Podozrenie na virus

Zpráva

M95M · #1 Příspěvek od **M95M** » 07 lis 2015 11:38

Zdravím, počítač sa mi zdá spomalený, po štarte a prihlásení dosť dlho trvá kým je použiteľný, aj napriek tomu že mám SSD.
Prebehol som to ADWcleanerom, CCleanerom, Avast Quick scan, a stále je pomalý (pomalé spúšťanie programov).
V Autoruns od sysinternals som objavil veľa File not found a nepodpísaných kodekov. Keď som zmazal všetky File not found, po reboote sa znovu zobrazili.

Prikladám screen z Autoruns a RSIT log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by milan at 2015-11-07 11:28:02
Microsoft Windows 10 Pro
System drive C: has 62 GB (54%) free of 114 GB
Total RAM: 8077 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:28:06, on 07.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
D:\Software\sysinternals\autoruns.exe
C:\Program Files\trend micro\milan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=14763
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Microsoft Web Test Recorder 12.0 Helper - {432dd630-7e03-4c97-9d62-b99f52df4fc2} - C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: (no name) - {4AB31959-F732-4360-B3CF-6EE76E101734} - (no file)
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Zoiper] C:\Program Files (x86)\Zoiper\Zoiper.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: AutorunsDisabled
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {62789780-B744-11D0-986B-00609731A21D} (Autodesk MapGuide ActiveX Control) - http://195.28.70.134/kapor2/lib/mgaxctrl.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000 (c2wts) - Unknown owner - C:\Program Files (x86)\Windows Identity Foundation\v3.5\c2wtshost.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7601 bytes

======Listing Processes======

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c8269f91-3b12-41eb-9407-57bfd7bfbf2a -SystemEventPortName:HostProcess-6eee7ae4-afe5-40ea-9c23-03a07ef649a3 -IoCancelEventPortName:HostProcess-b26994ef-c6ef-47c6-8bee-fec303166904 -NonStateChangingEventPortName:HostProcess-9763808e-aa14-40cf-b3d7-a61b77673e91 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d05cd99f-af80-4d5e-9713-1233f7b28709 -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-74291429-7a42-4d64-a2fe-e7d17f1a918e -SystemEventPortName:HostProcess-d485719e-42b3-42a3-9e78-71d60154d905 -IoCancelEventPortName:HostProcess-757739f5-2770-49bb-b3dc-830c5a6f8a75 -NonStateChangingEventPortName:HostProcess-0d705280-5fcf-4c4c-b1b7-6d3ab359a4d4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:cd37a0a8-886a-422a-84ea-83d7353f4f4b -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
C:\WINDOWS\SysWOW64\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
dashost.exe {bfd99d64-04fe-4308-882db08868861f8b}
sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
igfxEM.exe
igfxHK.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files\TortoiseSVN\bin\TSVNCache.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k HPService
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files\TortoiseSVN\bin\TSVNCache.exe"
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1510.13020.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskeng.exe {F80400C0-68D2-4471-961B-4C6283247BD1}
C:\WINDOWS\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
"D:\Software\sysinternals\autoruns.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4612.0.1100730375\1099285313" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,22,50 --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.1.1718851504\1183892939" --font-cache-shared-handle=1980 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.2.821408942\667555199" --font-cache-shared-handle=2432 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.3.2058473383\1400886583" --font-cache-shared-handle=2372 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.4.769809735\841384496" --font-cache-shared-handle=2848 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.5.326721654\369868457" --font-cache-shared-handle=2944 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.6.1538761490\518631951" --font-cache-shared-handle=2692 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.7.49497766\1809854065" --font-cache-shared-handle=3148 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.10.1801104839\698044429" --font-cache-shared-handle=6068 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.11.990659064\1851770788" --font-cache-shared-handle=3940 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --disable-client-side-phishing-detection --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.12.1885673710\1898606545" --font-cache-shared-handle=7060 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.13.208176210\446710258" --font-cache-shared-handle=7532 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.14.1484573251\1614545230" --font-cache-shared-handle=7628 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Control/*AutomaticTabDiscarding/Enabled_Once/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model1/*DomRel-Enable/enable/*EmbeddedSearch/Group1 beta:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/BetaAggressiveShortcuts1299_PostPeriod/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/FontsOnly_01000_0_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SPDY/Spdy4Enabled-default/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/Control/SyncBackingDatabase32K/Enabled/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Default/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchIncreaseFontPriority=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4612.15.2146682292\6438151" --font-cache-shared-handle=7876 /prefetch:673131151
"D:\Download\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\milan\AppData\Roaming\Mozilla\Firefox\Profiles\4ex3sog4.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mozilla.zeniko.ch/PDFlite_Browser_Plugin]
"Description"=PDFlite Browser Plugin
"Path"=C:\Program Files (x86)\PDFlite\npPdfViewer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2015-01-18 551848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-31 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-01-18 212904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{432dd630-7e03-4c97-9d62-b99f52df4fc2}]
Microsoft Web Test Recorder 12.0 Helper - C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05 71520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-31 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4AB31959-F732-4360-B3CF-6EE76E101734}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4AB31959-F732-4360-B3CF-6EE76E101734}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-05-26 13672152]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-05-13 1387376]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-05-13 1387376]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-05-13 1387376]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-12-23 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-12-23 10973168]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-31 3944136]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-08-07 2634896]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-08-07 1710568]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Zoiper"=C:\Program Files (x86)\Zoiper\Zoiper.exe [2015-07-14 12548624]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-11-06 6133520]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]

C:\Users\milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
AutorunsDisabled

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-11-07 11:28:02 ----D---- C:\rsit
2015-11-07 10:37:47 ----D---- C:\AdwCleaner
2015-11-03 07:50:40 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-11-03 07:50:39 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-11-03 07:50:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-11-03 07:50:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-11-03 07:50:27 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-11-03 07:50:26 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-11-03 07:50:26 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-03 07:50:26 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-11-03 07:50:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-03 07:50:25 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-03 07:50:25 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-11-03 07:50:25 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-03 07:50:24 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-11-03 07:50:24 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-11-03 07:50:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-11-03 07:50:23 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-11-03 07:50:23 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-11-03 07:50:22 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-03 07:50:22 ----A---- C:\WINDOWS\system32\esent.dll
2015-11-03 07:50:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2015-11-03 07:50:21 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-11-03 07:50:20 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-11-03 07:50:20 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-11-03 07:50:20 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-11-03 07:50:20 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-03 07:50:19 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-11-03 07:50:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-11-03 07:50:16 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-11-03 07:50:15 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-11-03 07:50:15 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-11-03 07:50:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2015-11-03 07:50:08 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2015-11-03 07:50:07 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-03 07:50:07 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-10-14 11:30:35 ----D---- C:\ProgramData\MEGAsync
2015-10-13 20:38:55 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-13 20:38:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 20:38:52 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-10-13 20:38:50 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-10-13 20:38:49 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-10-13 20:38:47 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 20:38:47 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-13 20:38:46 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-13 20:38:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-10-13 20:38:40 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-10-13 20:38:39 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-13 20:38:39 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-13 20:38:38 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2015-10-13 20:38:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-10-13 20:38:37 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-13 20:38:37 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-13 20:38:36 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2015-10-13 20:38:36 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 20:38:36 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 20:38:36 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-13 20:38:35 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-10-13 20:38:34 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2015-10-13 20:38:34 ----A---- C:\WINDOWS\system32\jscript.dll
2015-10-13 20:38:34 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-13 20:38:33 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-13 20:38:33 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-13 20:38:33 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-10-13 20:38:32 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-10-13 20:38:32 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-10-13 20:38:32 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2015-10-13 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-10-13 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-10-13 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2015-10-13 20:38:31 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-13 20:38:31 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-13 20:38:31 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-13 20:38:30 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2015-10-13 20:38:30 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-13 20:38:30 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 20:38:29 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 20:38:29 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-13 20:38:28 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-10-13 20:38:28 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 20:38:28 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-13 20:38:28 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-13 20:38:27 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2015-10-13 20:38:27 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-13 20:38:27 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2015-10-13 20:38:27 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 20:38:27 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-13 20:38:27 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 20:38:26 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2015-10-13 20:38:26 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 20:38:26 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-09 17:58:34 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-10-09 17:58:31 ----A---- C:\WINDOWS\avastSS.scr

======List of files/folders modified in the last 1 month======

2015-11-07 11:28:04 ----D---- C:\Program Files\trend micro
2015-11-07 11:23:55 ----D---- C:\WINDOWS\Temp
2015-11-07 11:23:55 ----D---- C:\WINDOWS\System32
2015-11-07 11:17:30 ----D---- C:\WINDOWS\Microsoft.NET
2015-11-07 11:17:20 ----D---- C:\WINDOWS\Prefetch
2015-11-07 11:17:11 ----D---- C:\WINDOWS\debug
2015-11-07 11:17:09 ----D---- C:\Windows
2015-11-07 10:54:35 ----RD---- C:\Program Files (x86)
2015-11-07 10:48:09 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-07 10:48:08 ----D---- C:\WINDOWS\INF
2015-11-07 10:45:48 ----D---- C:\Users\milan\AppData\Roaming\uTorrent
2015-11-07 10:45:26 ----D---- C:\WINDOWS\Minidump
2015-11-07 10:41:29 ----D---- C:\ProgramData\Validity
2015-11-07 10:40:47 ----D---- C:\WINDOWS\system32\sru
2015-11-07 10:40:20 ----HD---- C:\ProgramData
2015-11-07 10:40:20 ----D---- C:\Program Files (x86)\Common Files
2015-11-07 10:29:48 ----D---- C:\WINDOWS\AppReadiness
2015-11-07 10:29:35 ----HD---- C:\Program Files\WindowsApps
2015-11-07 10:27:33 ----D---- C:\WINDOWS\system32\drivers
2015-11-05 10:52:55 ----D---- C:\WINDOWS\system32\catroot2
2015-11-05 10:15:10 ----D---- C:\WINDOWS\rescache
2015-11-05 09:50:32 ----RD---- C:\WINDOWS\assembly
2015-11-04 22:10:17 ----D---- C:\NST
2015-11-04 21:03:30 ----D---- C:\Users\milan\AppData\Roaming\vlc
2015-11-04 08:11:18 ----D---- C:\WINDOWS\system32\config
2015-11-04 08:11:17 ----D---- C:\WINDOWS\WinSxS
2015-11-03 23:51:12 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-11-03 23:51:12 ----D---- C:\WINDOWS\SysWOW64
2015-11-03 23:51:11 ----D---- C:\WINDOWS\system32\en-US
2015-11-03 23:51:11 ----D---- C:\WINDOWS\system32\appraiser
2015-11-03 23:51:11 ----D---- C:\WINDOWS\AppPatch
2015-11-03 23:51:09 ----D---- C:\WINDOWS\system32\DriverStore
2015-11-03 21:23:54 ----D---- C:\WINDOWS\CbsTemp
2015-11-02 23:38:02 ----D---- C:\WINDOWS\system32\NDF
2015-11-01 13:04:14 ----D---- C:\Users\milan\AppData\Roaming\Skype
2015-11-01 09:27:47 ----D---- C:\Users\milan\AppData\Roaming\Zoiper
2015-10-28 13:22:49 ----SHD---- C:\System Volume Information
2015-10-27 22:50:58 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2015-10-27 22:50:58 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-25 11:12:38 ----D---- C:\WINDOWS\system32\FxsTmp
2015-10-17 23:26:10 ----D---- C:\ProgramData\SoftwareDistribution
2015-10-17 10:25:07 ----SHDC---- C:\WINDOWS\Installer
2015-10-17 10:25:07 ----HD---- C:\Config.Msi
2015-10-17 10:25:07 ----D---- C:\ProgramData\Skype
2015-10-17 09:45:20 ----D---- C:\WINDOWS\system32\MRT
2015-10-16 15:10:11 ----A---- C:\WINDOWS\system32\MRT.exe
2015-10-16 04:10:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-10-14 12:30:44 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-14 12:30:44 ----D---- C:\WINDOWS\system32\Boot
2015-10-13 20:39:15 ----D---- C:\WINDOWS\system32\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-10-09 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-10-09 274808]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-10-09 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-11-06 1059656]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-11-06 449992]
R1 dtsoftbus01;@oem15.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-12-23 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 SMIDriver;SMIDriver; C:\WINDOWS\system32\drivers\smi.sys [2014-01-22 19760]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-10-09 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-10-09 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-10-09 153744]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 ACPIVPC;@oem67.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-12-23 35576]
R3 athr;@oem26.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwbx.sys [2013-12-12 3881472]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-09-26 3797416]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-05-26 3975128]
R3 IntcDAud;@oem137.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem111.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\WINDOWS\system32\DRIVERS\LVUSBS64.sys [2007-10-12 50072]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-08-11 11174544]
R3 nvvad_WaveExtensible;@oem84.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-08-07 47976]
R3 RSP2STOR;@oem130.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2015-07-31 310528]
R3 SensorsSimulatorDriver;@oem82.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2015-07-10 214016]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-07-31 42696]
R3 SNP2UVC;@oem129.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2015-07-31 3481696]
R3 SynTP;@oem125.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-07-31 613576]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
S3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth Hands-Free; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2015-07-10 36864]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-09-17 929280]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 dg_ssudbus;@oem121.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;@oem109.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-09-25 151968]
S3 Dot4Print;@oem92.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-09-25 27040]
S3 dot4usb;@oem109.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-09-25 49056]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 FTDIBUS;USB Serial Converter Driver; C:\WINDOWS\system32\drivers\ftdibus.sys [2014-09-10 98160]
S3 FTSER2K;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2014-10-21 79872]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-01-20 44296]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 CH341SER_A64;CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [2011-11-04 58368]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 intaud_WaveExtensible;@oem22.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2015-06-01 36600]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-08-07 19600]
S3 PID_0928;@oem61.inf,%PID_0928_DD%(PID_0928);Logitech QuickCam Express(PID_0928); C:\WINDOWS\system32\DRIVERS\LV561V64.SYS [2007-10-12 582680]
S3 pneteth;PdaNet Broadband; C:\WINDOWS\system32\DRIVERS\pneteth.sys [2011-11-25 15360]
S3 pwdrvio;pwdrvio; \??\C:\WINDOWS\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\WINDOWS\syswow64\pwdspio.sys []
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-07-17 934752]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
S3 rt640x64;@oem128.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-31 886528]
S3 ssudmdm;@oem101.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-09 146600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-08-07 1155216]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\WINDOWS\syswow64\svchost.exe [2015-07-10 35176]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2015-07-10 39856]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-09-26 330144]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-10-15 22744]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-08-07 937776]
R2 OneSyncSvc_Session1;Sync Host_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2015-07-10 39856]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2014-02-21 134336]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-18 43696]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\syswow64\svchost.exe [2015-07-10 35176]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Contact Data_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2015-07-31 5632]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-07-12 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-09-14 82128]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S4 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-09-26 291736]
S4 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S4 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S4 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S4 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-09-22 149160]
S4 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2012-10-04 6371192]
S4 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-08-07 1871504]
S4 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-08-07 5544592]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S4 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-08-07 5611280]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 09 lis 2015 11:58

Krasny den Vam preju

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=144868

Upozorneni: tento sken zabere od 30 minut po nekolik hodin

M95M · #3 Příspěvek od **M95M** » 09 lis 2015 21:25

Na to, že to robilo 3h 24min na 120gb SSD disku Intel, tak to nič moc nenašlo. Neviem či práve ten disk nebude príčina spomaleného počítača.
Disk je zaplnený len 51GB/111GB a pravidelne každý týždeň TRIM optimalizácia.

