Povedlo se mi chytit nějaký svinstvo. Eset NOD32 mi vždycky vymaže nějaký trojan z operační paměti z temp. Evidentně ho tedy nějaký proces stále vytváří dokola, ale onen zdroj Eset neodhalil.
FRST:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-11-2014 01
Ran by Daniel (administrator) on DANY-NB on 10-11-2014 16:07:32
Running from C:\Users\Daniel\Desktop
Loaded Profile: Daniel (Available profiles: Daniel)
Platform: Windows 8.1 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(SafeNet, Inc.) C:\Program Files\SafeNet\Authentication\SAC\x64\SACSrv.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
() C:\Program Files\Ubiquiti Networks\airControl2\lib\jsl64.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\extapsup.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointG\SetPointII.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(cFos Software GmbH) C:\Program Files\cFosSpeed\cfosspeed.exe
(SafeNet, Inc.) C:\Program Files\SafeNet\Authentication\SAC\x64\SACMonitor.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
() C:\Program Files\Rainmeter\Rainmeter.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
() C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe
() C:\Users\Daniel\Desktop\winbox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\ProgramData\Microsoft\Secure\Icons\temp\tmpA915.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
() C:\Program Files\WindowsApps\Musixmatch.Lyrics_1.5.4.75_x64__7gejyv32yt3te\LyricsMetro.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Daniel\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [TpShocks] => C:\Windows\system32\TpShocks.exe [384344 2014-02-17] (Lenovo.)
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [255480 2013-06-20] (Lenovo Group Limited)
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [938032 2014-03-05] (Lenovo)
HKLM\...\Run: [LENOVO.TPKNRRES] => rundll32.exe "C:\Program Files\Lenovo\Communications Utility\LibStartStub.dll",AVStartupStub
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [909016 2013-10-21] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [cFosSpeed] => C:\Program Files\cFosSpeed\cFosSpeed.exe [1590208 2014-06-03] (cFos Software GmbH)
HKLM\...\Run: [TNOD UP] => C:\Program Files\ESET\TNod\TNODUP-Portable.exe [1024748 2013-07-01] (Tukero[X]Team)
HKLM\...\Run: [SACMonitor] => C:\Program Files\SafeNet\Authentication\SAC\x64\SACMonitor.exe [2299576 2012-11-05] (SafeNet, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2014-09-22] (ESET)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499896 2014-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.)
HKU\S-1-5-21-1336656518-513027652-1505053176-1001\...\Run: [POP Peeper] => C:\Program Files (x86)\POP Peeper\POPPeeper.exe [1613824 2011-11-16] (Mortal Universe)
HKU\S-1-5-21-1336656518-513027652-1505053176-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-1336656518-513027652-1505053176-1001\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [1967616 2014-04-17] (AMD)
HKU\S-1-5-21-1336656518-513027652-1505053176-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-30] (Piriform Ltd)
Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\getmac.lnk
ShortcutTarget: getmac.lnk -> C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\IEUpdate\getmac.exe (No File)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk
ShortcutTarget: MEGAsync.lnk -> C:\Users\Daniel\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Daniel\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Daniel\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Daniel\AppData\Local\MEGAsync\ShellExtX64.dll ()
ShellIconOverlayIdentifiers: [1SecureIconsProvider] -> {FC9D8189-520A-4417-AED7-9EAC810C6FBA} => C:\ProgramData\Microsoft\Secure\Icons\SecureIconsProvider.dll ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Daniel\AppData\Local\MEGAsync\ShellExtX32.dll ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Daniel\AppData\Local\MEGAsync\ShellExtX32.dll ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Daniel\AppData\Local\MEGAsync\ShellExtX32.dll ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Tcpip\Parameters: [DhcpNameServer] 147.228.3.3 147.228.52.11
FireFox:
========
FF ProfilePath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default
FF Homepage: https://www.google.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\cs@dictionaries.addons.mozilla.org [2014-06-17]
FF Extension: British English Dictionary (Updated) - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\en-gb@flyingtophat.co.uk [2014-06-17]
FF Extension: United States English Spellchecker - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\en-US@dictionaries.addons.mozilla.org [2014-09-09]
FF Extension: Fasterfox Lite - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\FasterFox_Lite@BigRedBrent [2014-06-17]
FF Extension: FireFTP - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2014-10-15]
FF Extension: Classic Theme Restorer - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2014-06-17]
FF Extension: Ghostery - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\firefox@ghostery.com.xpi [2014-06-17]
FF Extension: MEGA - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\firefox@mega.co.nz.xpi [2014-06-17]
FF Extension: TweakTube - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\{15e67a59-bd3d-49ae-90dd-b3d3fd14c2ed}.xpi [2014-06-17]
FF Extension: Password Exporter - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2014-06-17]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-06-17]
FF Extension: Adblock Plus - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-17]
FF Extension: Greasemonkey - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\yq10t3zb.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-06-17]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-06-18]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [574000 2014-03-31] (Lenovo Corporation)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [506816 2014-06-03] (cFos Software GmbH)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-06-17] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-06-17] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2011-10-19] (Creative Technology Ltd) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1350112 2014-09-16] (ESET)
S3 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [642048 2014-06-07] (FileZilla Project) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-06-17] (Intel Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2012720 2014-05-13] (Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-08-18] (LENOVO INCORPORATED.)
