Pomalý internet, pomalé všetko

[trestany]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2016-07-20 23:41:31
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 23 GB (9%) free of 250 GB
Total RAM: 8067 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:41:44, on 20. 7. 2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18377)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\BlueStacks\HD-Agent.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Uzivatel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWuELOv6gcKLJwcuygCUaHYgGl7SMQqKgSXcYyCT204UqyFodykWVaAVGQBRnejfa-ec3Fd1WtfSSopa-ncPvdeR8G8t3mDdnGdB5yiDTmaohfrb7YojctiLJf54_cv4kksNkSYa-BPTKquv_yjmJgvR3lvJGqkQKID5_tAJ4,&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWuELOv6gcKLJwcuygCUaHYgGl7SMQqKgSXcYyCT204UqyFodykWVaAVGQBRnejfa-ec3Fd1WtfSSopa-ncPvdeR8G8t3mDdnGdB5yiDTmaohfrb7YojctiLJf54_cv4kksNkSYa-BPTKquv_yjmJgvR3lvJGqkQKID5_tAJ4,&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWuELOv6gcKLJwcuygCUaHYgGl7SMQqKgSXcYyCT204UqyFodykWVaAVGQBRnejfa-ec3Fd1WtfSSopa-ncPvdeR8G8t3mDdnGdB5yiDTmaohfrb7YojctiLJf54_cv4kksNkSYa-BPTKquv_yjmJgvR3lvJGqkQKID5_tAJ4,&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www-searching.com/?pid=s&s=G7Kza ... prd=set_ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWuELOv6gcKLJwcuygCUaHYgGl7SMQqKgSXcYyCT204UqyFodykWVaAVGQBRnejfa-ec3Fd1WtfSSopa-ncPvdeR8G8t3mDdnGdB5yiDTmaohfrb7YojctiLJf54_cv4kksNkSYa-BPTKquv_yjmJgvR3lvJGqkQKID5_tAJ4,&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [PCKeeperLive] "C:\Program Files\Essentware\PCKeeper\PCKeeper.exe" /autorun
O4 - HKCU\..\Run: [Discord] C:\Users\Uzivatel\AppData\Local\Discord\app-0.0.292\Discord.exe
O4 - HKCU\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.webcompanion.com
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Plus Android Service (BstHdPlusAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: CloudPrinter - Unknown owner - C:\ProgramData\\CloudPrinter\\CloudPrinter.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Ofiiedwerfit Controls (ofiiedwerfitCntAwt.exe) - Unknown owner - C:\Program Files (x86)\Teneentgratuck\ofiiedwerfitCntAwt.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PinnacleUpdate Service (PinnacleUpdateSvc) - PowerUp Software, LLC - C:\Program Files (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TTService - TorrentsTime - C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13122 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe"
"C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\ProgramData\\CloudPrinter\\CloudPrinter.exe shuz -f "C:\ProgramData\\CloudPrinter\\CloudPrinter.dat" -l -a
taskeng.exe {96018121-50E7-4CDE-81AD-710F15A616AB}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe" /s
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"nvtray.exe" -user_has_logged_in 1
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" "-cachedir=C:\Users\Uzivatel\AppData\Local\Steam\htmlcache" "-steampid=2612" "-buildid=1468520696" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
\??\C:\Windows\system32\conhost.exe "-5398869741190862794259448500523371541723726260848439034-1735035886291686376
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=51.0.2704.103 --handshake-handle=0xe0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Control/ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*QUIC/EnabledTimeLossDetectionJuly/RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/ResourcePriorities/Control25PermanentB/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --type=gpu-process --channel="4244.0.1454594053\128301866" --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,13,25,54,69 --gpu-vendor-id=0x10de --gpu-device-id=0x0fc8 --gpu-driver-vendor=NVIDIA --gpu-driver-version=10.18.13.6839 --mojo-platform-channel-handle=1008 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Control/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*QUIC/EnabledTimeLossDetectionJuly/RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control25PermanentB/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=D4D5A661786E3B2E23FE90C58C165D47 --lang=sk --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4244.2.432317466\1909444372" --mojo-platform-channel-handle=2056 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Control/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*QUIC/EnabledTimeLossDetectionJuly/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control25PermanentB/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=07087B9D022FA95AC24BEEEEDE2558E5 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4244.14.483902302\1244928520" --mojo-platform-channel-handle=4284 /prefetch:1
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --lang=en-US --lang=en-US --log-file="C:\Program Files (x86)\Steam\bin\debug.log" --product-version="Valve Steam Client" --disable-spell-checking --enable-system-flash --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="1420.0.212795245\2055420643" --font-cache-shared-handle=1176 /prefetch:1
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Windows\system32\wbengine.exe"
C:\Windows\System32\vds.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Control/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*QUIC/EnabledTimeLossDetectionJuly/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control25PermanentB/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/*SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=1DB1B23E2B50D6415F02E2C266E4C1A2 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4244.19.1411430922\235535698" --mojo-platform-channel-handle=5172 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow,WebFontsIntervention<WebFontsIntervention,*WebRTC-EnableWebRtcEcdsa<WebRTC-EnableWebRtcEcdsa,brotli-encoding<BrotliEncoding --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,RenderingPipelineThrottling<RenderingPipelineThrottling --force-fieldtrials=AppBannerTriggering/Aggressive/*AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Control/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*OutOfProcessPac/Default/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/*QUIC/EnabledTimeLossDetectionJuly/*RenderingPipelineThrottling/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control25PermanentB/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/*SyncHttpContentCompression/Enabled/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*WebFontsIntervention/Enabled/WebRTC-EnableWebRtcEcdsa/Default/ --primordial-pipe-token=BEFC00109F2F8D2712D1F73326F6231F --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4244.22.1876694134\435506116" --mojo-platform-channel-handle=2256 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Uzivatel\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\hvpilkz8.Bxxxx

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.3.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll


C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\hvpilkz8.Bxxxx\extensions\
{95778f0c-827d-4aba-b416-f07dd840fd6a}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-24 462400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-24 173120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-03-14 13671792]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-04-11 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-05-02 2398776]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2016-05-02 1767944]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2016-01-29 1340192]
"CanonSolutionMenu"=C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2008-03-10 689488]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2008-03-03 2114376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-07-13 2856528]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2016-02-04 3639280]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-18 4179288]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-05-17 53123712]
"PCKeeperLive"=C:\Program Files\Essentware\PCKeeper\PCKeeper.exe /autorun []
"Discord"=C:\Users\Uzivatel\AppData\Local\Discord\app-0.0.292\Discord.exe [2016-07-08 57746616]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe [2016-04-26 957976]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-21 292848]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-04-01 596504]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-07-20 23:41:31 ----D---- C:\rsit
2016-07-20 23:41:31 ----D---- C:\Program Files\trend micro
2016-07-20 23:12:50 ----A---- C:\autoexec.bat
2016-07-20 23:12:07 ----D---- C:\Users\Uzivatel\AppData\Roaming\Enigma Software Group
2016-07-20 23:11:33 ----D---- C:\sh4ldr
2016-07-20 23:09:44 ----A---- C:\Windows\system32\drivers\EsgScanner.sys
2016-07-20 23:09:25 ----D---- C:\Program Files\Enigma Software Group
2016-07-20 21:56:43 ----D---- C:\ProgramData\ProductData
2016-07-20 21:56:38 ----D---- C:\Windows\IObit
2016-07-20 21:56:36 ----D---- C:\ProgramData\IObit
2016-07-20 21:56:36 ----A---- C:\Windows\SYSWOW64\drivers\HWiNFO64A.SYS
2016-07-20 21:56:35 ----D---- C:\Users\Uzivatel\AppData\Roaming\IObit
2016-07-20 21:55:53 ----D---- C:\Users\Uzivatel\AppData\Roaming\SimpleNotepad
2016-07-20 21:37:43 ----A---- C:\Windows\SYSWOW64\steam_api.dll
2016-07-20 20:19:30 ----D---- C:\ProgramData\SearchModule
2016-07-20 20:19:28 ----D---- C:\Program Files\Common Files\Noobzo
2016-07-20 20:19:15 ----AH---- C:\Windows\system32\BIT67ED.tmp
2016-07-20 20:18:11 ----D---- C:\Program Files\BitTorrent
2016-07-20 20:17:49 ----D---- C:\ProgramData\Logic Handler
2016-07-20 20:17:48 ----D---- C:\ProgramData\Ronzaps
2016-07-20 20:17:36 ----A---- C:\Users\Uzivatel\AppData\Roaming\noah.dat
2016-07-20 20:17:36 ----A---- C:\Users\Uzivatel\AppData\Roaming\Main.dat
2016-07-20 20:17:36 ----A---- C:\Users\Uzivatel\AppData\Roaming\agent.dat
2016-07-20 20:17:32 ----A---- C:\Users\Uzivatel\AppData\Roaming\Geola.exe
2016-07-20 20:17:26 ----D---- C:\ProgramData\CloudPrinter
2016-07-20 20:17:26 ----A---- C:\Users\Uzivatel\AppData\Roaming\lobby.dat
2016-07-20 20:17:26 ----A---- C:\Users\Uzivatel\AppData\Roaming\ApplicationHosting.dat
2016-07-20 20:17:25 ----A---- C:\Users\Uzivatel\AppData\Roaming\Faxhold.exe
2016-07-20 20:17:02 ----A---- C:\Users\Uzivatel\AppData\Roaming\Installer.dat
2016-07-20 20:10:34 ----D---- C:\Program Files (x86)\badu
2016-07-20 20:09:37 ----D---- C:\Users\Uzivatel\AppData\Roaming\Profiles
2016-07-20 20:09:36 ----D---- C:\Program Files (x86)\Teneentgratuck
2016-07-19 17:32:54 ----D---- C:\Users\Uzivatel\AppData\Roaming\DarkSoulsII
2016-07-17 19:59:09 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-07-14 09:15:47 ----D---- C:\ProgramData\ESET
2016-07-14 09:15:40 ----D---- C:\Program Files\ESET
2016-07-13 15:49:42 ----D---- C:\ProgramData\X360CE
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-07-13 15:37:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-07-13 15:37:48 ----A---- C:\Windows\system32\inseng.dll
2016-07-13 15:37:48 ----A---- C:\Windows\system32\iernonce.dll
2016-07-13 15:37:48 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-07-13 15:37:48 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-07-13 15:37:48 ----A---- C:\Windows\system32\ie4uinit.exe
2016-07-13 15:37:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-07-13 15:37:47 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-07-13 15:37:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-07-13 15:37:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-07-13 15:37:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-07-13 15:37:46 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-07-13 15:37:46 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-07-13 15:37:46 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-07-13 15:37:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-07-13 15:37:46 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-07-13 15:37:46 ----A---- C:\Windows\system32\urlmon.dll
2016-07-13 15:37:46 ----A---- C:\Windows\system32\occache.dll
2016-07-13 15:37:46 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-07-13 15:37:46 ----A---- C:\Windows\system32\iedkcs32.dll
2016-07-13 15:37:45 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-07-13 15:37:45 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-07-13 15:37:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-07-13 15:37:45 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-07-13 15:37:45 ----A---- C:\Windows\system32\msfeeds.dll
2016-07-13 15:37:45 ----A---- C:\Windows\system32\iesetup.dll
2016-07-13 15:37:45 ----A---- C:\Windows\system32\dxtrans.dll
2016-07-13 15:37:44 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-07-13 15:37:44 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-07-13 15:37:44 ----A---- C:\Windows\system32\iertutil.dll
2016-07-13 15:37:44 ----A---- C:\Windows\system32\ieapfltr.dll
2016-07-13 15:37:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-07-13 15:37:43 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-07-13 15:37:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-07-13 15:37:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-07-13 15:37:43 ----A---- C:\Windows\system32\vbscript.dll
2016-07-13 15:37:43 ----A---- C:\Windows\system32\dxtmsft.dll
2016-07-13 15:37:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-07-13 15:37:42 ----A---- C:\Windows\system32\mshtmled.dll
2016-07-13 15:37:42 ----A---- C:\Windows\system32\ieui.dll
2016-07-13 15:37:42 ----A---- C:\Windows\system32\ieframe.dll
2016-07-13 15:37:41 ----A---- C:\Windows\system32\wininet.dll
2016-07-13 15:37:41 ----A---- C:\Windows\system32\webcheck.dll
2016-07-13 15:37:41 ----A---- C:\Windows\system32\jsproxy.dll
2016-07-13 15:37:41 ----A---- C:\Windows\system32\jscript9diag.dll
2016-07-13 15:37:41 ----A---- C:\Windows\system32\jscript9.dll
2016-07-13 15:37:41 ----A---- C:\Windows\system32\jscript.dll
2016-07-13 15:37:41 ----A---- C:\Windows\system32\ieUnatt.exe
2016-07-13 15:37:40 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-07-13 15:37:33 ----A---- C:\Windows\system32\msrating.dll
2016-07-13 15:37:33 ----A---- C:\Windows\system32\mshtml.dll
2016-07-13 15:36:02 ----A---- C:\Windows\system32\localspl.dll
2016-07-13 15:36:01 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2016-07-13 15:36:01 ----A---- C:\Windows\SYSWOW64\ntprint.exe
2016-07-13 15:36:01 ----A---- C:\Windows\SYSWOW64\ntprint.dll
2016-07-13 15:36:01 ----A---- C:\Windows\system32\wpnpinst.exe
2016-07-13 15:36:01 ----A---- C:\Windows\system32\win32spl.dll
2016-07-13 15:36:01 ----A---- C:\Windows\system32\ntprint.exe
2016-07-13 15:36:01 ----A---- C:\Windows\system32\ntprint.dll
2016-07-13 15:36:01 ----A---- C:\Windows\system32\inetppui.dll
2016-07-13 15:36:01 ----A---- C:\Windows\system32\inetpp.dll
2016-07-13 15:35:58 ----A---- C:\Windows\system32\win32k.sys
2016-07-13 15:35:58 ----A---- C:\Windows\system32\invagent.dll
2016-07-13 15:35:58 ----A---- C:\Windows\system32\generaltel.dll
2016-07-13 15:35:58 ----A---- C:\Windows\system32\devinv.dll
2016-07-13 15:35:58 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-07-13 15:35:58 ----A---- C:\Windows\system32\centel.dll
2016-07-13 15:35:58 ----A---- C:\Windows\system32\appraiser.dll
2016-07-13 15:35:58 ----A---- C:\Windows\system32\aepic.dll
2016-07-13 15:35:58 ----A---- C:\Windows\system32\aeinv.dll
2016-07-13 15:35:58 ----A---- C:\Windows\system32\acmigration.dll
2016-07-06 11:46:18 ----D---- C:\Windows\system32\EventProviders
2016-07-06 10:37:49 ----D---- C:\ProgramData\Socialclub
2016-07-06 10:27:46 ----D---- C:\Program Files (x86)\Rockstar Games
2016-06-25 18:37:49 ----D---- C:\Users\Uzivatel\AppData\Roaming\Theta
2016-06-25 17:34:23 ----D---- C:\Program Files (x86)\EA Games
2016-06-25 16:40:18 ----D---- C:\ProgramData\Ubisoft