Malwarebytes Anti-Malware
http://www.malwarebytes.org

Dátum kontroly: 09.11.2015
Čas kontroly: 14:19
Protokol:
Správca: Áno

Verzia: 2.2.0.1024
Dazabáza malware: v2015.11.09.03
Databáza rootkitov: v2015.11.04.02
Licencia: Bezplatná verzia
Ochrana pred škodlivým softvérom: Vypnuté
Ochrana pred škodlivými webstránkami: Vypnuté
Vlastná ochrana: Vypnuté

OS: Windows 10
CPU: x64
Súborový systém: NTFS
Používateľ: milan

Typ kontroly: Vlastná kontrola
Výsledok: Dokončená
Skontrolovaných objektov: 818675
Uplynulý čas: 3 hod, 24 min 25 s

Pamäť: Zapnuté
Pri spustení: Zapnuté
Súborový systém: Zapnuté
Archívy: Zapnuté
Rootkity: Zapnuté
Heuristika: Zapnuté
PUP: Zapnuté
PUM: Zapnuté

Procesy: 0
(Žiadne škodlivé položky neboli zistené)

Moduly: 0
(Žiadne škodlivé položky neboli zistené)

Kľúče databázy Registry: 4
PUP.Optional.TidyNetwork, HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\DRAGDROP\{70BC1CDB-0744-4172-BDA0-B5A487D00C3A}, V karanténe, [03f43447c7c494a200f9e1b154afe020],
PUP.Optional.TNT, HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{72A6AB0F-2FA8-4C73-9FCB-1E62A608F001}, V karanténe, [3bbc46354d3e3df93ae901922ad9bd43],
PUP.Optional.TNT, HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{736D8478-4BED-445D-B9BB-9D2AEE62EF89}, V karanténe, [24d34932137841f533f17023f80b956b],
PUP.Optional.TNT, HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CD24D5E2-B737-456D-AA1E-4FB535438552}, V karanténe, [e3143942305b11256db72370ab58bd43],

Hodnoty databázy Registry: 4
PUP.Optional.TNT, HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{72A6AB0F-2FA8-4C73-9FCB-1E62A608F001}|AppName, TNT2User.exe, V karanténe, [3bbc46354d3e3df93ae901922ad9bd43]
PUP.Optional.TNT, HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{736D8478-4BED-445D-B9BB-9D2AEE62EF89}|OSDFileURL, file:///C:/Users/milan/AppData/Local/TNT2/Profiles/11183/yah11183.xml, V karanténe, [24d34932137841f533f17023f80b956b]
PUP.Optional.TNT, HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CD24D5E2-B737-456D-AA1E-4FB535438552}|OSDFileURL, file:///C:/Users/milan/AppData/Local/TNT2/Profiles/11183/os11183.xml, V karanténe, [e3143942305b11256db72370ab58bd43]
PUP.Optional.TNT, HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{CD24D5E2-B737-456D-AA1E-4FB535438552}|FaviconURL, http://mirror.mirror-files.com/tnt2/10301/y_16.ico, V karanténe, [0dea1a610586db5bf232385b6f94e818]

Údaj databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Priečinky: 0
(Žiadne škodlivé položky neboli zistené)

Súbory: 0
(Žiadne škodlivé položky neboli zistené)

Fyzické sektory: 0
(Žiadne škodlivé položky neboli zistené)

(end)

#4 Příspěvek od **altrok** » 10 lis 2015 13:20

Stahnete Crystal Disk Info (CDI) http://sourceforge.jp/frs/redir.php?m=j ... o6_2_2.zip
archiv extrahujte a spustte vyextrahovany soubor DiskInfo.exe
ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
log vlozte do dalsi odpovedi (Ctrl + V)

M95M · #5 Příspěvek od **M95M** » 10 lis 2015 13:56

Ten disk je už starší, ale mal by byť v 100% stave podľa Intel ssd toolbox a CDI.
Problémy sa vlastne začali prejavovať nejaký čas po update na Windows 10.

----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 10 Professional [10.0 Build 10240] (x64)
Date : 2015/11/10 12:53:38

-- Controller Map ----------------------------------------------------------
+ Intel(R) Pentium(R) processor N- and J-series / Intel(R) Celeron(R) processor N- and J-series AHCI - 0F23 [ATA]
- INTEL SSDSA2M120G2GC
- Microsoft Storage Spaces Controller [SCSI]

-- Disk List ---------------------------------------------------------------
(1) INTEL SSDSA2M120G2GC : 120,0 GB [0/0/0, pd1] - il

----------------------------------------------------------------------------
(1) INTEL SSDSA2M120G2GC
----------------------------------------------------------------------------
Model : INTEL SSDSA2M120G2GC
Firmware : 2CV102M3
Serial Number : CVPO044400BW120QGN
Disk Size : 120,0 GB (8,4/120,0/120,0/120,0)
Buffer Size : Unknown
Queue Depth : 32
# of Sectors : 234441648
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA/ATAPI-7 T13 1532D version 1
Transfer Mode : ---- | SATA/300
Power On Hours : 33977 hours
Power On Count : 2137 count
Host Writes : 6580 GB
Temperature : Unknown
Health Status : Good (100 %)
Features : S.M.A.R.T., 48bit LBA, NCQ, TRIM
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
03 100 100 __0 000000000000 Spin Up Time
04 100 100 __0 000000000000 Start/Stop Count
05 100 100 __0 000000000001 Re-Allocated Sector Count
09 100 100 __0 0000000084B9 Power-On Hours Count
0C 100 100 __0 000000000859 Power Cycle Count
C0 100 100 __0 000000000063 Unsafe Shutdown Count
E1 100 100 __0 000000033695 Host Writes
E2 100 100 __0 000000437D18 Timed Workload Media Wear
E3 100 100 __0 000000000000 Timed Workload Host Read/Write Ratio
E4 100 100 __0 00003054E25A Timed Workload Timer
E8 100 100 _10 000000000000 Available Reserved Space
E9 _99 _99 __0 000000000000 Media Wearout Indicator
B8 100 100 _90 000000000000 End to End Error Detection Count

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 4356 504F 3034 3434 3030 4257 3132 3051 474E 2020
020: 0000 0000 0000 3243 5631 3032 4D33 494E 5445 4C20
030: 5353 4453 4132 4D31 3230 4732 4743 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0000 0000 0007 3FFF 0010 003F FC10 00FB 0101
060: 4BB0 0DF9 0000 0007 0003 0078 0078 0078 0078 4020
070: 0000 0000 0000 0000 0000 001F 0506 0000 0048 0040
080: 00FC 001A 746B 7D01 6163 7469 BC01 6163 407F 0001
090: 0001 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 4BB0 0DF9 0000 0000 0000 0008 4000 0000 5001 5179
110: 5946 CD41 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 01F0 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 4BA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 05 00 03 20 00 64 64 00 00 00 00 00 00 00 04 30
010: 00 64 64 00 00 00 00 00 00 00 05 32 00 64 64 01
020: 00 00 00 00 00 00 09 32 00 64 64 B9 84 00 00 00
030: 00 00 0C 32 00 64 64 59 08 00 00 00 00 00 C0 32
040: 00 64 64 63 00 00 00 00 00 00 E1 30 00 64 64 95
050: 36 03 00 00 00 00 E2 32 00 64 64 18 7D 43 00 00
060: 00 00 E3 32 00 64 64 00 00 00 00 00 00 00 E4 32
070: 00 64 64 5A E2 54 30 00 00 00 E8 33 00 64 64 00
080: 00 00 00 00 00 00 E9 32 00 63 63 00 00 00 00 00
090: 00 00 B8 33 00 64 64 00 00 00 00 00 00 00 00 00
0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 71
170: 03 00 01 00 01 01 01 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 8A

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 05 00 03 00 00 00 00 00 00 00 00 00 00 00 04 00
010: 00 00 00 00 00 00 00 00 00 00 05 00 00 00 00 00
020: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
030: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
040: 00 00 00 00 00 00 00 00 00 00 E1 00 00 00 00 00
050: 00 00 00 00 00 00 E2 00 00 00 00 00 00 00 00 00
060: 00 00 E3 00 00 00 00 00 00 00 00 00 00 00 E4 00
070: 00 00 00 00 00 00 00 00 00 00 E8 0A 00 00 00 00
080: 00 00 00 00 00 00 E9 00 00 00 00 00 00 00 00 00
090: 00 00 B8 5A 00 00 00 00 00 00 00 00 00 00 00 00
0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 A3

#6 Příspěvek od **altrok** » 10 lis 2015 13:59

Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

M95M · #7 Příspěvek od **M95M** » 10 lis 2015 14:23

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015
Ran by milan (administrator) on MRFREDDY (10-11-2015 13:19:35)
Running from C:\Users\milan\Desktop
Loaded Profiles: milan (Available Profiles: milan)
Platform: Windows 10 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1244.tmp
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET1334.tmp
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10240.16565_none_1162030161f5c19b\TiWorker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(forum.viry.cz) C:\Users\milan\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2014-12-23] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10973168 2014-12-23] (Lenovo(beijing) Limited)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-08-07] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3947704 2015-11-10] (Synaptics Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\Run: [Zoiper] => C:\Program Files (x86)\Zoiper\Zoiper.exe [12548624 2015-07-14] ()
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-09] (AVAST Software)
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\Users\milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2015-11-07] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4f1d8fe8-ada3-498c-ad96-bc8a00583b96}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b13120a1-2906-4f8c-9855-d038dfae4005}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=14763
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> DefaultScope {CD24D5E2-B737-456D-AA1E-4FB535438552} URL =
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> {A5EA95BB-1C57-4E19-9AF3-ED181A6A1641} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2015-01-18] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-31] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-01-18] (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 12.0 Helper -> {432dd630-7e03-4c97-9d62-b99f52df4fc2} -> C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2011-06-12] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-31] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Toolbar: HKLM - No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
Toolbar: HKLM-x32 - No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
Toolbar: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxp://195.28.70.134/kapor2/lib/mgaxctrl.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab

FireFox:
========
FF ProfilePath: C:\Users\milan\AppData\Roaming\Mozilla\Firefox\Profiles\4ex3sog4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2015-01-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-01-18] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @mozilla.zeniko.ch/PDFlite_Browser_Plugin -> C:\Program Files (x86)\PDFlite\npPdfViewer.dll [2014-02-26] (Simon Bünzli)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-09] [not signed]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentácie Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Sudoku) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\agdhembpgcpfegeigidembjopfhghnpj [2015-03-14]
CHR Extension: (Angry Birds) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-12-23]
CHR Extension: (Dokumenty Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Disk Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Spotify VK Downloader) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\baggnalhgbpeanbhedjlbndhjgmimmhl [2015-03-12]
CHR Extension: (MEGA) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-11-10]
CHR Extension: (YouTube) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-09-22]
CHR Extension: (Google Search) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2014-12-23]
CHR Extension: (Tabuľky Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-08-06]
CHR Extension: (Porsche) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkclphmapdcppbmekmbkcjfanpmoidpg [2014-12-23]
CHR Extension: (Chromium Scrapbook) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gokffdfnlmampchciemmflgbckijpmlb [2014-12-23]
CHR Extension: (IE Tab) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2015-10-01]
CHR Extension: (2048) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hekhdfjankbhklfkjmnmnefcacndeoll [2014-12-23]
CHR Extension: (Google Keep – poznámky a zoznamy) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-11-10]
CHR Extension: (VNC® Viewer for Google Chrome™) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iabmpiboiopbgfabjmgeedhcmjenhbla [2014-12-23]
CHR Extension: (SingleFile Core) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jemlklgaibiijojffihnhieihhagocma [2014-12-23]
CHR Extension: (Grepolis) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkgkognjknhcgbgbeijjondlikfkgnog [2015-01-29]
CHR Extension: (Vylepšení WISu) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\macimepnbaggfjekcmlcohlffafgamcc [2015-04-13]
CHR Extension: (Kontrola pošty Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-12-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-24]
CHR Extension: (Picasa) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-12-23]
CHR Extension: (Šach) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgkjpihgghgbekgicphkebogelkkpghe [2014-12-23]
CHR Extension: (Gmail) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-04-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-03]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-09] (AVAST Software)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2015-07-31] (Microsoft Corporation)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-08-07] (NVIDIA Corporation)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330144 2015-09-26] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
S4 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-08-07] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-08-07] (NVIDIA Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH)
S4 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [49040 2014-07-25] (Synaptics Incorporated)
S4 valWbioSyncSvc; C:\Windows\system32\valWbioSyncSvc.exe [32256 2014-07-25] (Synaptics Incorporated)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-09] (AVAST Software)
R3 athr; C:\Windows\System32\drivers\athwbx.sys [3881472 2013-12-12] (Qualcomm Atheros Communications, Inc.)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [58368 2011-11-04] (www.winchiphead.com)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-12-23] (Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-01-20] (LogMeIn Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
S3 npf; C:\Windows\System32\drivers\npf.sys [36600 2015-06-01] (Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-08-07] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-08-07] (NVIDIA Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-07-31] (Realtek Semiconductor Corp.)
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-31] (Realtek )
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44216 2015-11-10] (Synaptics Incorporated)
R1 SMIDriver; C:\Windows\System32\drivers\smi.sys [19760 2014-01-22] (Windows (R) Win 7 DDK provider)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [3481696 2015-07-31] (Sonix Co. Ltd.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146232 2015-09-26] (Intel Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-09-08] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125520 2015-09-08] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 X86BDA; C:\Windows\system32\DRIVERS\OEMDrv.sys [666624 2012-04-27] ( )
S3 WinRing0_1_2_0; \??\D:\Software\Real temp\WinRing0x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-10 13:19 - 2015-11-10 13:19 - 00030096 _____ C:\Users\milan\Desktop\FRST.txt
2015-11-10 13:19 - 2015-11-10 13:19 - 00000000 ____D C:\FRST
2015-11-10 13:19 - 2015-11-10 13:18 - 02198528 _____ (Farbar) C:\Users\milan\Desktop\FRST64.exe
2015-11-10 13:18 - 2015-11-10 13:18 - 02198528 _____ (Farbar) C:\Users\milan\Downloads\FRST64.exe
2015-11-10 13:18 - 2015-11-10 13:18 - 00112640 _____ (forum.viry.cz) C:\Users\milan\Desktop\FRSTLauncher.exe
2015-11-10 13:17 - 2015-11-10 13:17 - 00016148 _____ C:\WINDOWS\system32\MRFREDDY_milan_HistoryPrediction.bin
2015-11-10 12:53 - 2015-11-10 12:53 - 00421560 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-11-10 12:53 - 2015-11-10 12:53 - 00268984 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo34.dll
2015-11-10 12:53 - 2015-11-10 12:53 - 00044216 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-11-10 12:53 - 2015-11-10 12:53 - 00043704 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-11-10 12:53 - 2015-11-10 12:53 - 00000486 _____ C:\WINDOWS\Synaptics.PD.log
2015-11-10 12:53 - 2015-11-10 12:53 - 00000486 _____ C:\WINDOWS\Synaptics.log
2015-11-10 12:53 - 2015-11-10 12:53 - 00000000 ____D C:\WINDOWS\LastGood
2015-11-10 12:53 - 2015-11-10 12:53 - 00000000 ____D C:\Users\milan\Desktop\New folder
2015-11-10 12:52 - 2015-11-10 12:52 - 02817875 _____ C:\Users\milan\Desktop\CrystalDiskInfo6_2_2.zip
2015-11-09 19:15 - 2015-11-10 12:51 - 00000730 _____ C:\WINDOWS\PFRO.log
2015-11-09 14:18 - 2015-11-09 21:15 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-09 14:18 - 2015-11-09 14:18 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-09 14:18 - 2015-11-09 14:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-09 14:18 - 2015-11-09 14:18 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-09 14:18 - 2015-11-09 14:18 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-09 14:18 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-11-09 14:18 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-11-09 14:18 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-11-09 14:16 - 2015-11-09 14:17 - 22908888 _____ (Malwarebytes ) C:\Users\milan\Documents\mbam-setup.exe
2015-11-09 14:15 - 2015-11-09 14:15 - 22908888 _____ (Malwarebytes ) C:\Users\milan\Documents\mbam-setup-2.2.0.1024.exe
2015-11-09 14:14 - 2015-11-10 12:53 - 00000892 _____ C:\WINDOWS\setupact.log
2015-11-09 14:14 - 2015-11-09 14:14 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-11-07 14:26 - 2015-11-07 14:26 - 00000000 ____D C:\Users\milan\Desktop\IFJ
2015-11-07 11:28 - 2015-11-07 11:28 - 00000000 ____D C:\rsit
2015-11-07 11:17 - 2015-11-10 12:51 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-07 10:47 - 2015-11-07 10:47 - 00032048 _____ C:\Users\milan\Documents\cc_20151107_104749.reg
2015-11-07 10:37 - 2015-11-07 10:40 - 00000000 ____D C:\AdwCleaner
2015-11-04 22:10 - 2015-11-04 22:10 - 00267936 _____ C:\ANG0
2015-11-03 07:50 - 2015-10-28 00:38 - 21871616 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-03 07:50 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-03 07:50 - 2015-10-21 13:45 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-03 07:50 - 2015-10-21 13:44 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-03 07:50 - 2015-10-21 13:43 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-03 07:50 - 2015-10-21 13:39 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-03 07:50 - 2015-10-21 13:00 - 24595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-03 07:50 - 2015-10-21 13:00 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-03 07:50 - 2015-10-21 12:59 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-03 07:50 - 2015-10-21 12:57 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-03 07:50 - 2015-10-21 12:52 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-03 07:50 - 2015-10-21 12:50 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-03 07:50 - 2015-10-21 12:48 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-03 07:50 - 2015-10-21 12:47 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-03 07:50 - 2015-10-21 12:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-03 07:50 - 2015-10-21 12:46 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-03 07:50 - 2015-10-21 12:44 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-03 07:50 - 2015-10-21 12:44 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-03 07:50 - 2015-10-21 12:43 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-03 07:50 - 2015-10-21 12:42 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-03 07:50 - 2015-10-21 12:41 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-03 07:50 - 2015-10-21 12:40 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-03 07:50 - 2015-10-21 12:38 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-03 07:50 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-03 07:50 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-03 07:50 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-03 07:50 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-03 07:50 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-03 07:50 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-03 07:50 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-03 07:50 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-03 07:50 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-03 07:50 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-03 07:50 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-28 21:27 - 2015-10-28 21:27 - 00000000 ____D C:\Users\milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cygwin-X
2015-10-23 13:23 - 2015-10-23 14:25 - 00000503 _____ C:\Users\milan\Desktop\IFJ.txt
2015-10-14 11:31 - 2015-10-14 11:31 - 00000000 ____D C:\Users\milan\Documents\MEGAsync
2015-10-14 11:30 - 2015-10-14 11:30 - 00000799 _____ C:\Users\Public\Desktop\MEGAsync.lnk
2015-10-14 11:30 - 2015-10-14 11:30 - 00000000 ____D C:\Users\milan\AppData\Local\Mega Limited
2015-10-14 11:30 - 2015-10-14 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGAsync
2015-10-14 11:30 - 2015-10-14 11:30 - 00000000 ____D C:\ProgramData\MEGAsync
2015-10-13 20:38 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-13 20:38 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 20:38 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-13 20:38 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-13 20:38 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-13 20:38 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-13 20:38 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-13 20:38 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 20:38 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-13 20:38 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-13 20:38 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-13 20:38 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-13 20:38 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-13 20:38 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-13 20:38 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-13 20:38 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 20:38 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-13 20:38 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-13 20:38 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 20:38 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-13 20:38 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 20:38 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 20:38 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-13 20:38 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-13 20:38 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-13 20:38 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 20:38 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-13 20:38 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-13 20:38 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-13 20:38 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-13 20:38 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-13 20:38 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 20:38 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-13 20:38 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-13 20:38 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-13 20:38 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-13 20:38 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-13 20:38 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-13 20:38 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-13 20:38 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-13 20:38 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-13 20:38 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 20:38 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-13 20:38 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-13 20:38 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-13 20:38 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-13 20:38 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-12 16:44 - 2015-10-12 17:36 - 00032702 _____ C:\Users\milan\Desktop\ini milan.odt
2015-10-11 13:08 - 2015-10-11 13:08 - 00000000 ____D C:\Users\milan\.wavesurfer

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-10 13:19 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-10 12:58 - 2014-12-26 13:24 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{44AA70E0-55FB-462E-B444-9D78C7803DFE}
2015-11-10 12:57 - 2015-07-30 22:29 - 00968010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-10 12:53 - 2014-12-19 09:15 - 01804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-11-10 12:53 - 2014-12-19 09:15 - 00764616 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-11-10 12:53 - 2014-12-19 09:15 - 00620744 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-11-10 12:53 - 2014-12-19 09:15 - 00269000 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-11-10 12:53 - 2014-12-19 09:15 - 00044216 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-11-10 12:51 - 2015-07-30 22:27 - 00000000 ____D C:\ProgramData\Validity
2015-11-10 12:51 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-10 12:51 - 2015-07-06 07:55 - 00000000 ____D C:\Users\milan\AppData\Local\TSVNCache
2015-11-10 12:51 - 2014-12-23 17:52 - 00000910 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-09 21:32 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-09 21:32 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-11-09 21:23 - 2014-12-23 17:52 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-09 20:10 - 2015-03-31 19:02 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-09 14:15 - 2014-12-23 16:50 - 00000000 ____D C:\Users\milan\AppData\Local\Packages
2015-11-09 00:53 - 2014-12-25 18:27 - 00000600 _____ C:\Users\milan\AppData\Local\PUTTY.RND
2015-11-08 23:00 - 2014-12-25 20:13 - 00000000 ____D C:\Users\milan\AppData\Roaming\vlc
2015-11-08 10:25 - 2014-12-23 17:22 - 00000000 ____D C:\Users\milan\AppData\Roaming\Skype
2015-11-08 10:12 - 2015-01-17 21:07 - 00000000 ____D C:\Users\milan\Documents\Visual Studio 2013
2015-11-08 09:50 - 2015-07-31 08:04 - 00000546 __RSH C:\ProgramData\ntuser.pol
2015-11-07 14:37 - 2015-01-09 19:04 - 00000000 ____D C:\Users\milan\Documents\NetBeansProjects
2015-11-07 11:28 - 2015-01-28 12:21 - 00000000 ____D C:\Program Files\trend micro
2015-11-07 10:45 - 2015-08-05 19:10 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-07 10:45 - 2014-12-24 12:18 - 00000000 ____D C:\Users\milan\AppData\Roaming\uTorrent
2015-11-06 21:43 - 2014-12-23 17:57 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-11-06 21:43 - 2014-12-23 17:57 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-11-05 10:15 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-04 22:10 - 2014-12-26 13:25 - 00000000 ____D C:\NST
2015-11-04 22:07 - 2014-12-23 17:58 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-11-04 21:24 - 2015-01-28 15:02 - 00002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-11-04 08:41 - 2015-03-04 14:15 - 00000000 ____D C:\Users\milan\Documents\StrongDC++
2015-11-03 23:51 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-03 21:23 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-02 23:38 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-01 09:27 - 2015-08-16 15:18 - 00000000 ____D C:\Users\milan\AppData\Roaming\Zoiper
2015-10-31 22:47 - 2015-01-06 19:42 - 00000600 _____ C:\Users\milan\AppData\Roaming\winscp.rnd
2015-10-27 23:20 - 2015-08-09 07:49 - 00031930 _____ C:\Users\milan\Documents\Objednavky.xlsx
2015-10-27 22:50 - 2015-02-26 07:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-10-27 22:50 - 2014-12-23 11:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-27 14:31 - 2015-07-30 22:31 - 00000000 ____D C:\Users\milan
2015-10-25 11:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-10-17 10:25 - 2014-12-23 17:22 - 00000000 ____D C:\ProgramData\Skype
2015-10-17 09:45 - 2014-12-23 17:46 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-16 15:10 - 2014-12-23 17:46 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-16 04:10 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-16 04:10 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-13 21:44 - 2014-12-23 19:13 - 00002240 ____H C:\Users\milan\Documents\Default.rdp
2015-10-13 20:40 - 2015-01-11 13:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-13 20:39 - 2015-09-06 22:28 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

==================== Files in the root of some directories =======

2015-01-06 19:42 - 2015-10-31 22:47 - 0000600 _____ () C:\Users\milan\AppData\Roaming\winscp.rnd
2014-12-25 18:27 - 2015-11-09 00:53 - 0000600 _____ () C:\Users\milan\AppData\Local\PUTTY.RND
2015-05-10 20:58 - 2015-05-10 20:58 - 0001214 _____ () C:\Users\milan\AppData\Local\recently-used.xbel
2015-01-20 21:46 - 2015-09-23 14:02 - 0007607 _____ () C:\Users\milan\AppData\Local\Resmon.ResmonCfg
2015-07-30 22:28 - 2015-07-30 22:28 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-03-15 16:39 - 2015-03-20 18:54 - 0001946 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\milan\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\milan\Desktop" je 15 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

==================== End Of Log ==============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-11-2015
Ran by milan (2015-11-10 13:20:53)
Running from C:\Users\milan\Desktop
Windows 10 Pro (X64) (2015-07-31 02:17:41)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2089458334-2673280626-1588876847-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2089458334-2673280626-1588876847-503 - Limited - Disabled)
Guest (S-1-5-21-2089458334-2673280626-1588876847-501 - Limited - Disabled)
milan (S-1-5-21-2089458334-2673280626-1588876847-1001 - Administrator - Enabled) => C:\Users\milan