R3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [703024 2014-03-31] (Lenovo Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation)
S3 LnvHotSpotSvc; C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [474160 2014-03-05] (Lenovo)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [470064 2014-03-10] ()
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390672 2012-08-08] ()
R2 SACSrv; C:\Program Files\SafeNet\Authentication\SAC\x64\SACSrv.exe [10424 2012-11-05] (SafeNet, Inc.)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [24560 2014-04-24] ()
R2 UbiquitiAirControl2Server; C:\Program Files\Ubiquiti Networks\airControl2\lib\jsl64.exe [142336 2014-08-19] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AKSIFDH; C:\Windows\system32\DRIVERS\aksifdh.sys [62632 2008-07-30] (Aladdin Knowledge Systems, Ltd.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-12] (Advanced Micro Devices, Inc.)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [58368 2011-11-04] (www.winchiphead.com)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-09-22] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-09-22] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-09-22] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [158968 2014-09-22] (ESET)
R3 iKeyEnum; C:\Windows\system32\DRIVERS\ikeyenum.sys [16160 2010-07-08] (SafeNet, Inc.)
R3 iKeyIFD; C:\Windows\system32\DRIVERS\ikeyifd.sys [22304 2010-07-08] (SafeNet, Inc.)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
S3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [44480 2011-05-28] (http://libusb-win32.sourceforge.net)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-06-17] (Intel Corporation)
S3 RnbToken; C:\Windows\system32\DRIVERS\rnbtoken.sys [24352 2010-07-08] (SafeNet, Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-04-07] (Synaptics Incorporated)
R2 smihlp; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (Authentec Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
S3 XENfiltv; C:\Windows\system32\drivers\XENfiltv.sys [25600 2009-07-31] (Creative Technology Ltd.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-10 16:07 - 2014-11-10 16:08 - 00025297 _____ () C:\Users\Daniel\Desktop\FRST.txt
2014-11-10 16:06 - 2014-11-10 16:07 - 00000000 ____D () C:\FRST
2014-11-10 16:06 - 2014-11-10 16:05 - 02116096 _____ (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2014-11-10 16:06 - 2014-11-10 16:05 - 00112640 _____ (forum.viry.cz) C:\Users\Daniel\Desktop\FRSTLauncher.exe
2014-11-10 15:03 - 2014-11-10 15:03 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REVisionEffects
2014-11-10 15:03 - 2014-11-10 15:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REVisionEffects
2014-11-10 15:03 - 2014-11-10 15:03 - 00000000 ____D () C:\Program Files\Common Files\OFX
2014-11-10 15:03 - 2014-11-10 15:03 - 00000000 ____D () C:\Program Files (x86)\REVisionEffects
2014-11-10 15:03 - 2008-01-30 18:36 - 00090112 _____ (MindVision Software) C:\Windows\unvise32.exe
2014-11-10 13:19 - 2014-11-10 13:19 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-11-10 13:19 - 2014-11-10 13:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-11-10 13:19 - 2014-11-10 13:19 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-09 23:50 - 2014-11-09 23:50 - 00000000 ____D () C:\Users\Daniel\AppData\Local\ESET
2014-11-07 19:20 - 2014-11-07 19:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-03 23:30 - 2014-11-03 23:30 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\ATI
2014-11-03 23:30 - 2014-11-03 23:30 - 00000000 ____D () C:\Users\Daniel\AppData\Local\ATI
2014-11-03 23:30 - 2014-11-03 23:30 - 00000000 ____D () C:\ProgramData\ATI
2014-11-03 23:28 - 2014-11-03 23:28 - 00061612 _____ () C:\Windows\SysWOW64\CCCInstall_201411032328450546.log
2014-11-03 23:28 - 2014-11-03 23:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-11-03 23:28 - 2014-11-03 23:28 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-11-03 23:28 - 2014-11-03 23:28 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-11-03 23:27 - 2014-11-03 23:27 - 00000000 ____D () C:\Windows\LastGood.Tmp
2014-11-03 23:27 - 2014-11-03 23:27 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-11-03 23:26 - 2014-11-03 23:28 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-11-03 23:26 - 2014-11-03 23:28 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-11-03 23:26 - 2014-11-03 23:26 - 00000000 ____D () C:\Program Files\ATI
