pomaly pc, pomaly net
Napsal: 04 bře 2017 11:03
dobry den,
notebook dedy zacal nejak stavkovat - prochazeni netu je strasny. Prosim o kontrolu logu:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-03-2017
Ran by KD (administrator) on IDEA-PC (04-03-2017 10:56:10)
Running from C:\Users\KD\Desktop
Loaded Profiles: KD (Available Profiles: KD)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.3.290.0\McCSPServiceHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Lenovo) C:\Users\KD\AppData\Local\Apps\2.0\9W874J1O.R9Z\NER3LJAE.Z2E\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\KD\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5462016 2016-12-06] (Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17097200 2013-08-18] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [193008 2013-08-18] (Lenovo(beijing) Limited)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-31] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [DriverPack Notifier] => C:\Program Files (x86)\DriverPack Notifier\D riverPackNotifier.exe [258560 2015-12-18] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-1331337826-2809015374-3754228717-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-01-31]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 77.236.129.130 88.86.107.235
Tcpip\..\Interfaces\{32b0cef2-f091-42d6-899b-2fd6dd67aa73}: [DhcpNameServer] 77.236.129.130 88.86.107.235
Internet Explorer:
==================
HKU\S-1-5-21-1331337826-2809015374-3754228717-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1331337826-2809015374-3754228717-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-1331337826-2809015374-3754228717-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> DefaultScope {400EFDB7-16CA-4004-865E-37CAFCB52272} URL = hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=C011CZ0D20150208&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> {400EFDB7-16CA-4004-865E-37CAFCB52272} URL = hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=C011CZ0D20150208&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> {CEC43C83-B19F-4440-81B9-3DC9C18E56B2} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13906
SearchScopes: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> {E379799D-01D5-46BB-832E-67151F9D49B2} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24] (Microsoft Corporation)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2017-02-10] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2017-02-10] (McAfee, Inc.)
FireFox:
========
FF ProfilePath: C:\Users\KD\AppData\Roaming\Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 [2017-03-04]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 -> Bezpečné hledání
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 -> Bezpečné hledání
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 -> Bezpečné hledání
FF Homepage: Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 -> hxxp://www.seznam.cz/
FF Extension: (Seznam lištička) - C:\Users\KD\AppData\Roaming\Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-02-26]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\KD\AppData\Roaming\Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865\features\{4765c94f-2454-4d91-b52f-0d2952557769}\disableSHA1rollout@mozilla.org.xpi [2017-02-19]
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-05-24]
FF SearchPlugin: C:\Users\KD\AppData\Roaming\Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865\searchplugins\McSiteAdvisor.xml [2016-03-30]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-02-15] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-14] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2017-02-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2017-02-10] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "ru.redirect.wrapper.services.alawar.ru/startpage.php?lang=cs&wspv=3.0&locale=cs&pid=10202"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=C211CZ0D20150208&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default [2017-03-04]
CHR Extension: (Dokumenty Google) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-08]
CHR Extension: (Disk Google) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-21]
CHR Extension: (Vyhledávání Google) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2017-03-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-28]
CHR Extension: (Gmail) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-05]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-05]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1747800 2017-02-16] (Intel Security)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134872 2016-11-24] (ELAN Microelectronics Corp.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2016-05-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [188352 2017-02-06] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe [989632 2017-01-23] (McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.500\McCHSvc.exe [329480 2017-01-19] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.3.290.0\\McCSPServiceHost.exe [2054080 2017-02-04] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [1342904 2017-02-01] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [241040 2016-11-14] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [383032 2016-11-14] (McAfee, Inc.)
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [342768 2016-11-14] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1465840 2016-12-22] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1104304 2016-11-15] (Intel Security, Inc.)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2016-12-10] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-25] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ApkbfiltrService; C:\WINDOWS\System32\drivers\Apkbfiltr.sys [31016 2015-07-23] (Alps Electric Co., Ltd.)