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
1600 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
1600_Help (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
1600Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 9.38 beta (HKLM-x32\...\7-Zip) (Version: - )
Acrylic Wi-Fi Free v2.2 (HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\{3706FB7A-11FB-44C4-AD94-2B29878D75DC}_is1) (Version: 2.2 - Tarlogic Security S.L.)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Age of Empires III - The WarChiefs (HKLM-x32\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Název společnosti:)
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Název společnosti:) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
AIO_CDB_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
AMCap (HKLM-x32\...\AMCap) (Version: 9.11.109.4 - Noël Danjou)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Application Insights Tools for Visual Studio 2013 (x32 Version: 2.4 - Microsoft Corporation) Hidden
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.0 - Arduino LLC)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Band-in-a-Box 2012 (Build 349) (HKLM-x32\...\BB_is1) (Version: - PG Music Inc.)
Band-in-a-Box Server (HKLM-x32\...\BBServer_is1) (Version: - PG Music Inc.)
Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Build Tools - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CoyoteWT 1.1 (HKLM-x32\...\CoyoteWT_is1) (Version: - Coyote Electronics Inc.)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 6.3.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.3.0 - Crystal Dew World)
CrystalDiskMark 3.0.3b (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.3b - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Derive 6 zkušební verze (HKLM-x32\...\Derive 6 zkušební verze) (Version: 6.1 - Texas Instruments Incorporated)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Dia (iba odstrániť) (HKLM-x32\...\Dia) (Version: - )
EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies)
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.16 - Lenovo)
Energy Manager (x32 Version: 1.5.0.16 - Lenovo) Hidden
Entity Framework 6.1.1 Tools for Visual Studio 2013 (HKLM-x32\...\{85253F13-EE42-4850-A3A5-79B90E92D7AC}) (Version: 12.0.30610.0 - Microsoft Corporation)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Euro Truck Simulator 2 - v1.10.1.18s + 13xDLC (HKLM-x32\...\Euro Truck Simulator 2_is1) (Version: - )
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
FileZilla Client 3.10.3 (HKLM-x32\...\FileZilla Client) (Version: 3.10.3 - Tim Kosse)
FMS (HKLM-x32\...\FMS) (Version: - )
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FreeFileSync 7.4 (HKLM-x32\...\FreeFileSync_is1) (Version: 7.4 - www.FreeFileSync.org)
Gmail Backup (HKLM-x32\...\gmailbackup) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.49 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
Instalacia (HKLM-x32\...\{A6887253-0B26-4FF8-A645-B044495BB355}) (Version: 1.0.0 - Default Company Name)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.3.0.400 - Intel Corporation)
Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
Java SE Development Kit 8 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180250}) (Version: 8.0.250.18 - Oracle Corporation)
Just Cause 2 1.20 (HKLM-x32\...\Just Cause 2 1.20) (Version: - )
Kit SDK de vérification de Visual Studio 2012 - fra (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LibreOffice 4.3.4.1 (HKLM-x32\...\{7D983A32-F645-48AB-8E38-4ACD234F40BC}) (Version: 4.3.4.1 - The Document Foundation)
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Logitech Gaming Software 64 (HKLM-x32\...\InstallShield_{58BF5D14-CBCF-473C-B0E0-A7955A23224E}) (Version: - )
Malwarebytes Anti-Malware verzia 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Memory Profiler (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM-x32\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{8C06D6DB-A391-4686-B050-99CC522A7843}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{4AEB505C-95E1-4964-9B64-8D27F3186D30}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2013 with Update 4 (HKLM-x32\...\{dca572ee-b6f6-4560-9879-fec58cc0022c}) (Version: 12.0.31101 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{69A998C5-00A9-42CA-AB4E-C31CFFCD9251}) (Version: 3.1237.1763 - Microsoft Corporation)
MiKTeX 2.9 (HKLM-x32\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
MiniTool Partition Wizard Home Edition 8.1.1 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 40.0.3 (x86 sk) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 sk)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 sk) (HKLM-x32\...\Mozilla Thunderbird 38.3.0 (x86 sk)) (Version: 38.3.0 - Mozilla)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.0.2770 - Native Instruments)
Native Instruments Guitar Rig Mobile IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Mobile IO Driver) (Version: - Native Instruments)
Native Instruments Guitar Rig Session IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Session IO Driver) (Version: - Native Instruments)
Native Instruments Rig Kontrol 3 Driver (HKLM-x32\...\Native Instruments Rig Kontrol 3 Driver) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.4.4.1428 - Native Instruments)
Need for Speed™ Undercover (HKLM-x32\...\{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}) (Version: 1.0.1.0 - Electronic Arts)
NetBeans IDE 8.0.2 (HKLM\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
NHL™ 09 (HKLM-x32\...\{827B97A9-B347-4110-9F89-37AF2B758F94}) (Version: 2.0.1.0 - Electronic Arts)
Nmap 6.49BETA3 (HKLM-x32\...\Nmap) (Version: - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Graphics Driver 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Oracle VM VirtualBox 5.0.4 (HKLM\...\{FC191F32-1A67-4231-91D0-0059A57C99A8}) (Version: 5.0.4 - Oracle Corporation)
PDFlite 2.0.0.0 (HKLM-x32\...\PDFlite) (Version: 2.0.0.0 - Amnis Technology Ltd)
PowreShellIntegration.Notifications (x32 Version: 2.5.21003.1603 - Microsoft Corporation) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Python 3.4.3 (HKLM-x32\...\{CCD588A7-8D55-49F1-A30C-47FAB40889ED}) (Version: 3.4.16490 - Python Software Foundation)
Python Tools 2.1 for Visual Studio 2013 (HKLM-x32\...\{7AD18985-A5E6-443D-B0AB-A9ECFBB389A0}) (Version: 2.1.21008.00 - Microsoft Corporation)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Race Driver GRID verze 1.3 (HKLM-x32\...\{784D940E-A14C-45C1-8554-1BAD248679A3}_is1) (Version: 1.3 - tomi2k9)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.29071 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7254 - Realtek Semiconductor Corp.)
Release Management for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.24.0 - SAMSUNG Electronics Co., Ltd.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
ScanMaster-ELM 2.1.104.771 (HKLM\...\ScanMaster-ELM_is1) (Version: 2.1.104.771 - WGSoft.de)
SDK de comprobación de Visual Studio 2012 - esn (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 16.0.2617.1200 - Microsoft Corporation) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
SmartSound Common Data (HKLM-x32\...\InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden
Spotify (HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\Spotify) (Version: 1.0.6.80.g2a801a53 - Spotify AB)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StrongDC++ 2.41 (HKLM-x32\...\StrongDC++) (Version: 2.41 - Big Muscle)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.7 - Synaptics Incorporated)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TortoiseSVN 1.8.11.26392 (64 bit) (HKLM\...\{11309CA9-9118-44D6-B345-83C86A5111D5}) (Version: 1.8.26392 - TortoiseSVN)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
TypeScript Power Tool (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
USB2.0 ATV (HKLM-x32\...\{3C873221-12B9-475D-8DCB-62D0B2179AF9}) (Version: 6.10.000.001 - Regulus)
Validity WBF DDK 5011 (HKLM\...\{4D70781C-36A9-4335-9568-565C6F61B5EB}) (Version: 4.5.247.0 - )
Validity WBF DDK 5011 (HKLM\...\{B38B22CB-F5BA-4803-BE59-EDD70D71CB2F}) (Version: 4.5.247.0 - Validity Sensors, Inc.)
Vegas Pro 13.0 (64-bit) (HKLM\...\{3814DB30-091D-11E4-BDE0-F04DA23A5C58}) (Version: 13.0.373 - Sony)
viphone communicator (HKLM-x32\...\viphone communicator_is1) (Version: - Unient communications a.s.)
Visual Micro for Arduino (HKLM-x32\...\{0B76FB86-6DA7-4475-AE64-CCF30D7BB689}) (Version: 15.02.1403 - Visual Micro Limited)
Visual Studio 2013 Update 4 (KB2829760) (HKLM-x32\...\{53d408db-eb91-43fb-9d8f-167681c19763}) (Version: 12.0.31101 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VS Update core components (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
WinDirStat 1.1.2 (HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\WinDirStat) (Version: - )
Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinEdt 9 (HKLM\...\WinEdt 9) (Version: 9.0 - WinEdt Team)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
WinRAR 5.11 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
WinSCP 5.7.4 (HKLM-x32\...\winscp3_is1) (Version: 5.7.4 - Martin Prikryl)
Workflow Manager Client 1.0 (Version: 2.0.40131.0 - Microsoft Corporation) Hidden
Workflow Manager Tools 1.0 for Visual Studio (Version: 2.0.40326.0 - Microsoft Corporation) Hidden
X2Go Client for Windows (HKLM-x32\...\x2goclient) (Version: 4.0.3.0-20141021 - X2Go Project)
Xlight FTP Server 3.8.3.6 (HKLM\...\Xlight FTP Server_is1) (Version: - )
Zoiper (HKLM-x32\...\Zoiper) (Version: 3.9 - Securax LTD)
Пакет Visual Studio 2012 Verification SDK - rus (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2015-08-31 07:43 - 00001027 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 activate.adobe.com

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EDF0C2-C134-491E-9197-31F7F8CE426A} - System32\Tasks\Intel_C_CVPO044400BW120QGN => C:\Program Files (x86)\Intel\Intel(R) SSD Toolbox\Intel SSD Toolbox.exe [2015-05-05] (Intel)
Task: {2A1A7A78-94B9-4CCD-812C-31F275A31B2C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {463F7243-DA51-4906-A3DF-7F68BE77D69C} - System32\Tasks\{9A81871D-626E-4318-899D-8A2347823101} => pcalua.exe -a F:\autorun.exe -d F:\
Task: {555B8CC4-1621-4247-95CC-89CB6BAD3AE8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {6775F8BF-F299-4944-A79D-8616F78C815E} - \Microsoft\Windows\Setup\gwx\runappraiser -> No File <==== ATTENTION
Task: {6782DCF9-65C4-4CF5-BD08-401CB75E4E63} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-16] (Microsoft Corporation)
Task: {8D22F3B1-5BF8-492F-8EB2-B8AAB27CEC97} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-11-10] (Synaptics Incorporated)
Task: {A441E17F-7ADB-4F57-856D-312940775686} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17] (Adobe Systems Incorporated)
Task: {ABA69471-3559-47BF-A1F4-24DE82E48189} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {B1EDBD3A-6ABC-4EF5-8888-EB2D8FFF3145} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C3CC18E3-42FF-4463-A537-EBB5E743C89A} - System32\Tasks\{929C1364-770E-44C1-A496-4B4189C18251} => pcalua.exe -a D:\Download\SAMSUNG_USB_Driver_for_Mobile_Phones.exe -d D:\Download
Task: {C9388E8D-732B-40FD-9395-34E33639E990} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {CB60885F-0676-49FD-9F80-0119ACCB47FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {D020AE2A-2AA9-4493-8F95-A98CEE350D63} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {D304F5E0-8567-4927-AC94-EE8C440F0CD8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-13] (Lenovo)
Task: {D546E8F9-3B92-4FA8-82BF-C0C8B2D696D1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-09] (AVAST Software)
Task: {D5F421E6-5888-495F-AA0E-8C6FEB3C19D3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D909297A-9A5F-46D0-9A45-96CFC6E996CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (Whitelisted) ==============

#8 Příspěvek od **altrok** » 10 lis 2015 14:58

Mate vypnutou funkci bodu obnoveni - velice doporucuji tuto funkci zapnout.

Aktualizujte javu na java.com/verify - aktualni je 8U65.

Start -> Vsechny programy -> Prislusenstvi -> pravej klik na Prikazovy radek a Spustit jako spravce

vepiste chkdsk /r
enter a restartujte PC
tato kontrola a opravovani probihaji pred nactenim OS a trvaji az nekolik hodin

M95M · #9 Příspěvek od **M95M** » 10 lis 2015 15:31

Nechápem, pre čo boli body obnovy vypnuté.
Chkdsk zbehol celkom rýchlo, ale logy som k nemu nikde nenašiel.
Stále sa mi zdá spomalený. Notebook je Lenovo B50-30(Intel N3530, 8GB RAM, Nvidia Geforce 820m, SSD 120gb)
Spúšťanie Windowsu trvá zhruba minútu, aplikáciám aj 15s. Nemôže za to update na Windows 10? Pred tým boli reakcie takmer okamžité.

V EventVieweri je veľa chýb, hlavne ESENT
SettingSyncHost (5792) An attempt to create the file "C:\WINDOWS\system32\edbtmp.log" failed with system error 5 (0x00000005): "Access is denied. ". The create file operation will fail with error -1032 (0xfffffbf8).
SettingSyncHost (5792) Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -1032.

a DistributedCom
The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

#10 Příspěvek od **altrok** » 10 lis 2015 17:26

Zkontrolujme jeste integritu systemovych souboru. Start -> vepiste cmd

na vysledek vyhledavani kliknete pravy a zvolte Spustit jako spravce
do spusteneho okna vepiste: sfc /scannow
a odentrujte
po jeho skonceni jeste do otevreneho prikazoveho radku vepiste (pripadne text zkopirujte do schranky pomoci Ctrl+C a vlozte pres pravy klik a vlozit)
findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
a odentrujte
obsah logu sfcdetails.txt umisteneho na plose zkopirujte do pristi odpovedi