2014-11-03 23:22 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-11-03 23:22 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-11-03 23:20 - 2014-04-09 04:25 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2014-11-03 23:20 - 2014-04-09 04:25 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-11-03 23:20 - 2014-04-09 04:25 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-11-03 23:20 - 2014-04-09 04:25 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-11-03 23:20 - 2014-04-09 04:25 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-11-03 23:20 - 2014-04-09 04:25 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-11-03 23:20 - 2014-04-09 04:25 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2014-11-03 23:20 - 2014-04-09 04:25 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-11-03 23:20 - 2014-03-26 10:05 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-11-03 23:20 - 2014-03-26 10:04 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3517.dll
2014-11-03 23:20 - 2014-03-20 08:48 - 00017074 _____ () C:\Windows\system32\iglhxs64.vp
2014-11-03 23:20 - 2014-03-20 08:43 - 12859392 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2014-11-03 23:20 - 2014-03-20 08:41 - 11176448 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 12617728 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 11049984 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 09007616 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 05363520 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-11-03 23:20 - 2014-03-20 08:40 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00432128 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00429056 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00428544 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00410624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00384512 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-11-03 23:20 - 2014-03-20 08:40 - 00223664 _____ () C:\Windows\system32\Gfxres.th-TH.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00210106 _____ () C:\Windows\system32\Gfxres.el-GR.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00194245 _____ () C:\Windows\system32\Gfxres.ru-RU.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00175104 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00166170 _____ () C:\Windows\system32\Gfxres.ar-SA.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00163421 _____ () C:\Windows\system32\Gfxres.ja-JP.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00159008 _____ () C:\Windows\system32\Gfxres.he-IL.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00149682 _____ () C:\Windows\system32\Gfxres.it-IT.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00148042 _____ () C:\Windows\system32\Gfxres.ko-KR.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00147393 _____ () C:\Windows\system32\Gfxres.de-DE.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00147288 _____ () C:\Windows\system32\Gfxres.es-ES.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00146004 _____ () C:\Windows\system32\Gfxres.ro-RO.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00145491 _____ () C:\Windows\system32\Gfxres.fr-FR.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00144645 _____ () C:\Windows\system32\Gfxres.tr-TR.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00144260 _____ () C:\Windows\system32\Gfxres.pt-BR.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00144020 _____ () C:\Windows\system32\Gfxres.nl-NL.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00143932 _____ () C:\Windows\system32\Gfxres.hu-HU.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00142882 _____ () C:\Windows\system32\Gfxres.sv-SE.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00142877 _____ () C:\Windows\system32\Gfxres.pt-PT.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00142717 _____ () C:\Windows\system32\Gfxres.pl-PL.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00142289 _____ () C:\Windows\system32\Gfxres.cs-CZ.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00142008 _____ () C:\Windows\system32\Gfxres.fi-FI.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00141838 _____ () C:\Windows\system32\Gfxres.sk-SK.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00141049 _____ () C:\Windows\system32\Gfxres.hr-HR.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00137889 _____ () C:\Windows\system32\Gfxres.sl-SI.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00137784 _____ () C:\Windows\system32\Gfxres.nb-NO.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00137141 _____ () C:\Windows\system32\Gfxres.da-DK.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00132623 _____ () C:\Windows\system32\Gfxres.en-US.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-11-03 23:20 - 2014-03-20 08:40 - 00126300 _____ () C:\Windows\system32\Gfxres.zh-TW.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00124650 _____ () C:\Windows\system32\Gfxres.zh-CN.resources
