Logfile of random's system information tool 1.10 (written by random/random)
Run by Libina at 2016-05-13 15:51:16
Microsoft Windows 10 Pro
System drive C: has 15 GB (24%) free of 60 GB
Total RAM: 2046 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:51:29, on 13.5.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Users\Libina\AppData\Local\Temp\Microsoft\services.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
D:\idm\RSIT.exe
C:\Program Files\trend micro\Libina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [HPUsageTrackingLEDM] "C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files\HP\HP UT LEDM\"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [ProductUpdater] C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Libina\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\WINDOWS\system32\HPSIsvc.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files\Origin\OriginClientService.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
--
End of file - 6484 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SlimDrivers Startup.job - C:\Program Files\SlimDrivers\SlimDrivers.exe -boot
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-12-08 434712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-04-07 462400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-07 173120]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MouseDriver"=C:\WINDOWS\system32\TiltWheelMouse.exe [2012-12-19 241152]
"HPUsageTrackingLEDM"=C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [2009-08-04 30264]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"ProductUpdater"=C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [2016-04-07 75264]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2000-01-01 14696704]
"StartCCC"=C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-10-19 748744]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-04-15 6675672]
"OneDrive"=C:\Users\Libina\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-04-29 554176]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-01-15 3280760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\WINDOWS\system32\vp6vfw.dll
"vidc.VP61"=C:\WINDOWS\system32\vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-05-13 15:51:16 ----D---- C:\rsit
2016-05-13 15:51:16 ----D---- C:\Program Files\trend micro
2016-05-11 16:25:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-11 16:25:51 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-11 16:25:51 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-11 16:25:51 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-05-11 16:25:50 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-05-11 16:25:50 ----A---- C:\WINDOWS\system32\moshost.dll
2016-05-11 16:25:50 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-05-11 16:25:50 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-05-11 16:25:50 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-05-11 16:25:49 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-05-11 16:25:49 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-05-11 16:25:49 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-05-11 16:25:49 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-05-11 16:25:48 ----A---- C:\WINDOWS\system32\mos.dll
2016-05-11 16:25:43 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-11 16:25:42 ----A---- C:\WINDOWS\system32\twinui.dll
2016-05-11 16:25:42 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-11 16:25:37 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-05-11 16:25:36 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-11 16:25:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-11 16:25:34 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-05-11 16:25:30 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-11 16:25:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-11 16:25:25 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 16:25:21 ----A---- C:\WINDOWS\system32\shell32.dll
2016-05-11 16:25:18 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-11 16:25:17 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-05-11 16:25:15 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-11 16:25:14 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-11 16:25:14 ----A---- C:\WINDOWS\explorer.exe
2016-05-11 16:25:13 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-05-11 16:25:13 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-05-11 16:25:11 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-05-11 16:25:10 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-11 16:25:10 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-11 16:25:10 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-05-11 16:25:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 16:25:07 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-05-11 16:25:07 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-11 16:25:06 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-05-11 16:25:06 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-11 16:25:05 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-11 16:25:05 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-05-11 16:25:03 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-11 16:25:03 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-11 16:25:02 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-11 16:25:01 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-11 16:25:00 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-05-11 16:24:58 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-11 16:24:57 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-05-11 16:24:57 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-11 16:24:56 ----A---- C:\WINDOWS\system32\devinv.dll
2016-05-11 16:24:54 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-11 16:24:54 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-11 16:24:53 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-11 16:24:52 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-11 16:24:52 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-05-11 16:24:51 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 16:24:51 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-11 16:24:50 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-11 16:24:50 ----A---- C:\WINDOWS\system32\invagent.dll
2016-05-11 16:24:49 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-05-11 16:24:49 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-05-11 16:24:49 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 16:24:49 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-05-11 16:24:48 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-05-11 16:24:48 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-11 16:24:48 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-05-11 16:24:47 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-11 16:24:47 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-11 16:24:47 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-05-11 16:24:46 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-05-11 16:24:46 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-11 16:24:46 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-05-11 16:24:45 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-05-11 16:24:45 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 16:24:44 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-11 16:24:44 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-11 16:24:44 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-11 16:24:43 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-11 16:24:43 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-05-11 16:24:43 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-11 16:24:43 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-11 16:24:43 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-11 16:24:42 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-11 16:24:42 ----A---- C:\WINDOWS\system32\provengine.dll
2016-05-11 16:24:41 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-11 16:24:40 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 16:24:40 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-05-11 16:24:40 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-05-11 16:24:39 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-05-11 16:24:39 ----A---- C:\WINDOWS\system32\drivers\sdport.sys
2016-05-11 16:24:39 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-11 16:24:39 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-11 16:24:39 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-05-11 16:24:38 ----A---- C:\WINDOWS\system32\shacct.dll
2016-05-11 16:24:38 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 16:24:38 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 16:24:37 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-11 16:24:37 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-11 16:24:37 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-05-11 16:24:36 ----A---- C:\WINDOWS\system32\wininit.exe
2016-05-11 16:24:36 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-11 16:24:36 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-05-11 16:24:35 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-11 16:24:35 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-11 16:24:35 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-11 16:24:34 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-11 16:24:34 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-05-11 16:24:34 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2016-05-11 16:24:32 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-11 16:24:32 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-05-11 16:24:32 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-11 16:24:31 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-11 16:24:31 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-11 16:24:31 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-11 16:24:30 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-05-11 16:24:29 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-05-11 16:24:29 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2016-05-11 16:24:29 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-11 16:24:28 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-05-11 16:24:28 ----A---- C:\WINDOWS\system32\dwminit.dll
2016-05-11 16:24:28 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-05-11 16:24:28 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-05-11 16:24:27 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-11 16:24:27 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-05-11 16:24:27 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-11 16:24:26 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-11 16:24:26 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-05-11 16:24:26 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2016-05-11 16:24:26 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-05-11 16:24:25 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-11 16:24:25 ----A---- C:\WINDOWS\system32\hmkd.dll
2016-05-11 16:24:25 ----A---- C:\WINDOWS\system32\drivers\filecrypt.sys
2016-05-11 16:24:24 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-05-11 16:24:23 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-11 16:24:23 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-11 16:24:23 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-11 16:24:22 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-05-11 16:24:22 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-11 16:24:21 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-05-11 16:24:20 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-11 16:24:20 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-11 16:24:16 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-11 16:24:16 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-11 16:24:15 ----A---- C:\WINDOWS\system32\wshbth.dll