======List of files/folders modified in the last 1 month======

2016-07-20 23:41:31 ----RD---- C:\Program Files
2016-07-20 23:41:20 ----D---- C:\Windows\Temp
2016-07-20 23:36:18 ----D---- C:\ProgramData\BlueStacksSetup
2016-07-20 23:35:02 ----D---- C:\Windows\system32\config
2016-07-20 23:32:22 ----D---- C:\Users\Uzivatel\AppData\Roaming\Skype
2016-07-20 23:31:21 ----D---- C:\Program Files (x86)\Steam
2016-07-20 23:30:04 ----D---- C:\Users\Uzivatel\AppData\Roaming\uTorrent
2016-07-20 23:12:01 ----D---- C:\Windows\system32\drivers
2016-07-20 23:11:59 ----D---- C:\Windows\system32\Tasks
2016-07-20 22:47:49 ----D---- C:\Users\Uzivatel\AppData\Roaming\Adobe
2016-07-20 22:25:19 ----D---- C:\Program Files (x86)\Hearthstone
2016-07-20 22:08:01 ----D---- C:\Program Files (x86)\Battle.net
2016-07-20 22:02:56 ----RD---- C:\Program Files (x86)
2016-07-20 21:56:43 ----HD---- C:\ProgramData
2016-07-20 21:56:38 ----D---- C:\Windows
2016-07-20 21:56:36 ----D---- C:\Windows\SYSWOW64\drivers
2016-07-20 21:56:07 ----SHD---- C:\$Recycle.Bin
2016-07-20 21:37:43 ----D---- C:\Windows\SysWOW64
2016-07-20 20:34:14 ----D---- C:\Windows\Prefetch
2016-07-20 20:23:45 ----D---- C:\Program Files (x86)\Common Files
2016-07-20 20:19:28 ----D---- C:\Program Files\Common Files
2016-07-20 20:19:15 ----D---- C:\Windows\System32
2016-07-20 20:12:21 ----SHD---- C:\System Volume Information
2016-07-20 18:06:07 ----D---- C:\Windows\inf
2016-07-20 18:06:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-07-20 08:36:25 ----D---- C:\Windows\winsxs
2016-07-20 08:32:38 ----A---- C:\Windows\SYSWOW64\zlib.dll
2016-07-18 19:10:04 ----D---- C:\Users\Uzivatel\AppData\Roaming\TS3Client
2016-07-17 21:47:20 ----D---- C:\Program Files (x86)\Origin Games
2016-07-17 21:11:49 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-14 12:12:51 ----D---- C:\Windows\Microsoft.NET
2016-07-14 12:10:04 ----RSD---- C:\Windows\assembly
2016-07-14 09:16:42 ----D---- C:\Windows\system32\DriverStore
2016-07-14 09:16:40 ----SHD---- C:\Windows\Installer
2016-07-14 09:04:00 ----D---- C:\Program Files\Internet Explorer
2016-07-14 09:03:59 ----D---- C:\Windows\SYSWOW64\sk-SK
2016-07-14 09:03:59 ----D---- C:\Windows\SYSWOW64\en-US
2016-07-14 09:03:58 ----D---- C:\Windows\system32\sk-SK
2016-07-14 09:03:58 ----D---- C:\Windows\system32\en-US
2016-07-14 09:03:57 ----D---- C:\Program Files (x86)\Internet Explorer
2016-07-14 09:03:56 ----D---- C:\Program Files\Windows Journal
2016-07-14 09:03:55 ----D---- C:\Windows\system32\appraiser
2016-07-14 09:03:54 ----D---- C:\Windows\AppPatch
2016-07-13 23:35:01 ----D---- C:\Windows\system32\MRT
2016-07-13 23:31:07 ----A---- C:\Windows\system32\MRT.exe
2016-07-13 23:30:57 ----D---- C:\ProgramData\Microsoft Help
2016-07-13 15:34:29 ----D---- C:\Windows\system32\catroot2
2016-07-13 11:01:38 ----D---- C:\Users\Uzivatel\AppData\Roaming\discord
2016-07-06 10:37:49 ----D---- C:\ProgramData\Steam
2016-07-06 10:27:36 ----D---- C:\Program Files\Rockstar Games
2016-06-25 19:37:42 ----D---- C:\Games
2016-06-24 13:36:50 ----D---- C:\Program Files\Microsoft Silverlight
2016-06-24 13:36:50 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-06-21 12:10:01 ----D---- C:\ProgramData\Origin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-04-14 84800]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2014-04-11 645480]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2014-04-11 28008]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-02-21 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-04-14 264552]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-04-14 186784]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-04-14 198096]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-03-16 53384]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2016-07-20 27552]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [2016-04-26 154168]
R2 BstkDrv;BlueStacks Plus Hypervisor; \??\C:\Program Files (x86)\BlueStacks\BstkDrv.sys [2016-04-06 270904]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-04-14 142976]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2016-06-16 43168]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-11-27 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2015-11-27 47160]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-03-31 3785216]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-14 3896920]
R3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-03-31 450520]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-21 370672]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-21 791024]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-09-17 197408]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-05-02 28216]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2016-04-14 56384]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-03-18 906968]
S2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2016-06-16 312480]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2016-07-20 22704]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-11-13 289120]
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-11-13 133816]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SMUpdd;Search Module UpdateD; \??\C:\Program Files\Common Files\Noobzo\GNUpdate\smw.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [2016-04-26 417304]
R2 BstHdUpdaterSvc;BlueStacks Updater Service; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [2016-04-26 921112]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CloudPrinter;CloudPrinter; C:\ProgramData\\CloudPrinter\\CloudPrinter.exe [2016-07-20 676352]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-03-03 2520928]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-05-02 1165368]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-11 16232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-04-09 296432]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-05-02 1881144]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-05-02 2522680]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-09-13 934216]
R2 TTService;TTService; C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe [2016-02-16 3543576]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-18 1369432]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-05-02 3634232]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-07-13 1450064]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-21 154440]
S2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-01-29 23808]
S2 ofiiedwerfitCntAwt.exe;Ofiiedwerfit Controls; C:\Program Files (x86)\Teneentgratuck\ofiiedwerfitCntAwt.exe [2016-07-20 735008]
S2 PinnacleUpdateSvc;PinnacleUpdate Service; C:\Program Files (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe [2015-08-06 438272]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-07-20 1072296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-18 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files (x86)\BlueStacks\HD-Service.exe [2016-04-26 437784]
S3 BstHdPlusAndroidSvc;BlueStacks Plus Android Service; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [2016-04-26 437784]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-04-09 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-21 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-06-10 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-07-17 146888]
S3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2016-01-29 374344]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-02-04 2104840]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-10-27 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------

[JaRon]

ahoj,
- odinstaluj vsetko od IObit
- vycisti s ADWCleanerom
- vycisti s MBAM

[trestany]

Nič od IObit som nenašiel, ale ak tu niečo mám ako to nájdem?

[JaRon]

2016-07-20 21:56:38 ----D---- C:\Windows\IObit
2016-07-20 21:56:36 ----D---- C:\ProgramData\IObit
ale kludne pokracuj dalsimi bodmi

[trestany]

Takže vymazal som všetko od toho IObit. Ale od vtedy ako som čistil PC pomocou Malwarebytes dostávam dosť často blue screen...

