:12 - 00000000 ____D C:\Users\Filip\Downloads\kingthings_trypewriter
2017-04-24 18:10 - 2017-04-24 18:11 - 00075028 _____ C:\Users\Filip\Downloads\kingthings_trypewriter.zip
2017-04-23 12:09 - 2017-04-25 00:18 - 00000000 ____D C:\Users\Filip\Downloads\Control (2007) - 720p
2017-04-21 17:25 - 2017-04-21 18:12 - 00000000 ____D C:\Users\Filip\Downloads\Love.2015.V2.HDRip.XviD.AC3-EVO
2017-04-17 11:42 - 2017-04-17 11:57 - 268849663 ____R C:\Users\Filip\Downloads\Billions.S02E09.HDTV.x264-SVA[eztv].mkv
2017-04-17 00:23 - 2017-04-01 03:12 - 00835576 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2017-04-17 00:23 - 2017-04-01 03:12 - 00177656 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-14 16:23 - 2017-04-14 16:40 - 1396549774 _____ C:\Users\Filip\Downloads\WHyr.CIN-Baader-Meinhof-Komplex-Der-Baader-Meinhof-Komplex-2008-83%.mkv
2017-04-13 18:37 - 2017-04-13 18:37 - 00062665 _____ C:\Users\Filip\Downloads\Billions.S02E08.720p.HDTV.x264-AVS (+SVA+FLEET).srt
2017-04-13 18:27 - 2017-03-21 15:11 - 00875712 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00869568 _____ (Microsoft Corporation) C:\windows\system32\msvcr120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00678592 _____ (Microsoft Corporation) C:\windows\system32\msvcp120_clr0400.dll
2017-04-13 18:27 - 2017-03-21 15:11 - 00536768 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp120_clr0400.dll
2017-04-13 18:18 - 2017-04-13 18:22 - 244360825 ____R C:\Users\Filip\Downloads\Billions.S02E08.HDTV.x264-SVA[eztv].mkv
2017-04-13 18:11 - 2017-04-13 18:32 - 00000000 ____D C:\Users\Filip\Downloads\Finding Vivian Maier (2013)
2017-04-13 18:08 - 2017-03-25 21:39 - 20284416 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2017-04-13 18:08 - 2017-03-25 21:07 - 04604416 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2017-04-13 18:08 - 2017-03-25 21:06 - 13654016 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2017-04-13 18:08 - 2017-03-25 20:55 - 02767360 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2017-04-13 18:08 - 2017-03-25 20:52 - 02289152 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2017-04-13 18:08 - 2017-03-25 20:51 - 01313280 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2017-04-13 18:08 - 2017-03-25 20:48 - 00499200 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2017-04-13 18:08 - 2017-03-25 20:47 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2017-04-13 18:08 - 2017-03-25 20:47 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2017-04-13 18:08 - 2017-03-25 20:46 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2017-04-13 18:08 - 2017-03-25 20:45 - 00880640 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2017-04-13 18:08 - 2017-03-25 20:45 - 00330752 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2017-04-13 18:08 - 2017-03-25 20:13 - 00576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2017-04-13 18:08 - 2017-03-25 20:10 - 02898432 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2017-04-13 18:08 - 2017-03-25 19:56 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2017-04-13 18:08 - 2017-03-25 19:52 - 25746944 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2017-04-13 18:08 - 2017-03-25 19:41 - 06045696 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2017-04-13 18:08 - 2017-03-25 19:12 - 01033216 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2017-04-13 18:08 - 2017-03-25 19:04 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2017-04-13 18:08 - 2017-03-25 19:00 - 00725504 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2017-04-13 18:08 - 2017-03-25 19:00 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2017-04-13 18:08 - 2017-03-25 18:59 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2017-04-13 18:08 - 2017-03-25 18:57 - 02131456 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2017-04-13 18:08 - 2017-03-25 18:28 - 15259136 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2017-04-13 18:08 - 2017-03-25 18:24 - 03241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2017-04-13 18:08 - 2017-03-25 18:10 - 01546240 