M95M · #11 Příspěvek od **M95M** » 10 lis 2015 22:06

2015-11-10 20:51:53, Info CSI 0000000a [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:51:53, Info CSI 0000000b [SR] Beginning Verify and Repair transaction
2015-11-10 20:51:56, Info CSI 00000070 [SR] Verify complete
2015-11-10 20:51:56, Info CSI 00000071 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:51:56, Info CSI 00000072 [SR] Beginning Verify and Repair transaction
2015-11-10 20:51:59, Info CSI 000000d7 [SR] Verify complete
2015-11-10 20:52:00, Info CSI 000000d8 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:00, Info CSI 000000d9 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:03, Info CSI 0000013e [SR] Verify complete
2015-11-10 20:52:03, Info CSI 0000013f [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:03, Info CSI 00000140 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:06, Info CSI 000001a5 [SR] Verify complete
2015-11-10 20:52:06, Info CSI 000001a6 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:06, Info CSI 000001a7 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:09, Info CSI 0000020c [SR] Verify complete
2015-11-10 20:52:09, Info CSI 0000020d [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:09, Info CSI 0000020e [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:12, Info CSI 00000273 [SR] Verify complete
2015-11-10 20:52:13, Info CSI 00000274 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:13, Info CSI 00000275 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:16, Info CSI 000002da [SR] Verify complete
2015-11-10 20:52:16, Info CSI 000002db [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:16, Info CSI 000002dc [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:21, Info CSI 00000342 [SR] Verify complete
2015-11-10 20:52:22, Info CSI 00000343 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:22, Info CSI 00000344 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:27, Info CSI 000003a9 [SR] Verify complete
2015-11-10 20:52:27, Info CSI 000003aa [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:27, Info CSI 000003ab [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:31, Info CSI 00000410 [SR] Verify complete
2015-11-10 20:52:32, Info CSI 00000411 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:32, Info CSI 00000412 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:38, Info CSI 00000479 [SR] Verify complete
2015-11-10 20:52:38, Info CSI 0000047a [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:38, Info CSI 0000047b [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:43, Info CSI 000004e0 [SR] Verify complete
2015-11-10 20:52:43, Info CSI 000004e1 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:43, Info CSI 000004e2 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:46, Info CSI 00000549 [SR] Verify complete
2015-11-10 20:52:47, Info CSI 0000054a [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:47, Info CSI 0000054b [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:51, Info CSI 000005b0 [SR] Verify complete
2015-11-10 20:52:52, Info CSI 000005b1 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:52, Info CSI 000005b2 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:55, Info CSI 00000617 [SR] Verify complete
2015-11-10 20:52:56, Info CSI 00000618 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:56, Info CSI 00000619 [SR] Beginning Verify and Repair transaction
2015-11-10 20:52:59, Info CSI 0000067e [SR] Verify complete
2015-11-10 20:52:59, Info CSI 0000067f [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:52:59, Info CSI 00000680 [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:03, Info CSI 000006e5 [SR] Verify complete
2015-11-10 20:53:03, Info CSI 000006e6 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:03, Info CSI 000006e7 [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:07, Info CSI 0000074c [SR] Verify complete
2015-11-10 20:53:07, Info CSI 0000074d [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:07, Info CSI 0000074e [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:11, Info CSI 000007b3 [SR] Verify complete
2015-11-10 20:53:12, Info CSI 000007b4 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:12, Info CSI 000007b5 [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:16, Info CSI 0000081a [SR] Verify complete
2015-11-10 20:53:17, Info CSI 0000081b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:17, Info CSI 0000081c [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:21, Info CSI 00000881 [SR] Verify complete
2015-11-10 20:53:21, Info CSI 00000882 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:21, Info CSI 00000883 [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:25, Info CSI 000008e8 [SR] Verify complete
2015-11-10 20:53:25, Info CSI 000008e9 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:25, Info CSI 000008ea [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:29, Info CSI 0000094f [SR] Verify complete
2015-11-10 20:53:29, Info CSI 00000950 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:29, Info CSI 00000951 [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:34, Info CSI 000009bc [SR] Verify complete
2015-11-10 20:53:34, Info CSI 000009bd [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:34, Info CSI 000009be [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:38, Info CSI 00000a23 [SR] Verify complete
2015-11-10 20:53:38, Info CSI 00000a24 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:38, Info CSI 00000a25 [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:42, Info CSI 00000a8a [SR] Verify complete
2015-11-10 20:53:42, Info CSI 00000a8b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:42, Info CSI 00000a8c [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:46, Info CSI 00000af8 [SR] Verify complete
2015-11-10 20:53:46, Info CSI 00000af9 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:46, Info CSI 00000afa [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:50, Info CSI 00000b62 [SR] Verify complete
2015-11-10 20:53:50, Info CSI 00000b63 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:50, Info CSI 00000b64 [SR] Beginning Verify and Repair transaction
2015-11-10 20:53:54, Info CSI 00000bcc [SR] Verify complete
2015-11-10 20:53:54, Info CSI 00000bcd [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:53:54, Info CSI 00000bce [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:02, Info CSI 00000c4e [SR] Verify complete
2015-11-10 20:54:02, Info CSI 00000c4f [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:02, Info CSI 00000c50 [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:11, Info CSI 00000cbf [SR] Verify complete
2015-11-10 20:54:11, Info CSI 00000cc0 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:11, Info CSI 00000cc1 [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:17, Info CSI 00000d2f [SR] Verify complete
2015-11-10 20:54:17, Info CSI 00000d30 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:17, Info CSI 00000d31 [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:22, Info CSI 00000d99 [SR] Verify complete
2015-11-10 20:54:22, Info CSI 00000d9a [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:22, Info CSI 00000d9b [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:27, Info CSI 00000e0b [SR] Verify complete
2015-11-10 20:54:27, Info CSI 00000e0c [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:27, Info CSI 00000e0d [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:35, Info CSI 00000e77 [SR] Verify complete
2015-11-10 20:54:35, Info CSI 00000e78 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:35, Info CSI 00000e79 [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:42, Info CSI 00000ee1 [SR] Verify complete
2015-11-10 20:54:43, Info CSI 00000ee2 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:43, Info CSI 00000ee3 [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:48, Info CSI 00000f49 [SR] Verify complete
2015-11-10 20:54:49, Info CSI 00000f4a [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:49, Info CSI 00000f4b [SR] Beginning Verify and Repair transaction
2015-11-10 20:54:56, Info CSI 00000fb1 [SR] Verify complete
2015-11-10 20:54:56, Info CSI 00000fb2 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:54:56, Info CSI 00000fb3 [SR] Beginning Verify and Repair transaction
2015-11-10 20:55:05, Info CSI 0000101a [SR] Verify complete
2015-11-10 20:55:06, Info CSI 0000101b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:55:06, Info CSI 0000101c [SR] Beginning Verify and Repair transaction
2015-11-10 20:55:18, Info CSI 000010d8 [SR] Verify complete
2015-11-10 20:55:18, Info CSI 000010d9 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:55:18, Info CSI 000010da [SR] Beginning Verify and Repair transaction
2015-11-10 20:55:33, Info CSI 000011b9 [SR] Verify complete
2015-11-10 20:55:33, Info CSI 000011ba [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:55:33, Info CSI 000011bb [SR] Beginning Verify and Repair transaction
2015-11-10 20:55:40, Info CSI 0000122e [SR] Verify complete
2015-11-10 20:55:41, Info CSI 0000122f [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:55:41, Info CSI 00001230 [SR] Beginning Verify and Repair transaction
2015-11-10 20:55:50, Info CSI 000012a6 [SR] Verify complete
2015-11-10 20:55:51, Info CSI 000012a7 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:55:51, Info CSI 000012a8 [SR] Beginning Verify and Repair transaction
2015-11-10 20:55:58, Info CSI 00001325 [SR] Verify complete
2015-11-10 20:55:59, Info CSI 00001326 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:55:59, Info CSI 00001327 [SR] Beginning Verify and Repair transaction
2015-11-10 20:56:06, Info CSI 000013ab [SR] Verify complete
2015-11-10 20:56:07, Info CSI 000013ac [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:56:07, Info CSI 000013ad [SR] Beginning Verify and Repair transaction
2015-11-10 20:56:14, Info CSI 00001420 [SR] Verify complete
2015-11-10 20:56:14, Info CSI 00001421 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:56:14, Info CSI 00001422 [SR] Beginning Verify and Repair transaction
2015-11-10 20:56:21, Info CSI 0000148d [SR] Verify complete
2015-11-10 20:56:21, Info CSI 0000148e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:56:21, Info CSI 0000148f [SR] Beginning Verify and Repair transaction
2015-11-10 20:56:29, Info CSI 000014f5 [SR] Verify complete
2015-11-10 20:56:29, Info CSI 000014f6 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:56:29, Info CSI 000014f7 [SR] Beginning Verify and Repair transaction
2015-11-10 20:56:35, Info CSI 0000156c [SR] Verify complete
2015-11-10 20:56:35, Info CSI 0000156d [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:56:35, Info CSI 0000156e [SR] Beginning Verify and Repair transaction
2015-11-10 20:56:42, Info CSI 000015ec [SR] Verify complete
2015-11-10 20:56:42, Info CSI 000015ed [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:56:42, Info CSI 000015ee [SR] Beginning Verify and Repair transaction
2015-11-10 20:56:53, Info CSI 00001689 [SR] Verify complete
2015-11-10 20:56:53, Info CSI 0000168a [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:56:53, Info CSI 0000168b [SR] Beginning Verify and Repair transaction
2015-11-10 20:57:06, Info CSI 00001731 [SR] Verify complete
2015-11-10 20:57:06, Info CSI 00001732 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:57:06, Info CSI 00001733 [SR] Beginning Verify and Repair transaction
2015-11-10 20:57:22, Info CSI 000017f0 [SR] Verify complete
2015-11-10 20:57:23, Info CSI 000017f1 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:57:23, Info CSI 000017f2 [SR] Beginning Verify and Repair transaction
2015-11-10 20:57:29, Info CSI 00001863 [SR] Verify complete
2015-11-10 20:57:30, Info CSI 00001864 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:57:30, Info CSI 00001865 [SR] Beginning Verify and Repair transaction
2015-11-10 20:57:34, Info CSI 000018d2 [SR] Verify complete
2015-11-10 20:57:35, Info CSI 000018d3 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:57:35, Info CSI 000018d4 [SR] Beginning Verify and Repair transaction
2015-11-10 20:57:50, Info CSI 00001991 [SR] Verify complete
2015-11-10 20:57:51, Info CSI 00001992 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:57:51, Info CSI 00001993 [SR] Beginning Verify and Repair transaction
2015-11-10 20:57:58, Info CSI 00001a09 [SR] Verify complete
2015-11-10 20:57:58, Info CSI 00001a0a [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:57:58, Info CSI 00001a0b [SR] Beginning Verify and Repair transaction
2015-11-10 20:58:03, Info CSI 00001a70 [SR] Verify complete
2015-11-10 20:58:04, Info CSI 00001a71 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:58:04, Info CSI 00001a72 [SR] Beginning Verify and Repair transaction
2015-11-10 20:58:10, Info CSI 00001ae0 [SR] Verify complete
2015-11-10 20:58:11, Info CSI 00001ae1 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:58:11, Info CSI 00001ae2 [SR] Beginning Verify and Repair transaction
2015-11-10 20:58:17, Info CSI 00001b4d [SR] Verify complete
2015-11-10 20:58:17, Info CSI 00001b4e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:58:17, Info CSI 00001b4f [SR] Beginning Verify and Repair transaction
2015-11-10 20:58:26, Info CSI 00001c35 [SR] Verify complete
2015-11-10 20:58:26, Info CSI 00001c36 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:58:26, Info CSI 00001c37 [SR] Beginning Verify and Repair transaction
2015-11-10 20:58:39, Info CSI 00001cae [SR] Verify complete
2015-11-10 20:58:39, Info CSI 00001caf [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:58:39, Info CSI 00001cb0 [SR] Beginning Verify and Repair transaction
2015-11-10 20:58:49, Info CSI 00001d2d [SR] Verify complete
2015-11-10 20:58:50, Info CSI 00001d2e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:58:50, Info CSI 00001d2f [SR] Beginning Verify and Repair transaction
2015-11-10 20:58:56, Info CSI 00001da0 [SR] Verify complete
2015-11-10 20:58:57, Info CSI 00001da1 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:58:57, Info CSI 00001da2 [SR] Beginning Verify and Repair transaction
2015-11-10 20:59:09, Info CSI 00001e55 [SR] Verify complete
2015-11-10 20:59:09, Info CSI 00001e56 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:59:09, Info CSI 00001e57 [SR] Beginning Verify and Repair transaction
2015-11-10 20:59:19, Info CSI 00001ed5 [SR] Verify complete
2015-11-10 20:59:19, Info CSI 00001ed6 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:59:19, Info CSI 00001ed7 [SR] Beginning Verify and Repair transaction
2015-11-10 20:59:26, Info CSI 00001f56 [SR] Verify complete
2015-11-10 20:59:26, Info CSI 00001f57 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:59:26, Info CSI 00001f58 [SR] Beginning Verify and Repair transaction
2015-11-10 20:59:32, Info CSI 00001fc4 [SR] Verify complete
2015-11-10 20:59:33, Info CSI 00001fc5 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:59:33, Info CSI 00001fc6 [SR] Beginning Verify and Repair transaction
2015-11-10 20:59:42, Info CSI 00002035 [SR] Verify complete
2015-11-10 20:59:42, Info CSI 00002036 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 20:59:42, Info CSI 00002037 [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:01, Info CSI 0000211b [SR] Verify complete
2015-11-10 21:00:02, Info CSI 0000211c [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:02, Info CSI 0000211d [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:07, Info CSI 00002187 [SR] Verify complete
2015-11-10 21:00:08, Info CSI 00002188 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:08, Info CSI 00002189 [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:13, Info CSI 000021f5 [SR] Verify complete
2015-11-10 21:00:14, Info CSI 000021f6 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:14, Info CSI 000021f7 [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:19, Info CSI 0000226a [SR] Verify complete
2015-11-10 21:00:20, Info CSI 0000226b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:20, Info CSI 0000226c [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:27, Info CSI 0000230e [SR] Verify complete
2015-11-10 21:00:28, Info CSI 0000230f [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:28, Info CSI 00002310 [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:32, Info CSI 00002375 [SR] Verify complete
2015-11-10 21:00:33, Info CSI 00002376 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:33, Info CSI 00002377 [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:38, Info CSI 000023f2 [SR] Verify complete
2015-11-10 21:00:39, Info CSI 000023f3 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:39, Info CSI 000023f4 [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:44, Info CSI 00002473 [SR] Verify complete
2015-11-10 21:00:44, Info CSI 00002474 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:44, Info CSI 00002475 [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:49, Info CSI 000024df [SR] Verify complete
2015-11-10 21:00:50, Info CSI 000024e0 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:50, Info CSI 000024e1 [SR] Beginning Verify and Repair transaction
2015-11-10 21:00:55, Info CSI 00002557 [SR] Verify complete
2015-11-10 21:00:55, Info CSI 00002558 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:00:55, Info CSI 00002559 [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:03, Info CSI 000025ec [SR] Verify complete
2015-11-10 21:01:03, Info CSI 000025ed [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:03, Info CSI 000025ee [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:09, Info CSI 00002668 [SR] Verify complete
2015-11-10 21:01:09, Info CSI 00002669 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:09, Info CSI 0000266a [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:14, Info CSI 000026cf [SR] Verify complete
2015-11-10 21:01:14, Info CSI 000026d0 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:14, Info CSI 000026d1 [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:19, Info CSI 00002741 [SR] Verify complete
2015-11-10 21:01:19, Info CSI 00002742 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:19, Info CSI 00002743 [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:26, Info CSI 000027c0 [SR] Verify complete
2015-11-10 21:01:26, Info CSI 000027c1 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:26, Info CSI 000027c2 [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:30, Info CSI 0000282f [SR] Verify complete
2015-11-10 21:01:31, Info CSI 00002830 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:31, Info CSI 00002831 [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:37, Info CSI 000028a5 [SR] Verify complete
2015-11-10 21:01:37, Info CSI 000028a6 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:37, Info CSI 000028a7 [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:45, Info CSI 00002920 [SR] Verify complete
2015-11-10 21:01:45, Info CSI 00002921 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:45, Info CSI 00002922 [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:52, Info CSI 000029a1 [SR] Verify complete
2015-11-10 21:01:52, Info CSI 000029a2 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:52, Info CSI 000029a3 [SR] Beginning Verify and Repair transaction
2015-11-10 21:01:58, Info CSI 00002a10 [SR] Verify complete
2015-11-10 21:01:58, Info CSI 00002a11 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:01:58, Info CSI 00002a12 [SR] Beginning Verify and Repair transaction
2015-11-10 21:02:05, Info CSI 00002a8d [SR] Verify complete
2015-11-10 21:02:05, Info CSI 00002a8e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:02:05, Info CSI 00002a8f [SR] Beginning Verify and Repair transaction
2015-11-10 21:02:14, Info CSI 00002b2d [SR] Verify complete
2015-11-10 21:02:14, Info CSI 00002b2e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:02:14, Info CSI 00002b2f [SR] Beginning Verify and Repair transaction
2015-11-10 21:02:25, Info CSI 00002baf [SR] Verify complete
2015-11-10 21:02:25, Info CSI 00002bb0 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:02:25, Info CSI 00002bb1 [SR] Beginning Verify and Repair transaction
2015-11-10 21:02:32, Info CSI 00002c1b [SR] Verify complete
2015-11-10 21:02:32, Info CSI 00002c1c [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:02:32, Info CSI 00002c1d [SR] Beginning Verify and Repair transaction
2015-11-10 21:02:39, Info CSI 00002c90 [SR] Verify complete
2015-11-10 21:02:40, Info CSI 00002c91 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:02:40, Info CSI 00002c92 [SR] Beginning Verify and Repair transaction
2015-11-10 21:02:48, Info CSI 00002d00 [SR] Verify complete
2015-11-10 21:02:48, Info CSI 00002d01 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:02:48, Info CSI 00002d02 [SR] Beginning Verify and Repair transaction
2015-11-10 21:02:55, Info CSI 00002d72 [SR] Verify complete
2015-11-10 21:02:55, Info CSI 00002d73 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:02:55, Info CSI 00002d74 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:01, Info CSI 00002ddf [SR] Verify complete
2015-11-10 21:03:02, Info CSI 00002de0 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:02, Info CSI 00002de1 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:08, Info CSI 00002e55 [SR] Verify complete
2015-11-10 21:03:08, Info CSI 00002e56 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:08, Info CSI 00002e57 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:15, Info CSI 00002ed0 [SR] Verify complete
2015-11-10 21:03:15, Info CSI 00002ed1 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:15, Info CSI 00002ed2 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:21, Info CSI 00002f47 [SR] Verify complete