2014-11-03 23:20 - 2014-03-20 08:40 - 00110592 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00099328 _____ () C:\Windows\system32\igdde64.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00078848 _____ () C:\Windows\SysWOW64\igdde32.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00064000 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-11-03 23:20 - 2014-03-20 08:40 - 00009728 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-11-03 23:20 - 2014-03-20 08:39 - 00330752 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-11-03 23:20 - 2014-03-20 08:39 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-11-03 23:20 - 2014-03-20 08:37 - 13031424 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2014-11-03 23:20 - 2014-03-20 08:37 - 10812928 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 01981696 _____ () C:\Windows\system32\iglhxa64.cpa
2014-11-03 23:20 - 2014-03-20 08:34 - 01040384 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00963452 _____ () C:\Windows\SysWOW64\igcodeckrng600.bin
2014-11-03 23:20 - 2014-03-20 08:34 - 00963452 _____ () C:\Windows\system32\igcodeckrng600.bin
2014-11-03 23:20 - 2014-03-20 08:34 - 00931840 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00524800 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00519680 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00272928 _____ () C:\Windows\SysWOW64\igvpkrng600.bin
2014-11-03 23:20 - 2014-03-20 08:34 - 00272928 _____ () C:\Windows\system32\igvpkrng600.bin
2014-11-03 23:20 - 2014-03-20 08:34 - 00216064 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00180224 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-11-03 23:20 - 2014-03-20 08:34 - 00059425 _____ () C:\Windows\system32\iglhxo64.vp
2014-11-03 23:20 - 2014-03-20 08:34 - 00059398 _____ () C:\Windows\system32\iglhxg64.vp
2014-11-03 23:20 - 2014-03-20 08:34 - 00059230 _____ () C:\Windows\system32\iglhxc64.vp
2014-11-03 23:20 - 2014-03-20 08:34 - 00059104 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-11-03 23:20 - 2014-03-20 08:34 - 00058796 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-11-03 23:20 - 2014-03-20 08:34 - 00058109 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-11-03 23:20 - 2014-03-20 08:34 - 00001074 _____ () C:\Windows\system32\iglhxa64.vp
2014-11-03 23:19 - 2014-04-18 05:43 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-11-03 23:19 - 2014-04-18 05:43 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-11-03 23:19 - 2014-04-18 05:43 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-11-03 23:19 - 2014-04-18 05:43 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-11-03 23:19 - 2014-04-18 05:43 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 10335208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 08866928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 08010968 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 07520200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 06799688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 06796592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 01343272 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 01117184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-11-03 23:19 - 2014-04-18 05:42 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-11-03 23:19 - 2014-04-18 05:36 - 15376384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-11-03 23:19 - 2014-04-18 05:23 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-11-03 23:19 - 2014-04-18 05:22 - 28685824 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-11-03 23:19 - 2014-04-18 05:22 - 01187342 _____ () C:\Windows\system32\amdocl_as64.exe
2014-11-03 23:19 - 2014-04-18 05:22 - 01061902 _____ () C:\Windows\system32\amdocl_ld64.exe
2014-11-03 23:19 - 2014-04-18 05:22 - 00995342 _____ () C:\Windows\SysWOW64\amdocl_as32.exe