R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4320176 2016-11-27] (Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [608656 2016-11-28] (Qualcomm)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [88456 2016-11-18] (McAfee, Inc.)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [32336 2016-11-24] (ELAN Microelectronic Corp.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [216704 2016-08-02] (McAfee, Inc.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [484576 2016-11-18] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [366320 2016-11-18] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85048 2016-11-18] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [518184 2016-11-18] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [916432 2016-11-18] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [498152 2016-10-24] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109336 2016-10-24] (McAfee, Inc.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [110248 2016-11-18] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254800 2016-11-18] (McAfee, Inc.)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [427520 2016-11-02] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3222016 2016-12-06] (Realtek Semiconductor Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 mfeaack01; \Device\mfeaack01.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-04 10:56 - 2017-03-04 10:57 - 00024565 _____ C:\Users\KD\Desktop\FRST.txt
2017-03-04 10:55 - 2017-03-04 10:56 - 00000000 ____D C:\FRST
2017-03-04 10:54 - 2017-03-04 10:55 - 02423808 _____ (Farbar) C:\Users\KD\Desktop\FRST64.exe
2017-03-04 10:54 - 2017-03-04 10:55 - 00112640 _____ (forum.viry.cz) C:\Users\KD\Desktop\FRSTLauncher.exe
2017-03-04 10:53 - 2017-03-04 10:54 - 00112640 _____ (forum.viry.cz) C:\Users\KD\Downloads\FRSTLauncher.exe
2017-03-04 10:52 - 2017-03-04 10:52 - 00112640 _____ (forum.viry.cz) C:\Users\KD\Downloads\Nepotvrzeno 957208.crdownload
2017-03-04 10:47 - 2017-03-04 10:47 - 02423808 _____ (Farbar) C:\Users\KD\Downloads\FRST64.exe
2017-03-04 10:40 - 2017-03-04 10:42 - 00000000 ____D C:\AdwCleaner
2017-03-04 10:39 - 2017-03-04 10:40 - 04031440 _____ C:\Users\KD\Downloads\adwcleaner_6.044.exe
2017-03-04 10:29 - 2017-03-04 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2017-03-04 10:29 - 2015-04-18 10:26 - 00427224 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\SASrv.exe
2017-03-04 10:29 - 2014-11-26 11:01 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat
2017-03-04 10:28 - 2017-03-04 10:28 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2017-03-04 10:28 - 2013-07-25 14:39 - 00206552 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2017-03-04 09:58 - 2017-03-04 09:59 - 86334352 _____ (Lenovo Group Limited ) C:\Users\KD\Downloads\ado110w7.exe
2017-03-04 09:57 - 2017-03-04 09:57 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2017-03-04 09:57 - 2017-03-04 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-03-04 09:56 - 2017-03-04 09:56 - 00000000 ____D C:\Users\KD\AppData\Local\LenovoServiceBridge
2017-03-04 09:49 - 2017-03-04 09:49 - 00000000 ____D C:\Users\KD\AppData\Local\Deployment
2017-03-04 09:48 - 2017-03-04 09:49 - 00611400 _____ () C:\Users\KD\Downloads\LSBsetup.exe
2017-03-02 14:48 - 2017-03-04 00:27 - 00004222 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2017-03-02 11:44 - 2017-03-02 11:44 - 00109962 _____ C:\Users\KD\Documents\cc_20170302_114424.reg
2017-03-02 11:38 - 2017-03-04 10:29 - 00004034 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2017-03-02 11:27 - 2017-03-02 11:52 - 00000000 ___HD C:\$WINDOWS.~BT
2017-03-01 10:24 - 2017-03-01 10:24 - 00002848 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-03-01 10:24 - 2017-03-01 10:24 - 00000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-03-01 10:24 - 2017-03-01 10:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-03-01 10:24 - 2017-03-01 10:24 - 00000000 ____D C:\Program Files\CCleaner
2017-03-01 10:09 - 2017-03-01 10:23 - 09261616 _____ (Piriform Ltd) C:\Users\KD\Downloads\ccsetup527.exe
2017-02-26 13:43 - 2017-02-26 13:45 - 00516914 _____ (DriverPack) C:\Users\KD\Downloads\DriverPack-17-Online_126610975.1488113010.exe
2017-02-21 10:43 - 2017-02-21 10:44 - 02473384 _____ C:\Users\KD\Downloads\FormApps_Signing_Extension(2).exe
2017-02-21 10:42 - 2017-02-21 10:42 - 02473384 _____ C:\Users\KD\Downloads\FormApps_Signing_Extension(1).exe
2017-02-21 10:40 - 2017-02-21 10:45 - 02473384 _____ C:\Users\KD\Downloads\FormApps_Signing_Extension.exe
2017-02-16 14:42 - 2016-07-29 21:09 - 00458376 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00457352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00457352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00450184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00449160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00447112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00446600 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00304264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00145032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2017-02-16 14:42 - 2016-05-19 08:58 - 00017086 _____ C:\WINDOWS\system32\iglhxs64.vp