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2017-04-13 18:08 - 2017-03-25 18:01 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2017-04-13 18:08 - 2017-03-25 06:43 - 01375960 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2017-04-13 18:08 - 2017-03-24 20:24 - 01094656 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2017-04-13 18:08 - 2017-03-14 21:06 - 00136904 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2017-04-13 18:08 - 2017-03-14 16:26 - 03714560 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2017-04-13 18:08 - 2017-03-14 16:09 - 02240512 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2017-04-13 18:08 - 2017-03-14 16:08 - 00897024 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2017-04-13 18:08 - 2017-03-14 16:06 - 00726528 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2017-04-13 18:08 - 2017-03-13 18:13 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2017-04-13 18:08 - 2017-03-13 18:12 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2017-04-13 18:08 - 2017-03-13 18:08 - 00409088 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2017-04-13 18:08 - 2017-03-13 18:08 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2017-04-13 18:08 - 2017-03-13 17:59 - 00124928 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2017-04-13 18:08 - 2017-03-13 17:59 - 00029696 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2017-04-13 18:08 - 2017-03-13 17:56 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2017-04-13 18:08 - 2017-03-12 17:04 - 00033792 ____C (Microsoft Corporation) C:\windows\system32\Drivers\BasicRender.sys
2017-04-13 18:08 - 2017-03-11 05:59 - 01763888 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2017-04-13 18:08 - 2017-03-11 05:56 - 01489608 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2017-04-13 18:08 - 2017-03-11 05:49 - 01549144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2017-04-13 18:08 - 2017-03-11 05:49 - 00388440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2017-04-13 18:08 - 2017-03-11 05:44 - 00373080 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2017-04-13 18:08 - 2017-03-11 05:41 - 00315224 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2017-04-13 18:08 - 2017-03-09 23:13 - 04169216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2017-04-13 18:08 - 2017-03-09 23:08 - 00044032 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2017-04-13 18:08 - 2017-03-09 21:29 - 00035840 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2017-04-13 18:08 - 2017-03-08 01:25 - 01661064 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2017-04-13 18:08 - 2017-03-08 01:21 - 01212760 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2017-04-13 18:08 - 2017-03-04 21:24 - 00132096 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2017-04-13 18:08 - 2017-03-04 21:06 - 00091648 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2017-04-13 18:08 - 2017-03-04 20:15 - 00077824 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2017-04-13 18:08 - 2017-03-04 18:37 - 03547648 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2017-04-13 18:08 - 2017-03-03 17:11 - 01697792 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2017-04-13 18:08 - 2017-03-03 17:10 - 00138752 _____ (Microsoft Corporation) C:\windows\system32\mfmjpegdec.dll
2017-04-13 18:08 - 2017-03-03 17:06 - 01501184 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2017-04-13 18:08 - 2017-03-03 17:04 - 00092672 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmjpegdec.dll
2017-04-13 18:08 - 2017-02-11 20:18 - 00477184 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
2017-04-13 18:08 - 2017-02-11 19:00 - 00865792 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2017-04-13 18:08 - 2017-02-11 18:49 - 00269824 _____ (Microsoft Corporation) C:\windows\system32\DafPrintProvider.dll
2017-04-13 18:08 - 2017-02-11 18:42 - 00204288 _____ (Microsoft Corporation) C:\windows\SysWOW64\DafPrintProvider.dll
2017-04-13 18:08 - 2017-02-10 21:06 - 00285184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2017-04-13 18:08 - 2017-02-10 16:37 - 00046600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdBoot.sys