2016-05-11 16:24:14 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-05-11 16:24:13 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-11 16:24:12 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-11 16:24:11 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-05-11 16:24:11 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-05-11 16:24:10 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-05-11 16:24:10 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-05-06 11:19:09 ----RHD---- C:\Users\Libina\AppData\Roaming\SecuROM
2016-05-05 11:27:21 ----D---- C:\ProgramData\EA Core
2016-05-05 11:26:41 ----D---- C:\Users\Libina\AppData\Roaming\Origin
2016-05-05 11:23:00 ----D---- C:\ProgramData\Origin
2016-05-05 11:22:59 ----D---- C:\ProgramData\Electronic Arts
2016-05-05 11:22:39 ----AD---- C:\Program Files\Origin
2016-05-05 09:13:59 ----D---- C:\Program Files\Microsoft WSE
2016-05-05 08:51:19 ----D---- C:\Program Files\Electronic Arts
2016-04-15 18:33:08 ----A---- C:\WINDOWS\system32\drivers\idmwfp.sys
======List of files/folders modified in the last 1 month======
2016-05-13 15:51:18 ----D---- C:\WINDOWS\Prefetch
2016-05-13 15:51:16 ----RD---- C:\Program Files
2016-05-13 15:51:14 ----D---- C:\Users\Libina\AppData\Roaming\DMCache
2016-05-13 15:50:48 ----D---- C:\Users\Libina\AppData\Roaming\IDM
2016-05-13 15:49:23 ----D---- C:\WINDOWS\Temp
2016-05-13 15:36:45 ----D---- C:\WINDOWS\SoftwareDistribution
2016-05-13 15:36:45 ----D---- C:\Windows
2016-05-13 15:25:00 ----D---- C:\Users\Libina\AppData\Roaming\DAEMON Tools Lite
2016-05-13 15:24:46 ----D---- C:\WINDOWS\INF
2016-05-13 15:24:45 ----D---- C:\WINDOWS\debug
2016-05-13 14:54:14 ----D---- C:\WINDOWS\system32\sru
2016-05-13 12:27:12 ----D---- C:\WINDOWS\Microsoft.NET
2016-05-13 11:22:56 ----D---- C:\WINDOWS\system32\config
2016-05-12 19:27:48 ----D---- C:\Users\Libina\AppData\Roaming\vlc
2016-05-12 17:14:40 ----SHD---- C:\WINDOWS\Installer
2016-05-12 17:14:39 ----D---- C:\WINDOWS\system32\Tasks
2016-05-12 17:13:56 ----D---- C:\WINDOWS\System32
2016-05-12 17:04:38 ----D---- C:\WINDOWS\AppReadiness
2016-05-12 17:04:37 ----HD---- C:\Program Files\WindowsApps
2016-05-12 12:28:02 ----D---- C:\WINDOWS\system32\DriverStore
2016-05-12 12:27:58 ----D---- C:\WINDOWS\WinSxS
2016-05-12 12:27:04 ----D---- C:\WINDOWS\system32\catroot2
2016-05-12 12:20:53 ----RSD---- C:\WINDOWS\assembly
2016-05-12 09:21:26 ----D---- C:\WINDOWS\rescache
2016-05-12 08:14:43 ----D---- C:\WINDOWS\system32\drivers
2016-05-11 18:25:12 ----D---- C:\WINDOWS\system32\oobe
2016-05-11 18:25:12 ----D---- C:\WINDOWS\system32\migration
2016-05-11 18:25:12 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-11 18:25:12 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-11 18:25:12 ----D---- C:\WINDOWS\system32\appraiser
2016-05-11 18:25:08 ----D---- C:\WINDOWS\Provisioning
2016-05-11 18:25:08 ----D---- C:\WINDOWS\bcastdvr
2016-05-11 18:25:08 ----D---- C:\WINDOWS\apppatch
2016-05-11 18:25:07 ----D---- C:\Program Files\Windows Journal
2016-05-11 18:25:07 ----D---- C:\Program Files\Internet Explorer
2016-05-11 16:52:37 ----D---- C:\ProgramData\Microsoft Help
2016-05-11 16:52:15 ----D---- C:\WINDOWS\CbsTemp
2016-05-11 16:50:04 ----D---- C:\WINDOWS\system32\MRT
2016-05-11 16:41:28 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-11 08:51:24 ----D---- C:\WINDOWS\Tasks
2016-05-08 19:31:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-06 08:20:29 ----D---- C:\Program Files\Internet Download Manager
2016-05-06 08:11:35 ----HD---- C:\Program Files\InstallShield Installation Information
2016-05-05 11:27:21 ----HD---- C:\ProgramData
2016-05-05 09:13:48 ----AD---- C:\Program Files\Common Files\microsoft shared
2016-05-03 03:24:44 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-04-22 09:57:44 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-04-19 13:26:52 ----D---- C:\ProgramData\Freemake
2016-04-14 09:20:30 ----D---- C:\WINDOWS\system32\NDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R1 MpKsl368cbd8b;MpKsl368cbd8b; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0BE0E298-0702-4A29-BC95-166DD7A1501E}\MpKsl368cbd8b.sys [2016-05-13 39168]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
R2 IDMWFP;IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [2016-01-28 134248]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 10070016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 290304]
R3 AtiHDAudioService;@oem58.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2015-05-28 82432]
R3 dtlitescsibus;@oem86.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-02-06 26168]
R3 dtliteusbbus;@oem87.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-02-06 40504]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2000-01-01 3745536]
R3 rt640x86;@oem91.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2000-01-01 754456]
S0 BTHidEnum;@oem95.inf,%BusEnum.SvcDesc%;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;@oem94.inf,%SvcDesc%;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S3 a016bus;Sony Ericsson Device A016 driver (WDM); C:\WINDOWS\System32\drivers\a016bus.sys [2008-01-18 83880]
S3 a016mgmt;Sony Ericsson Device A016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\System32\drivers\a016mgmt.sys [2008-01-18 104488]
S3 a016obex;Sony Ericsson Device A016 USB WMC OBEX Interface; C:\WINDOWS\System32\drivers\a016obex.sys [2008-01-18 100648]
S3 amdiox86;AMD IO Driver; C:\WINDOWS\System32\drivers\amdiox86.sys [2010-02-18 37944]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 BlueletAudio;@oem90.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;@oem91.inf,%BLUELETAUDIO.SvcDesc%;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;@oem92.inf,%bt.Service.DispName%;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\drivers\btnetdrv.sys []
S3 Btcsrusb;@oem100.inf,%SvcDesc%;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-04-23 93184]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-04-23 744448]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-04-23 61952]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-01-07 96768]
S3 dg_ssudbus;@oem7.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-08 101040]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 ggflt;SOMC USB Flash Driver Filter; C:\WINDOWS\System32\drivers\ggflt.sys [2015-01-13 13528]
S3 ggsomc;SOMC USB Flash Driver; C:\WINDOWS\System32\drivers\ggsomc.sys [2015-01-13 26328]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 HPMo4DE3;Mouse Suite Driver_4DE3 (WDF Version); C:\WINDOWS\System32\drivers\HPMo4DE3.sys [2011-03-09 20992]
S3 HPub4DE3;USB Mouse Low Filter Driver_4DE3 (WDF Version); C:\WINDOWS\System32\Drivers\HPub4DE3.sys [2011-04-12 13824]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 mvusbews;@oem72.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-12-24 17408]
S3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_x86.sys [2013-04-18 16024]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 140288]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2015-10-30 8704]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\System32\drivers\s0016bus.sys [2008-05-16 89256]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM); C:\WINDOWS\System32\drivers\s0016mgmt.sys [2008-05-16 114216]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface; C:\WINDOWS\System32\drivers\s0016obex.sys [2008-05-16 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM); C:\WINDOWS\System32\drivers\s0016unic.sys [2008-05-16 115752]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:\WINDOWS\System32\drivers\s0017bus.sys [2008-10-21 86824]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:\WINDOWS\System32\drivers\s0017mgmt.sys [2008-10-21 108328]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:\WINDOWS\System32\drivers\s0017obex.sys [2008-10-21 104616]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:\WINDOWS\System32\drivers\s0017unic.sys [2008-10-21 109736]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\WINDOWS\System32\drivers\s1018bus.sys [2009-03-25 86824]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\WINDOWS\System32\drivers\s1018mgmt.sys [2009-03-25 106208]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\WINDOWS\System32\drivers\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\WINDOWS\System32\drivers\s1018unic.sys [2009-03-25 109864]
S3 s1029bus;Sony Ericsson Device 1029 driver (WDM); C:\WINDOWS\System32\drivers\s1029bus.sys [2009-05-25 90280]
S3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM); C:\WINDOWS\System32\drivers\s1029mgmt.sys [2009-05-25 115880]
S3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface; C:\WINDOWS\System32\drivers\s1029obex.sys [2009-05-25 111912]
S3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM); C:\WINDOWS\System32\drivers\s1029unic.sys [2009-05-25 116904]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\WINDOWS\System32\drivers\s1039bus.sys [2010-03-15 98672]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\System32\drivers\s1039mgmt.sys [2010-03-15 117872]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\WINDOWS\System32\drivers\s1039obex.sys [2010-03-15 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\WINDOWS\System32\drivers\s1039unic.sys [2010-03-15 123504]
S3 s916bus;Sony Ericsson Device 916 driver (WDM); C:\WINDOWS\System32\drivers\s916bus.sys [2007-11-02 83496]
S3 s916mgmt;Sony Ericsson Device 916 USB WMC Device Management Drivers (WDM); C:\WINDOWS\System32\drivers\s916mgmt.sys [2007-11-02 103976]
S3 s916obex;Sony Ericsson Device 916 USB WMC OBEX Interface; C:\WINDOWS\System32\drivers\s916obex.sys [2007-11-02 100008]
S3 se3ebus;Sony Ericsson Device 062 (WDM); C:\WINDOWS\System32\drivers\se3ebus.sys [2007-04-10 83080]
S3 se3emgmt;Sony Ericsson Device 062 USB WMC Device Management Drivers (WDM); C:\WINDOWS\System32\drivers\se3emgmt.sys [2007-04-10 100360]
S3 se3eobex;Sony Ericsson Device 062 USB WMC OBEX Interface; C:\WINDOWS\System32\drivers\se3eobex.sys [2007-04-10 98568]
S3 ssudmdm;@oem64.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-12-08 192944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 217088]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2015-10-19 284872]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [2009-06-24 136704]
R2 HPSIService;HP SI Service; C:\WINDOWS\system32\HPSIsvc.exe [2012-09-27 100256]
R2 OneSyncSvc_15715e0;Hostitel synchronizace_15715e0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-04-18 659992]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 PimIndexMaintenanceSvc_15715e0;Data kontaktů_15715e0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-11-17 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3028904;Hostitel synchronizace_3028904; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_310f3;Hostitel synchronizace_310f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_392ff1e;Hostitel synchronizace_392ff1e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_4e53c0d;Hostitel synchronizace_4e53c0d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2016-01-15 1082232]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-11-17 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_15715e0;Služba zasílání zpráv_15715e0; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3028904;Služba zasílání zpráv_3028904; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_310f3;Služba zasílání zpráv_310f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_392ff1e;Služba zasílání zpráv_392ff1e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_4e53c0d;Služba zasílání zpráv_4e53c0d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2016-05-05 2120712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3028904;Data kontaktů_3028904; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_310f3;Data kontaktů_310f3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_392ff1e;Data kontaktů_392ff1e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_4e53c0d;Data kontaktů_4e53c0d; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-04-18 1227800]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prevence