2017-02-16 14:42 - 2016-05-19 08:44 - 00223664 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00210106 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00194245 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00166170 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00163421 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00159008 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00149682 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00148042 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00147393 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00147288 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00146004 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00145491 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00144645 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00144260 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00144020 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00143932 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142882 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142877 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142717 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142289 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142008 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00141838 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00141049 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00137889 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00137784 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00137141 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00132623 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00126300 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00124650 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00000268 _____ C:\WINDOWS\system32\GfxUI.exe.config
2017-02-16 14:42 - 2016-05-19 08:41 - 01981696 _____ C:\WINDOWS\system32\iglhxa64.cpa
2017-02-16 14:42 - 2016-05-19 08:41 - 00059425 _____ C:\WINDOWS\system32\iglhxo64.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00059398 _____ C:\WINDOWS\system32\iglhxg64.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00059230 _____ C:\WINDOWS\system32\iglhxc64.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00059104 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00058796 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00058109 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00001074 _____ C:\WINDOWS\system32\iglhxa64.vp
2017-02-16 14:41 - 2016-07-29 21:10 - 01086408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00975184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00558728 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00553424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00242800 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00206000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00051184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 09025672 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 03529352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 03139208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00593544 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00560776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00460936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00428680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00402568 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00348808 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00259712 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00213640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00160392 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00134280 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4459.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00082056 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00074888 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00074376 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00043144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00027784 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2017-02-16 14:40 - 2016-07-29 21:10 - 13182528 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2017-02-16 14:40 - 2016-07-29 21:10 - 12935296 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2017-02-16 14:40 - 2016-07-29 21:10 - 11460448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2017-02-16 14:40 - 2016-07-29 21:10 - 11330576 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 29609096 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 29591176 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 27486856 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 21866632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 03599496 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 02917000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 00119432 _____ C:\WINDOWS\system32\igdde64.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 00099464 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 11661448 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 08638088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 05925976 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00536664 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00463960 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00420952 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00276064 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00206936 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00193160 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 00128648 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 00112264 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2017-02-16 14:38 - 2016-05-19 08:41 - 00754652 _____ C:\WINDOWS\SysWOW64\igcodeckrng700.bin
2017-02-16 14:38 - 2016-05-19 08:41 - 00754652 _____ C:\WINDOWS\system32\igcodeckrng700.bin
2017-02-16 14:38 - 2016-05-19 08:41 - 00598384 _____ C:\WINDOWS\SysWOW64\igvpkrng700.bin
2017-02-16 14:38 - 2016-05-19 08:41 - 00598384 _____ C:\WINDOWS\system32\igvpkrng700.bin
2017-02-16 13:05 - 2016-12-06 23:28 - 01981952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsDecode.dll
2017-02-16 13:05 - 2016-12-06 23:28 - 00646656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamP64.dll
2017-02-16 13:05 - 2016-12-06 23:28 - 00561664 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtCamP.dll
2017-02-16 12:40 - 2015-08-31 05:33 - 00006520 _____ C:\WINDOWS\system32\Drivers\ISAPSII.ini