2015-11-10 21:03:21, Info CSI 00002f48 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:21, Info CSI 00002f49 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:26, Info CSI 00002fb4 [SR] Verify complete
2015-11-10 21:03:26, Info CSI 00002fb5 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:26, Info CSI 00002fb6 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:32, Info CSI 00003030 [SR] Verify complete
2015-11-10 21:03:33, Info CSI 00003031 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:33, Info CSI 00003032 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:40, Info CSI 00003098 [SR] Verify complete
2015-11-10 21:03:40, Info CSI 00003099 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:40, Info CSI 0000309a [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:48, Info CSI 00003104 [SR] Verify complete
2015-11-10 21:03:49, Info CSI 00003105 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:49, Info CSI 00003106 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:57, Info CSI 00003172 [SR] Verify complete
2015-11-10 21:03:58, Info CSI 00003173 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:03:58, Info CSI 00003174 [SR] Beginning Verify and Repair transaction
2015-11-10 21:03:59, Info CSI 00003176 [SR] Cannot repair member file [l:18{9}]"Close.png" of Microsoft-WindowsFeedback.AppxMain, Version = 10.0.10240.16384, pA = amd64, nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2015-11-10 21:04:02, Info CSI 00003196 [SR] Cannot repair member file [l:18{9}]"Close.png" of Microsoft-WindowsFeedback.AppxMain, Version = 10.0.10240.16384, pA = amd64, nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2015-11-10 21:04:02, Info CSI 00003197 [SR] This component was referenced by [l:200{100}]"Microsoft-WindowsFeedback-Package~31bf3856ad364e35~amd64~~10.0.10240.16384.Microsoft-WindowsFeedback"
2015-11-10 21:04:02, Info CSI 0000319a [SR] Could not reproject corrupted file [ml:126{63},l:124{62}]"\??\C:\WINDOWS\SystemApps\WindowsFeedback_cw5n1h2txyewy\Assets"\[l:18{9}]"Close.png"; source file in store is also corrupted
2015-11-10 21:04:07, Info CSI 00003202 [SR] Verify complete
2015-11-10 21:04:08, Info CSI 00003203 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:08, Info CSI 00003204 [SR] Beginning Verify and Repair transaction
2015-11-10 21:04:18, Info CSI 000032ed [SR] Verify complete
2015-11-10 21:04:18, Info CSI 000032ee [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:18, Info CSI 000032ef [SR] Beginning Verify and Repair transaction
2015-11-10 21:04:25, Info CSI 0000337a [SR] Verify complete
2015-11-10 21:04:25, Info CSI 0000337b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:25, Info CSI 0000337c [SR] Beginning Verify and Repair transaction
2015-11-10 21:04:31, Info CSI 000033e3 [SR] Verify complete
2015-11-10 21:04:31, Info CSI 000033e4 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:31, Info CSI 000033e5 [SR] Beginning Verify and Repair transaction
2015-11-10 21:04:36, Info CSI 0000344b [SR] Verify complete
2015-11-10 21:04:36, Info CSI 0000344c [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:36, Info CSI 0000344d [SR] Beginning Verify and Repair transaction
2015-11-10 21:04:41, Info CSI 000034b3 [SR] Verify complete
2015-11-10 21:04:42, Info CSI 000034b4 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:42, Info CSI 000034b5 [SR] Beginning Verify and Repair transaction
2015-11-10 21:04:48, Info CSI 0000351d [SR] Verify complete
2015-11-10 21:04:49, Info CSI 0000351e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:49, Info CSI 0000351f [SR] Beginning Verify and Repair transaction
2015-11-10 21:04:53, Info CSI 00003584 [SR] Verify complete
2015-11-10 21:04:53, Info CSI 00003585 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:53, Info CSI 00003586 [SR] Beginning Verify and Repair transaction
2015-11-10 21:04:59, Info CSI 000035ed [SR] Verify complete
2015-11-10 21:04:59, Info CSI 000035ee [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:04:59, Info CSI 000035ef [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:04, Info CSI 00003655 [SR] Verify complete
2015-11-10 21:05:04, Info CSI 00003656 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:04, Info CSI 00003657 [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:09, Info CSI 000036bd [SR] Verify complete
2015-11-10 21:05:09, Info CSI 000036be [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:09, Info CSI 000036bf [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:13, Info CSI 00003725 [SR] Verify complete
2015-11-10 21:05:14, Info CSI 00003726 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:14, Info CSI 00003727 [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:19, Info CSI 0000378d [SR] Verify complete
2015-11-10 21:05:20, Info CSI 0000378e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:20, Info CSI 0000378f [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:29, Info CSI 0000381b [SR] Verify complete
2015-11-10 21:05:29, Info CSI 0000381c [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:29, Info CSI 0000381d [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:33, Info CSI 00003882 [SR] Verify complete
2015-11-10 21:05:33, Info CSI 00003883 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:33, Info CSI 00003884 [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:38, Info CSI 000038e9 [SR] Verify complete
2015-11-10 21:05:38, Info CSI 000038ea [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:38, Info CSI 000038eb [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:45, Info CSI 00003958 [SR] Verify complete
2015-11-10 21:05:45, Info CSI 00003959 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:45, Info CSI 0000395a [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:50, Info CSI 000039bf [SR] Verify complete
2015-11-10 21:05:51, Info CSI 000039c0 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:51, Info CSI 000039c1 [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:55, Info CSI 00003a26 [SR] Verify complete
2015-11-10 21:05:55, Info CSI 00003a27 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:05:55, Info CSI 00003a28 [SR] Beginning Verify and Repair transaction
2015-11-10 21:05:59, Info CSI 00003a90 [SR] Verify complete
2015-11-10 21:06:00, Info CSI 00003a91 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:00, Info CSI 00003a92 [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:04, Info CSI 00003af9 [SR] Verify complete
2015-11-10 21:06:04, Info CSI 00003afa [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:04, Info CSI 00003afb [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:15, Info CSI 00003b66 [SR] Verify complete
2015-11-10 21:06:15, Info CSI 00003b67 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:15, Info CSI 00003b68 [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:21, Info CSI 00003bdb [SR] Verify complete
2015-11-10 21:06:22, Info CSI 00003bdc [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:22, Info CSI 00003bdd [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:25, Info CSI 00003c42 [SR] Verify complete
2015-11-10 21:06:26, Info CSI 00003c43 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:26, Info CSI 00003c44 [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:30, Info CSI 00003cad [SR] Verify complete
2015-11-10 21:06:30, Info CSI 00003cae [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:30, Info CSI 00003caf [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:34, Info CSI 00003d3d [SR] Verify complete
2015-11-10 21:06:35, Info CSI 00003d3e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:35, Info CSI 00003d3f [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:40, Info CSI 00003daf [SR] Verify complete
2015-11-10 21:06:40, Info CSI 00003db0 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:40, Info CSI 00003db1 [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:44, Info CSI 00003e16 [SR] Verify complete
2015-11-10 21:06:44, Info CSI 00003e17 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:44, Info CSI 00003e18 [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:48, Info CSI 00003e7f [SR] Verify complete
2015-11-10 21:06:49, Info CSI 00003e80 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:49, Info CSI 00003e81 [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:53, Info CSI 00003ee8 [SR] Verify complete
2015-11-10 21:06:53, Info CSI 00003ee9 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:53, Info CSI 00003eea [SR] Beginning Verify and Repair transaction
2015-11-10 21:06:58, Info CSI 00003f51 [SR] Verify complete
2015-11-10 21:06:58, Info CSI 00003f52 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:06:58, Info CSI 00003f53 [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:06, Info CSI 00003fce [SR] Verify complete
2015-11-10 21:07:07, Info CSI 00003fcf [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:07, Info CSI 00003fd0 [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:11, Info CSI 0000403e [SR] Verify complete
2015-11-10 21:07:11, Info CSI 0000403f [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:11, Info CSI 00004040 [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:18, Info CSI 000040c7 [SR] Verify complete
2015-11-10 21:07:18, Info CSI 000040c8 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:18, Info CSI 000040c9 [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:24, Info CSI 0000413d [SR] Verify complete
2015-11-10 21:07:25, Info CSI 0000413e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:25, Info CSI 0000413f [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:30, Info CSI 000041b7 [SR] Verify complete
2015-11-10 21:07:31, Info CSI 000041b8 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:31, Info CSI 000041b9 [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:40, Info CSI 00004265 [SR] Verify complete
2015-11-10 21:07:40, Info CSI 00004266 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:40, Info CSI 00004267 [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:44, Info CSI 000042cf [SR] Verify complete
2015-11-10 21:07:44, Info CSI 000042d0 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:44, Info CSI 000042d1 [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:48, Info CSI 00004336 [SR] Verify complete
2015-11-10 21:07:48, Info CSI 00004337 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:48, Info CSI 00004338 [SR] Beginning Verify and Repair transaction
2015-11-10 21:07:52, Info CSI 000043ab [SR] Verify complete
2015-11-10 21:07:53, Info CSI 000043ac [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:07:53, Info CSI 000043ad [SR] Beginning Verify and Repair transaction
2015-11-10 21:08:02, Info CSI 00004422 [SR] Verify complete
2015-11-10 21:08:02, Info CSI 00004423 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:08:02, Info CSI 00004424 [SR] Beginning Verify and Repair transaction
2015-11-10 21:08:11, Info CSI 00004497 [SR] Verify complete
2015-11-10 21:08:11, Info CSI 00004498 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:08:11, Info CSI 00004499 [SR] Beginning Verify and Repair transaction
2015-11-10 21:08:18, Info CSI 0000450d [SR] Verify complete
2015-11-10 21:08:18, Info CSI 0000450e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:08:18, Info CSI 0000450f [SR] Beginning Verify and Repair transaction
2015-11-10 21:08:24, Info CSI 0000459b [SR] Verify complete
2015-11-10 21:08:24, Info CSI 0000459c [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:08:24, Info CSI 0000459d [SR] Beginning Verify and Repair transaction
2015-11-10 21:08:30, Info CSI 00004618 [SR] Verify complete
2015-11-10 21:08:30, Info CSI 00004619 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:08:30, Info CSI 0000461a [SR] Beginning Verify and Repair transaction
2015-11-10 21:08:36, Info CSI 00004695 [SR] Verify complete
2015-11-10 21:08:36, Info CSI 00004696 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:08:36, Info CSI 00004697 [SR] Beginning Verify and Repair transaction
2015-11-10 21:08:45, Info CSI 0000471c [SR] Verify complete
2015-11-10 21:08:45, Info CSI 0000471d [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:08:45, Info CSI 0000471e [SR] Beginning Verify and Repair transaction
2015-11-10 21:08:53, Info CSI 000047a1 [SR] Verify complete
2015-11-10 21:08:54, Info CSI 000047a2 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:08:54, Info CSI 000047a3 [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:00, Info CSI 00004826 [SR] Verify complete
2015-11-10 21:09:01, Info CSI 00004827 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:01, Info CSI 00004828 [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:07, Info CSI 00004893 [SR] Verify complete
2015-11-10 21:09:07, Info CSI 00004894 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:07, Info CSI 00004895 [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:18, Info CSI 000049d5 [SR] Verify complete
2015-11-10 21:09:18, Info CSI 000049d6 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:18, Info CSI 000049d7 [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:24, Info CSI 00004a46 [SR] Verify complete
2015-11-10 21:09:25, Info CSI 00004a47 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:25, Info CSI 00004a48 [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:29, Info CSI 00004aad [SR] Verify complete
2015-11-10 21:09:30, Info CSI 00004aae [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:30, Info CSI 00004aaf [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:34, Info CSI 00004b16 [SR] Verify complete
2015-11-10 21:09:34, Info CSI 00004b17 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:34, Info CSI 00004b18 [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:43, Info CSI 00004bca [SR] Verify complete
2015-11-10 21:09:43, Info CSI 00004bcb [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:43, Info CSI 00004bcc [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:53, Info CSI 00004ca9 [SR] Verify complete
2015-11-10 21:09:53, Info CSI 00004caa [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:53, Info CSI 00004cab [SR] Beginning Verify and Repair transaction
2015-11-10 21:09:58, Info CSI 00004d12 [SR] Verify complete
2015-11-10 21:09:58, Info CSI 00004d13 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:09:58, Info CSI 00004d14 [SR] Beginning Verify and Repair transaction
2015-11-10 21:10:04, Info CSI 00004d8d [SR] Verify complete
2015-11-10 21:10:04, Info CSI 00004d8e [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:10:04, Info CSI 00004d8f [SR] Beginning Verify and Repair transaction
2015-11-10 21:10:09, Info CSI 00004dfe [SR] Verify complete
2015-11-10 21:10:10, Info CSI 00004dff [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:10:10, Info CSI 00004e00 [SR] Beginning Verify and Repair transaction
2015-11-10 21:10:20, Info CSI 00004ee9 [SR] Verify complete
2015-11-10 21:10:21, Info CSI 00004eea [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:10:21, Info CSI 00004eeb [SR] Beginning Verify and Repair transaction
2015-11-10 21:10:29, Info CSI 00004f9c [SR] Verify complete
2015-11-10 21:10:30, Info CSI 00004f9d [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:10:30, Info CSI 00004f9e [SR] Beginning Verify and Repair transaction
2015-11-10 21:10:35, Info CSI 0000501a [SR] Verify complete
2015-11-10 21:10:35, Info CSI 0000501b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:10:35, Info CSI 0000501c [SR] Beginning Verify and Repair transaction
2015-11-10 21:10:43, Info CSI 00005095 [SR] Verify complete
2015-11-10 21:10:43, Info CSI 00005096 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:10:43, Info CSI 00005097 [SR] Beginning Verify and Repair transaction
2015-11-10 21:10:52, Info CSI 00005158 [SR] Verify complete
2015-11-10 21:10:53, Info CSI 00005159 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:10:53, Info CSI 0000515a [SR] Beginning Verify and Repair transaction
2015-11-10 21:10:57, Info CSI 000051c1 [SR] Verify complete
2015-11-10 21:10:57, Info CSI 000051c2 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:10:57, Info CSI 000051c3 [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:05, Info CSI 00005261 [SR] Verify complete
2015-11-10 21:11:05, Info CSI 00005262 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:05, Info CSI 00005263 [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:13, Info CSI 0000530a [SR] Verify complete
2015-11-10 21:11:13, Info CSI 0000530b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:13, Info CSI 0000530c [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:18, Info CSI 000053a2 [SR] Verify complete
2015-11-10 21:11:19, Info CSI 000053a3 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:19, Info CSI 000053a4 [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:23, Info CSI 0000540f [SR] Verify complete
2015-11-10 21:11:24, Info CSI 00005410 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:24, Info CSI 00005411 [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:28, Info CSI 00005476 [SR] Verify complete
2015-11-10 21:11:28, Info CSI 00005477 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:28, Info CSI 00005478 [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:33, Info CSI 000054e9 [SR] Verify complete
2015-11-10 21:11:33, Info CSI 000054ea [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:33, Info CSI 000054eb [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:38, Info CSI 0000555c [SR] Verify complete
2015-11-10 21:11:39, Info CSI 0000555d [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:39, Info CSI 0000555e [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:44, Info CSI 000055cd [SR] Verify complete
2015-11-10 21:11:44, Info CSI 000055ce [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:44, Info CSI 000055cf [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:49, Info CSI 0000563a [SR] Verify complete
2015-11-10 21:11:50, Info CSI 0000563b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:50, Info CSI 0000563c [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:54, Info CSI 000056a4 [SR] Verify complete
2015-11-10 21:11:54, Info CSI 000056a5 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:54, Info CSI 000056a6 [SR] Beginning Verify and Repair transaction
2015-11-10 21:11:58, Info CSI 0000570e [SR] Verify complete
2015-11-10 21:11:59, Info CSI 0000570f [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:11:59, Info CSI 00005710 [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:05, Info CSI 00005794 [SR] Verify complete
2015-11-10 21:12:05, Info CSI 00005795 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:12:05, Info CSI 00005796 [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:09, Info CSI 000057ff [SR] Verify complete
2015-11-10 21:12:09, Info CSI 00005800 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:12:09, Info CSI 00005801 [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:15, Info CSI 0000586b [SR] Verify complete
2015-11-10 21:12:15, Info CSI 0000586c [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:12:15, Info CSI 0000586d [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:20, Info CSI 000058d3 [SR] Verify complete
2015-11-10 21:12:21, Info CSI 000058d4 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:12:21, Info CSI 000058d5 [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:25, Info CSI 0000593a [SR] Verify complete
2015-11-10 21:12:26, Info CSI 0000593b [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:12:26, Info CSI 0000593c [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:31, Info CSI 000059a3 [SR] Verify complete
2015-11-10 21:12:31, Info CSI 000059a4 [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:12:31, Info CSI 000059a5 [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:35, Info CSI 00005a0b [SR] Verify complete
2015-11-10 21:12:36, Info CSI 00005a0c [SR] Verifying 100 (0x0000000000000064) components
2015-11-10 21:12:36, Info CSI 00005a0d [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:42, Info CSI 00005a75 [SR] Verify complete
2015-11-10 21:12:42, Info CSI 00005a76 [SR] Verifying 69 (0x0000000000000045) components
2015-11-10 21:12:42, Info CSI 00005a77 [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:45, Info CSI 00005abe [SR] Verify complete
2015-11-10 21:12:45, Info CSI 00005abf [SR] Repairing 1 components
2015-11-10 21:12:45, Info CSI 00005ac0 [SR] Beginning Verify and Repair transaction
2015-11-10 21:12:45, Info CSI 00005ac2 [SR] Cannot repair member file [l:18{9}]"Close.png" of Microsoft-WindowsFeedback.AppxMain, Version = 10.0.10240.16384, pA = amd64, nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2015-11-10 21:12:46, Info CSI 00005ac5 [SR] Cannot repair member file [l:18{9}]"Close.png" of Microsoft-WindowsFeedback.AppxMain, Version = 10.0.10240.16384, pA = amd64, nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2015-11-10 21:12:46, Info CSI 00005ac6 [SR] This component was referenced by [l:200{100}]"Microsoft-WindowsFeedback-Package~31bf3856ad364e35~amd64~~10.0.10240.16384.Microsoft-WindowsFeedback"
2015-11-10 21:12:46, Info CSI 00005ac9 [SR] Could not reproject corrupted file [ml:126{63},l:124{62}]"\??\C:\WINDOWS\SystemApps\WindowsFeedback_cw5n1h2txyewy\Assets"\[l:18{9}]"Close.png"; source file in store is also corrupted
2015-11-10 21:12:46, Info CSI 00005acc [SR] Repair complete
2015-11-10 21:12:46, Info CSI 00005acd [SR] Committing transaction
2015-11-10 21:12:46, Info CSI 00005ad2 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction have been successfully repaired