2014-11-03 23:19 - 2014-04-18 05:22 - 00798734 _____ () C:\Windows\SysWOW64\amdocl_ld32.exe
2014-11-03 23:19 - 2014-04-18 05:22 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-11-03 23:19 - 2014-04-18 05:22 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-11-03 23:19 - 2014-04-18 05:22 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-11-03 23:19 - 2014-04-18 05:22 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-11-03 23:19 - 2014-04-18 05:19 - 24107520 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-11-03 23:19 - 2014-04-18 05:17 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-11-03 23:19 - 2014-04-18 05:17 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-11-03 23:19 - 2014-04-18 05:15 - 00420864 _____ () C:\Windows\system32\amdmiracast.dll
2014-11-03 23:19 - 2014-04-18 05:14 - 00134144 _____ () C:\Windows\system32\amdhdl64.dll
2014-11-03 23:19 - 2014-04-18 05:14 - 00123392 _____ () C:\Windows\SysWOW64\amdhdl32.dll
2014-11-03 23:19 - 2014-04-18 05:13 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-11-03 23:19 - 2014-04-18 05:13 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-11-03 23:19 - 2014-04-18 05:12 - 27907584 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-11-03 23:19 - 2014-04-18 05:12 - 05442048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-11-03 23:19 - 2014-04-18 04:58 - 04358656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-11-03 23:19 - 2014-04-18 04:51 - 23409152 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-11-03 23:19 - 2014-04-18 04:46 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-11-03 23:19 - 2014-04-18 04:46 - 00580816 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-11-03 23:19 - 2014-04-18 04:46 - 00580816 _____ () C:\Windows\system32\atiapfxx.blb
2014-11-03 23:19 - 2014-04-18 04:46 - 00368128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-11-03 23:19 - 2014-04-18 04:46 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-11-03 23:19 - 2014-04-18 04:46 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-11-03 23:19 - 2014-04-18 04:46 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-11-03 23:19 - 2014-04-18 04:46 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-11-03 23:19 - 2014-04-18 04:45 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-11-03 23:19 - 2014-04-18 04:45 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-11-03 23:19 - 2014-04-18 04:42 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-11-03 23:19 - 2014-04-18 04:33 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-11-03 23:19 - 2014-04-18 04:33 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-11-03 23:19 - 2014-04-18 04:30 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-11-03 23:19 - 2014-04-18 04:30 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-11-03 23:19 - 2014-04-18 04:29 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-11-03 23:19 - 2014-04-18 04:29 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-11-03 23:19 - 2014-04-18 04:28 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-11-03 23:19 - 2014-04-18 04:28 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-11-03 23:19 - 2014-04-18 04:25 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2014-11-03 23:19 - 2014-04-18 04:25 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2014-11-03 23:19 - 2014-04-18 04:25 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2014-11-03 23:19 - 2014-04-18 04:25 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2014-11-03 23:19 - 2014-04-18 04:21 - 00806912 _____ (AMD) C:\Windows\system32\coinst_14.100.dll
2014-11-03 23:19 - 2014-04-18 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-11-03 23:19 - 2014-04-18 04:09 - 01177600 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-11-03 23:19 - 2014-04-18 04:09 - 00848896 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-11-03 23:19 - 2014-04-18 04:07 - 00638976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-11-03 23:19 - 2014-04-18 04:07 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-11-03 23:19 - 2014-04-18 04:07 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-11-03 23:19 - 2014-04-18 04:07 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-11-03 23:19 - 2014-04-18 04:07 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-11-03 23:19 - 2014-04-18 04:07 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-11-03 23:19 - 2014-04-18 04:04 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-11-03 23:19 - 2014-04-10 20:58 - 00082128 _____ () C:\Windows\system32\ativce02.dat