[JaRon]

preto treba davat na forum logy ,,,
mozes pozriet do karanteny MBAM, co tam je

[trestany]

Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum kontroly: 21. 7. 2016
Čas kontroly: 11:42
Protokol:
Správca: Áno

Verzia: 2.2.1.1043
Dazabáza malware: v2016.07.21.01
Databáza rootkitov: v2016.05.27.01
Licencia: Skúšobná verzia
Ochrana pred škodlivým softvérom: Zapnuté
Ochrana pred škodlivými webstránkami: Zapnuté
Vlastná ochrana: Vypnuté

OS: Windows 7 Service Pack 1
CPU: x64
Súborový systém: NTFS
Používateľ: Uzivatel

Typ kontroly: Kontrola hrozieb
Výsledok: Dokončená
Skontrolovaných objektov: 379400
Uplynulý čas: 22 min, 36 s

Pamäť: Zapnuté
Pri spustení: Zapnuté
Súborový systém: Zapnuté
Archívy: Zapnuté
Rootkity: Vypnuté
Heuristika: Zapnuté
PUP: Zapnuté
PUM: Zapnuté

Procesy: 0
(Žiadne škodlivé položky neboli zistené)

Moduly: 0
(Žiadne škodlivé položky neboli zistené)

Kľúče databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Hodnoty databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Údaj databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Priečinky: 0
(Žiadne škodlivé položky neboli zistené)

Súbory: 6
PUP.Optional.Linkury, C:\ProgramData\Comodo\Cis\Quarantine\data\{1A8ACF2A-FBA2-4B7B-A05A-ABC13C5F8849}, V karanténe, [3273998dff9bae889ab1055364a07c84],
PUP.Optional.Amonetize, C:\ProgramData\Comodo\Cis\Quarantine\data\{94FF13A0-49FE-46DD-873A-574D5A4BFB3A}, V karanténe, [9f06ce589efc9e9873f2baea000124dc],
PUP.Optional.Youndoo, C:\Users\Uzivatel\AppData\Roaming\Profiles\ieb4tszi.default\prefs.js, Dobrá: (), Zlá: (user_pref("browser.search.searchengine.hp", "http://www.youndoo.com/?z=6f7d00ed6dc82 ... PX&type=hp");), Nahradené,[a7feea3c86145dd963d6a1099a6a22de]
PUP.Optional.Youndoo, C:\Users\Uzivatel\AppData\Roaming\Profiles\ieb4tszi.default\prefs.js, Dobrá: (), Zlá: (r_pref("app.update.lastUpdateTime.background-update-timer", 1464117353);
user_pref("app.update.lastUpdateTime.blocklist-background-update-timer", 1469091380);
user_pref("app.update.lastUpdateTime.brow), Nahradené,[33726db95a4041f58eab7b2f7490dc24]
PUP.Optional.Youndoo, C:\Users\Uzivatel\AppData\Roaming\Profiles\ieb4tszi.default\prefs.js, Dobrá: (), Zlá: (klist-background-update-timer", 1469091380);
user_pref("app.update.lastUpdateTime.browser-cleanup-thumbnails", 1469091620);
user_pref("app.update.lastUpdateTime.experiments-update-timer", 1464117473);
), Nahradené,[02a3b3730298a5916bce109ad133649c]
PUP.Optional.Youndoo, C:\Users\Uzivatel\AppData\Roaming\Profiles\ieb4tszi.default\prefs.js, Dobrá: (), Zlá: (UpdateTime.background-update-timer", 1464117353);
use), Nahradené,[33722df9dfbbda5ca396c1e9fb09ec14]

Fyzické sektory: 0
(Žiadne škodlivé položky neboli zistené)


(end)




Skúšal som to ešte pár razy kontrolovať Malwarebytom a nič mi nenašlo..ale mám pocit že ten Youndoo asi robí zle

[JaRon]

vycisti registre CCleanerom
ak budu aj potom problemy, vloz aktualny log FRST

[trestany]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-07-2016
Ran by Uzivatel (administrator) on UZIVATEL-PC (22-07-2016 15:39:46)
Running from C:\Users\Uzivatel\Downloads
Loaded Profiles: Uzivatel (Available Profiles: Uzivatel & Mamina & Ocino)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(TorrentsTime) C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(BitTorrent Inc.) C:\Users\Uzivatel\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Uzivatel\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Uzivatel\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671792 2014-03-14] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-04-11] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [689488 2008-03-10] (CANON INC.)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2114376 2008-03-03] (CANON INC.)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1610936 2016-07-10] (COMODO)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2856528 2016-07-13] (Valve Corporation)
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-04] (Electronic Arts)
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-18] (Disc Soft Ltd)
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [957976 2016-04-26] (BlueStack Systems, Inc.)
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8891608 2016-07-13] (Piriform Ltd)
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\MountPoints2: {80b9422b-9538-11e5-9939-408d5c30e3cb} - F:\OriginInstaller.exe
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\MountPoints2: {03509ac3-9be8-11e5-bee2-408d5c30e3cb} - G:\setup.exe
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\MountPoints2: {7c993344-a0a9-11e5-b073-408d5c30e3cb} - G:\TombRaider.exe
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\MountPoints2: {7e109439-a4cb-11e5-bf56-408d5c30e3cb} - I:\OriginInstaller.exe
HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\MountPoints2: {b0e18dc9-7be4-11e5-bfa5-806e6f6e6963} - E:\SETUP.EXE

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 185.117.73.17 8.8.8.8
Tcpip\..\Interfaces\{247593AD-B9E4-40EB-9CD1-D86152A00579}: [DhcpNameServer] 185.117.73.17 8.8.8.8

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1986474808-343235966-395658721-1000 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-24] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-24] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Uzivatel\AppData\Roaming\Profiles\ieb4tszi.default
FF Keyword.URL: undefined://undefined/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-18] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-18] ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-21] (Google Inc.)
FF Plugin HKU\S-1-5-21-1986474808-343235966-395658721-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Uzivatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1986474808-343235966-395658721-1000: torrents-time.com/TTPlugin -> C:\Program Files (x86)\TorrentsTime Media Player\bin\npTTPlugin.dll [2016-02-15] (Torrents Time)
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\039F717359ED0B4D5E4D7F00F977164D039F [2016-01-18] <==== ATTENTION

Chrome:
=======
CHR HomePage: zjaieddnawardhermach -> hxxps://www.google.com/
CHR StartupUrls: zjaieddnawardhermach -> "hxxp://www-searching.com/?pid=s&s=G7Kzamobl2140BT,4337d995-aad2-4e99-994f-dd82a9b54804,","hxxps://www.google.sk/"
CHR DefaultSearchURL: zjaieddnawardhermach -> hxxp://www-searching.com/search.aspx?site=shdefault1&prd=smw&pid=s&shr=d&q={searchTerms}&s=G7Kzamobl2140BT,4337d995-aad2-4e99-994f-dd82a9b54804,
CHR DefaultSearchKeyword: zjaieddnawardhermach -> www-searching.com
CHR DefaultSuggestURL: zjaieddnawardhermach -> hxxp://api.searchpredict.com/api/?rqtype=ffplugin&siteID=8661&dbCode=1&command={searchTerms}
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]

Opera:
=======
OPR Extension: (AdBlock) - C:\Users\Uzivatel\AppData\Roaming\Opera Software\Opera Stable\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-20]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