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prevence
# AdwCleaner v5.028 - Logfile created 07/01/2016 at 12:14:43
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 10 Pro (x86)
# Username : Libina - LIBINA
# Running from : D:\idm\adwcleaner_5.028.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejocekekgcaldnmjngfdbmbeebcekelc
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
***** [ Web browsers ] *****
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ejocekekgcaldnmjngfdbmbeebcekelc
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mfhnkgpdlogbknkhlgdjlejeljbhflim
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1456 bytes] ##########
# AdwCleaner v5.117 - Log soubor vytvořen 16/05/2016 o 07:45:25
# Aktualizováno 15/05/2016 by Xplode
# Databáze : 2016-05-15.2 [Server]
# Operační systém : Windows 10 Pro (X86)
# Jméno uživatele : Libina - LIBINA
# Spuštěno z : C:\Users\Libina\Desktop\adwcleaner_5.117.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazáno : C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejocekekgcaldnmjngfdbmbeebcekelc
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
[-] Klávesa smazáno : HKCU\Software\e589190ce9a53a3619e00555cfe8a3ec
[-] Klávesa smazáno : HKCU\Software\csastats
***** [ Webové prohlížeče ] *****
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : search.yahoo.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : search.sweetim.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : ask.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] smazáno : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] smazáno : ejocekekgcaldnmjngfdbmbeebcekelc
*************************
:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [7487 bytes] - [22/11/2015 20:58:41]
C:\AdwCleaner\AdwCleaner[C2].txt - [3280 bytes] - [07/01/2016 13:14:43]
C:\AdwCleaner\AdwCleaner[C6].txt - [3863 bytes] - [31/08/2015 20:28:55]
C:\AdwCleaner\AdwCleaner[C7].txt - [2500 bytes] - [14/11/2015 22:02:12]
C:\AdwCleaner\AdwCleaner[R2].txt - [3865 bytes] - [26/06/2015 16:53:45]
C:\AdwCleaner\AdwCleaner[R3].txt - [3948 bytes] - [30/06/2015 19:40:00]
C:\AdwCleaner\AdwCleaner[R4].txt - [4320 bytes] - [09/07/2015 08:57:33]
C:\AdwCleaner\AdwCleaner[R5].txt - [1046 bytes] - [14/07/2015 09:39:01]
C:\AdwCleaner\AdwCleaner[R6].txt - [1358 bytes] - [27/07/2015 09:18:21]
C:\AdwCleaner\AdwCleaner[S1].txt - [7107 bytes] - [22/11/2015 20:40:28]
C:\AdwCleaner\AdwCleaner[S2].txt - [8132 bytes] - [09/07/2015 08:59:06]
C:\AdwCleaner\AdwCleaner[S3].txt - [3798 bytes] - [14/07/2015 09:40:12]
C:\AdwCleaner\AdwCleaner[S4].txt - [4193 bytes] - [27/07/2015 09:19:21]
C:\AdwCleaner\AdwCleaner[S8].txt - [3637 bytes] - [31/08/2015 20:27:33]
C:\AdwCleaner\AdwCleaner[S9].txt - [2306 bytes] - [14/11/2015 22:01:07]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [4302 bytes] ##########
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 10 Pro (x86)
# Username : Libina - LIBINA
# Running from : D:\idm\adwcleaner_5.028.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejocekekgcaldnmjngfdbmbeebcekelc
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
***** [ Web browsers ] *****
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ejocekekgcaldnmjngfdbmbeebcekelc
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mfhnkgpdlogbknkhlgdjlejeljbhflim
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1456 bytes] ##########
# AdwCleaner v5.117 - Log soubor vytvořen 16/05/2016 o 07:45:25
# Aktualizováno 15/05/2016 by Xplode
# Databáze : 2016-05-15.2 [Server]
# Operační systém : Windows 10 Pro (X86)
# Jméno uživatele : Libina - LIBINA
# Spuštěno z : C:\Users\Libina\Desktop\adwcleaner_5.117.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazáno : C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejocekekgcaldnmjngfdbmbeebcekelc
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
[-] Klávesa smazáno : HKCU\Software\e589190ce9a53a3619e00555cfe8a3ec
[-] Klávesa smazáno : HKCU\Software\csastats
***** [ Webové prohlížeče ] *****
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : search.yahoo.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : search.sweetim.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : ask.com
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] smazáno : dgpdioedihjhncjafcpgbbjdpbbkikmi
[-] [C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] smazáno : ejocekekgcaldnmjngfdbmbeebcekelc
*************************
:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [7487 bytes] - [22/11/2015 20:58:41]
C:\AdwCleaner\AdwCleaner[C2].txt - [3280 bytes] - [07/01/2016 13:14:43]
C:\AdwCleaner\AdwCleaner[C6].txt - [3863 bytes] - [31/08/2015 20:28:55]
C:\AdwCleaner\AdwCleaner[C7].txt - [2500 bytes] - [14/11/2015 22:02:12]
C:\AdwCleaner\AdwCleaner[R2].txt - [3865 bytes] - [26/06/2015 16:53:45]
C:\AdwCleaner\AdwCleaner[R3].txt - [3948 bytes] - [30/06/2015 19:40:00]
C:\AdwCleaner\AdwCleaner[R4].txt - [4320 bytes] - [09/07/2015 08:57:33]
C:\AdwCleaner\AdwCleaner[R5].txt - [1046 bytes] - [14/07/2015 09:39:01]
C:\AdwCleaner\AdwCleaner[R6].txt - [1358 bytes] - [27/07/2015 09:18:21]
C:\AdwCleaner\AdwCleaner[S1].txt - [7107 bytes] - [22/11/2015 20:40:28]
C:\AdwCleaner\AdwCleaner[S2].txt - [8132 bytes] - [09/07/2015 08:59:06]
C:\AdwCleaner\AdwCleaner[S3].txt - [3798 bytes] - [14/07/2015 09:40:12]
C:\AdwCleaner\AdwCleaner[S4].txt - [4193 bytes] - [27/07/2015 09:19:21]
C:\AdwCleaner\AdwCleaner[S8].txt - [3637 bytes] - [31/08/2015 20:27:33]
C:\AdwCleaner\AdwCleaner[S9].txt - [2306 bytes] - [14/11/2015 22:01:07]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [4302 bytes] ##########
d.a.p
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prevence
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:16-05-2016
Ran by Libina (administrator) on LIBINA (17-05-2016 09:45:56)
Running from C:\Users\Libina\Desktop
Loaded Profiles: Libina (Available Profiles: Libina)
Platform: Microsoft Windows 10 Pro Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Users\Libina\AppData\Local\Temp\Microsoft\services.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.168_none_1a39dfbc6dff3448\TiWorker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [HPUsageTrackingLEDM] => C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [30264 2009-08-04] (Hewlett-Packard Company)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [ProductUpdater] => C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75264 2016-04-07] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14696704 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [StartCCC] => C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-10-19] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3280760 2016-01-15] (Disc Soft Ltd)
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa7b2-ccbc-11e5-8284-1c6f655e3787} - "G:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa919-ccbc-11e5-8284-1c6f655e3787} - "I:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa98d-ccbc-11e5-8284-1c6f655e3787} - "J:\Autorun.exe"
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{1c6c9c5a-a672-41ae-be90-df1f965f1140}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-04-07] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-07] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-07] (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [not signed]
FF HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Libina\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Libina\AppData\Roaming\IDM\idmmzcc5 [2016-05-17] [not signed]
FF HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: IDM integration - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-03-10]
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.cz/?gws_rd=ssl
CHR StartupUrls: Default -> "hxxp://aktualnizpravy.cz/my_news.php?delbook=csaEZRPq4OBZlXpA0aI8gIV4hQ4tED&add_book=3","hxxp://www.google.com/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.824\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Překladač Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-11-19]
CHR Extension: (Prezentace Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-17]
CHR Extension: (Flash Video Downloader) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2016-05-08]
CHR Extension: (Dokumenty Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-17]
CHR Extension: (Disk Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-17]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-02-06]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-02-10]
CHR Extension: (YouTube) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-17]
CHR Extension: (uBlock Origin) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-05-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-17]
CHR Extension: (Gmail Offline) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2015-11-17]
CHR Extension: (SPOTS - A better way to start) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejocekekgcaldnmjngfdbmbeebcekelc [2016-05-16]
CHR Extension: (Foxtab Speed Dial) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoecifcadmambfikillppkoafmgachp [2015-11-17]
CHR Extension: (Tabulky Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-05-15]
CHR Extension: (feedly) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2015-11-17]
CHR Extension: (Domovská stránka pro váš prohlížeč) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\iijggnjpdajkbhmnmofglkmoimfbjnjo [2015-11-17]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-02-06]
CHR Extension: (feedly) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndhinffkekpekljifjkkkkkhopnjodja [2015-11-17]
CHR Extension: (IDM Integration Module) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-04-18]
CHR Extension: (Rozšíření Odběry RSS (od Googlu)) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2015-11-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2016-05-03]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-02-06]
CHR Extension: (Gmail) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-17]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-04-15]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [284872 2015-10-19] (Advanced Micro Devices, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1082232 2016-01-15] (Disc Soft Ltd)
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [136704 2009-06-24] (HP) [File not signed]
S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2120712 2016-05-05] (Electronic Arts)
S3 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1227800 2013-04-18] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [659992 2013-04-18] (Secunia)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 a016bus; C:\WINDOWS\System32\drivers\a016bus.sys [83880 2008-01-18] (MCCI Corporation)
S3 a016mgmt; C:\WINDOWS\System32\drivers\a016mgmt.sys [104488 2008-01-18] (MCCI Corporation)
S3 a016obex; C:\WINDOWS\System32\drivers\a016obex.sys [100648 2008-01-18] (MCCI Corporation)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\i386\AODDriver2.sys [50400 2014-02-11] (Advanced Micro Devices)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [26168 2016-02-06] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [40504 2016-02-06] (Disc Soft Ltd)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [26328 2015-01-13] (Sony Mobile Communications)
S3 HPMo4DE3; C:\WINDOWS\System32\drivers\HPMo4DE3.sys [20992 2011-03-09] (TPMX Electronics Ltd.)