2017-04-13 18:08 - 2017-02-04 19:53 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2017-04-13 18:08 - 2017-02-04 19:51 - 00842240 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2017-04-13 18:08 - 2017-02-04 19:19 - 00065024 _____ (Microsoft Corporation) C:\windows\SysWOW64\samlib.dll
2017-04-13 18:08 - 2017-02-01 21:44 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2017-04-13 18:08 - 2017-02-01 21:42 - 00401408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2017-04-13 18:08 - 2017-01-19 04:18 - 01113944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2017-04-13 18:08 - 2017-01-18 16:35 - 00994760 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2017-04-13 18:08 - 2017-01-18 16:34 - 00922432 _____ (Microsoft Corporation) C:\windows\SysWOW64\ucrtbase.dll
2017-04-13 18:08 - 2017-01-14 22:32 - 00955016 _____ (Microsoft Corporation) C:\windows\system32\mfmp4srcsnk.dll
2017-04-13 18:08 - 2017-01-14 21:18 - 00787688 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmp4srcsnk.dll
2017-04-13 18:08 - 2017-01-14 16:37 - 00447095 _____ C:\windows\system32\ApnDatabase.xml
2017-04-13 18:08 - 2017-01-12 18:51 - 00274776 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdFilter.sys
2017-04-13 18:08 - 2017-01-12 18:51 - 00117592 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdNisDrv.sys
2017-04-13 18:08 - 2017-01-12 08:12 - 00990040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2017-04-13 18:08 - 2017-01-11 21:12 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\SessEnv.dll
2017-04-13 18:08 - 2017-01-11 19:28 - 00422744 ____C (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2017-04-13 18:08 - 2017-01-11 17:09 - 00296960 _____ (Microsoft Corporation) C:\windows\SysWOW64\SessEnv.dll
2017-04-13 18:08 - 2017-01-11 00:37 - 00138752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2017-04-13 18:08 - 2017-01-10 23:06 - 00840192 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2017-04-13 18:08 - 2017-01-10 22:46 - 01388544 _____ (Microsoft Corporation) C:\windows\system32\mispace.dll
2017-04-13 18:08 - 2017-01-10 21:20 - 00696832 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2017-04-13 18:08 - 2017-01-10 21:09 - 01108480 _____ (Microsoft Corporation) C:\windows\SysWOW64\mispace.dll
2017-04-13 18:08 - 2017-01-06 19:25 - 02513408 _____ (Microsoft Corporation) C:\windows\system32\storagewmi.dll
2017-04-13 18:08 - 2017-01-06 19:04 - 01495552 _____ (Microsoft Corporation) C:\windows\SysWOW64\storagewmi.dll
2017-04-13 18:08 - 2016-12-25 03:21 - 00040960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\scfilter.sys
2017-04-13 18:08 - 2016-12-25 03:14 - 00242176 _____ (Microsoft Corporation) C:\windows\system32\WinSCard.dll
2017-04-13 18:08 - 2016-12-25 02:48 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\certprop.dll
2017-04-13 18:08 - 2016-12-25 02:19 - 00170496 _____ (Microsoft Corporation) C:\windows\SysWOW64\WinSCard.dll
2017-04-13 18:08 - 2016-12-25 01:39 - 00133120 _____ (Microsoft Corporation) C:\windows\system32\ScDeviceEnum.dll
2017-04-13 18:08 - 2016-12-09 10:08 - 00379736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2017-04-13 17:47 - 2017-04-13 19:39 - 00000000 ____D C:\Users\Filip\Downloads\Waking Life (2001) 720p BRrip_sujaidr_TMRG
2017-04-09 22:10 - 2017-04-09 22:16 - 00000000 ____D C:\Users\Filip\Downloads\Farväl Falkenberg (Jesper Ganslandt, 2006)
2017-04-09 21:57 - 2017-04-09 22:09 - 826130728 _____ C:\Users\Filip\Downloads\Farväl-Falkenberg-(Jesper-Ganslandt,-2006).rar
2017-04-09 21:16 - 2017-04-13 18:33 - 00000000 ____D C:\Users\Filip\Downloads\The Perks of Being a Wallflower (2012) [1080p]
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-05-06 09:00 - 2015-03-23 01:36 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Spotify
2017-05-05 23:10 - 2015-03-23 01:37 - 00000000 ____D C:\Users\Filip\AppData\Local\Spotify
2017-05-05 01:04 - 2015-05-11 17:35 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-04 18:06 - 2015-03-31 11:55 - 01515520 ___SH C:\Users\Filip\Downloads\Thumbs.db