"BFE" => service could not be unlocked. <===== ATTENTION

U3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc.)
U2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417304 2016-04-26] (BlueStack Systems, Inc.)
U3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc.)
U2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [921112 2016-04-26] (BlueStack Systems, Inc.)
U2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
U2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
U2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5817256 2016-07-10] (COMODO)
U3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2271928 2016-07-10] (COMODO)
U3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369432 2015-11-18] (Disc Soft Ltd)
U2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2520928 2016-03-03] (ESET)
U2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
U2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)
U2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [296432 2014-04-09] (Intel Corporation)
U2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
U3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
U2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
U2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
U2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation)
U3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation)
U2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
U3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
U2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
U3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-04] (Electronic Arts)
U2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1072296 2016-07-20] (Enigma Software Group USA, LLC.)
U2 TTService; C:\Program Files (x86)\TorrentsTime Media Player\bin\TTService.exe [3543576 2016-02-16] (TorrentsTime)
U3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [312480 2016-06-16] ()
U2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [154168 2016-04-26] (BlueStack Systems)
U2 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2016-04-06] (Bluestack System Inc. )
U1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [31648 2016-07-10] (COMODO)
U1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [829600 2016-07-10] (COMODO)
U1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [56472 2016-07-10] (COMODO)
U3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-11-27] (Disc Soft Ltd)
U3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47160 2015-11-27] (Disc Soft Ltd)
U1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-04-14] (ESET)
U3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [186784 2016-04-14] (ESET)
U2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [142976 2016-04-14] (ESET)
U1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [198096 2016-04-14] (ESET)
U1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [53384 2016-03-16] (ESET)
U0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [84800 2016-04-14] (ESET)
U3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2016-07-20] (Enigma Software Group USA, LLC.)
U3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-07-20] ()
U1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-07-20] (REALiX(tm))
U0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-11] (Intel Corporation)
U1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [116248 2016-07-10] (COMODO)
U2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43168 2016-06-16] ()
U3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
U3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-07-22] (Malwarebytes)
U3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
U3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
U3 MpFilter; C:\Windows\system32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation)
U3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation)
U3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
U3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
U5 BFE; <===== ATTENTION: Locked Service
U3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-22 15:39 - 2016-07-22 15:40 - 00020556 _____ C:\Users\Uzivatel\Downloads\FRST.txt
2016-07-22 15:37 - 2016-07-22 15:39 - 00000000 ____D C:\FRST
2016-07-22 15:37 - 2016-07-22 15:37 - 02393600 _____ (Farbar) C:\Users\Uzivatel\Downloads\FRST64.exe
2016-07-22 15:35 - 2016-07-22 15:35 - 00125398 _____ C:\Users\Uzivatel\Desktop\cc_20160722_153547.reg
2016-07-22 15:34 - 2016-07-22 15:34 - 00127002 _____ C:\Users\Uzivatel\Desktop\cc_20160722_153356.reg
2016-07-22 12:42 - 2016-07-22 12:42 - 00003431 _____ C:\Users\Uzivatel\Desktop\oiii.xml
2016-07-22 12:38 - 2016-07-22 12:38 - 00002785 _____ C:\Users\Uzivatel\Desktop\Malware.txt
2016-07-22 12:38 - 2016-07-22 12:38 - 00001246 _____ C:\Users\Uzivatel\Desktop\ttztztztz.txt
2016-07-22 12:37 - 2016-07-22 12:37 - 00001243 _____ C:\Users\Uzivatel\Desktop\ttztzt.txt
2016-07-22 10:36 - 2016-07-22 10:40 - 54777011 _____ C:\Users\Uzivatel\Downloads\DarkSouls2 (2).exe
2016-07-22 00:17 - 2016-07-22 00:18 - 00010530 _____ C:\Users\Uzivatel\Downloads\xlive.dll
2016-07-22 00:16 - 2016-07-22 00:16 - 03996184 _____ (XXL Software) C:\Users\Uzivatel\Downloads\Dark_souls_pc_xlive.exe
2016-07-21 23:55 - 2016-07-22 00:17 - 00010530 _____ C:\Users\Uzivatel\Downloads\Dark souls pc xlive.dll
2016-07-21 23:55 - 2016-07-21 23:55 - 00001088 _____ C:\Users\Uzivatel\Desktop\Play Travian.lnk
2016-07-21 23:54 - 2016-07-21 23:54 - 01695349 _____ C:\Users\Uzivatel\Downloads\Dark_souls_pc_xlive.rar
2016-07-21 23:44 - 2016-07-22 00:15 - 00000853 _____ C:\Users\Public\Desktop\Dark Souls Prepare to Die Edition.lnk
2016-07-21 23:44 - 2016-07-22 00:15 - 00000853 _____ C:\ProgramData\Desktop\Dark Souls Prepare to Die Edition.lnk
2016-07-21 23:36 - 2016-07-21 23:36 - 00027210 _____ C:\Users\Uzivatel\Downloads\Dark.Souls.II.PC (1).torrent
2016-07-21 23:26 - 2016-07-21 23:26 - 00000694 _____ C:\Users\Uzivatel\Desktop\Play Grand Theft Auto V.lnk
2016-07-21 23:24 - 2016-07-21 23:25 - 761937268 _____ C:\Users\Uzivatel\Desktop\GTA5_patch-678.exe
2016-07-21 13:29 - 2016-07-21 13:29 - 00027210 _____ C:\Users\Uzivatel\Downloads\Dark.Souls.II.PC.torrent
2016-07-21 13:09 - 2016-07-21 13:09 - 00603920 _____ (Reimage) C:\Users\Uzivatel\Downloads\ReimageRepair.exe
2016-07-21 12:53 - 2016-07-21 13:01 - 19599360 _____ (NAMCO BANDAI Games) C:\Users\Uzivatel\Desktop\DarkSoulsII.exe
2016-07-21 12:45 - 2016-07-21 12:45 - 00385360 _____ C:\Windows\Minidump\072116-17659-01.dmp
2016-07-21 12:42 - 2016-07-21 12:42 - 00000670 _____ C:\Users\Uzivatel\Desktop\Play Dark Souls II.lnk
2016-07-21 11:34 - 2016-07-21 11:34 - 00376912 _____ C:\Windows\Minidump\072116-19437-01.dmp
2016-07-21 11:33 - 2016-07-21 12:45 - 878240219 _____ C:\Windows\MEMORY.DMP
2016-07-21 11:32 - 2016-07-22 15:37 - 00194550 _____ C:\Windows\system32\Drivers\fvstore.dat
2016-07-21 11:32 - 2016-07-21 12:25 - 00000000 ___HD C:\VTRoot
2016-07-21 11:32 - 2016-07-21 11:32 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\Comodo
2016-07-21 11:27 - 2016-07-21 11:27 - 00001241 _____ C:\MLWR.txt
2016-07-21 11:24 - 2016-07-21 12:08 - 00000080 _____ C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\uTorrent.lnk
2016-07-21 11:03 - 2016-07-22 14:36 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-21 11:02 - 2016-07-21 12:09 - 00001096 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-21 11:02 - 2016-07-21 12:09 - 00001096 _____ C:\ProgramData\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-21 11:02 - 2016-07-21 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-07-21 11:02 - 2016-07-21 11:02 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-21 11:02 - 2016-07-21 11:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-07-21 11:02 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-07-21 11:02 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-07-21 11:02 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-07-21 11:00 - 2016-07-21 11:01 - 22851472 _____ (Malwarebytes ) C:\Users\Uzivatel\Downloads\mbam-setup-2.2.1.1043.exe
2016-07-21 10:58 - 2016-07-21 12:09 - 00002279 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-21 10:58 - 2016-07-21 12:09 - 00002261 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-21 10:58 - 2016-07-21 12:09 - 00002261 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2016-07-21 10:56 - 2016-07-22 15:10 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-21 10:56 - 2016-07-22 11:28 - 00000932 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-21 10:56 - 2016-07-21 11:05 - 00003932 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-21 10:56 - 2016-07-21 11:05 - 00003680 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-21 10:55 - 2016-07-21 10:55 - 00987728 _____ (Google Inc.) C:\Users\Uzivatel\Downloads\ChromeSetup.exe
2016-07-21 10:28 - 2016-07-22 00:07 - 00000000 ____D C:\AdwCleaner
2016-07-21 10:28 - 2016-07-21 10:28 - 03712064 _____ C:\Users\Uzivatel\Downloads\adwcleaner_5.201.exe
2016-07-21 10:11 - 2016-07-21 10:11 - 00744340 _____ C:\Windows\system32\perfh041.dat
2016-07-21 10:11 - 2016-07-21 10:11 - 00175782 _____ C:\Windows\system32\perfc041.dat
2016-07-21 10:11 - 2016-07-21 10:11 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2016-07-21 10:11 - 2016-07-21 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2016-07-21 10:10 - 2016-07-22 15:38 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2016-07-21 10:09 - 2016-07-21 10:09 - 00000000 ____D C:\Program Files\COMODO
2016-07-21 10:08 - 2016-07-21 10:08 - 00000000 ____D C:\ProgramData\Shared Space
2016-07-21 10:08 - 2016-07-21 10:08 - 00000000 ____D C:\ProgramData\Comodo
2016-07-21 10:02 - 2016-07-21 10:08 - 68616400 _____ (COMODO) C:\Users\Uzivatel\Downloads\cispremium_only_installer.exe
2016-07-21 08:52 - 2016-07-21 08:52 - 00020545 _____ C:\Users\Uzivatel\Downloads\dark.souls_.prepare.to_.die_.edition.v1.0.2.0.2012-skidrowcodex (3).torrent
2016-07-21 08:50 - 2016-07-21 08:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dark Souls Prepare to Die Edition
2016-07-21 08:33 - 2016-07-21 08:33 - 00062976 _____ C:\Users\Uzivatel\Downloads\steam_api (2).dll
2016-07-21 08:01 - 2016-07-21 08:01 - 00002802 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-07-21 08:01 - 2016-07-21 08:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-07-21 08:01 - 2016-07-21 08:01 - 00000000 ____D C:\Program Files\CCleaner
2016-07-21 07:59 - 2016-07-21 08:00 - 08137024 _____ (Piriform Ltd) C:\Users\Uzivatel\Downloads\ccsetup520pro.exe
2016-07-21 07:58 - 2016-07-21 07:55 - 00116056 _____ (Valve Corporation) C:\Windows\system32\steam_api (1).dll
2016-07-21 07:55 - 2016-07-21 07:55 - 00116056 _____ (Valve Corporation) C:\Users\Uzivatel\Downloads\steam_api (1).dll
2016-07-21 06:58 - 2016-07-21 07:00 - 04784837 _____ C:\Users\Uzivatel\Downloads\GTAV-unpacked.exe
2016-07-21 00:15 - 2016-07-21 12:08 - 00000663 _____ C:\Users\Uzivatel\Desktop\visit www.nosteam.ro.lnk
2016-07-21 00:15 - 2016-07-21 12:08 - 00000663 _____ C:\Users\Uzivatel\Desktop\visit www.nosteam.ro.lnk
2016-07-20 23:54 - 2016-07-21 00:05 - 54777011 _____ C:\Users\Uzivatel\Downloads\DarkSouls2 (1).exe
2016-07-20 23:41 - 2016-07-20 23:41 - 00000000 ____D C:\rsit
2016-07-20 23:41 - 2016-07-20 23:41 - 00000000 ____D C:\Program Files\trend micro
2016-07-20 23:40 - 2016-07-20 23:41 - 01222144 _____ C:\Users\Uzivatel\Downloads\RSITx64.exe
2016-07-20 23:12 - 2016-07-20 23:12 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\Enigma Software Group
2016-07-20 23:12 - 2016-07-20 23:12 - 00000000 _____ C:\autoexec.bat
2016-07-20 23:11 - 2016-07-20 23:11 - 00003344 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2016-07-20 23:11 - 2016-07-20 23:11 - 00000000 ____D C:\sh4ldr
2016-07-20 23:09 - 2016-07-20 23:09 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-07-20 23:09 - 2016-07-20 23:09 - 00000000 ____D C:\Program Files\Enigma Software Group
2016-07-20 23:08 - 2016-07-20 23:09 - 03482800 _____ (Enigma Software Group USA, LLC.) C:\Users\Uzivatel\Downloads\SpyHunter-Installer.exe
2016-07-20 21:56 - 2016-07-20 22:02 - 00000000 ____D C:\ProgramData\ProductData
2016-07-20 21:56 - 2016-07-20 22:01 - 00001873 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk
2016-07-20 21:56 - 2016-07-20 22:01 - 00001719 _____ C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехрlоrеr.lnk