2017-02-16 11:58 - 2016-11-02 09:02 - 04340784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2017-02-16 11:58 - 2016-11-02 09:01 - 09900072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2017-02-16 11:37 - 2016-11-24 05:08 - 01332952 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller15015.dll
2017-02-16 08:04 - 2017-02-16 08:05 - 00000000 ____D C:\Users\KD\Desktop\foto marek
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-04 10:53 - 2016-11-29 07:27 - 00000000 ____D C:\Users\KD\AppData\LocalLow\Mozilla
2017-03-04 10:43 - 2016-02-13 14:09 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-04 10:42 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2017-03-04 10:29 - 2016-05-27 12:57 - 00000000 ____D C:\Program Files\CONEXANT
2017-03-04 10:28 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2017-03-04 10:09 - 2014-08-10 17:00 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-03-04 10:00 - 2014-01-18 13:13 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-03-04 09:57 - 2013-08-18 03:12 - 00000000 ____D C:\ProgramData\Lenovo
2017-03-04 09:57 - 2013-08-18 03:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-03-04 09:57 - 2013-08-18 03:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-04 09:57 - 2013-08-18 03:04 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-03-04 09:49 - 2013-11-22 09:16 - 00000000 ____D C:\Users\KD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-04 09:32 - 2016-05-27 13:15 - 01774890 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-04 09:32 - 2016-02-13 13:50 - 00752310 _____ C:\WINDOWS\system32\perfh005.dat
2017-03-04 09:32 - 2016-02-13 13:50 - 00151396 _____ C:\WINDOWS\system32\perfc005.dat
2017-03-04 09:30 - 2015-03-20 15:49 - 00004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EAD51CDD-033D-4FBC-BE23-ABD7EB64AA95}
2017-03-04 09:27 - 2016-12-17 12:57 - 00003268 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-04 09:27 - 2016-05-27 14:14 - 00002431 _____ C:\Users\KD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-04 09:27 - 2016-05-27 14:14 - 00000000 ___RD C:\Users\KD\OneDrive
2017-03-04 09:25 - 2015-02-08 15:13 - 00000000 ____D C:\Program Files (x86)\McAfee
2017-03-04 00:41 - 2013-12-29 17:14 - 00000000 ____D C:\Users\KD\AppData\Roaming\vlc
2017-03-04 00:27 - 2015-08-06 12:01 - 00003126 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
2017-03-04 00:27 - 2015-08-06 12:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2017-03-03 22:29 - 2013-11-22 10:12 - 00000000 ____D C:\Users\KD\AppData\Local\Google
2017-03-02 14:33 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-02 12:08 - 2014-01-11 11:22 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-02 12:04 - 2014-01-11 11:22 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-02 11:56 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-02 11:54 - 2016-06-18 14:14 - 00003954 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1466255678
2017-03-02 11:54 - 2016-06-18 14:14 - 00001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-03-02 11:54 - 2016-06-18 14:14 - 00000000 ____D C:\Program Files (x86)\Opera
2017-03-02 11:52 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-02 11:47 - 2016-05-27 13:02 - 00000000 ____D C:\Users\KD
2017-03-02 11:43 - 2016-05-27 13:52 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-02 11:43 - 2014-04-08 16:00 - 00000000 ____D C:\Users\KD\AppData\Local\CrashDumps
2017-02-27 12:05 - 2015-10-30 07:28 - 00065536 ___SH C:\WINDOWS\system32\config\ELAM
2017-02-26 20:34 - 2016-05-27 12:57 - 00000000 ____D C:\Program Files\Elantech
2017-02-26 15:06 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2017-02-26 14:52 - 2014-01-18 12:24 - 00000000 ____D C:\Users\KD\AppData\Roaming\Seznam.cz
2017-02-26 14:52 - 2013-11-22 11:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-26 14:51 - 2014-01-18 12:24 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2017-02-26 14:29 - 2016-05-27 12:57 - 00000000 ____D C:\ProgramData\Conexant
2017-02-26 14:06 - 2013-08-18 02:47 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2017-02-26 13:57 - 2016-06-18 14:03 - 00000000 ____D C:\Users\KD\AppData\Roaming\DRPSu
2017-02-26 13:22 - 2015-01-20 22:32 - 00000000 __SHD C:\Users\KD\IntelGraphicsProfiles
2017-02-19 09:04 - 2013-11-22 09:26 - 00000000 ____D C:\ldiag
2017-02-16 09:24 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-02-15 19:59 - 2014-01-18 13:13 - 00000000 ____D C:\ProgramData\McAfee
2017-02-15 19:58 - 2016-11-27 08:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-02-15 19:58 - 2015-02-08 15:02 - 00000000 ____D C:\Program Files\Common Files\McAfee
2017-02-14 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-02-14 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-02-08 14:57 - 2013-11-22 10:13 - 00002283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-08 14:57 - 2013-11-22 10:13 - 00002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-08 14:52 - 2015-10-30 08:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-02-06 20:45 - 2016-06-21 08:40 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-02-06 20:45 - 2016-06-21 08:40 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2016-05-27 12:58 - 2016-05-27 12:58 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2017-03-04 10:00 - 2015-08-31 05:44 - 4559240 ____N (Conexant Systems, Inc.) C:\Users\KD\AppData\Local\Temp\KUIU.EXE
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus a Antispyware (Disabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus a Antispyware (Disabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\KD\Desktop" je 800 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001
==================== End Of Log ==============================
notebook dedy zacal nejak stavkovat - prochazeni netu je strasny. Prosim o kontrolu logu:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-03-2017