S3 HPub4DE3; C:\WINDOWS\System32\Drivers\HPub4DE3.sys [13824 2011-04-12] (TPMX Electronics Ltd.)
S3 PSI; C:\WINDOWS\System32\DRIVERS\psi_mf_x86.sys [16024 2013-04-18] (Secunia)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [754456 2000-01-01] (Realtek )
S3 s0016bus; C:\WINDOWS\System32\drivers\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\WINDOWS\System32\drivers\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\WINDOWS\System32\drivers\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\WINDOWS\System32\drivers\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
S3 s0017bus; C:\WINDOWS\System32\drivers\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\WINDOWS\System32\drivers\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\WINDOWS\System32\drivers\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\WINDOWS\System32\drivers\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)
S3 s1018obex; C:\WINDOWS\System32\drivers\s1018obex.sys [104744 2009-03-25] (MCCI Corporation)
S3 s1029bus; C:\WINDOWS\System32\drivers\s1029bus.sys [90280 2009-05-25] (MCCI Corporation)
S3 s1029mgmt; C:\WINDOWS\System32\drivers\s1029mgmt.sys [115880 2009-05-25] (MCCI Corporation)
S3 s1029obex; C:\WINDOWS\System32\drivers\s1029obex.sys [111912 2009-05-25] (MCCI Corporation)
S3 s1029unic; C:\WINDOWS\System32\drivers\s1029unic.sys [116904 2009-05-25] (MCCI Corporation)
S3 s916bus; C:\WINDOWS\System32\drivers\s916bus.sys [83496 2007-11-02] (MCCI Corporation)
S3 s916mgmt; C:\WINDOWS\System32\drivers\s916mgmt.sys [103976 2007-11-02] (MCCI Corporation)
S3 s916obex; C:\WINDOWS\System32\drivers\s916obex.sys [100008 2007-11-02] (MCCI Corporation)
S3 se3ebus; C:\WINDOWS\System32\drivers\se3ebus.sys [83080 2007-04-10] (MCCI Corporation)
S3 se3emgmt; C:\WINDOWS\System32\drivers\se3emgmt.sys [100360 2007-04-10] (MCCI Corporation)
S3 se3eobex; C:\WINDOWS\System32\drivers\se3eobex.sys [98568 2007-04-10] (MCCI Corporation)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [5120 2012-12-19] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 wdf_usb; C:\WINDOWS\system32\drivers\usb2ser.sys [56832 2011-05-18] (MediaTek Inc.)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 whfltr2k; C:\WINDOWS\System32\drivers\whfltr2k.sys [7424 2000-01-01] ()
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
S3 BlueletAudio; \SystemRoot\system32\DRIVERS\blueletaudio.sys [X]
S3 BlueletSCOAudio; \SystemRoot\system32\DRIVERS\BlueletSCOAudio.sys [X]
S3 BT; \SystemRoot\System32\drivers\btnetdrv.sys [X]
S3 Btcsrusb; \SystemRoot\System32\Drivers\btcusb.sys [X]
S0 BTHidEnum; System32\Drivers\vbtenum.sys [X]
S0 BTHidMgr; System32\Drivers\BTHidMgr.sys [X]
S3 VComm; \SystemRoot\system32\DRIVERS\VComm.sys [X]
S3 VcommMgr; \SystemRoot\System32\Drivers\VcommMgr.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-05-17 09:45 - 2016-05-17 09:46 - 00017027 _____ C:\Users\Libina\Desktop\FRST.txt
2016-05-17 09:45 - 2016-05-17 09:45 - 00000000 ____D C:\FRST
2016-05-17 09:42 - 2016-05-17 09:42 - 01733120 _____ (Farbar) C:\Users\Libina\Desktop\FRST.exe
2016-05-16 07:50 - 2016-05-16 07:50 - 01583503 _____ C:\Users\Libina\Downloads\Prezentace_obhajoba.pptx
2016-05-16 07:43 - 2016-05-16 07:42 - 03651136 _____ C:\Users\Libina\Desktop\adwcleaner_5.117.exe
2016-05-13 15:51 - 2016-05-13 15:51 - 00000000 ____D C:\rsit
2016-05-13 15:51 - 2016-05-13 15:51 - 00000000 ____D C:\Program Files\trend micro
2016-05-11 16:25 - 2016-04-30 08:46 - 02974720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-05-11 16:25 - 2016-04-23 08:06 - 01232576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-05-11 16:25 - 2016-04-23 08:06 - 00973504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-05-11 16:25 - 2016-04-23 08:06 - 00576192 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-05-11 16:25 - 2016-04-23 08:06 - 00149696 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-05-11 16:25 - 2016-04-23 08:06 - 00042688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-11 16:25 - 2016-04-23 07:28 - 05796704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 16:25 - 2016-04-23 07:28 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-05-11 16:25 - 2016-04-23 07:28 - 01541792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-05-11 16:25 - 2016-04-23 07:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-05-11 16:25 - 2016-04-23 07:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-05-11 16:25 - 2016-04-23 07:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-05-11 16:25 - 2016-04-23 07:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-05-11 16:25 - 2016-04-23 07:01 - 01714520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-05-11 16:25 - 2016-04-23 06:35 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-05-11 16:25 - 2016-04-23 06:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-11 16:25 - 2016-04-23 06:27 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-11 16:25 - 2016-04-23 06:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-05-11 16:25 - 2016-04-23 06:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-11 16:25 - 2016-04-23 06:24 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-05-11 16:25 - 2016-04-23 06:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-05-11 16:25 - 2016-04-23 06:22 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-05-11 16:25 - 2016-04-23 06:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-05-11 16:25 - 2016-04-23 06:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-05-11 16:25 - 2016-04-23 06:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-05-11 16:25 - 2016-04-23 06:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-05-11 16:25 - 2016-04-23 06:16 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-05-11 16:25 - 2016-04-23 06:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-05-11 16:25 - 2016-04-23 06:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-05-11 16:25 - 2016-04-23 06:15 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-05-11 16:25 - 2016-04-23 06:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-11 16:25 - 2016-04-23 06:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-05-11 16:25 - 2016-04-23 06:14 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-05-11 16:25 - 2016-04-23 06:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-05-11 16:25 - 2016-04-23 06:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-05-11 16:25 - 2016-04-23 06:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-05-11 16:25 - 2016-04-23 06:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-05-11 16:25 - 2016-04-23 06:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-11 16:25 - 2016-04-23 06:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-11 16:25 - 2016-04-23 06:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-05-11 16:25 - 2016-04-23 06:07 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-11 16:25 - 2016-04-23 06:05 - 01895936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-11 16:25 - 2016-04-23 06:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-05-11 16:25 - 2016-04-23 06:04 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-11 16:25 - 2016-04-23 06:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-05-11 16:25 - 2016-04-23 06:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-05-11 16:25 - 2016-04-23 06:03 - 01899520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-05-11 16:25 - 2016-04-23 06:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-11 16:24 - 2016-05-06 07:20 - 00077664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-05-11 16:24 - 2016-05-06 06:23 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-05-11 16:24 - 2016-05-06 06:13 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-05-11 16:24 - 2016-05-06 06:10 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-11 16:24 - 2016-05-06 06:05 - 00487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-05-11 16:24 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-05-11 16:24 - 2016-05-06 05:49 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-11 16:24 - 2016-04-30 08:53 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-05-11 16:24 - 2016-04-23 08:06 - 00440512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-05-11 16:24 - 2016-04-23 08:06 - 00248512 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-05-11 16:24 - 2016-04-23 08:06 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-05-11 16:24 - 2016-04-23 07:28 - 00550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-05-11 16:24 - 2016-04-23 07:28 - 00545432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-05-11 16:24 - 2016-04-23 07:28 - 00278368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-05-11 16:24 - 2016-04-23 07:28 - 00083808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-05-11 16:24 - 2016-04-23 07:26 - 00792328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 16:24 - 2016-04-23 07:21 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-05-11 16:24 - 2016-04-23 07:14 - 00310112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-05-11 16:24 - 2016-04-23 07:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-11 16:24 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-05-11 16:24 - 2016-04-23 07:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-05-11 16:24 - 2016-04-23 07:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-05-11 16:24 - 2016-04-23 07:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-11 16:24 - 2016-04-23 07:12 - 00104800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-05-11 16:24 - 2016-04-23 07:11 - 00259424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-05-11 16:24 - 2016-04-23 07:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-05-11 16:24 - 2016-04-23 07:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-11 16:24 - 2016-04-23 07:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-05-11 16:24 - 2016-04-23 07:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-05-11 16:24 - 2016-04-23 07:07 - 00192704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-05-11 16:24 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-05-11 16:24 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-11 16:24 - 2016-04-23 07:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-05-11 16:24 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 16:24 - 2016-04-23 07:01 - 00484704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-05-11 16:24 - 2016-04-23 07:01 - 00336224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-05-11 16:24 - 2016-04-23 07:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 16:24 - 2016-04-23 07:00 - 01396584 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-05-11 16:24 - 2016-04-23 07:00 - 01273720 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-05-11 16:24 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-05-11 16:24 - 2016-04-23 07:00 - 00049504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-05-11 16:24 - 2016-04-23 06:55 - 00430432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-05-11 16:24 - 2016-04-23 06:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-05-11 16:24 - 2016-04-23 06:29 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-05-11 16:24 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-05-11 16:24 - 2016-04-23 06:29 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-05-11 16:24 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-11 16:24 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-05-11 16:24 - 2016-04-23 06:28 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-11 16:24 - 2016-04-23 06:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-05-11 16:24 - 2016-04-23 06:27 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-05-11 16:24 - 2016-04-23 06:27 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-11 16:24 - 2016-04-23 06:25 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-05-11 16:24 - 2016-04-23 06:25 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-11 16:24 - 2016-04-23 06:24 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-11 16:24 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-11 16:24 - 2016-04-23 06:24 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-05-11 16:24 - 2016-04-23 06:23 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-05-11 16:24 - 2016-04-23 06:23 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-11 16:24 - 2016-04-23 06:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-05-11 16:24 - 2016-04-23 06:23 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-05-11 16:24 - 2016-04-23 06:22 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-05-11 16:24 - 2016-04-23 06:21 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-05-11 16:24 - 2016-04-23 06:21 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-05-11 16:24 - 2016-04-23 06:21 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-05-11 16:24 - 2016-04-23 06:21 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-11 16:24 - 2016-04-23 06:19 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-05-11 16:24 - 2016-04-23 06:19 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-05-11 16:24 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-11 16:24 - 2016-04-23 06:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-11 16:24 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-05-11 16:24 - 2016-04-23 06:17 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-11 16:24 - 2016-04-23 06:17 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-11 16:24 - 2016-04-23 06:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-05-11 16:24 - 2016-04-23 06:16 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-05-11 16:24 - 2016-04-23 06:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-05-11 16:24 - 2016-04-23 06:14 - 00739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-05-11 16:24 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-05-11 16:24 - 2016-04-23 06:13 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-11 16:24 - 2016-04-23 06:13 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-05-11 16:24 - 2016-04-23 06:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-05-11 16:24 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 16:24 - 2016-04-23 06:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-05-11 16:24 - 2016-04-23 06:12 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-05-11 16:24 - 2016-04-23 06:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-11 16:24 - 2016-04-23 06:11 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-05-11 16:24 - 2016-04-23 06:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-05-11 16:24 - 2016-04-23 06:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-05-11 16:24 - 2016-04-23 06:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-05-11 16:24 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-05-11 16:24 - 2016-04-23 06:03 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-05-11 16:24 - 2016-04-23 06:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-05-11 16:24 - 2016-04-23 06:01 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-11 16:24 - 2016-04-23 04:10 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-05-11 16:24 - 2016-04-19 00:30 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-05-10 13:00 - 2016-05-10 13:15 - 00000000 ____D C:\Users\Libina\Downloads\Zeměpis
2016-05-06 11:19 - 2016-05-06 11:19 - 00000000 __RHD C:\Users\Libina\AppData\Roaming\SecuROM
2016-05-06 09:06 - 2016-05-06 09:06 - 05307032 _____ C:\Users\Libina\Downloads\LeahLillith_HeartburnHair_004.package
2016-05-05 11:27 - 2016-05-05 11:27 - 00000000 ____D C:\ProgramData\EA Core
2016-05-05 11:26 - 2016-05-05 11:26 - 00000000 ____D C:\Users\Libina\AppData\Roaming\Origin
2016-05-05 11:26 - 2016-05-05 11:26 - 00000000 ____D C:\Users\Libina\AppData\Local\Origin
2016-05-05 11:23 - 2016-05-05 11:26 - 00000000 ____D C:\ProgramData\Origin
2016-05-05 11:22 - 2016-05-05 11:26 - 00000000 ____D C:\Program Files\Origin
2016-05-05 11:22 - 2016-05-05 11:22 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-05-05 09:13 - 2016-05-05 09:13 - 00000000 ____D C:\Program Files\Microsoft WSE
2016-05-05 08:51 - 2016-05-06 08:23 - 00000000 ____D C:\Program Files\Electronic Arts
2016-05-02 10:43 - 2016-05-02 10:43 - 00034169 ____T C:\Users\Libina\Documents\jhh.oxps
2016-04-19 13:26 - 2016-04-19 13:26 - 00001355 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-05-17 09:44 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-17 09:44 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-17 09:39 - 2015-11-17 16:26 - 00000958 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-16 13:56 - 2015-11-17 16:26 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-16 07:47 - 2016-01-07 11:49 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-16 07:46 - 2015-10-30 07:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-05-16 07:43 - 2015-11-17 16:43 - 00000000 ____D C:\Users\Libina\AppData\Roaming\DMCache
2016-05-16 07:32 - 2015-11-17 16:43 - 00000000 ____D C:\Users\Libina\AppData\Roaming\IDM
2016-05-16 07:27 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-13 15:25 - 2016-02-06 12:27 - 00000000 ____D C:\Users\Libina\AppData\Roaming\DAEMON Tools Lite
2016-05-13 15:24 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-05-13 07:59 - 2015-11-17 16:27 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-12 19:27 - 2015-11-17 17:46 - 00000000 ____D C:\Users\Libina\AppData\Roaming\vlc
2016-05-12 18:11 - 2016-01-07 11:38 - 00000000 ____D C:\Users\Libina
2016-05-12 17:32 - 2016-02-06 12:13 - 00000000 ____D C:\Users\Libina\Desktop\Zuzanka
2016-05-12 17:14 - 2015-11-17 17:27 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-12 09:21 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-05-12 08:15 - 2015-09-10 06:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-05-11 21:57 - 2015-10-30 07:49 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-05-11 21:57 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-05-11 18:25 - 2015-10-30 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-11 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-11 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-11 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\Provisioning
2016-05-11 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-05-11 18:24 - 2015-10-30 07:48 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-05-11 16:50 - 2015-11-19 16:48 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-05-11 16:41 - 2015-11-19 16:47 - 136686448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-05-08 19:31 - 2015-11-17 16:13 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-08 19:31 - 2015-10-30 17:08 - 00750030 _____ C:\WINDOWS\system32\perfh005.dat
2016-05-08 19:31 - 2015-10-30 17:08 - 00150654 _____ C:\WINDOWS\system32\perfc005.dat
2016-05-06 08:20 - 2015-11-17 16:42 - 00000000 ____D C:\Program Files\Internet Download Manager
2016-05-06 08:11 - 2015-11-17 18:12 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-05-05 09:13 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-05-03 13:06 - 2015-11-17 16:11 - 00000000 ____D C:\Users\Libina\AppData\Local\Packages
2016-05-02 20:02 - 2012-10-03 12:47 - 00000000 ____D C:\Users\Libina\Desktop\bezpečí
2016-04-29 17:12 - 2016-01-07 12:00 - 00002394 _____ C:\Users\Libina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-04-29 17:12 - 2016-01-07 12:00 - 00000000 ___RD C:\Users\Libina\OneDrive
2016-04-22 09:57 - 2015-11-17 20:14 - 00374944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-19 13:26 - 2016-03-03 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2016-04-19 13:26 - 2016-03-03 16:43 - 00000000 ____D C:\ProgramData\Freemake
==================== Files in the root of some directories =======
2016-03-04 12:01 - 2016-03-04 12:01 - 0656841 _____ () C:\Users\Libina\AppData\Local\ars.cache
2016-03-04 12:02 - 2016-03-04 12:02 - 0445498 _____ () C:\Users\Libina\AppData\Local\census.cache
2015-11-25 16:47 - 2015-11-25 16:47 - 0003584 _____ () C:\Users\Libina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-04 11:33 - 2016-03-04 11:33 - 0000036 _____ () C:\Users\Libina\AppData\Local\housecall.guid.cache
2016-03-04 11:56 - 2016-03-04 11:56 - 0000010 _____ () C:\Users\Libina\AppData\Local\sponge.last.runtime.cache
2016-01-07 11:32 - 2016-01-07 11:32 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Libina\AppData\Local\Temp\libeay32.dll