2016-07-20 21:56 - 2016-07-20 22:01 - 00001719 _____ C:\Users\Ocino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехрlоrеr.lnk
2016-07-20 21:56 - 2016-07-20 22:01 - 00001719 _____ C:\Users\Mamina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехрlоrеr.lnk
2016-07-20 21:56 - 2016-07-20 21:56 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2016-07-20 21:56 - 2016-07-20 21:56 - 00002886 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Uzivatel)
2016-07-20 21:55 - 2016-07-20 22:48 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\SimpleNotepad
2016-07-20 21:55 - 2016-07-20 22:00 - 00002056 _____ C:\Users\Mamina\Desktop\Gооglе Сhrоmе.lnk
2016-07-20 21:55 - 2016-07-20 22:00 - 00001861 _____ C:\Users\Public\Desktop\Моzillа Firеfох.lnk
2016-07-20 21:55 - 2016-07-20 22:00 - 00001861 _____ C:\ProgramData\Desktop\Моzillа Firеfох.lnk
2016-07-20 21:55 - 2016-07-20 21:55 - 00000502 _____ C:\Users\Uzivatel\Desktop\Download Dark Souls 2 Crack Only [No DVD& No CD] Download.url
2016-07-20 21:37 - 2013-11-14 16:51 - 00106408 _____ (Valve Corporation) C:\Windows\SysWOW64\steam_api.dll
2016-07-20 21:35 - 2016-07-20 21:35 - 00054990 _____ C:\Users\Uzivatel\Downloads\steam_api.zip
2016-07-20 21:32 - 2016-07-20 21:32 - 00116056 _____ (Valve Corporation) C:\Users\Uzivatel\Downloads\steam_api.dll
2016-07-20 20:19 - 2016-07-20 20:19 - 00000000 ____H C:\Windows\system32\BIT67ED.tmp
2016-07-20 20:18 - 2016-07-20 20:33 - 00000000 ____D C:\Program Files\BitTorrent
2016-07-20 20:17 - 2016-07-20 20:17 - 07102976 _____ C:\Users\Uzivatel\AppData\Roaming\agent.dat
2016-07-20 20:17 - 2016-07-20 20:17 - 00676352 _____ C:\Users\Uzivatel\AppData\Roaming\Geola.exe
2016-07-20 20:17 - 2016-07-20 20:17 - 00676352 _____ C:\Users\Uzivatel\AppData\Roaming\Faxhold.exe
2016-07-20 20:17 - 2016-07-20 20:17 - 00129024 _____ C:\Users\Uzivatel\AppData\Roaming\Installer.dat
2016-07-20 20:17 - 2016-07-20 20:17 - 00018432 _____ C:\Users\Uzivatel\AppData\Roaming\Main.dat
2016-07-20 20:13 - 2016-07-19 18:20 - 00119488 ____R (Valve Corporation) C:\Windows\SysWOW64\steam_api64.dll
2016-07-20 20:12 - 2016-07-20 20:12 - 00000048 _____ C:\Users\Uzivatel\Downloads\ROTTR Z.txt
2016-07-20 20:10 - 2016-07-20 20:10 - 00009018 _____ C:\Windows\System32\Tasks\Ofiiedwerfit Controls
2016-07-20 20:09 - 2016-07-21 11:23 - 00000000 ____D C:\Program Files (x86)\Teneentgratuck
2016-07-20 20:09 - 2016-07-20 20:10 - 00000000 ____D C:\Users\Uzivatel\AppData\Local\sikadomzukidomreireward
2016-07-20 17:43 - 2016-07-20 17:43 - 00013058 _____ C:\Users\Uzivatel\Downloads\[CzT]PS_Miluji_Te_P_S_I_Love_You.torrent
2016-07-20 10:16 - 2016-07-20 10:16 - 01519567 _____ C:\Users\Uzivatel\Downloads\x360ce (1).zip
2016-07-20 09:40 - 2016-07-20 09:40 - 01519575 _____ C:\Users\Uzivatel\Downloads\x360ce_x64 (1).zip
2016-07-20 09:31 - 2016-07-20 09:31 - 01519567 _____ C:\Users\Uzivatel\Downloads\x360ce.zip
2016-07-19 17:32 - 2016-07-19 17:33 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\DarkSoulsII
2016-07-19 17:26 - 2016-07-19 17:26 - 00040436 _____ C:\Users\Uzivatel\Downloads\Rise.of.the.Tomb.Raider.Full.Unlocked-MERCS213.torrent
2016-07-19 17:26 - 2016-07-19 17:26 - 00000346 _____ C:\Users\Uzivatel\Downloads\ROTTR TOR.txt
2016-07-18 18:26 - 2016-07-18 18:26 - 00000000 ____D C:\Users\Uzivatel\Documents\My Cheat Tables
2016-07-18 18:17 - 2016-07-18 18:17 - 00001893 _____ C:\Users\Uzivatel\Downloads\Dark Souls Prepare to Die Edition (Steam version)).ct
2016-07-17 21:53 - 2016-07-17 21:58 - 54777011 _____ C:\Users\Uzivatel\Downloads\DarkSouls2.exe
2016-07-17 19:59 - 2016-07-17 21:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-17 19:05 - 2016-07-17 19:05 - 00000000 __SHD C:\Users\Ocino\IntelGraphicsProfiles
2016-07-14 09:15 - 2016-07-21 12:09 - 00002021 _____ C:\Users\Public\Desktop\ESET Ochrana online platieb.lnk
2016-07-14 09:15 - 2016-07-21 12:09 - 00002021 _____ C:\ProgramData\Desktop\ESET Ochrana online platieb.lnk
2016-07-14 09:15 - 2016-07-14 09:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-07-14 09:15 - 2016-07-14 09:15 - 00000000 ____D C:\ProgramData\ESET
2016-07-14 09:15 - 2016-07-14 09:15 - 00000000 ____D C:\Program Files\ESET
2016-07-14 09:10 - 2016-07-14 09:10 - 03016864 _____ (ESET) C:\Users\Uzivatel\Downloads\eset_smart_security_live_installer_ (6).exe
2016-07-13 16:21 - 2016-07-13 17:01 - 1149234019 _____ C:\Users\Uzivatel\Downloads\Witcher3_patch_121-to-122.exe
2016-07-13 15:49 - 2016-07-13 15:49 - 01519575 _____ C:\Users\Uzivatel\Downloads\x360ce_x64.zip
2016-07-13 15:49 - 2016-07-13 15:49 - 00000000 ____D C:\ProgramData\X360CE
2016-07-13 15:37 - 2016-06-11 08:57 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-07-13 15:37 - 2016-06-11 06:48 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-07-13 15:37 - 2016-06-10 23:38 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-07-13 15:37 - 2016-06-10 23:38 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-07-13 15:37 - 2016-06-10 23:20 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-07-13 15:37 - 2016-06-10 23:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-07-13 15:37 - 2016-06-10 23:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-07-13 15:37 - 2016-06-10 23:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-13 15:37 - 2016-06-10 23:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-07-13 15:37 - 2016-06-10 23:17 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-13 15:37 - 2016-06-10 23:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-07-13 15:37 - 2016-06-10 23:08 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-07-13 15:37 - 2016-06-10 23:05 - 25814016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-13 15:37 - 2016-06-10 23:04 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-07-13 15:37 - 2016-06-10 23:03 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-07-13 15:37 - 2016-06-10 23:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-07-13 15:37 - 2016-06-10 23:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-13 15:37 - 2016-06-10 23:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-07-13 15:37 - 2016-06-10 22:53 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-07-13 15:37 - 2016-06-10 22:50 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-07-13 15:37 - 2016-06-10 22:49 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-13 15:37 - 2016-06-10 22:40 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-07-13 15:37 - 2016-06-10 22:38 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-07-13 15:37 - 2016-06-10 22:35 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-07-13 15:37 - 2016-06-10 22:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-07-13 15:37 - 2016-06-10 22:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-13 15:37 - 2016-06-10 22:28 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-07-13 15:37 - 2016-06-10 22:15 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-13 15:37 - 2016-06-10 22:13 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-07-13 15:37 - 2016-06-10 22:12 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-13 15:37 - 2016-06-10 22:11 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-07-13 15:37 - 2016-06-10 22:10 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-13 15:37 - 2016-06-10 21:45 - 15409664 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-13 15:37 - 2016-06-10 21:44 - 02869248 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-13 15:37 - 2016-06-10 21:30 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-13 15:37 - 2016-06-10 21:21 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-13 15:37 - 2016-06-10 21:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-07-13 15:37 - 2016-06-10 20:54 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-07-13 15:37 - 2016-06-10 20:53 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-07-13 15:37 - 2016-06-10 20:53 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-07-13 15:37 - 2016-06-10 20:53 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-07-13 15:37 - 2016-06-10 20:52 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-07-13 15:37 - 2016-06-10 20:47 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-07-13 15:37 - 2016-06-10 20:46 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-07-13 15:37 - 2016-06-10 20:45 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-07-13 15:37 - 2016-06-10 20:42 - 20348928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-07-13 15:37 - 2016-06-10 20:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-07-13 15:37 - 2016-06-10 20:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-07-13 15:37 - 2016-06-10 20:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-07-13 15:37 - 2016-06-10 20:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-07-13 15:37 - 2016-06-10 20:32 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-07-13 15:37 - 2016-06-10 20:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-07-13 15:37 - 2016-06-10 20:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-07-13 15:37 - 2016-06-10 20:24 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-07-13 15:37 - 2016-06-10 20:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-07-13 15:37 - 2016-06-10 20:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-07-13 15:37 - 2016-06-10 20:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-07-13 15:37 - 2016-06-10 20:14 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-07-13 15:37 - 2016-06-10 20:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-07-13 15:37 - 2016-06-10 20:10 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-07-13 15:37 - 2016-06-10 20:09 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-07-13 15:37 - 2016-06-10 20:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-07-13 15:37 - 2016-06-10 19:58 - 13806080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-07-13 15:37 - 2016-06-10 19:45 - 02392576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-07-13 15:37 - 2016-06-10 19:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-07-13 15:37 - 2016-06-10 19:41 - 01315840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-07-13 15:36 - 2016-06-26 02:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-07-13 15:36 - 2016-06-26 02:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-07-13 15:36 - 2016-06-26 02:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-07-13 15:36 - 2016-06-26 02:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-07-13 15:36 - 2016-06-26 02:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-07-13 15:36 - 2016-06-25 21:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-07-13 15:36 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-07-13 15:36 - 2016-06-25 21:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-07-13 15:36 - 2016-06-25 21:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-07-13 15:36 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-07-13 15:35 - 2016-06-26 02:35 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-07-13 15:35 - 2016-06-26 02:27 - 01208320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-07-13 15:35 - 2016-06-22 15:06 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-07-13 15:35 - 2016-06-17 20:24 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-07-13 15:35 - 2016-06-17 20:24 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-07-13 15:35 - 2016-06-17 20:24 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-07-13 15:35 - 2016-06-17 20:24 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-07-13 15:35 - 2016-06-17 20:24 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-07-13 15:35 - 2016-06-17 20:24 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-07-13 15:35 - 2016-06-14 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-07-13 15:15 - 2016-07-13 17:07 - 00000000 ____D C:\Users\Uzivatel\Documents\The Witcher 3
2016-07-13 15:14 - 2016-07-21 12:08 - 00000903 _____ C:\Users\Uzivatel\Desktop\Play The Witcher 3 Wild Hunt.lnk
2016-07-13 14:10 - 2016-07-13 14:10 - 00000000 ____D C:\Users\Uzivatel\AppData\LocalLow\Blizzard Entertainment
2016-07-10 07:32 - 2016-07-10 07:32 - 00829600 _____ (COMODO) C:\Windows\system32\Drivers\cmdguard.sys
2016-07-10 07:32 - 2016-07-10 07:32 - 00116248 _____ (COMODO) C:\Windows\system32\Drivers\inspect.sys
2016-07-10 07:32 - 2016-07-10 07:32 - 00056472 _____ (COMODO) C:\Windows\system32\Drivers\cmdhlp.sys