Ran by KD (administrator) on IDEA-PC (04-03-2017 10:56:10)
Running from C:\Users\KD\Desktop
Loaded Profiles: KD (Available Profiles: KD)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.3.290.0\McCSPServiceHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Lenovo) C:\Users\KD\AppData\Local\Apps\2.0\9W874J1O.R9Z\NER3LJAE.Z2E\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\KD\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5462016 2016-12-06] (Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17097200 2013-08-18] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [193008 2013-08-18] (Lenovo(beijing) Limited)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-31] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [DriverPack Notifier] => C:\Program Files (x86)\DriverPack Notifier\D riverPackNotifier.exe [258560 2015-12-18] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-1331337826-2809015374-3754228717-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-01-31]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 77.236.129.130 88.86.107.235
Tcpip\..\Interfaces\{32b0cef2-f091-42d6-899b-2fd6dd67aa73}: [DhcpNameServer] 77.236.129.130 88.86.107.235
Internet Explorer:
==================
HKU\S-1-5-21-1331337826-2809015374-3754228717-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1331337826-2809015374-3754228717-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-1331337826-2809015374-3754228717-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> DefaultScope {400EFDB7-16CA-4004-865E-37CAFCB52272} URL = hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=C011CZ0D20150208&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> {400EFDB7-16CA-4004-865E-37CAFCB52272} URL = hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=C011CZ0D20150208&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> {CEC43C83-B19F-4440-81B9-3DC9C18E56B2} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13906
SearchScopes: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> {E379799D-01D5-46BB-832E-67151F9D49B2} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24] (Microsoft Corporation)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKU\S-1-5-21-1331337826-2809015374-3754228717-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-02-06] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2017-02-10] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2017-02-10] (McAfee, Inc.)
FireFox:
========
FF ProfilePath: C:\Users\KD\AppData\Roaming\Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 [2017-03-04]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 -> Bezpečné hledání
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 -> Bezpečné hledání
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 -> Bezpečné hledání
FF Homepage: Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865 -> hxxp://www.seznam.cz/
FF Extension: (Seznam lištička) - C:\Users\KD\AppData\Roaming\Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-02-26]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\KD\AppData\Roaming\Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865\features\{4765c94f-2454-4d91-b52f-0d2952557769}\disableSHA1rollout@mozilla.org.xpi [2017-02-19]
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-05-24]
FF SearchPlugin: C:\Users\KD\AppData\Roaming\Mozilla\Firefox\Profiles\ebuu55uw.default-1445148889865\searchplugins\McSiteAdvisor.xml [2016-03-30]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-02-15] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-14] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2017-02-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2017-02-10] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "ru.redirect.wrapper.services.alawar.ru/startpage.php?lang=cs&wspv=3.0&locale=cs&pid=10202"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=C211CZ0D20150208&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default [2017-03-04]
CHR Extension: (Dokumenty Google) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-08]
CHR Extension: (Disk Google) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-21]
CHR Extension: (Vyhledávání Google) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2017-03-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-28]
CHR Extension: (Gmail) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\KD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-05]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-05]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1747800 2017-02-16] (Intel Security)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134872 2016-11-24] (ELAN Microelectronics Corp.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2016-05-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [188352 2017-02-06] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe [989632 2017-01-23] (McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.500\McCHSvc.exe [329480 2017-01-19] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.3.290.0\\McCSPServiceHost.exe [2054080 2017-02-04] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [1342904 2017-02-01] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [241040 2016-11-14] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [383032 2016-11-14] (McAfee, Inc.)
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [342768 2016-11-14] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1465840 2016-12-22] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2016-12-09] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1104304 2016-11-15] (Intel Security, Inc.)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2016-12-10] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-25] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ApkbfiltrService; C:\WINDOWS\System32\drivers\Apkbfiltr.sys [31016 2015-07-23] (Alps Electric Co., Ltd.)