C:\Users\Libina\AppData\Local\Temp\msvcr120.dll
C:\Users\Libina\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-05-11 16:57
==================== End of FRST.txt ============================
Ran by Libina (administrator) on LIBINA (17-05-2016 09:45:56)
Running from C:\Users\Libina\Desktop
Loaded Profiles: Libina (Available Profiles: Libina)
Platform: Microsoft Windows 10 Pro Version 1511 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(HP) C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Users\Libina\AppData\Local\Temp\Microsoft\services.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.168_none_1a39dfbc6dff3448\TiWorker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [HPUsageTrackingLEDM] => C:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [30264 2009-08-04] (Hewlett-Packard Company)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [ProductUpdater] => C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75264 2016-04-07] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14696704 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [StartCCC] => C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-10-19] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3280760 2016-01-15] (Disc Soft Ltd)
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa7b2-ccbc-11e5-8284-1c6f655e3787} - "G:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa919-ccbc-11e5-8284-1c6f655e3787} - "I:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa98d-ccbc-11e5-8284-1c6f655e3787} - "J:\Autorun.exe"
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{1c6c9c5a-a672-41ae-be90-df1f965f1140}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-04-07] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-07] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-07] (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [not signed]
FF HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Libina\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Libina\AppData\Roaming\IDM\idmmzcc5 [2016-05-17] [not signed]
FF HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: IDM integration - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-03-10]
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.cz/?gws_rd=ssl
CHR StartupUrls: Default -> "hxxp://aktualnizpravy.cz/my_news.php?delbook=csaEZRPq4OBZlXpA0aI8gIV4hQ4tED&add_book=3","hxxp://www.google.com/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.824\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Překladač Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-11-19]
CHR Extension: (Prezentace Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-17]
CHR Extension: (Flash Video Downloader) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2016-05-08]
CHR Extension: (Dokumenty Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-17]
CHR Extension: (Disk Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-17]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-02-06]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-02-10]
CHR Extension: (YouTube) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-17]
CHR Extension: (uBlock Origin) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-05-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-17]
CHR Extension: (Gmail Offline) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2015-11-17]
CHR Extension: (SPOTS - A better way to start) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejocekekgcaldnmjngfdbmbeebcekelc [2016-05-16]
CHR Extension: (Foxtab Speed Dial) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoecifcadmambfikillppkoafmgachp [2015-11-17]
CHR Extension: (Tabulky Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-05-15]
CHR Extension: (feedly) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2015-11-17]
CHR Extension: (Domovská stránka pro váš prohlížeč) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\iijggnjpdajkbhmnmofglkmoimfbjnjo [2015-11-17]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-02-06]
CHR Extension: (feedly) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndhinffkekpekljifjkkkkkhopnjodja [2015-11-17]
CHR Extension: (IDM Integration Module) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-04-18]
CHR Extension: (Rozšíření Odběry RSS (od Googlu)) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2015-11-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2016-05-03]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-02-06]
CHR Extension: (Gmail) - C:\Users\Libina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-17]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-04-15]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [284872 2015-10-19] (Advanced Micro Devices, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1082232 2016-01-15] (Disc Soft Ltd)
R2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [136704 2009-06-24] (HP) [File not signed]
S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2120712 2016-05-05] (Electronic Arts)
S3 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1227800 2013-04-18] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [659992 2013-04-18] (Secunia)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 a016bus; C:\WINDOWS\System32\drivers\a016bus.sys [83880 2008-01-18] (MCCI Corporation)
S3 a016mgmt; C:\WINDOWS\System32\drivers\a016mgmt.sys [104488 2008-01-18] (MCCI Corporation)
S3 a016obex; C:\WINDOWS\System32\drivers\a016obex.sys [100648 2008-01-18] (MCCI Corporation)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\i386\AODDriver2.sys [50400 2014-02-11] (Advanced Micro Devices)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [26168 2016-02-06] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [40504 2016-02-06] (Disc Soft Ltd)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [26328 2015-01-13] (Sony Mobile Communications)
S3 HPMo4DE3; C:\WINDOWS\System32\drivers\HPMo4DE3.sys [20992 2011-03-09] (TPMX Electronics Ltd.)
S3 HPub4DE3; C:\WINDOWS\System32\Drivers\HPub4DE3.sys [13824 2011-04-12] (TPMX Electronics Ltd.)
S3 PSI; C:\WINDOWS\System32\DRIVERS\psi_mf_x86.sys [16024 2013-04-18] (Secunia)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [754456 2000-01-01] (Realtek )
S3 s0016bus; C:\WINDOWS\System32\drivers\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\WINDOWS\System32\drivers\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\WINDOWS\System32\drivers\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\WINDOWS\System32\drivers\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
S3 s0017bus; C:\WINDOWS\System32\drivers\s0017bus.sys [86824 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\WINDOWS\System32\drivers\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\WINDOWS\System32\drivers\s0017obex.sys [104616 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\WINDOWS\System32\drivers\s0017unic.sys [109736 2008-10-21] (MCCI Corporation)
S3 s1018obex; C:\WINDOWS\System32\drivers\s1018obex.sys [104744 2009-03-25] (MCCI Corporation)
S3 s1029bus; C:\WINDOWS\System32\drivers\s1029bus.sys [90280 2009-05-25] (MCCI Corporation)
S3 s1029mgmt; C:\WINDOWS\System32\drivers\s1029mgmt.sys [115880 2009-05-25] (MCCI Corporation)
S3 s1029obex; C:\WINDOWS\System32\drivers\s1029obex.sys [111912 2009-05-25] (MCCI Corporation)
S3 s1029unic; C:\WINDOWS\System32\drivers\s1029unic.sys [116904 2009-05-25] (MCCI Corporation)
S3 s916bus; C:\WINDOWS\System32\drivers\s916bus.sys [83496 2007-11-02] (MCCI Corporation)
S3 s916mgmt; C:\WINDOWS\System32\drivers\s916mgmt.sys [103976 2007-11-02] (MCCI Corporation)
S3 s916obex; C:\WINDOWS\System32\drivers\s916obex.sys [100008 2007-11-02] (MCCI Corporation)
S3 se3ebus; C:\WINDOWS\System32\drivers\se3ebus.sys [83080 2007-04-10] (MCCI Corporation)
S3 se3emgmt; C:\WINDOWS\System32\drivers\se3emgmt.sys [100360 2007-04-10] (MCCI Corporation)
S3 se3eobex; C:\WINDOWS\System32\drivers\se3eobex.sys [98568 2007-04-10] (MCCI Corporation)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [5120 2012-12-19] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 wdf_usb; C:\WINDOWS\system32\drivers\usb2ser.sys [56832 2011-05-18] (MediaTek Inc.)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 whfltr2k; C:\WINDOWS\System32\drivers\whfltr2k.sys [7424 2000-01-01] ()
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
S3 BlueletAudio; \SystemRoot\system32\DRIVERS\blueletaudio.sys [X]
S3 BlueletSCOAudio; \SystemRoot\system32\DRIVERS\BlueletSCOAudio.sys [X]
S3 BT; \SystemRoot\System32\drivers\btnetdrv.sys [X]
S3 Btcsrusb; \SystemRoot\System32\Drivers\btcusb.sys [X]
S0 BTHidEnum; System32\Drivers\vbtenum.sys [X]
S0 BTHidMgr; System32\Drivers\BTHidMgr.sys [X]
S3 VComm; \SystemRoot\system32\DRIVERS\VComm.sys [X]
S3 VcommMgr; \SystemRoot\System32\Drivers\VcommMgr.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-05-17 09:45 - 2016-05-17 09:46 - 00017027 _____ C:\Users\Libina\Desktop\FRST.txt
2016-05-17 09:45 - 2016-05-17 09:45 - 00000000 ____D C:\FRST
2016-05-17 09:42 - 2016-05-17 09:42 - 01733120 _____ (Farbar) C:\Users\Libina\Desktop\FRST.exe
2016-05-16 07:50 - 2016-05-16 07:50 - 01583503 _____ C:\Users\Libina\Downloads\Prezentace_obhajoba.pptx
2016-05-16 07:43 - 2016-05-16 07:42 - 03651136 _____ C:\Users\Libina\Desktop\adwcleaner_5.117.exe
2016-05-13 15:51 - 2016-05-13 15:51 - 00000000 ____D C:\rsit
2016-05-13 15:51 - 2016-05-13 15:51 - 00000000 ____D C:\Program Files\trend micro