2016-07-10 07:32 - 2016-07-10 07:32 - 00031648 _____ (COMODO) C:\Windows\system32\Drivers\cmderd.sys
2016-07-10 07:30 - 2016-07-10 07:30 - 00813824 _____ (COMODO) C:\Windows\system32\guard64.dll
2016-07-10 07:30 - 2016-07-10 07:30 - 00642976 _____ (COMODO) C:\Windows\SysWOW64\guard32.dll
2016-07-10 07:30 - 2016-07-10 07:30 - 00051800 _____ (COMODO) C:\Windows\system32\cmdcsr.dll
2016-07-10 07:28 - 2016-07-10 07:28 - 00365752 _____ (COMODO) C:\Windows\system32\cmdvrt64.dll
2016-07-10 07:27 - 2016-07-10 07:27 - 00051896 _____ (COMODO) C:\Windows\system32\cmdkbd64.dll
2016-07-10 07:25 - 2016-07-10 07:25 - 00296120 _____ (COMODO) C:\Windows\SysWOW64\cmdvrt32.dll
2016-07-10 07:24 - 2016-07-10 07:24 - 00046776 _____ (COMODO) C:\Windows\SysWOW64\cmdkbd32.dll
2016-07-06 11:46 - 2016-07-06 11:46 - 00000000 ____D C:\Windows\system32\EventProviders
2016-07-06 10:45 - 2016-07-06 11:45 - 2048196608 _____ C:\Users\Uzivatel\Downloads\7601.17514.101119-1850_Update_Sp_Wave1-GRMSP1.1_DVD.iso
2016-07-06 10:37 - 2016-07-06 10:37 - 00000000 ____D C:\ProgramData\Socialclub
2016-07-06 10:30 - 2016-07-06 10:35 - 56401864 _____ (Rockstar Games) C:\Users\Uzivatel\Downloads\SocialClubv1.1.5.8Setup.exe
2016-07-06 10:27 - 2016-07-06 10:27 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-07-06 09:12 - 2016-07-06 10:17 - 761937268 _____ C:\Users\Uzivatel\Downloads\GTA5_patch-678.exe
2016-07-01 15:02 - 2016-07-01 15:03 - 04784790 _____ C:\Users\Uzivatel\Downloads\GTA5.exe
2016-07-01 14:47 - 2016-07-01 14:47 - 00020545 _____ C:\Users\Uzivatel\Downloads\dark.souls_.prepare.to_.die_.edition.v1.0.2.0.2012-skidrowcodex (2).torrent
2016-06-29 15:01 - 2016-06-29 15:01 - 00000000 ____D C:\Users\Uzivatel\Documents\Assassin's Creed Liberation HD
2016-06-29 15:00 - 2016-07-21 12:08 - 00000766 _____ C:\Users\Uzivatel\Desktop\Play Assassins Creed Liberation.lnk
2016-06-29 10:42 - 2016-06-29 10:47 - 54825665 _____ C:\Users\Uzivatel\Downloads\ASC-Liberation.exe
2016-06-29 10:13 - 2016-06-29 10:35 - 267664970 _____ C:\Users\Uzivatel\Downloads\AC-Liberation_patch.exe
2016-06-27 23:38 - 2016-06-27 23:38 - 00093551 _____ C:\Users\Uzivatel\Downloads\t-ac3c.7z
2016-06-27 21:07 - 2016-06-27 23:39 - 00000000 ____D C:\Users\Uzivatel\Documents\Assassin's Creed Revelations
2016-06-27 21:06 - 2016-07-21 12:08 - 00001258 _____ C:\Users\Uzivatel\Desktop\Play Assassin's Creed Revelations.lnk
2016-06-27 16:20 - 2016-07-21 12:08 - 00000681 _____ C:\Users\Uzivatel\Desktop\Play Assassin's Creed 3.lnk
2016-06-27 16:20 - 2016-06-27 16:20 - 00000000 ____D C:\Users\Uzivatel\Documents\Assassin's Creed III
2016-06-25 21:23 - 2016-06-25 21:23 - 00530944 _____ C:\Users\Uzivatel\Downloads\Assassins Creed Revelations Cr Downloader.rar
2016-06-25 21:17 - 2016-06-25 21:18 - 05412854 _____ C:\Users\Uzivatel\Downloads\Krack_Fix_Alice.rar
2016-06-25 21:10 - 2016-07-21 12:09 - 00001062 _____ C:\Users\Public\Desktop\Alice Madness Returns.lnk
2016-06-25 21:10 - 2016-07-21 12:09 - 00001062 _____ C:\ProgramData\Desktop\Alice Madness Returns.lnk
2016-06-25 18:46 - 2016-06-25 18:51 - 55643205 _____ C:\Users\Uzivatel\Downloads\ASC3.exe
2016-06-25 18:37 - 2016-06-25 18:37 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\Theta
2016-06-25 18:37 - 2013-03-17 12:35 - 00000000 ____D C:\Users\Uzivatel\Downloads\sounddata
2016-06-25 18:37 - 2013-03-17 12:35 - 00000000 ____D C:\Users\Uzivatel\Downloads\penrose
2016-06-25 18:37 - 2012-11-18 23:51 - 00009216 _____ (THETA) C:\Users\Uzivatel\Downloads\ubiorbitapi_r2.dll
2016-06-25 18:37 - 2012-11-18 22:58 - 00003584 _____ (THETA) C:\Users\Uzivatel\Downloads\uplay_r1_loader.dll
2016-06-25 18:37 - 2012-11-14 11:41 - 00234616 _____ C:\Users\Uzivatel\Downloads\ubiorbitapi_r2_loader.dll
2016-06-25 18:37 - 2012-06-30 20:13 - 00003153 _____ C:\Users\Uzivatel\Downloads\visit-nosteam.ro.html
2016-06-25 18:37 - 2012-02-07 18:41 - 02195456 _____ C:\Users\Uzivatel\Downloads\DataPC_ACFE_PenroseIsland_3_dlc.forge
2016-06-25 18:12 - 2016-06-25 18:12 - 00230424 _____ C:\Users\Uzivatel\Downloads\ogg.zip
2016-06-25 18:11 - 2016-06-25 18:11 - 00077824 _____ C:\Users\Uzivatel\Downloads\vorbisfile.dll
2016-06-25 17:53 - 2016-06-25 17:54 - 18017753 _____ C:\Users\Uzivatel\Downloads\Alice.Madness.Returns.Crackfix-SKIDROW (1).rar
2016-06-25 17:49 - 2016-06-25 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2016-06-25 17:41 - 2016-06-25 18:37 - 635147967 _____ C:\Users\Uzivatel\Downloads\ASCR_Lost-Archive-DLC.exe
2016-06-25 17:34 - 2016-06-25 17:34 - 00000000 ____D C:\Program Files (x86)\EA Games
2016-06-25 17:25 - 2016-06-25 17:25 - 00000000 ____D C:\Users\Uzivatel\AppData\Local\4A Games
2016-06-25 17:13 - 2016-06-25 17:37 - 275422864 _____ C:\Users\Uzivatel\Downloads\DX_patch (1).exe
2016-06-25 17:00 - 2016-06-25 17:01 - 02591672 _____ C:\Users\Uzivatel\Downloads\qtcore4.dll
2016-06-25 16:50 - 2016-06-25 16:52 - 05732078 _____ C:\Users\Uzivatel\Downloads\FullControll.exe
2016-06-25 16:40 - 2016-06-25 16:40 - 00000000 ____D C:\ProgramData\Ubisoft
2016-06-24 16:19 - 2016-06-24 16:59 - 54359885 _____ C:\Users\Uzivatel\Downloads\ASCRevelations.exe
2016-06-24 16:08 - 2016-06-24 16:11 - 18017753 _____ C:\Users\Uzivatel\Downloads\Alice.Madness.Returns.Crackfix-SKIDROW.rar
2016-06-24 16:06 - 2016-06-24 16:06 - 00041852 _____ C:\Users\Uzivatel\Downloads\Alice Madness Returns-SKIDROW.torrent
2016-06-22 21:38 - 2016-07-21 12:08 - 00001680 _____ C:\Users\Uzivatel\Desktop\Play Metro 2033 Redux.lnk
2016-06-22 17:04 - 2016-06-22 17:08 - 55225126 _____ C:\Users\Uzivatel\Downloads\Metro2033-Redux.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-22 15:38 - 2015-10-29 17:30 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\Skype
2016-07-22 15:35 - 2015-11-21 22:07 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\uTorrent
2016-07-22 15:35 - 2015-11-21 22:07 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\uTorrent
2016-07-22 15:30 - 2009-07-14 06:45 - 00032080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-22 15:30 - 2009-07-14 06:45 - 00032080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-22 15:25 - 2016-03-04 13:06 - 00000000 ____D C:\Users\Uzivatel\AppData\LocalLow\uTorrent
2016-07-22 13:38 - 2015-10-28 19:49 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-22 11:43 - 2015-10-28 20:11 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-07-22 11:41 - 2015-10-28 20:12 - 00000000 ____D C:\Users\Uzivatel\AppData\Local\Battle.net
2016-07-22 11:33 - 2016-05-04 16:24 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-07-22 11:28 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-21 23:47 - 2015-11-28 09:04 - 00000000 ___RD C:\Users\Uzivatel\Desktop\Iné
2016-07-21 12:45 - 2016-06-09 19:46 - 00000000 ____D C:\Windows\Minidump
2016-07-21 12:09 - 2016-05-29 14:56 - 00001230 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2016-07-21 12:09 - 2016-05-29 14:56 - 00001230 _____ C:\ProgramData\Desktop\World of Warcraft.lnk
2016-07-21 12:09 - 2016-01-31 15:42 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2016-07-21 12:09 - 2015-12-06 16:06 - 00002671 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
2016-07-21 12:09 - 2015-10-29 17:30 - 00002707 _____ C:\Users\Public\Desktop\Skype.lnk
2016-07-21 12:09 - 2015-10-29 17:30 - 00002707 _____ C:\ProgramData\Desktop\Skype.lnk
2016-07-21 12:09 - 2015-10-28 20:12 - 00001138 _____ C:\Users\Public\Desktop\Battle.net.lnk
2016-07-21 12:09 - 2015-10-28 20:12 - 00001138 _____ C:\ProgramData\Desktop\Battle.net.lnk
2016-07-21 12:09 - 2015-10-26 15:25 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-07-21 12:09 - 2015-10-26 15:25 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-07-21 12:09 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-07-21 12:09 - 2009-07-14 06:57 - 00001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-07-21 12:09 - 2009-07-14 06:57 - 00001330 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-07-21 12:09 - 2009-07-14 06:57 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-07-21 12:09 - 2009-07-14 06:54 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-07-21 12:08 - 2016-06-16 21:23 - 00000646 _____ C:\Users\Uzivatel\Desktop\The Witcher Enhanced Edition - odkaz.lnk
2016-07-21 12:08 - 2016-05-04 16:26 - 00001701 _____ C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\BlueStacks.lnk
2016-07-21 12:08 - 2016-04-09 15:05 - 00000823 _____ C:\Users\Uzivatel\Desktop\Perfect Uninstaller.lnk
2016-07-21 12:08 - 2016-03-16 09:12 - 00001852 _____ C:\Users\Uzivatel\Desktop\Play Remember Me.lnk
2016-07-21 12:08 - 2016-03-02 16:36 - 00000885 _____ C:\Users\Uzivatel\Desktop\Play Splinter Cell Blacklist.lnk
2016-07-21 12:08 - 2016-01-04 17:08 - 00000952 _____ C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2016-07-21 12:08 - 2016-01-04 17:08 - 00000944 _____ C:\Users\Uzivatel\Desktop\osu!.lnk
2016-07-21 12:08 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-07-21 12:08 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-07-21 12:06 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\Performance
2016-07-21 11:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system
2016-07-21 11:25 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-07-21 11:24 - 2016-01-18 21:13 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-07-21 10:58 - 2015-10-28 19:05 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-21 10:58 - 2015-10-28 19:05 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-21 10:54 - 2016-06-16 23:04 - 00000000 ____D C:\Users\Uzivatel\AppData\Local\CrashDumps
2016-07-21 10:45 - 2016-06-10 18:53 - 00119296 _____ C:\Windows\SysWOW64\zlib.dll
2016-07-21 10:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-07-21 08:50 - 2016-06-18 11:43 - 00000000 ____D C:\Program Files (x86)\Dark Souls Prepare to Die Edition
2016-07-21 08:07 - 2015-11-27 22:11 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
2016-07-21 08:07 - 2015-10-28 19:02 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\TS3Client
2016-07-21 08:07 - 2015-10-26 15:22 - 00000000 ____D C:\Windows\Panther
2016-07-21 03:00 - 2015-10-27 04:24 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-07-21 03:00 - 2015-10-27 04:24 - 00000000 ___SD C:\Windows\system32\GWX
2016-07-21 00:18 - 2015-12-04 22:40 - 00000080 _____ C:\Users\Uzivatel\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2016-07-20 23:11 - 2015-10-26 15:34 - 00000000 ____D C:\Users\Uzivatel
2016-07-20 22:47 - 2015-10-27 04:32 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\Adobe
2016-07-20 22:25 - 2015-10-28 20:23 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-07-20 18:06 - 2009-07-14 07:13 - 00783606 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-17 21:51 - 2015-10-29 21:07 - 00000000 ____D C:\Users\Uzivatel\Documents\My Games
2016-07-17 21:47 - 2015-11-03 22:06 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-07-17 21:46 - 2015-10-28 22:38 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-17 21:11 - 2016-04-21 20:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-17 19:06 - 2016-05-15 12:00 - 00000000 ____D C:\Users\Ocino\AppData\Local\NVIDIA Corporation
2016-07-17 19:05 - 2016-05-15 12:00 - 00000000 ____D C:\Users\Ocino
2016-07-14 09:04 - 2009-07-14 06:45 - 00298528 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-14 09:03 - 2015-10-27 04:24 - 00000000 ____D C:\Windows\system32\appraiser
2016-07-14 09:03 - 2011-04-12 15:41 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-13 23:35 - 2015-10-26 18:11 - 00000000 ____D C:\Windows\system32\MRT
2016-07-13 23:31 - 2015-10-26 18:11 - 144749672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-13 11:01 - 2016-04-25 16:27 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-07-13 11:01 - 2016-04-25 16:27 - 00000000 ____D C:\Users\Uzivatel\AppData\Roaming\discord
2016-07-13 11:01 - 2016-04-25 16:27 - 00000000 ____D C:\Users\Uzivatel\AppData\Local\Discord
2016-07-06 10:37 - 2015-12-06 12:16 - 00000000 ____D C:\ProgramData\Steam
2016-07-06 10:27 - 2015-12-04 22:38 - 00000000 ____D C:\Program Files\Rockstar Games
2016-06-25 19:37 - 2015-12-07 20:42 - 00000000 ____D C:\Games
2016-06-25 17:37 - 2016-01-18 20:27 - 00000000 ____D C:\Users\Uzivatel\Downloads\Dir3ctX-update-patch
2016-06-24 13:36 - 2015-10-26 15:56 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-24 13:36 - 2015-10-26 15:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-23 23:59 - 2015-10-26 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