R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4320176 2016-11-27] (Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [608656 2016-11-28] (Qualcomm)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [88456 2016-11-18] (McAfee, Inc.)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [32336 2016-11-24] (ELAN Microelectronic Corp.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [216704 2016-08-02] (McAfee, Inc.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [484576 2016-11-18] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [366320 2016-11-18] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85048 2016-11-18] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [518184 2016-11-18] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [916432 2016-11-18] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [498152 2016-10-24] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109336 2016-10-24] (McAfee, Inc.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [110248 2016-11-18] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254800 2016-11-18] (McAfee, Inc.)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [427520 2016-11-02] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3222016 2016-12-06] (Realtek Semiconductor Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 mfeaack01; \Device\mfeaack01.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-04 10:56 - 2017-03-04 10:57 - 00024565 _____ C:\Users\KD\Desktop\FRST.txt
2017-03-04 10:55 - 2017-03-04 10:56 - 00000000 ____D C:\FRST
2017-03-04 10:54 - 2017-03-04 10:55 - 02423808 _____ (Farbar) C:\Users\KD\Desktop\FRST64.exe
2017-03-04 10:54 - 2017-03-04 10:55 - 00112640 _____ (forum.viry.cz) C:\Users\KD\Desktop\FRSTLauncher.exe
2017-03-04 10:53 - 2017-03-04 10:54 - 00112640 _____ (forum.viry.cz) C:\Users\KD\Downloads\FRSTLauncher.exe
2017-03-04 10:52 - 2017-03-04 10:52 - 00112640 _____ (forum.viry.cz) C:\Users\KD\Downloads\Nepotvrzeno 957208.crdownload
2017-03-04 10:47 - 2017-03-04 10:47 - 02423808 _____ (Farbar) C:\Users\KD\Downloads\FRST64.exe
2017-03-04 10:40 - 2017-03-04 10:42 - 00000000 ____D C:\AdwCleaner
2017-03-04 10:39 - 2017-03-04 10:40 - 04031440 _____ C:\Users\KD\Downloads\adwcleaner_6.044.exe
2017-03-04 10:29 - 2017-03-04 10:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2017-03-04 10:29 - 2015-04-18 10:26 - 00427224 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\SASrv.exe
2017-03-04 10:29 - 2014-11-26 11:01 - 00004664 _____ C:\WINDOWS\system32\Drivers\CxSfPt.dat
2017-03-04 10:28 - 2017-03-04 10:28 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2017-03-04 10:28 - 2013-07-25 14:39 - 00206552 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2017-03-04 09:58 - 2017-03-04 09:59 - 86334352 _____ (Lenovo Group Limited ) C:\Users\KD\Downloads\ado110w7.exe
2017-03-04 09:57 - 2017-03-04 09:57 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2017-03-04 09:57 - 2017-03-04 09:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-03-04 09:56 - 2017-03-04 09:56 - 00000000 ____D C:\Users\KD\AppData\Local\LenovoServiceBridge
2017-03-04 09:49 - 2017-03-04 09:49 - 00000000 ____D C:\Users\KD\AppData\Local\Deployment
2017-03-04 09:48 - 2017-03-04 09:49 - 00611400 _____ () C:\Users\KD\Downloads\LSBsetup.exe
2017-03-02 14:48 - 2017-03-04 00:27 - 00004222 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2017-03-02 11:44 - 2017-03-02 11:44 - 00109962 _____ C:\Users\KD\Documents\cc_20170302_114424.reg
2017-03-02 11:38 - 2017-03-04 10:29 - 00004034 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2017-03-02 11:27 - 2017-03-02 11:52 - 00000000 ___HD C:\$WINDOWS.~BT
2017-03-01 10:24 - 2017-03-01 10:24 - 00002848 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-03-01 10:24 - 2017-03-01 10:24 - 00000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-03-01 10:24 - 2017-03-01 10:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-03-01 10:24 - 2017-03-01 10:24 - 00000000 ____D C:\Program Files\CCleaner
2017-03-01 10:09 - 2017-03-01 10:23 - 09261616 _____ (Piriform Ltd) C:\Users\KD\Downloads\ccsetup527.exe
2017-02-26 13:43 - 2017-02-26 13:45 - 00516914 _____ (DriverPack) C:\Users\KD\Downloads\DriverPack-17-Online_126610975.1488113010.exe
2017-02-21 10:43 - 2017-02-21 10:44 - 02473384 _____ C:\Users\KD\Downloads\FormApps_Signing_Extension(2).exe
2017-02-21 10:42 - 2017-02-21 10:42 - 02473384 _____ C:\Users\KD\Downloads\FormApps_Signing_Extension(1).exe
2017-02-21 10:40 - 2017-02-21 10:45 - 02473384 _____ C:\Users\KD\Downloads\FormApps_Signing_Extension.exe
2017-02-16 14:42 - 2016-07-29 21:09 - 00458376 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00457352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00457352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00450184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00449160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00447112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00446600 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00304264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2017-02-16 14:42 - 2016-07-29 21:09 - 00145032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2017-02-16 14:42 - 2016-05-19 08:58 - 00017086 _____ C:\WINDOWS\system32\iglhxs64.vp