#12 Příspěvek od **altrok** » 10 lis 2015 22:37

Dejte prosim aktualni logy z FRST (pri druhem a dalsim spusteni FRST musite explicitne zatrhnout volbu Addition, aby byl log Additional.txt vytvoren).

M95M · #13 Příspěvek od **M95M** » 11 lis 2015 00:03

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015
Ran by milan (administrator) on MRFREDDY (10-11-2015 22:59:41)
Running from C:\Users\milan\Desktop
Loaded Profiles: milan (Available Profiles: milan)
Platform: Windows 10 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1510.13020.0_x64__8wekyb3d8bbwe\Calculator.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\milan\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2014-12-23] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10973168 2014-12-23] (Lenovo(beijing) Limited)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-08-07] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3947704 2015-11-10] (Synaptics Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\Run: [Zoiper] => C:\Program Files (x86)\Zoiper\Zoiper.exe [12548624 2015-07-14] ()
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-09] (AVAST Software)
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\Users\milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2015-11-07] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4f1d8fe8-ada3-498c-ad96-bc8a00583b96}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b13120a1-2906-4f8c-9855-d038dfae4005}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=14763
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> DefaultScope {CD24D5E2-B737-456D-AA1E-4FB535438552} URL =
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> {A5EA95BB-1C57-4E19-9AF3-ED181A6A1641} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM ... -SearchBox
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2015-01-18] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-31] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-01-18] (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 12.0 Helper -> {432dd630-7e03-4c97-9d62-b99f52df4fc2} -> C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2011-06-12] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-31] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Toolbar: HKLM - No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
Toolbar: HKLM-x32 - No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
Toolbar: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxp://195.28.70.134/kapor2/lib/mgaxctrl.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab

FireFox:
========
FF ProfilePath: C:\Users\milan\AppData\Roaming\Mozilla\Firefox\Profiles\4ex3sog4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2015-01-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-01-18] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @mozilla.zeniko.ch/PDFlite_Browser_Plugin -> C:\Program Files (x86)\PDFlite\npPdfViewer.dll [2014-02-26] (Simon Bünzli)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-09] [not signed]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentácie Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Sudoku) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\agdhembpgcpfegeigidembjopfhghnpj [2015-03-14]
CHR Extension: (Angry Birds) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-12-23]
CHR Extension: (Dokumenty Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Disk Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Spotify VK Downloader) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\baggnalhgbpeanbhedjlbndhjgmimmhl [2015-03-12]
CHR Extension: (MEGA) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2015-11-10]
CHR Extension: (YouTube) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-09-22]
CHR Extension: (Google Search) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2014-12-23]
CHR Extension: (Tabuľky Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-08-06]
CHR Extension: (Porsche) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkclphmapdcppbmekmbkcjfanpmoidpg [2014-12-23]
CHR Extension: (Chromium Scrapbook) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gokffdfnlmampchciemmflgbckijpmlb [2014-12-23]
CHR Extension: (IE Tab) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2015-10-01]
CHR Extension: (2048) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hekhdfjankbhklfkjmnmnefcacndeoll [2014-12-23]
CHR Extension: (Google Keep – poznámky a zoznamy) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-11-10]
CHR Extension: (VNC® Viewer for Google Chrome™) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\iabmpiboiopbgfabjmgeedhcmjenhbla [2014-12-23]
CHR Extension: (SingleFile Core) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jemlklgaibiijojffihnhieihhagocma [2014-12-23]
CHR Extension: (Grepolis) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkgkognjknhcgbgbeijjondlikfkgnog [2015-01-29]
CHR Extension: (Vylepšení WISu) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\macimepnbaggfjekcmlcohlffafgamcc [2015-04-13]
CHR Extension: (Kontrola pošty Google) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-12-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-24]
CHR Extension: (Picasa) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-12-23]
CHR Extension: (Šach) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgkjpihgghgbekgicphkebogelkkpghe [2014-12-23]
CHR Extension: (Gmail) - C:\Users\milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-04-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-03]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-09] (AVAST Software)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2015-07-31] (Microsoft Corporation)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-08-07] (NVIDIA Corporation)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330144 2015-09-26] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
S4 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-08-07] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-08-07] (NVIDIA Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH)
S4 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [49040 2014-07-25] (Synaptics Incorporated)
S4 valWbioSyncSvc; C:\Windows\system32\valWbioSyncSvc.exe [32256 2014-07-25] (Synaptics Incorporated)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-09] (AVAST Software)
R3 athr; C:\Windows\System32\drivers\athwbx.sys [3881472 2013-12-12] (Qualcomm Atheros Communications, Inc.)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [58368 2011-11-04] (www.winchiphead.com)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-12-23] (Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-01-20] (LogMeIn Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
S3 npf; C:\Windows\System32\drivers\npf.sys [36600 2015-06-01] (Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-08-07] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-08-07] (NVIDIA Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-07-31] (Realtek Semiconductor Corp.)
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-31] (Realtek )
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44216 2015-11-10] (Synaptics Incorporated)
R1 SMIDriver; C:\Windows\System32\drivers\smi.sys [19760 2014-01-22] (Windows (R) Win 7 DDK provider)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [3481696 2015-07-31] (Sonix Co. Ltd.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146232 2015-09-26] (Intel Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-09-08] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125520 2015-09-08] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 X86BDA; C:\Windows\system32\DRIVERS\OEMDrv.sys [666624 2012-04-27] ( )
S3 WinRing0_1_2_0; \??\D:\Software\Real temp\WinRing0x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-10 22:59 - 2015-11-10 23:00 - 00030149 _____ C:\Users\milan\Desktop\FRST.txt
2015-11-10 22:59 - 2015-11-10 22:59 - 00112640 _____ (forum.viry.cz) C:\Users\milan\Desktop\FRSTLauncher.exe
2015-11-10 22:56 - 2015-11-10 22:56 - 00016148 _____ C:\WINDOWS\system32\MRFREDDY_milan_HistoryPrediction.bin
2015-11-10 22:06 - 2015-11-10 22:06 - 00058983 _____ C:\Users\milan\Desktop\sfcdetails.txt
2015-11-10 13:19 - 2015-11-10 22:59 - 00000000 ____D C:\FRST
2015-11-10 13:19 - 2015-11-10 13:18 - 02198528 _____ (Farbar) C:\Users\milan\Desktop\FRST64.exe
2015-11-10 13:18 - 2015-11-10 13:18 - 02198528 _____ (Farbar) C:\Users\milan\Downloads\FRST64.exe
2015-11-10 12:53 - 2015-11-10 12:53 - 00421560 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-11-10 12:53 - 2015-11-10 12:53 - 00268984 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo34.dll
2015-11-10 12:53 - 2015-11-10 12:53 - 00044216 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-11-10 12:53 - 2015-11-10 12:53 - 00043704 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-11-10 12:53 - 2015-11-10 12:53 - 00000486 _____ C:\WINDOWS\Synaptics.PD.log
2015-11-10 12:53 - 2015-11-10 12:53 - 00000486 _____ C:\WINDOWS\Synaptics.log
2015-11-10 12:53 - 2015-11-10 12:53 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-11-10 12:53 - 2015-11-10 12:53 - 00000000 ____D C:\Users\milan\Desktop\New folder
2015-11-09 19:15 - 2015-11-10 12:51 - 00000730 _____ C:\WINDOWS\PFRO.log
2015-11-09 14:18 - 2015-11-09 21:15 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-09 14:18 - 2015-11-09 14:18 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-09 14:18 - 2015-11-09 14:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-09 14:18 - 2015-11-09 14:18 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-09 14:18 - 2015-11-09 14:18 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-09 14:18 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-11-09 14:18 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-11-09 14:18 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-11-09 14:16 - 2015-11-09 14:17 - 22908888 _____ (Malwarebytes ) C:\Users\milan\Documents\mbam-setup.exe
2015-11-09 14:15 - 2015-11-09 14:15 - 22908888 _____ (Malwarebytes ) C:\Users\milan\Documents\mbam-setup-2.2.0.1024.exe
2015-11-09 14:14 - 2015-11-10 12:53 - 00000892 _____ C:\WINDOWS\setupact.log
2015-11-09 14:14 - 2015-11-09 14:14 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-11-07 14:26 - 2015-11-07 14:26 - 00000000 ____D C:\Users\milan\Desktop\IFJ
2015-11-07 11:28 - 2015-11-07 11:28 - 00000000 ____D C:\rsit
2015-11-07 11:17 - 2015-11-10 22:57 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-07 10:47 - 2015-11-07 10:47 - 00032048 _____ C:\Users\milan\Documents\cc_20151107_104749.reg
2015-11-07 10:37 - 2015-11-07 10:40 - 00000000 ____D C:\AdwCleaner
2015-11-04 22:10 - 2015-11-04 22:10 - 00267936 _____ C:\ANG0
2015-11-03 07:50 - 2015-10-28 00:38 - 21871616 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-03 07:50 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-03 07:50 - 2015-10-21 13:45 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-03 07:50 - 2015-10-21 13:44 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-03 07:50 - 2015-10-21 13:43 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-03 07:50 - 2015-10-21 13:39 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-03 07:50 - 2015-10-21 13:00 - 24595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-03 07:50 - 2015-10-21 13:00 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-03 07:50 - 2015-10-21 12:59 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-03 07:50 - 2015-10-21 12:57 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-03 07:50 - 2015-10-21 12:52 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-03 07:50 - 2015-10-21 12:50 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-03 07:50 - 2015-10-21 12:48 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-03 07:50 - 2015-10-21 12:47 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-03 07:50 - 2015-10-21 12:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-03 07:50 - 2015-10-21 12:46 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-03 07:50 - 2015-10-21 12:44 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-03 07:50 - 2015-10-21 12:44 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-03 07:50 - 2015-10-21 12:43 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-03 07:50 - 2015-10-21 12:42 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-03 07:50 - 2015-10-21 12:41 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-03 07:50 - 2015-10-21 12:40 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-03 07:50 - 2015-10-21 12:38 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-03 07:50 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-03 07:50 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-03 07:50 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-03 07:50 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-03 07:50 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-03 07:50 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-03 07:50 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-03 07:50 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-03 07:50 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-03 07:50 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-03 07:50 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-28 21:27 - 2015-10-28 21:27 - 00000000 ____D C:\Users\milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cygwin-X
2015-10-14 11:31 - 2015-10-14 11:31 - 00000000 ____D C:\Users\milan\Documents\MEGAsync
2015-10-14 11:30 - 2015-10-14 11:30 - 00000799 _____ C:\Users\Public\Desktop\MEGAsync.lnk
2015-10-14 11:30 - 2015-10-14 11:30 - 00000000 ____D C:\Users\milan\AppData\Local\Mega Limited
2015-10-14 11:30 - 2015-10-14 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGAsync
2015-10-14 11:30 - 2015-10-14 11:30 - 00000000 ____D C:\ProgramData\MEGAsync
2015-10-13 20:38 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-13 20:38 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 20:38 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-13 20:38 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-13 20:38 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-13 20:38 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-13 20:38 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-13 20:38 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 20:38 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-13 20:38 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-13 20:38 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-13 20:38 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-13 20:38 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-13 20:38 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-13 20:38 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-13 20:38 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 20:38 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-13 20:38 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-13 20:38 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 20:38 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-13 20:38 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 20:38 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 20:38 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-13 20:38 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-13 20:38 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-13 20:38 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 20:38 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-13 20:38 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-13 20:38 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-13 20:38 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-13 20:38 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-13 20:38 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 20:38 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 20:38 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-13 20:38 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-13 20:38 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-13 20:38 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-13 20:38 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-13 20:38 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-13 20:38 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-13 20:38 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-13 20:38 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-13 20:38 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 20:38 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-13 20:38 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-13 20:38 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-13 20:38 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-13 20:38 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-13 20:38 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-11 13:08 - 2015-10-11 13:08 - 00000000 ____D C:\Users\milan\.wavesurfer