==================== Files in the root of some directories =======

2016-07-20 20:17 - 2016-07-20 20:17 - 7102976 _____ () C:\Users\Uzivatel\AppData\Roaming\agent.dat
2016-07-20 20:17 - 2016-07-20 20:17 - 0676352 _____ () C:\Users\Uzivatel\AppData\Roaming\Faxhold.exe
2016-07-20 20:17 - 2016-07-20 20:17 - 0676352 _____ () C:\Users\Uzivatel\AppData\Roaming\Geola.exe
2016-07-20 20:17 - 2016-07-20 20:17 - 0129024 _____ () C:\Users\Uzivatel\AppData\Roaming\Installer.dat
2016-07-20 20:17 - 2016-07-20 20:17 - 0018432 _____ () C:\Users\Uzivatel\AppData\Roaming\Main.dat
2015-12-23 20:44 - 2015-12-23 20:44 - 0000000 ___SH () C:\Users\Uzivatel\AppData\Local\LumaEmu
2015-11-15 16:07 - 2015-11-15 16:07 - 0000017 _____ () C:\Users\Uzivatel\AppData\Local\resmon.resmoncfg

Some files in TEMP:
====================
C:\Users\Uzivatel\AppData\Local\Temp\1AE1.tmp.exe
C:\Users\Uzivatel\AppData\Local\Temp\downloader.dll
C:\Users\Uzivatel\AppData\Local\Temp\DriverBoosterSetup.exe
C:\Users\Uzivatel\AppData\Local\Temp\ifselciz.dll
C:\Users\Uzivatel\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Uzivatel\AppData\Local\Temp\setup.exe
C:\Users\Uzivatel\AppData\Local\Temp\tu17p84.exe
C:\Users\Uzivatel\AppData\Local\Temp\Dark souls pc xlive.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-04-09 08:31

==================== End of FRST.txt ============================

[JaRon]

Pridaj aj addition.txt

[trestany]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-07-2016
Ran by Uzivatel (2016-07-22 19:16:29)
Running from C:\Users\Uzivatel\Downloads
Windows 7 Professional Service Pack 1 (X64) (2015-10-26 13:34:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1986474808-343235966-395658721-500 - Administrator - Disabled)
Guest (S-1-5-21-1986474808-343235966-395658721-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1986474808-343235966-395658721-1004 - Limited - Enabled)
Mamina (S-1-5-21-1986474808-343235966-395658721-1006 - Limited - Enabled) => C:\Users\Mamina
Ocino (S-1-5-21-1986474808-343235966-395658721-1007 - Limited - Enabled) => C:\Users\Ocino
Uzivatel (S-1-5-21-1986474808-343235966-395658721-1000 - Administrator - Enabled) => C:\Users\Uzivatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Disabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AV: ESET Smart Security 9.0.376.1 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Microsoft Security Essentials (Disabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.376.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personálny firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Aktualizácie NVIDIA 2.11.3.5 (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Alice: Madness Returns (HKLM-x32\...\Alice: Madness Returns_is1) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BlueStacks App Player (HKLM-x32\...\{AA655366-D323-404D-AA9B-AD562CAE1DD0}) (Version: 2.2.21.6212 - BlueStack Systems, Inc.)
Brawlhalla (HKLM\...\Steam App 291550) (Version: - Blue Mammoth Games)
Canon MP Navigator EX 2.0 (HKLM-x32\...\MP Navigator EX 2.0) (Version: - )
Canon MP240 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP240_series) (Version: - )
Canon MP240 series User Registration (HKLM-x32\...\Canon MP240 series User Registration) (Version: - )
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.20 - Piriform)
Counter-Strike (HKLM\...\Steam App 10) (Version: - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0112 - Disc Soft Ltd)
Dark Souls Prepare to Die Edition (HKLM-x32\...\Dark Souls Prepare to Die Edition_is1) (Version: 1.0.2.0 - Релиз от R.G. Steamgames)
Discord (HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\Discord) (Version: 0.0.292 - Hammer & Chisel, Inc.)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts)
ESET Smart Security (HKLM\...\{4CB3B9EE-3841-40D5-89FA-42017161A37D}) (Version: 9.0.376.1 - ESET, spol. s r.o.)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.82 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3540 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Malwarebytes Anti-Malware verzia 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0000-0000-0000000FF1CE}_WORD_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Word 2007 (HKLM-x32\...\WORD) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{9085041B-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Mozilla Firefox 46.0.1 (x86 sk) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 sk)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
NVIDIA 3D Vision radič ovládača 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.11 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Grafický ovládač 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.11 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.10.1.1501 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{69814c2e-aeac-4e88-9580-d7d48a2a2f29}) (Version: latest - ppy Pty Ltd)
Ovládací panel NVIDIA 344.11 (Version: 344.11 - NVIDIA Corporation) Hidden
Perfect Uninstaller v6.3.4.0 (HKLM\...\Perfect Uninstaller_is1) (Version: - www.PerfectUninstaller.com)
Rage (HKLM-x32\...\Rage_is1) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7200 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader Extreme HD (HKLM-x32\...\GOGPACKSTRONGHOLDCRUSADERHD_is1) (Version: 2.0.0.6 - GOG.com)
System Requirements Lab (HKLM-x32\...\{F89CDED6-B1F1-489F-BA44-698BF6A737C2}) (Version: 6.1.6.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{D29466B4-618D-4F00-A728-F5DC6492B1C9}) (Version: 6.1.6.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\{A0D70C31-D5CB-4491-A508-5CF2C9F25EE0}) (Version: 1.00.0000 - En Masse Entertainment)
The Witcher Enhanced Edition (HKLM-x32\...\{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}) (Version: 1.00.0000 - CD Projekt Red)
TorrentsTime Media Player (HKLM\...\TorrentsTime Media Player_is1) (Version: 1.1.9.1 - Torrents Time)
Unity Web Player (HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-001B-0000-0000-0000000FF1CE}_WORD_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1986474808-343235966-395658721-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1EA9DBBF-A3F4-4A1C-86C8-6452ED869F05} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-21] (Google Inc.)
Task: {1F82E1C2-0EE6-4693-A8CF-E532E7102AE4} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {2B673812-8B6C-479D-873D-CA1A5B3148B4} - System32\Tasks\{AA768C10-32CA-4618-8072-FF74D28E4992} => Firefox.exe hxxp://www.skype.com/go/downloading?source=lig ... astError=0
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {421C13E8-A023-489D-B46B-562B90806A57} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1986474808-343235966-395658721-1000
Task: {599C41C5-757C-4B7B-9DA6-DE048E3D0C6B} - System32\Tasks\Microsoft\Windows\Multimedia\Manager => C:\Users\Uzivatel\AppData\Roaming\Adobe\Manager.exe
Task: {7B326541-0311-483A-9FA1-A3D8215B649D} - System32\Tasks\{15694BA3-1FD7-4866-A17B-35AB7046F057} => pcalua.exe -a "D:\Games\Battlefield 4\OriginInstaller.exe" -d "D:\Games\Battlefield 4"
Task: {972887B9-4442-43A7-B49D-A5F32D7EF2E6} - System32\Tasks\Opera scheduled Autoupdate 1452012336 => C:\Program Files (x86)\Opera\launcher.exe
Task: {994C86AD-A929-4B2C-88A0-4E25A107A029} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe
Task: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {B5F0E542-48B2-44F1-B46C-FB0E5BA494C2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-07-13] (Piriform Ltd)
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {D09FD340-A010-4071-AD67-43E4E28CF6F9} - System32\Tasks\Ofiiedwerfit Controls => C:\Program Files (x86)\Teneentgratuck\ofiiedwerfitCntLgg.exe
Task: {D59E30A5-AC1F-4311-AC50-90C912568194} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-18] (Adobe Systems Incorporated)
Task: {D9CA065A-23ED-44D1-A9D4-77696998F447} - System32\Tasks\Driver Booster SkipUAC (Uzivatel) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {DCB07FFE-6640-45DD-94F7-6B117B744FB0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-21] (Google Inc.)
Task: {E26E111A-F5FC-4E23-9EEF-43D36186D0DD} - System32\Tasks\{494C3290-14C9-4F73-9ED7-0C2A6FD9240B} => pcalua.exe -a G:\OriginInstaller.exe -d G:\
Task: {EEA2EED1-CFC8-4C9D-9D62-85FA86A348D5} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\GameExplorer\{2B93A687-81DD-478F-BB71-BB836A2BE1F2}\SupportTasks\1\Technická podpora.lnk -> hxxp://www.gatheringofdevelopers.com/
Shortcut: C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\GameExplorer\{2B93A687-81DD-478F-BB71-BB836A2BE1F2}\SupportTasks\0\Ďalšie hry od spoločnosti Microsoft.lnk -> hxxp://crusader.godgames.com/

ShortcutWithArgument: C:\Users\Uzivatel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\28b0380f97fc14ac\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=zjaieddnawardhermach