2017-05-03 21:03 - 2015-03-20 19:39 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2823346003-503312802-3612261594-1002
2017-05-03 20:17 - 2014-11-27 23:06 - 00731772 _____ C:\windows\system32\perfh005.dat
2017-05-03 20:17 - 2014-11-27 23:06 - 00152016 _____ C:\windows\system32\perfc005.dat
2017-05-03 20:17 - 2014-03-18 11:53 - 01749406 _____ C:\windows\system32\PerfStringBackup.INI
2017-05-03 20:17 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf
2017-05-03 19:39 - 2016-04-17 13:50 - 00000000 ____D C:\FRST
2017-05-03 19:28 - 2016-02-03 01:43 - 00000000 __SHD C:\Users\Filip\IntelGraphicsProfiles
2017-05-03 19:28 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2017-05-03 19:27 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\BBI
2017-05-03 19:25 - 2016-09-13 16:04 - 00000000 ____D C:\Betcoin Poker
2017-05-03 19:22 - 2015-03-20 19:33 - 00000000 ____D C:\Users\Filip
2017-05-03 19:22 - 2013-08-22 16:44 - 00496880 _____ C:\windows\system32\FNTCACHE.DAT
2017-05-03 16:36 - 2016-09-15 13:24 - 00000000 ____D C:\Users\Filip\Downloads\Embrace.of.the.Serpent.2015.720p.BRRip.x264.Spanish.AAC-ETRG
2017-05-03 16:35 - 2015-04-09 12:58 - 00901120 ___SH C:\Users\Filip\Desktop\Thumbs.db
2017-05-02 20:03 - 2015-03-23 01:24 - 00002238 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-02 20:03 - 2015-03-23 01:24 - 00002226 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-30 21:53 - 2016-02-26 14:02 - 00000000 ____D C:\Users\Filip\AppData\Roaming\Microgaming
2017-04-30 09:49 - 2015-05-18 21:29 - 00003368 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA1d091a0fb3aca02
2017-04-30 09:49 - 2015-03-23 01:24 - 00003240 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-28 00:43 - 2015-04-03 18:02 - 00000000 ____D C:\Users\Filip\AppData\Roaming\uTorrent
2017-04-26 20:04 - 2017-02-12 03:11 - 00000000 ____D C:\Users\Filip\AppData\Roaming\PacificPoker
2017-04-26 19:59 - 2017-02-12 03:11 - 00000000 ____D C:\Program Files (x86)\PacificPoker
2017-04-26 19:56 - 2016-04-24 23:48 - 00000000 ____D C:\windows\Minidump
2017-04-26 19:56 - 2015-05-13 11:04 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-04-26 19:56 - 2015-04-20 12:48 - 00000000 ____D C:\Users\Filip\AppData\Local\PDFCreator
2017-04-26 19:55 - 2016-04-19 23:01 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-04-23 16:16 - 2015-09-03 21:08 - 00000000 ____D C:\KMPlayer
2017-04-20 12:10 - 2014-11-27 22:29 - 00000000 ____D C:\Users\UpdatusUser
2017-04-17 14:04 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache
2017-04-17 12:03 - 2016-08-08 23:09 - 00000000 ____D C:\Users\Filip\Downloads\Subs
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ___RD C:\windows\ToastData
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2017-04-17 00:16 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-04-15 12:38 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness
2017-04-13 18:35 - 2015-03-24 08:36 - 00000000 ____D C:\windows\system32\MRT
2017-04-13 18:32 - 2015-03-24 08:36 - 148601744 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2017-04-13 18:31 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2017-04-12 16:45 - 2015-05-11 17:34 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-08 00:06 - 2015-05-27 15:20 - 00532136 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2016-12-11 18:40 - 2016-12-11 18:40 - 0001719 _____ () C:\Users\Filip\AppData\Local\recently-used.xbel
2016-04-19 21:50 - 2016-06-01 21:53 - 0007625 _____ () C:\Users\Filip\AppData\Local\Resmon.ResmonCfg
2014-11-27 22:40 - 2014-11-27 22:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2017-04-26 20:04 - 2017-02-12 01:42 - 0641072 _____ (Random-Logic) C:\Users\Filip\AppData\Local\Temp\WebInstallerSD.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Filip\Desktop" je 7 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Re: prosím o kokntrolu logu
Potrobujem log z nazvom addition.txt, aktualne ste mi poslali FRST.txt
-
- Návštěvník
- Příspěvky: 69
- Registrován: 17 lis 2005 14:23
Re: prosím o kokntrolu logu
V pc mate Spybot - Search & Destroy ktory uz nema skoro ziadny ucinok, odporucam odinstalovat.