2017-02-16 14:42 - 2016-05-19 08:44 - 00223664 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00210106 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00194245 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00166170 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00163421 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00159008 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00149682 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00148042 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00147393 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00147288 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00146004 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00145491 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00144645 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00144260 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00144020 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00143932 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142882 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142877 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142717 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142289 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00142008 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00141838 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00141049 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00137889 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00137784 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00137141 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00132623 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00126300 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00124650 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2017-02-16 14:42 - 2016-05-19 08:44 - 00000268 _____ C:\WINDOWS\system32\GfxUI.exe.config
2017-02-16 14:42 - 2016-05-19 08:41 - 01981696 _____ C:\WINDOWS\system32\iglhxa64.cpa
2017-02-16 14:42 - 2016-05-19 08:41 - 00059425 _____ C:\WINDOWS\system32\iglhxo64.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00059398 _____ C:\WINDOWS\system32\iglhxg64.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00059230 _____ C:\WINDOWS\system32\iglhxc64.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00059104 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00058796 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00058109 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2017-02-16 14:42 - 2016-05-19 08:41 - 00001074 _____ C:\WINDOWS\system32\iglhxa64.vp
2017-02-16 14:41 - 2016-07-29 21:10 - 01086408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00975184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00558728 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00553424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00242800 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00206000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2017-02-16 14:41 - 2016-07-29 21:10 - 00051184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 09025672 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 03529352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 03139208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00593544 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00560776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00460936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00428680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00402568 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00348808 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00259712 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00213640 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00160392 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00134280 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4459.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00082056 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00074888 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00074376 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00043144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2017-02-16 14:41 - 2016-07-29 21:09 - 00027784 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2017-02-16 14:40 - 2016-07-29 21:10 - 13182528 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2017-02-16 14:40 - 2016-07-29 21:10 - 12935296 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2017-02-16 14:40 - 2016-07-29 21:10 - 11460448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2017-02-16 14:40 - 2016-07-29 21:10 - 11330576 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 29609096 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 29591176 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 27486856 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 21866632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 03599496 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 02917000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 00119432 _____ C:\WINDOWS\system32\igdde64.dll
2017-02-16 14:40 - 2016-07-29 21:09 - 00099464 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 11661448 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 08638088 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 05925976 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00536664 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00463960 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00420952 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00276064 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00206936 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2017-02-16 14:38 - 2016-07-29 21:09 - 00193160 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 00128648 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2017-02-16 14:38 - 2016-07-29 21:09 - 00112264 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2017-02-16 14:38 - 2016-05-19 08:41 - 00754652 _____ C:\WINDOWS\SysWOW64\igcodeckrng700.bin
2017-02-16 14:38 - 2016-05-19 08:41 - 00754652 _____ C:\WINDOWS\system32\igcodeckrng700.bin
2017-02-16 14:38 - 2016-05-19 08:41 - 00598384 _____ C:\WINDOWS\SysWOW64\igvpkrng700.bin
2017-02-16 14:38 - 2016-05-19 08:41 - 00598384 _____ C:\WINDOWS\system32\igvpkrng700.bin
2017-02-16 13:05 - 2016-12-06 23:28 - 01981952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsDecode.dll
2017-02-16 13:05 - 2016-12-06 23:28 - 00646656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamP64.dll