2014-11-03 23:19 - 2014-04-01 01:06 - 00234804 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-11-03 23:19 - 2014-04-01 01:04 - 00233008 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-11-03 23:19 - 2014-02-06 18:45 - 00134192 _____ () C:\Windows\system32\ativce03.dat
2014-11-03 23:19 - 2014-01-16 20:00 - 00273712 _____ () C:\Windows\system32\ativvaxy_vi_nd.dat
2014-11-03 23:19 - 2014-01-16 19:59 - 00275124 _____ () C:\Windows\system32\ativvaxy_vi.dat
2014-11-03 23:19 - 2014-01-16 11:34 - 00723841 _____ () C:\Windows\system32\atiicdxx.dat
2014-11-03 23:19 - 2013-04-10 18:34 - 00332800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2014-11-03 23:19 - 2013-04-10 18:34 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2014-11-03 23:19 - 2013-04-10 18:34 - 00051200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2014-11-03 23:19 - 2011-09-13 01:06 - 00003917 _____ () C:\Windows\SysWOW64\atipblag.dat
2014-11-03 23:19 - 2011-09-13 01:06 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-11-03 23:18 - 2014-11-03 23:18 - 00000000 ____D () C:\Users\Daniel\UnifL_UBR_7.4_Registry_Backups
2014-11-02 22:08 - 2014-11-02 22:08 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\AMD
2014-10-30 21:09 - 2014-10-30 21:09 - 00000716 _____ () C:\Users\Daniel\Desktop\kureci palicky ve slanine.txt
2014-10-28 16:34 - 2014-08-28 22:52 - 00157224 _____ () C:\Windows\system32\amde31a.dat
2014-10-28 16:24 - 2014-10-28 16:24 - 00000000 ____D () C:\ProgramData\IsolatedStorage
2014-10-28 16:15 - 2014-10-28 16:28 - 00000000 ____D () C:\Program Files (x86)\Driver Fusion
2014-10-28 16:15 - 2014-10-28 16:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Fusion
2014-10-25 16:57 - 2014-10-25 16:57 - 00000000 ___HD () C:\$WINDOWS.~BT
2014-10-25 16:53 - 2014-10-25 16:57 - 00001908 _____ () C:\Windows\diagwrn.xml
2014-10-25 16:53 - 2014-10-25 16:57 - 00001908 _____ () C:\Windows\diagerr.xml
2014-10-23 19:58 - 2014-10-23 19:58 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-10-23 19:58 - 2014-10-23 19:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-10-22 10:32 - 2014-10-22 10:32 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\Oracle
2014-10-22 10:20 - 2014-10-22 10:19 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-10-22 10:20 - 2014-10-22 10:19 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-10-22 10:20 - 2014-10-22 10:19 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-10-22 10:20 - 2014-10-22 10:19 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-10-21 23:12 - 2014-10-21 23:28 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\AVRDUDESS
2014-10-19 23:44 - 2014-10-19 23:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2014-10-19 23:44 - 2014-10-19 23:44 - 00000000 ____D () C:\ProgramData\ESET
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-10 16:07 - 2014-06-17 18:02 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\Skype
2014-11-10 16:02 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-11-10 15:34 - 2014-06-17 18:45 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-10 15:10 - 2014-06-17 16:05 - 01863432 _____ () C:\Windows\WindowsUpdate.log
2014-11-10 15:01 - 2014-06-17 16:11 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1336656518-513027652-1505053176-1001
2014-11-10 14:59 - 2014-08-30 20:13 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\TeamViewer
2014-11-10 14:59 - 2014-07-24 08:22 - 00000000 ____D () C:\Windows\Minidump
2014-11-10 14:59 - 2014-06-18 13:58 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\uTorrent
2014-11-10 14:59 - 2014-06-17 16:50 - 00000000 ____D () C:\Windows\Panther
2014-11-10 14:52 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-11-10 14:46 - 2014-06-17 16:04 - 00000000 ____D () C:\Users\Daniel\AppData\Local\Packages
2014-11-10 14:39 - 2014-06-24 11:47 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\Mp3tag
2014-11-09 23:42 - 2014-09-30 10:29 - 00003758 _____ () C:\Windows\System32\Tasks\AutoKMS
2014-11-09 23:21 - 2014-03-18 16:33 - 01749406 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-09 23:21 - 2014-03-18 15:54 - 00740962 _____ () C:\Windows\system32\perfh005.dat
2014-11-09 23:21 - 2014-03-18 15:54 - 00152146 _____ () C:\Windows\system32\perfc005.dat