==================== Loaded Modules (Whitelisted) ==============

2015-10-26 15:51 - 2014-09-13 23:53 - 00116880 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-06-09 19:26 - 2016-05-02 07:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-06-09 19:26 - 2016-05-02 07:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-06-09 19:26 - 2016-05-02 07:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-06-09 19:26 - 2016-05-02 07:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-06-09 19:26 - 2016-05-02 07:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-06-09 19:26 - 2016-05-02 07:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-06-09 19:26 - 2016-05-02 07:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-06-09 19:26 - 2016-05-02 07:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-06-09 19:26 - 2016-05-02 07:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-06-09 19:26 - 2016-05-02 07:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-01-06 18:41 - 2016-01-06 18:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll
2016-07-21 10:58 - 2016-07-19 03:31 - 02366280 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.82\libglesv2.dll
2016-07-21 10:58 - 2016-07-19 03:31 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.82\libegl.dll
2016-06-27 16:12 - 2013-02-01 09:23 - 38237712 _____ () D:\Assassin's Creed 3\AC3SP.exe
2016-02-16 17:47 - 2015-11-24 02:47 - 03843584 _____ () C:\Program Files (x86)\TorrentsTime Media Player\bin\torrent.dll
2016-06-09 19:26 - 2016-05-02 08:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-10-28 19:53 - 2016-04-29 22:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-10-28 19:53 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-10-28 19:53 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-10-28 19:53 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-10-28 19:53 - 2016-07-13 01:05 - 02318928 _____ () C:\Program Files (x86)\Steam\video.dll
2015-10-28 19:53 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-10-28 19:53 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-10-28 19:53 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-10-28 19:53 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-10-28 19:53 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-10-28 19:53 - 2016-07-13 01:05 - 00829520 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-02-25 18:37 - 2016-07-07 00:00 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2015-10-28 19:53 - 2016-06-14 21:14 - 49826080 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-10-26 15:40 - 2013-09-16 13:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-06-27 16:12 - 2012-10-18 00:24 - 00198224 _____ () D:\Assassin's Creed 3\binkw32.dll
2016-06-27 16:20 - 2012-11-20 06:00 - 00234616 _____ () D:\Assassin's Creed 3\ubiorbitapi_r2_loader.dll
2016-06-27 16:20 - 2013-01-21 20:38 - 00003584 _____ () D:\Assassin's Creed 3\uplay_r1_loader.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:DocumentSummaryInformation [63]
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:SummaryInformation [63]
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Uzivatel\Desktop\DarkSoulsII.exe:$CmdTcID [64]
AlternateDataStreams: C:\Users\Uzivatel\Desktop\GTA5_patch-678.exe:$CmdTcID [64]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\adwcleaner_5.201.exe:$CmdTcID [64]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\adwcleaner_5.201.exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\ChromeSetup.exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\Dark.Souls.II.PC (1).torrent:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\Dark.Souls.II.PC.torrent:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\DarkSouls2 (2).exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\Dark_souls_pc_xlive.exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\Dark_souls_pc_xlive.rar:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\FRST64.exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\mbam-setup-2.2.1.1043.exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\Uzivatel\Downloads\ReimageRepair.exe:$CmdZnID [26]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1986474808-343235966-395658721-1000\...\localhost -> localhost

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1986474808-343235966-395658721-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 185.117.73.17 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{76580F43-CB94-4735-A57F-36DF2802622D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4A71507F-DCB1-47DA-9199-35EE119EC8C6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E2CFC11E-E167-4AF0-A1DF-00FE8D2CBA52}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AA963DDA-893B-4A7C-9564-F62FC2A53236}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{22C9ECEC-230A-4141-B86E-ECC858D7A16F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{DECFB261-BD5F-4D69-B9D6-CAE48C603967}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{7B995DBC-2A3E-46E5-B8B9-1A2CCE907426}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{AE143A7C-EE08-4A4E-9F0E-D6E8DD840FBC}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{321B8054-DD8C-4CCA-A4A3-2BBAA345F406}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{77BC0800-054B-4D9E-8177-777C825E70A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{F25A542C-A610-4583-BFDB-FB5091177C0F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{E759C3E8-AF65-423C-8014-4761567048B3}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{A160251C-BB9D-43F1-98C6-96A729229087}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{8B59AF53-4AEF-4994-8D28-FC1167B13BFF}] => (Allow) C:\Users\Uzivatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2C75A583-7B1C-46BC-9350-796EE782D3BE}] => (Allow) C:\Users\Uzivatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1D7FD7FA-DF73-40AF-B8A1-B242474C67BF}] => (Allow) C:\Users\Uzivatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7AD4AAF4-2493-4493-9595-39FDE0DB341A}] => (Allow) C:\Users\Uzivatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D0A99EB8-8380-4E95-B793-CD387E7E1466}] => (Allow) C:\Users\Uzivatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{26EA07CC-0EAC-44B1-B0CD-34734DECB61B}] => (Allow) C:\Users\Uzivatel\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6977CDE9-7831-4BB3-B29A-BB3597DC7AC4}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{BD8FC966-368C-4CD9-8810-7CD48300ADAB}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{C133E2BE-AFE8-41E0-9D63-4F6692A99093}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
FirewallRules: [{9B1A24B3-94A3-4CD8-84A1-925846CEEC07}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
FirewallRules: [{B353BB99-8CDE-42F6-9DEC-322556131F5B}] => (Allow) C:\Program Files (x86)\TorrentsTime Media Player\bin\chromecast\node.exe
FirewallRules: [{D0F090C1-7276-40B9-8F40-123A8DD27C7E}] => (Allow) C:\Program Files (x86)\TorrentsTime Media Player\bin\chromecast\node.exe
FirewallRules: [{4E74B347-7A94-4CF1-8FCB-C5B4CA8000D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{06A2B1C3-1D69-4ECE-BE12-3A286449DE67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [TCP Query User{DF0A8E5D-F723-4AB8-B4E3-5074BF434C6B}D:\games\splinter cell blacklist\src\system\blacklist_dx11_game.exe] => (Allow) D:\games\splinter cell blacklist\src\system\blacklist_dx11_game.exe
FirewallRules: [UDP Query User{EB37E56F-E06E-4521-91A8-A0850D7BB11E}D:\games\splinter cell blacklist\src\system\blacklist_dx11_game.exe] => (Allow) D:\games\splinter cell blacklist\src\system\blacklist_dx11_game.exe
FirewallRules: [{DC0230C3-E236-4AF7-B658-E3AD3EEFA96C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{44671D94-4BA7-4755-8F7A-6FFF088D0423}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AC04929E-9C16-4387-9151-0155C45BA53D}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{0F540FB7-F18A-43FB-AA76-25F7338A03A9}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [TCP Query User{C79E0913-0A36-4E17-9611-BAA4BB6F550C}D:\games\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) D:\games\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [UDP Query User{4CC697A1-7677-4E5E-B686-0078D5C136F3}D:\games\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) D:\games\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [{F88BAC7E-5A4A-4AA0-8437-916E22ED55C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FEDC6EE8-0DD9-4E3B-AD58-55D6EBF6483A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{04C84561-2F95-4820-A1DB-9C232C29A8B1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{12A11DBC-9FE9-4CB5-8F3A-C18B1B26BF2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4658DE35-4027-4265-807C-93354F1D2E3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4AEBDE69-A508-4D94-A3F2-4E7FE16EF490}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{D6D8B2D2-DBB5-44B6-A36E-FE88D9E52E9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{B12155DB-B754-4F2F-A1E7-3BD59547B69A}] => (Allow) C:\Program Files (x86)\EA Games\Alice Madness Returns\Alice2\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{27238C16-63F6-49AD-9E0B-6396F4F80877}] => (Allow) C:\Program Files (x86)\EA Games\Alice Madness Returns\Alice2\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{33E47B11-47F7-4C06-AEFE-23533E6E5ABB}] => (Allow) C:\Program Files (x86)\EA Games\Alice Madness Returns\Alice2\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{0F2C8685-D466-4626-9DE0-8B8BE1AC2D58}] => (Allow) C:\Program Files (x86)\EA Games\Alice Madness Returns\Alice2\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [TCP Query User{91E8D805-82CD-432A-B446-2ACABB78953C}D:\alice madness returns\alice2\binaries\win32\alicemadnessreturns.exe] => (Allow) D:\alice madness returns\alice2\binaries\win32\alicemadnessreturns.exe
FirewallRules: [UDP Query User{4106F2F0-3CBB-450E-84D5-98C499915492}D:\alice madness returns\alice2\binaries\win32\alicemadnessreturns.exe] => (Allow) D:\alice madness returns\alice2\binaries\win32\alicemadnessreturns.exe
FirewallRules: [TCP Query User{AE43E967-BD28-4667-9A74-4AE2BD5EFC84}D:\assassin's creed 3\ac3sp.exe] => (Allow) D:\assassin's creed 3\ac3sp.exe
FirewallRules: [UDP Query User{472868BC-EF13-48F4-B4E6-6AEDDDCC4C26}D:\assassin's creed 3\ac3sp.exe] => (Allow) D:\assassin's creed 3\ac3sp.exe
FirewallRules: [{A421A132-2B85-4145-8054-4E3F08378CD3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

22-07-2016 16:56:45 Removed COMODO Internet Security Premium

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/22/2016 05:10:54 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/22/2016 05:01:13 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/22/2016 04:48:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Spyhunter4.exe version 4.23.2.4686 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: b34

Start Time: 01d1e427bc97d863

Termination Time: 26

Application Path: C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe

Report Id: 668401d8-501b-11e6-8990-408d5c30e3cb

Error: (07/22/2016 04:46:39 PM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/22/2016 04:44:27 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (7400) WebCacheLocal: Error -1032 occurred while opening logfile C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\WebCache\V0100001.log.

Error: (07/22/2016 04:44:27 PM) (Source: ESENT) (EventID: 489) (User: )
Description: DllHost (7400) WebCacheLocal: An attempt to open the file "C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\WebCache\V0100001.log" for read only access failed with system error 5 (0x00000005): "Prístup je odmietnutý. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (07/22/2016 04:44:16 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (7400) WebCacheLocal: Error -1032 occurred while opening logfile C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\WebCache\V0100001.log.

Error: (07/22/2016 04:44:16 PM) (Source: ESENT) (EventID: 489) (User: )
Description: DllHost (7400) WebCacheLocal: An attempt to open the file "C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\WebCache\V0100001.log" for read only access failed with system error 5 (0x00000005): "Prístup je odmietnutý. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (07/22/2016 04:44:01 PM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (7400) WebCacheLocal: Error -1032 occurred while opening logfile C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\WebCache\V0100001.log.

Error: (07/22/2016 04:44:01 PM) (Source: ESENT) (EventID: 489) (User: )
Description: DllHost (7400) WebCacheLocal: An attempt to open the file "C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\WebCache\V0100001.log" for read only access failed with system error 5 (0x00000005): "Prístup je odmietnutý. ". The open file operation will fail with error -1032 (0xfffffbf8).


System errors:
=============
Error: (07/22/2016 05:09:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby atksgt zlyhalo kvôli nasledujúcej chybe:
%%1275 = Ovládač nie je možné načítať, pretože je zablokovaný.


Error: (07/22/2016 05:09:29 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: Driver atksgt.sys has been blocked from loading.

Error: (07/22/2016 05:08:44 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (07/22/2016 04:59:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby atksgt zlyhalo kvôli nasledujúcej chybe:
%%1275 = Ovládač nie je možné načítať, pretože je zablokovaný.


Error: (07/22/2016 04:59:35 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: Driver atksgt.sys has been blocked from loading.

Error: (07/22/2016 04:58:45 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (07/22/2016 04:58:44 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (07/22/2016 04:46:17 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby NVIDIA Streamer Service bol dosiahnutý časový limit (30000 ms).

Error: (07/22/2016 04:45:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby atksgt zlyhalo kvôli nasledujúcej chybe:
%%1275 = Ovládač nie je možné načítať, pretože je zablokovaný.


Error: (07/22/2016 04:45:42 PM) (Source: Application Popup) (EventID: 875) (User: )
Description: Driver atksgt.sys has been blocked from loading.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU G3250 @ 3.20GHz
Percentage of memory in use: 68%
Total physical RAM: 8067.34 MB
Available physical RAM: 2527.6 MB
Total Virtual: 16132.87 MB
Available Virtual: 10135.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:244.04 GB) (Free:40.8 GB) NTFS
Drive d: () (Fixed) (Total:687.37 GB) (Free:159.04 GB) NTFS
Drive f: (Rage DVD 2) (CDROM) (Total:7.82 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D2EC9F33)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=244 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=687.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[JaRon]

Odinstaluj Comodo + Microsoft security client + Spyhunter
Problemy ma atksgr driver, to je sucast nejakej hry - nema to
Na svedomi Mbam

[trestany]

Už som to všetko vymazal, vyzerá to že už bude kľud, dík za pomoc

[JaRon]

To som rad