2017-02-16 13:05 - 2016-12-06 23:28 - 00561664 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtCamP.dll
2017-02-16 12:40 - 2015-08-31 05:33 - 00006520 _____ C:\WINDOWS\system32\Drivers\ISAPSII.ini
2017-02-16 11:58 - 2016-11-02 09:02 - 04340784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe
2017-02-16 11:58 - 2016-11-02 09:01 - 09900072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2017-02-16 11:37 - 2016-11-24 05:08 - 01332952 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller15015.dll
2017-02-16 08:04 - 2017-02-16 08:05 - 00000000 ____D C:\Users\KD\Desktop\foto marek
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-04 10:53 - 2016-11-29 07:27 - 00000000 ____D C:\Users\KD\AppData\LocalLow\Mozilla
2017-03-04 10:43 - 2016-02-13 14:09 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-04 10:42 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2017-03-04 10:29 - 2016-05-27 12:57 - 00000000 ____D C:\Program Files\CONEXANT
2017-03-04 10:28 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2017-03-04 10:09 - 2014-08-10 17:00 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-03-04 10:00 - 2014-01-18 13:13 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-03-04 09:57 - 2013-08-18 03:12 - 00000000 ____D C:\ProgramData\Lenovo
2017-03-04 09:57 - 2013-08-18 03:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-03-04 09:57 - 2013-08-18 03:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-04 09:57 - 2013-08-18 03:04 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-03-04 09:49 - 2013-11-22 09:16 - 00000000 ____D C:\Users\KD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-03-04 09:32 - 2016-05-27 13:15 - 01774890 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-04 09:32 - 2016-02-13 13:50 - 00752310 _____ C:\WINDOWS\system32\perfh005.dat
2017-03-04 09:32 - 2016-02-13 13:50 - 00151396 _____ C:\WINDOWS\system32\perfc005.dat
2017-03-04 09:30 - 2015-03-20 15:49 - 00004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EAD51CDD-033D-4FBC-BE23-ABD7EB64AA95}
2017-03-04 09:27 - 2016-12-17 12:57 - 00003268 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-04 09:27 - 2016-05-27 14:14 - 00002431 _____ C:\Users\KD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-04 09:27 - 2016-05-27 14:14 - 00000000 ___RD C:\Users\KD\OneDrive
2017-03-04 09:25 - 2015-02-08 15:13 - 00000000 ____D C:\Program Files (x86)\McAfee
2017-03-04 00:41 - 2013-12-29 17:14 - 00000000 ____D C:\Users\KD\AppData\Roaming\vlc
2017-03-04 00:27 - 2015-08-06 12:01 - 00003126 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
2017-03-04 00:27 - 2015-08-06 12:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2017-03-03 22:29 - 2013-11-22 10:12 - 00000000 ____D C:\Users\KD\AppData\Local\Google
2017-03-02 14:33 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-02 12:08 - 2014-01-11 11:22 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-02 12:04 - 2014-01-11 11:22 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-02 11:56 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-02 11:54 - 2016-06-18 14:14 - 00003954 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1466255678
2017-03-02 11:54 - 2016-06-18 14:14 - 00001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-03-02 11:54 - 2016-06-18 14:14 - 00000000 ____D C:\Program Files (x86)\Opera
2017-03-02 11:52 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-02 11:47 - 2016-05-27 13:02 - 00000000 ____D C:\Users\KD
2017-03-02 11:43 - 2016-05-27 13:52 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-02 11:43 - 2014-04-08 16:00 - 00000000 ____D C:\Users\KD\AppData\Local\CrashDumps
2017-02-27 12:05 - 2015-10-30 07:28 - 00065536 ___SH C:\WINDOWS\system32\config\ELAM
2017-02-26 20:34 - 2016-05-27 12:57 - 00000000 ____D C:\Program Files\Elantech
2017-02-26 15:06 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2017-02-26 14:52 - 2014-01-18 12:24 - 00000000 ____D C:\Users\KD\AppData\Roaming\Seznam.cz
2017-02-26 14:52 - 2013-11-22 11:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-26 14:51 - 2014-01-18 12:24 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2017-02-26 14:29 - 2016-05-27 12:57 - 00000000 ____D C:\ProgramData\Conexant
2017-02-26 14:06 - 2013-08-18 02:47 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2017-02-26 13:57 - 2016-06-18 14:03 - 00000000 ____D C:\Users\KD\AppData\Roaming\DRPSu
2017-02-26 13:22 - 2015-01-20 22:32 - 00000000 __SHD C:\Users\KD\IntelGraphicsProfiles
2017-02-19 09:04 - 2013-11-22 09:26 - 00000000 ____D C:\ldiag
2017-02-16 09:24 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-02-15 19:59 - 2014-01-18 13:13 - 00000000 ____D C:\ProgramData\McAfee
2017-02-15 19:58 - 2016-11-27 08:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-02-15 19:58 - 2015-02-08 15:02 - 00000000 ____D C:\Program Files\Common Files\McAfee
2017-02-14 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-02-14 17:00 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-02-08 14:57 - 2013-11-22 10:13 - 00002283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-08 14:57 - 2013-11-22 10:13 - 00002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-08 14:52 - 2015-10-30 08:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-02-06 20:45 - 2016-06-21 08:40 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-02-06 20:45 - 2016-06-21 08:40 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2016-05-27 12:58 - 2016-05-27 12:58 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2017-03-04 10:00 - 2015-08-31 05:44 - 4559240 ____N (Conexant Systems, Inc.) C:\Users\KD\AppData\Local\Temp\KUIU.EXE
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus a Antispyware (Disabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus a Antispyware (Disabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\KD\Desktop" je 800 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001
==================== End Of Log ==============================