2014-11-09 22:15 - 2014-06-18 16:07 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\Audacity
2014-11-09 14:47 - 2014-06-17 16:06 - 00000000 ___DO () C:\Users\Daniel\OneDrive
2014-11-07 23:34 - 2014-06-17 16:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-05 08:59 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\tracing
2014-11-04 20:46 - 2014-07-05 13:36 - 00000082 _____ () C:\Users\Daniel\Desktop\poznamky.txt
2014-11-03 23:29 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-03 23:28 - 2014-06-17 17:52 - 04956248 _____ () C:\Users\Public\CAFADEBUG.log
2014-11-03 23:28 - 2014-06-17 16:31 - 00000000 ____D () C:\ProgramData\AMD
2014-11-03 23:23 - 2014-06-17 16:29 - 00015814 _____ () C:\Windows\system32\results.xml
2014-11-03 23:22 - 2014-06-17 16:27 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-11-03 23:22 - 2014-06-17 16:27 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-11-03 23:18 - 2014-06-17 16:04 - 00000000 ____D () C:\Users\Daniel
2014-11-03 23:11 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-11-03 21:15 - 2014-09-30 10:42 - 00000000 ____D () C:\Users\Daniel\Desktop\aitex
2014-10-30 18:36 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-28 16:35 - 2014-06-17 16:12 - 00000000 ____D () C:\ProgramData\Package Cache
2014-10-28 16:28 - 2014-07-28 23:17 - 00000000 ____D () C:\Users\Daniel\AppData\Local\MEGAsync
2014-10-26 20:23 - 2014-08-02 21:44 - 00005120 _____ () C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-10-25 17:59 - 2014-08-29 19:57 - 00000412 __RSH () C:\ProgramData\ntuser.pol
2014-10-23 19:58 - 2014-06-17 18:02 - 00000000 ____D () C:\ProgramData\Skype
2014-10-22 10:21 - 2014-06-19 12:52 - 00000000 ____D () C:\ProgramData\Oracle
2014-10-19 23:44 - 2014-08-01 17:24 - 00000000 ____D () C:\Program Files\ESET
2014-10-19 23:08 - 2014-07-03 11:30 - 00000000 ____D () C:\Users\Daniel\AppData\Roaming\HandBrake
2014-10-16 16:55 - 2014-06-18 20:59 - 00000000 ____D () C:\Users\Daniel\Desktop\plocha
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Daniel\Desktop" je 3609 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Daniel at 2014-11-10 16:10:56
Microsoft Windows 8.1 Pro
System drive C: has 58 GB (57%) free of 102 GB
Total RAM: 4007 MB (32% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:11:01, on 10. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe
C:\Program Files (x86)\POP Peeper\POPPeeper.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files\Lenovo\Communications Utility\tpknrres.exe
C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
C:\Users\Daniel\Desktop\winbox.exe
C:\ProgramData\Microsoft\Secure\Icons\temp\tmpA915.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Daniel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AdobeCEPServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [POP Peeper] "C:\Program Files (x86)\POP Peeper\POPPeeper.exe" -min
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: getmac.lnk = ?
O4 - Startup: MEGAsync.lnk = Daniel\AppData\Local\MEGAsync\MEGAsync.exe
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: @oem41.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\Windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\cFosSpeed\spd.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem14.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo AVFramework Camera Privacy Controller (LENOVO.CAMMUTE) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\cammute.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo AVFramework Microphone Volume Controller and Dolby Interface (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Lenovo Settings Mobile Hotspot Service (LnvHotSpotSvc) - Lenovo - C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
O23 - Service: LocationTaskManager - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: SACSrv - SafeNet, Inc. - C:\Program Files\SafeNet\Authentication\SAC\x64\SACSrv.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: Ubiquiti AirControl 2 Server (UbiquitiAirControl2Server) - Unknown owner - C:\Program Files\Ubiquiti Networks\airControl2\lib\jsl64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13568 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
atieclxx