Pre zrychlenie pc by mohlo pomouct odinstalovat nepotrebne programy, odporucam odinstalovavat cez ccleaner, napr. samotne lenovo tam dava vela programov ktore clovek nikdy nevyuzije.
Skuste pc vycistit s ccleanerom, v casti Cleaner vycistite pc od nepotrebnych suborov, v casti Registry vycistte registre ( Pred pouzitim odporucam urobit ich zalohu ktoru CCleaner ponuka. Cistenie registrov zopakujte aspon 2-3x), V casti Tools-Startup vypnite aplikacie ktore nepotrebujete hned spustit pri starte windows.
Tak isto v pc vydim asi nejake asi pozostatky po programe DriverUpdate, mate ho este v pc nainstalovani ? Zaroven vam neodporucam pouzivat programy na optimalizaciu, zrychlenie... pc kedze prevazne maju iba opacny ucinok, vynimkou je ccleaner.
V pocitaci je nejaky vymenitelny disk F, mohli by te mi opisat jeho obsah ? Ci ho pouzivate, co mate na nom ulozene...
Otvorte poznamkovy blok a nakopirujte do neho text nizsie, ulozte ho na plochu ako fixlist.txt. Spustite FRST a kliknite na Fix. Po dokonceni sa vytvori fixlog.txt a ten mi sem poslite.
Pre zrychlenie pc by mohlo pomouct odinstalovat nepotrebne programy, odporucam odinstalovavat cez ccleaner, napr. samotne lenovo tam dava vela programov ktore clovek nikdy nevyuzije.
Skuste pc vycistit s ccleanerom, v casti Cleaner vycistite pc od nepotrebnych suborov, v casti Registry vycistte registre ( Pred pouzitim odporucam urobit ich zalohu ktoru CCleaner ponuka. Cistenie registrov zopakujte aspon 2-3x), V casti Tools-Startup vypnite aplikacie ktore nepotrebujete hned spustit pri starte windows.
Tak isto v pc vydim asi nejake asi pozostatky po programe DriverUpdate, mate ho este v pc nainstalovani ? Zaroven vam neodporucam pouzivat programy na optimalizaciu, zrychlenie... pc kedze prevazne maju iba opacny ucinok, vynimkou je ccleaner.
V pocitaci je nejaky vymenitelny disk F, mohli by te mi opisat jeho obsah ? Ci ho pouzivate, co mate na nom ulozene...
Otvorte poznamkovy blok a nakopirujte do neho text nizsie, ulozte ho na plochu ako fixlist.txt. Spustite FRST a kliknite na Fix. Po dokonceni sa vytvori fixlog.txt a ten mi sem poslite.
Kód: Vybrat vše
Start
CloseProcesses:
EmptyTemp:
Task: {023D7E44-4046-42A3-BBEF-244B1572178D} - System32\Tasks\{DADC9006-9F8B-41D7-8FB3-B3BBA91703A6} => Chrome.exe hxxp://ui.skype.com/ui/0/7.3.0.101/sk/a ... age=tsBing
Task: {33697E6F-83BD-4AA9-BDDA-AB53E7E147F0} - System32\Tasks\{6DEFADFE-D2FB-4DD5-B73E-7EB57A5EE0D0} => Chrome.exe hxxp://ui.skype.com/ui/0/7.3.0.101/en/a ... age=tsBing
Task: {CBF8103A-1AE0-42C9-9D6C-E3E9C0D7A608} - System32\Tasks\{005F0565-9900-4657-BB75-DED095C0F26C} => Chrome.exe hxxp://ui.skype.com/ui/0/7.3.0.101/cs/a ... age=tsBing
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
2014-11-27 22:40 - 2014-11-27 22:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
End