2016-05-11 16:25 - 2016-04-30 08:46 - 02974720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-05-11 16:25 - 2016-04-23 08:06 - 01232576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-05-11 16:25 - 2016-04-23 08:06 - 00973504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-05-11 16:25 - 2016-04-23 08:06 - 00576192 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-05-11 16:25 - 2016-04-23 08:06 - 00149696 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-05-11 16:25 - 2016-04-23 08:06 - 00042688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-11 16:25 - 2016-04-23 07:28 - 05796704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 16:25 - 2016-04-23 07:28 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-05-11 16:25 - 2016-04-23 07:28 - 01541792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-05-11 16:25 - 2016-04-23 07:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-05-11 16:25 - 2016-04-23 07:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-05-11 16:25 - 2016-04-23 07:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-05-11 16:25 - 2016-04-23 07:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-05-11 16:25 - 2016-04-23 07:01 - 01714520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-05-11 16:25 - 2016-04-23 06:35 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-05-11 16:25 - 2016-04-23 06:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-11 16:25 - 2016-04-23 06:27 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-11 16:25 - 2016-04-23 06:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-05-11 16:25 - 2016-04-23 06:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-11 16:25 - 2016-04-23 06:24 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-05-11 16:25 - 2016-04-23 06:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-05-11 16:25 - 2016-04-23 06:22 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-05-11 16:25 - 2016-04-23 06:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-05-11 16:25 - 2016-04-23 06:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-05-11 16:25 - 2016-04-23 06:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-05-11 16:25 - 2016-04-23 06:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-05-11 16:25 - 2016-04-23 06:16 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-05-11 16:25 - 2016-04-23 06:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-05-11 16:25 - 2016-04-23 06:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-05-11 16:25 - 2016-04-23 06:15 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-05-11 16:25 - 2016-04-23 06:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-11 16:25 - 2016-04-23 06:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-05-11 16:25 - 2016-04-23 06:14 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-05-11 16:25 - 2016-04-23 06:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-05-11 16:25 - 2016-04-23 06:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-05-11 16:25 - 2016-04-23 06:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-05-11 16:25 - 2016-04-23 06:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-05-11 16:25 - 2016-04-23 06:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-11 16:25 - 2016-04-23 06:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-11 16:25 - 2016-04-23 06:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-05-11 16:25 - 2016-04-23 06:07 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-11 16:25 - 2016-04-23 06:05 - 01895936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-11 16:25 - 2016-04-23 06:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-05-11 16:25 - 2016-04-23 06:04 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-11 16:25 - 2016-04-23 06:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-05-11 16:25 - 2016-04-23 06:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-05-11 16:25 - 2016-04-23 06:03 - 01899520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-05-11 16:25 - 2016-04-23 06:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-11 16:24 - 2016-05-06 07:20 - 00077664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-05-11 16:24 - 2016-05-06 06:23 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-05-11 16:24 - 2016-05-06 06:13 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-05-11 16:24 - 2016-05-06 06:10 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-11 16:24 - 2016-05-06 06:05 - 00487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-05-11 16:24 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-05-11 16:24 - 2016-05-06 05:49 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-11 16:24 - 2016-04-30 08:53 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-05-11 16:24 - 2016-04-23 08:06 - 00440512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-05-11 16:24 - 2016-04-23 08:06 - 00248512 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-05-11 16:24 - 2016-04-23 08:06 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-05-11 16:24 - 2016-04-23 07:28 - 00550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-05-11 16:24 - 2016-04-23 07:28 - 00545432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-05-11 16:24 - 2016-04-23 07:28 - 00278368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-05-11 16:24 - 2016-04-23 07:28 - 00083808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-05-11 16:24 - 2016-04-23 07:26 - 00792328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 16:24 - 2016-04-23 07:21 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-05-11 16:24 - 2016-04-23 07:14 - 00310112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-05-11 16:24 - 2016-04-23 07:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-11 16:24 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-05-11 16:24 - 2016-04-23 07:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-05-11 16:24 - 2016-04-23 07:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-05-11 16:24 - 2016-04-23 07:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-11 16:24 - 2016-04-23 07:12 - 00104800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-05-11 16:24 - 2016-04-23 07:11 - 00259424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-05-11 16:24 - 2016-04-23 07:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-05-11 16:24 - 2016-04-23 07:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-11 16:24 - 2016-04-23 07:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-05-11 16:24 - 2016-04-23 07:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-05-11 16:24 - 2016-04-23 07:07 - 00192704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-05-11 16:24 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-05-11 16:24 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-11 16:24 - 2016-04-23 07:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-05-11 16:24 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 16:24 - 2016-04-23 07:01 - 00484704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-05-11 16:24 - 2016-04-23 07:01 - 00336224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-05-11 16:24 - 2016-04-23 07:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 16:24 - 2016-04-23 07:00 - 01396584 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-05-11 16:24 - 2016-04-23 07:00 - 01273720 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-05-11 16:24 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-05-11 16:24 - 2016-04-23 07:00 - 00049504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-05-11 16:24 - 2016-04-23 06:55 - 00430432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-05-11 16:24 - 2016-04-23 06:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-05-11 16:24 - 2016-04-23 06:29 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-05-11 16:24 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-05-11 16:24 - 2016-04-23 06:29 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-05-11 16:24 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-11 16:24 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-05-11 16:24 - 2016-04-23 06:28 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-11 16:24 - 2016-04-23 06:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-05-11 16:24 - 2016-04-23 06:27 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-05-11 16:24 - 2016-04-23 06:27 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-11 16:24 - 2016-04-23 06:25 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-05-11 16:24 - 2016-04-23 06:25 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-11 16:24 - 2016-04-23 06:24 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-11 16:24 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-11 16:24 - 2016-04-23 06:24 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-05-11 16:24 - 2016-04-23 06:23 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-05-11 16:24 - 2016-04-23 06:23 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-11 16:24 - 2016-04-23 06:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-05-11 16:24 - 2016-04-23 06:23 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-05-11 16:24 - 2016-04-23 06:22 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-05-11 16:24 - 2016-04-23 06:21 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-05-11 16:24 - 2016-04-23 06:21 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-05-11 16:24 - 2016-04-23 06:21 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-05-11 16:24 - 2016-04-23 06:21 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-05-11 16:24 - 2016-04-23 06:20 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-11 16:24 - 2016-04-23 06:19 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-05-11 16:24 - 2016-04-23 06:19 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-05-11 16:24 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-11 16:24 - 2016-04-23 06:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-11 16:24 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-05-11 16:24 - 2016-04-23 06:17 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-11 16:24 - 2016-04-23 06:17 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-11 16:24 - 2016-04-23 06:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-05-11 16:24 - 2016-04-23 06:16 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-05-11 16:24 - 2016-04-23 06:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-05-11 16:24 - 2016-04-23 06:14 - 00739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-05-11 16:24 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-11 16:24 - 2016-04-23 06:14 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-05-11 16:24 - 2016-04-23 06:13 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-11 16:24 - 2016-04-23 06:13 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-05-11 16:24 - 2016-04-23 06:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-05-11 16:24 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 16:24 - 2016-04-23 06:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-05-11 16:24 - 2016-04-23 06:12 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-05-11 16:24 - 2016-04-23 06:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-11 16:24 - 2016-04-23 06:11 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-05-11 16:24 - 2016-04-23 06:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-05-11 16:24 - 2016-04-23 06:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-05-11 16:24 - 2016-04-23 06:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-05-11 16:24 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-05-11 16:24 - 2016-04-23 06:03 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-05-11 16:24 - 2016-04-23 06:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-05-11 16:24 - 2016-04-23 06:01 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-11 16:24 - 2016-04-23 04:10 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-05-11 16:24 - 2016-04-19 00:30 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-05-10 13:00 - 2016-05-10 13:15 - 00000000 ____D C:\Users\Libina\Downloads\Zeměpis