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-bb2bd36b-7255-4fa6-a492-fb72e02f60fc -SystemEventPortName:HostProcess-88a7c72d-124b-4d1f-ade3-d5a945c28686 -IoCancelEventPortName:HostProcess-7a9f962e-bcde-4fe2-bc69-e8970e729411 -NonStateChangingEventPortName:HostProcess-42c61d02-da13-491c-b69a-49313a07e17b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c3ab093f-9285-4fdc-ac7e-e78052143fca -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8a2d76f2-ef39-44b8-9da1-590a74bbab00 -SystemEventPortName:HostProcess-5996258e-de87-4021-8fc9-9632ca425dde -IoCancelEventPortName:HostProcess-d8a899c1-93af-44b4-ab37-b5c742f8c427 -NonStateChangingEventPortName:HostProcess-ae6442ce-2a7f-418b-bdb1-cbb3527378b8 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:cebbe66b-2a8a-4299-8265-d3fb251e5952 -DeviceGroupId:WudfDefaultDevicePool
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0100800d-beba-4504-8e31-0ad55472b93c -SystemEventPortName:HostProcess-bdf4b6c6-a6a1-4f96-b254-e0bb6592889c -IoCancelEventPortName:HostProcess-116f2c76-b6b9-4070-ab8b-f9ab89c566fc -NonStateChangingEventPortName:HostProcess-d0b4877c-f822-4277-bbf0-bac3e7d60e40 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2469598b-b1aa-4716-99b2-d62c0b971075 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c33f166b-51ac-492f-aa48-52f60bd9e242 -SystemEventPortName:HostProcess-fad90877-54d0-454e-bf48-c3ae5f6c35e7 -IoCancelEventPortName:HostProcess-4e40a071-6979-412a-bbb7-a9172261176f -NonStateChangingEventPortName:HostProcess-daf112e1-f71b-457b-a042-cc97ad8ea17c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ef705e4d-588a-4958-8082-37b9fb9fdb0e -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e2a2fd0d-8b0c-4629-a3e1-5cc801801838 -SystemEventPortName:HostProcess-444e5dfb-0561-4d39-a1ae-478f62ede776 -IoCancelEventPortName:HostProcess-37adeca6-0286-4d72-b0cd-06851393231a -NonStateChangingEventPortName:HostProcess-3950d039-ff99-457a-bbcf-803288fb28d2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7b3e5fa5-92e5-4be9-b08b-8fc84b4b9a8a -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\BtwRSupportService.exe
"C:\Program Files\cFosSpeed\spd.exe" -service
C:\Windows\system32\CxAudMsg64.exe
dashost.exe {7c0659a0-bbd6-4ff5-9fa79e00418a1195}
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\SafeNet\Authentication\SAC\x64\SACSrv.exe"
C:\Windows\SysWOW64\SAsrv.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files\Ubiquiti Networks\airControl2\lib\jsl64.exe" -ini "jsl.ini"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
C:\Windows\system32\wbem\wmiprvse.exe
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\rundll32.exe "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.dll",PwrMgrBkGndMonitor
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe"
KHALMNPR.EXE /API
"C:\Program Files\Logitech\SetPointG\SetPointII.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\cFosSpeed\cfosspeed.exe"
"C:\Program Files\SafeNet\Authentication\SAC\x64\SACMonitor.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files (x86)\POP Peeper\POPPeeper.exe" -min
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe"
"C:\Program Files\Rainmeter\Rainmeter.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe" Restart Start EEU 52 -1
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files\Lenovo\Communications Utility\tpknrres.exe"
HydraDM64.exe -h:132186 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
"C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files\Lenovo\Communications Utility\cammute.exe"
"C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe"
"C:\Windows\explorer.exe" /LOADSAVEDWINDOWS
"C:\Users\Daniel\Desktop\winbox.exe"
C:\Windows\system32\DllHost.exe /Processid:{478B41E6-3257-4519-BDA8-E971F9843849}
"dwm.exe"
C:\Windows\System32\skydrive.exe -Embedding
"C:\Windows\System32\rundll32.exe" "C:\ProgramData\Microsoft\Secure\Icons\SecureIconsProvider.dll",DllInstall
"C:\ProgramData\Microsoft\Secure\Icons\temp\tmpA915.exe"
"C:\Windows\System32\WWAHost.exe" -ServerName:Windows.Store
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\WinStore\WSHost.exe -Embedding
"C:\Program Files\WindowsApps\Musixmatch.Lyrics_1.5.4.75_x64__7gejyv32yt3te\LyricsMetro.exe" -ServerName:App.AppXd27h4meh5d37agws9aamv4fjq5nvw0hp.mca
C:\Windows\system32\DllHost.exe /Processid:{3AD05575-8857-4850-9277-11B85BDB8E09}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe399_ Global\UsGthrCtrlFltPipeMssGthrPipe399 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"D:\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Normálně bych to řešil reinstalací windows, ale momentálně se mi do toho fakt nechce
Děkuji
Přispějete na provoz fóra?