2016-05-06 11:19 - 2016-05-06 11:19 - 00000000 __RHD C:\Users\Libina\AppData\Roaming\SecuROM
2016-05-06 09:06 - 2016-05-06 09:06 - 05307032 _____ C:\Users\Libina\Downloads\LeahLillith_HeartburnHair_004.package
2016-05-05 11:27 - 2016-05-05 11:27 - 00000000 ____D C:\ProgramData\EA Core
2016-05-05 11:26 - 2016-05-05 11:26 - 00000000 ____D C:\Users\Libina\AppData\Roaming\Origin
2016-05-05 11:26 - 2016-05-05 11:26 - 00000000 ____D C:\Users\Libina\AppData\Local\Origin
2016-05-05 11:23 - 2016-05-05 11:26 - 00000000 ____D C:\ProgramData\Origin
2016-05-05 11:22 - 2016-05-05 11:26 - 00000000 ____D C:\Program Files\Origin
2016-05-05 11:22 - 2016-05-05 11:22 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-05-05 09:13 - 2016-05-05 09:13 - 00000000 ____D C:\Program Files\Microsoft WSE
2016-05-05 08:51 - 2016-05-06 08:23 - 00000000 ____D C:\Program Files\Electronic Arts
2016-05-02 10:43 - 2016-05-02 10:43 - 00034169 ____T C:\Users\Libina\Documents\jhh.oxps
2016-04-19 13:26 - 2016-04-19 13:26 - 00001355 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-05-17 09:44 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-17 09:44 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-17 09:39 - 2015-11-17 16:26 - 00000958 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-16 13:56 - 2015-11-17 16:26 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-16 07:47 - 2016-01-07 11:49 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-16 07:46 - 2015-10-30 07:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-05-16 07:43 - 2015-11-17 16:43 - 00000000 ____D C:\Users\Libina\AppData\Roaming\DMCache
2016-05-16 07:32 - 2015-11-17 16:43 - 00000000 ____D C:\Users\Libina\AppData\Roaming\IDM
2016-05-16 07:27 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-13 15:25 - 2016-02-06 12:27 - 00000000 ____D C:\Users\Libina\AppData\Roaming\DAEMON Tools Lite
2016-05-13 15:24 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-05-13 07:59 - 2015-11-17 16:27 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-12 19:27 - 2015-11-17 17:46 - 00000000 ____D C:\Users\Libina\AppData\Roaming\vlc
2016-05-12 18:11 - 2016-01-07 11:38 - 00000000 ____D C:\Users\Libina
2016-05-12 17:32 - 2016-02-06 12:13 - 00000000 ____D C:\Users\Libina\Desktop\Zuzanka
2016-05-12 17:14 - 2015-11-17 17:27 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-12 09:21 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-05-12 08:15 - 2015-09-10 06:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-05-11 21:57 - 2015-10-30 07:49 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-05-11 21:57 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-05-11 18:25 - 2015-10-30 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-11 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-11 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-11 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\Provisioning
2016-05-11 18:25 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-05-11 18:24 - 2015-10-30 07:48 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-05-11 16:50 - 2015-11-19 16:48 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-05-11 16:41 - 2015-11-19 16:47 - 136686448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-05-08 19:31 - 2015-11-17 16:13 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-08 19:31 - 2015-10-30 17:08 - 00750030 _____ C:\WINDOWS\system32\perfh005.dat
2016-05-08 19:31 - 2015-10-30 17:08 - 00150654 _____ C:\WINDOWS\system32\perfc005.dat
2016-05-06 08:20 - 2015-11-17 16:42 - 00000000 ____D C:\Program Files\Internet Download Manager
2016-05-06 08:11 - 2015-11-17 18:12 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-05-05 09:13 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-05-03 13:06 - 2015-11-17 16:11 - 00000000 ____D C:\Users\Libina\AppData\Local\Packages
2016-05-02 20:02 - 2012-10-03 12:47 - 00000000 ____D C:\Users\Libina\Desktop\bezpečí
2016-04-29 17:12 - 2016-01-07 12:00 - 00002394 _____ C:\Users\Libina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-04-29 17:12 - 2016-01-07 12:00 - 00000000 ___RD C:\Users\Libina\OneDrive
2016-04-22 09:57 - 2015-11-17 20:14 - 00374944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-19 13:26 - 2016-03-03 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2016-04-19 13:26 - 2016-03-03 16:43 - 00000000 ____D C:\ProgramData\Freemake
==================== Files in the root of some directories =======
2016-03-04 12:01 - 2016-03-04 12:01 - 0656841 _____ () C:\Users\Libina\AppData\Local\ars.cache
2016-03-04 12:02 - 2016-03-04 12:02 - 0445498 _____ () C:\Users\Libina\AppData\Local\census.cache
2015-11-25 16:47 - 2015-11-25 16:47 - 0003584 _____ () C:\Users\Libina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-04 11:33 - 2016-03-04 11:33 - 0000036 _____ () C:\Users\Libina\AppData\Local\housecall.guid.cache
2016-03-04 11:56 - 2016-03-04 11:56 - 0000010 _____ () C:\Users\Libina\AppData\Local\sponge.last.runtime.cache
2016-01-07 11:32 - 2016-01-07 11:32 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Libina\AppData\Local\Temp\libeay32.dll
C:\Users\Libina\AppData\Local\Temp\msvcr120.dll
C:\Users\Libina\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-05-11 16:57
==================== End of FRST.txt ============================
d.a.p
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa7b2-ccbc-11e5-8284-1c6f655e3787} - "G:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa919-ccbc-11e5-8284-1c6f655e3787} - "I:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa98d-ccbc-11e5-8284-1c6f655e3787} - "J:\Autorun.exe"
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Libina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\ProgramData\DP45977C.lfl
C:\Users\Libina\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prevence
Fix result of Farbar Recovery Scan Tool (x86) Version:16-05-2016
Ran by Libina (2016-05-17 19:17:07) Run:1
Running from C:\Users\Libina\Desktop
Loaded Profiles: Libina (Available Profiles: Libina)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa7b2-ccbc-11e5-8284-1c6f655e3787} - "G:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa919-ccbc-11e5-8284-1c6f655e3787} - "I:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa98d-ccbc-11e5-8284-1c6f655e3787} - "J:\Autorun.exe"
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Libina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\ProgramData\DP45977C.lfl
C:\Users\Libina\AppData\Local\Temp
End
*****************
"HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bb6aa7b2-ccbc-11e5-8284-1c6f655e3787}" => key removed successfully.
HKCR\CLSID\{bb6aa7b2-ccbc-11e5-8284-1c6f655e3787} => key not found.
"HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bb6aa919-ccbc-11e5-8284-1c6f655e3787}" => key removed successfully.
HKCR\CLSID\{bb6aa919-ccbc-11e5-8284-1c6f655e3787} => key not found.
"HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bb6aa98d-ccbc-11e5-8284-1c6f655e3787}" => key removed successfully.
HKCR\CLSID\{bb6aa98d-ccbc-11e5-8284-1c6f655e3787} => key not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Users\Libina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Users\Libina\AppData\Local\Temp" folder move:
Could not move "C:\Users\Libina\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-05-17 19:19:06)
C:\Users\Libina\AppData\Local\Temp => moved successfully
==== End of Fixlog 19:19:07 ====
Ran by Libina (2016-05-17 19:17:07) Run:1
Running from C:\Users\Libina\Desktop
Loaded Profiles: Libina (Available Profiles: Libina)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa7b2-ccbc-11e5-8284-1c6f655e3787} - "G:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa919-ccbc-11e5-8284-1c6f655e3787} - "I:\Autorun.exe"
HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\...\MountPoints2: {bb6aa98d-ccbc-11e5-8284-1c6f655e3787} - "J:\Autorun.exe"
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Libina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\ProgramData\DP45977C.lfl
C:\Users\Libina\AppData\Local\Temp
End
*****************
"HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bb6aa7b2-ccbc-11e5-8284-1c6f655e3787}" => key removed successfully.
HKCR\CLSID\{bb6aa7b2-ccbc-11e5-8284-1c6f655e3787} => key not found.
"HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bb6aa919-ccbc-11e5-8284-1c6f655e3787}" => key removed successfully.
HKCR\CLSID\{bb6aa919-ccbc-11e5-8284-1c6f655e3787} => key not found.
"HKU\S-1-5-21-2238009666-4088943951-4243750297-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bb6aa98d-ccbc-11e5-8284-1c6f655e3787}" => key removed successfully.
HKCR\CLSID\{bb6aa98d-ccbc-11e5-8284-1c6f655e3787} => key not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Users\Libina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Users\Libina\AppData\Local\Temp" folder move:
Could not move "C:\Users\Libina\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-05-17 19:19:06)
C:\Users\Libina\AppData\Local\Temp => moved successfully
==== End of Fixlog 19:19:07 ====
d.a.p
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prevence
Smazáno. Log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?