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-10 22:57 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-10 22:10 - 2015-03-31 19:02 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-10 21:23 - 2014-12-23 17:52 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-10 14:21 - 2015-07-30 22:29 - 00968010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-10 14:16 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-10 14:15 - 2015-07-30 22:27 - 00000000 ____D C:\ProgramData\Validity
2015-11-10 14:15 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-10 14:15 - 2015-07-06 07:55 - 00000000 ____D C:\Users\milan\AppData\Local\TSVNCache
2015-11-10 14:15 - 2014-12-23 17:52 - 00000910 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-10 14:03 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-11-10 14:00 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-11-10 12:58 - 2014-12-26 13:24 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{44AA70E0-55FB-462E-B444-9D78C7803DFE}
2015-11-10 12:53 - 2014-12-19 09:15 - 01804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-11-10 12:53 - 2014-12-19 09:15 - 00764616 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-11-10 12:53 - 2014-12-19 09:15 - 00620744 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-11-10 12:53 - 2014-12-19 09:15 - 00269000 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2015-11-10 12:53 - 2014-12-19 09:15 - 00044216 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-11-09 14:15 - 2014-12-23 16:50 - 00000000 ____D C:\Users\milan\AppData\Local\Packages
2015-11-09 00:53 - 2014-12-25 18:27 - 00000600 _____ C:\Users\milan\AppData\Local\PUTTY.RND
2015-11-08 23:00 - 2014-12-25 20:13 - 00000000 ____D C:\Users\milan\AppData\Roaming\vlc
2015-11-08 10:25 - 2014-12-23 17:22 - 00000000 ____D C:\Users\milan\AppData\Roaming\Skype
2015-11-08 10:12 - 2015-01-17 21:07 - 00000000 ____D C:\Users\milan\Documents\Visual Studio 2013
2015-11-08 09:50 - 2015-07-31 08:04 - 00000546 __RSH C:\ProgramData\ntuser.pol
2015-11-07 14:37 - 2015-01-09 19:04 - 00000000 ____D C:\Users\milan\Documents\NetBeansProjects
2015-11-07 11:28 - 2015-01-28 12:21 - 00000000 ____D C:\Program Files\trend micro
2015-11-07 10:45 - 2015-08-05 19:10 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-07 10:45 - 2014-12-24 12:18 - 00000000 ____D C:\Users\milan\AppData\Roaming\uTorrent
2015-11-06 21:43 - 2014-12-23 17:57 - 01059656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-11-06 21:43 - 2014-12-23 17:57 - 00449992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-11-05 10:15 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-04 22:10 - 2014-12-26 13:25 - 00000000 ____D C:\NST
2015-11-04 22:07 - 2014-12-23 17:58 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-11-04 21:24 - 2015-01-28 15:02 - 00002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-11-04 08:41 - 2015-03-04 14:15 - 00000000 ____D C:\Users\milan\Documents\StrongDC++
2015-11-03 23:51 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-03 21:23 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-02 23:38 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-01 09:27 - 2015-08-16 15:18 - 00000000 ____D C:\Users\milan\AppData\Roaming\Zoiper
2015-10-31 22:47 - 2015-01-06 19:42 - 00000600 _____ C:\Users\milan\AppData\Roaming\winscp.rnd
2015-10-27 23:20 - 2015-08-09 07:49 - 00031930 _____ C:\Users\milan\Documents\Objednavky.xlsx
2015-10-27 22:50 - 2015-02-26 07:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-10-27 22:50 - 2014-12-23 11:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-27 14:31 - 2015-07-30 22:31 - 00000000 ____D C:\Users\milan
2015-10-25 11:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-10-17 10:25 - 2014-12-23 17:22 - 00000000 ____D C:\ProgramData\Skype
2015-10-17 09:45 - 2014-12-23 17:46 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-16 15:10 - 2014-12-23 17:46 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-16 04:10 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-16 04:10 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-13 21:44 - 2014-12-23 19:13 - 00002240 ____H C:\Users\milan\Documents\Default.rdp
2015-10-13 20:40 - 2015-01-11 13:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-13 20:39 - 2015-09-06 22:28 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

==================== Files in the root of some directories =======

2015-01-06 19:42 - 2015-10-31 22:47 - 0000600 _____ () C:\Users\milan\AppData\Roaming\winscp.rnd
2014-12-25 18:27 - 2015-11-09 00:53 - 0000600 _____ () C:\Users\milan\AppData\Local\PUTTY.RND
2015-05-10 20:58 - 2015-05-10 20:58 - 0001214 _____ () C:\Users\milan\AppData\Local\recently-used.xbel
2015-01-20 21:46 - 2015-09-23 14:02 - 0007607 _____ () C:\Users\milan\AppData\Local\Resmon.ResmonCfg
2015-07-30 22:28 - 2015-07-30 22:28 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-03-15 16:39 - 2015-03-20 18:54 - 0001946 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\milan\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\milan\Desktop" je 12 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

==================== End Of Log ==============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-11-2015
Ran by milan (2015-11-10 23:00:56)
Running from C:\Users\milan\Desktop
Windows 10 Pro (X64) (2015-07-31 02:17:41)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2089458334-2673280626-1588876847-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2089458334-2673280626-1588876847-503 - Limited - Disabled)
Guest (S-1-5-21-2089458334-2673280626-1588876847-501 - Limited - Disabled)
milan (S-1-5-21-2089458334-2673280626-1588876847-1001 - Administrator - Enabled) => C:\Users\milan

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
1600 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
1600_Help (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
1600Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 9.38 beta (HKLM-x32\...\7-Zip) (Version: - )
Acrylic Wi-Fi Free v2.2 (HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\{3706FB7A-11FB-44C4-AD94-2B29878D75DC}_is1) (Version: 2.2 - Tarlogic Security S.L.)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Age of Empires III - The WarChiefs (HKLM-x32\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Název společnosti:)
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Název společnosti:) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
AIO_CDB_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
AMCap (HKLM-x32\...\AMCap) (Version: 9.11.109.4 - Noël Danjou)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Application Insights Tools for Visual Studio 2013 (x32 Version: 2.4 - Microsoft Corporation) Hidden
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.0 - Arduino LLC)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Band-in-a-Box 2012 (Build 349) (HKLM-x32\...\BB_is1) (Version: - PG Music Inc.)
Band-in-a-Box Server (HKLM-x32\...\BBServer_is1) (Version: - PG Music Inc.)
Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Build Tools - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.31101 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CoyoteWT 1.1 (HKLM-x32\...\CoyoteWT_is1) (Version: - Coyote Electronics Inc.)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 6.3.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.3.0 - Crystal Dew World)
CrystalDiskMark 3.0.3b (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.3b - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Derive 6 zkušební verze (HKLM-x32\...\Derive 6 zkušební verze) (Version: 6.1 - Texas Instruments Incorporated)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Dia (iba odstrániť) (HKLM-x32\...\Dia) (Version: - )
EasyBCD 2.2 (HKLM-x32\...\EasyBCD) (Version: 2.2 - NeoSmart Technologies)
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.16 - Lenovo)
Energy Manager (x32 Version: 1.5.0.16 - Lenovo) Hidden
Entity Framework 6.1.1 Tools for Visual Studio 2013 (HKLM-x32\...\{85253F13-EE42-4850-A3A5-79B90E92D7AC}) (Version: 12.0.30610.0 - Microsoft Corporation)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Euro Truck Simulator 2 - v1.10.1.18s + 13xDLC (HKLM-x32\...\Euro Truck Simulator 2_is1) (Version: - )
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
FileZilla Client 3.10.3 (HKLM-x32\...\FileZilla Client) (Version: 3.10.3 - Tim Kosse)
FMS (HKLM-x32\...\FMS) (Version: - )
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FreeFileSync 7.4 (HKLM-x32\...\FreeFileSync_is1) (Version: 7.4 - www.FreeFileSync.org)
Gmail Backup (HKLM-x32\...\gmailbackup) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.49 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
Instalacia (HKLM-x32\...\{A6887253-0B26-4FF8-A645-B044495BB355}) (Version: 1.0.0 - Default Company Name)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.3.0.400 - Intel Corporation)
Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
Java SE Development Kit 8 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180250}) (Version: 8.0.250.18 - Oracle Corporation)
Just Cause 2 1.20 (HKLM-x32\...\Just Cause 2 1.20) (Version: - )
Kit SDK de vérification de Visual Studio 2012 - fra (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LibreOffice 4.3.4.1 (HKLM-x32\...\{7D983A32-F645-48AB-8E38-4ACD234F40BC}) (Version: 4.3.4.1 - The Document Foundation)
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Logitech Gaming Software 64 (HKLM-x32\...\InstallShield_{58BF5D14-CBCF-473C-B0E0-A7955A23224E}) (Version: - )
Malwarebytes Anti-Malware verzia 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Memory Profiler (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM-x32\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{8C06D6DB-A391-4686-B050-99CC522A7843}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{4AEB505C-95E1-4964-9B64-8D27F3186D30}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2013 with Update 4 (HKLM-x32\...\{dca572ee-b6f6-4560-9879-fec58cc0022c}) (Version: 12.0.31101 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{69A998C5-00A9-42CA-AB4E-C31CFFCD9251}) (Version: 3.1237.1763 - Microsoft Corporation)
MiKTeX 2.9 (HKLM-x32\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
MiniTool Partition Wizard Home Edition 8.1.1 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 40.0.3 (x86 sk) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 sk)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 sk) (HKLM-x32\...\Mozilla Thunderbird 38.3.0 (x86 sk)) (Version: 38.3.0 - Mozilla)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.0.2770 - Native Instruments)
Native Instruments Guitar Rig Mobile IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Mobile IO Driver) (Version: - Native Instruments)
Native Instruments Guitar Rig Session IO Driver (HKLM-x32\...\Native Instruments Guitar Rig Session IO Driver) (Version: - Native Instruments)
Native Instruments Rig Kontrol 3 Driver (HKLM-x32\...\Native Instruments Rig Kontrol 3 Driver) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.4.4.1428 - Native Instruments)
Need for Speed™ Undercover (HKLM-x32\...\{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}) (Version: 1.0.1.0 - Electronic Arts)
NetBeans IDE 8.0.2 (HKLM\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
NHL™ 09 (HKLM-x32\...\{827B97A9-B347-4110-9F89-37AF2B758F94}) (Version: 2.0.1.0 - Electronic Arts)
Nmap 6.49BETA3 (HKLM-x32\...\Nmap) (Version: - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Graphics Driver 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Open XML SDK 2.5 for Microsoft Office (x32 Version: 2.5.5631 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Oracle VM VirtualBox 5.0.4 (HKLM\...\{FC191F32-1A67-4231-91D0-0059A57C99A8}) (Version: 5.0.4 - Oracle Corporation)
PDFlite 2.0.0.0 (HKLM-x32\...\PDFlite) (Version: 2.0.0.0 - Amnis Technology Ltd)
PowreShellIntegration.Notifications (x32 Version: 2.5.21003.1603 - Microsoft Corporation) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Python 3.4.3 (HKLM-x32\...\{CCD588A7-8D55-49F1-A30C-47FAB40889ED}) (Version: 3.4.16490 - Python Software Foundation)
Python Tools 2.1 for Visual Studio 2013 (HKLM-x32\...\{7AD18985-A5E6-443D-B0AB-A9ECFBB389A0}) (Version: 2.1.21008.00 - Microsoft Corporation)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Race Driver GRID verze 1.3 (HKLM-x32\...\{784D940E-A14C-45C1-8554-1BAD248679A3}_is1) (Version: 1.3 - tomi2k9)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.29071 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7254 - Realtek Semiconductor Corp.)
Release Management for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.24.0 - SAMSUNG Electronics Co., Ltd.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
ScanMaster-ELM 2.1.104.771 (HKLM\...\ScanMaster-ELM_is1) (Version: 2.1.104.771 - WGSoft.de)
SDK de comprobación de Visual Studio 2012 - esn (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
SharePoint Client Components (Version: 16.0.2617.1200 - Microsoft Corporation) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
SmartSound Common Data (HKLM-x32\...\InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden
Spotify (HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\Spotify) (Version: 1.0.6.80.g2a801a53 - Spotify AB)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StrongDC++ 2.41 (HKLM-x32\...\StrongDC++) (Version: 2.41 - Big Muscle)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.17.7 - Synaptics Incorporated)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TortoiseSVN 1.8.11.26392 (64 bit) (HKLM\...\{11309CA9-9118-44D6-B345-83C86A5111D5}) (Version: 1.8.26392 - TortoiseSVN)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
TypeScript Power Tool (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
USB2.0 ATV (HKLM-x32\...\{3C873221-12B9-475D-8DCB-62D0B2179AF9}) (Version: 6.10.000.001 - Regulus)
Validity WBF DDK 5011 (HKLM\...\{4D70781C-36A9-4335-9568-565C6F61B5EB}) (Version: 4.5.247.0 - )
Validity WBF DDK 5011 (HKLM\...\{B38B22CB-F5BA-4803-BE59-EDD70D71CB2F}) (Version: 4.5.247.0 - Validity Sensors, Inc.)
Vegas Pro 13.0 (64-bit) (HKLM\...\{3814DB30-091D-11E4-BDE0-F04DA23A5C58}) (Version: 13.0.373 - Sony)
viphone communicator (HKLM-x32\...\viphone communicator_is1) (Version: - Unient communications a.s.)
Visual Micro for Arduino (HKLM-x32\...\{0B76FB86-6DA7-4475-AE64-CCF30D7BB689}) (Version: 15.02.1403 - Visual Micro Limited)
Visual Studio 2013 Update 4 (KB2829760) (HKLM-x32\...\{53d408db-eb91-43fb-9d8f-167681c19763}) (Version: 12.0.31101 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VS Update core components (x32 Version: 12.0.31101 - Microsoft Corporation) Hidden
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
WinDirStat 1.1.2 (HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\WinDirStat) (Version: - )
Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinEdt 9 (HKLM\...\WinEdt 9) (Version: 9.0 - WinEdt Team)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
WinRAR 5.11 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
WinSCP 5.7.4 (HKLM-x32\...\winscp3_is1) (Version: 5.7.4 - Martin Prikryl)
Workflow Manager Client 1.0 (Version: 2.0.40131.0 - Microsoft Corporation) Hidden
Workflow Manager Tools 1.0 for Visual Studio (Version: 2.0.40326.0 - Microsoft Corporation) Hidden
X2Go Client for Windows (HKLM-x32\...\x2goclient) (Version: 4.0.3.0-20141021 - X2Go Project)
Xlight FTP Server 3.8.3.6 (HKLM\...\Xlight FTP Server_is1) (Version: - )
Zoiper (HKLM-x32\...\Zoiper) (Version: 3.9 - Securax LTD)
Пакет Visual Studio 2012 Verification SDK - rus (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

10-11-2015 14:00:43 10.11

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2015-08-31 07:43 - 00001027 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 activate.adobe.com

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EDF0C2-C134-491E-9197-31F7F8CE426A} - System32\Tasks\Intel_C_CVPO044400BW120QGN => C:\Program Files (x86)\Intel\Intel(R) SSD Toolbox\Intel SSD Toolbox.exe [2015-05-05] (Intel)
Task: {2A1A7A78-94B9-4CCD-812C-31F275A31B2C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {463F7243-DA51-4906-A3DF-7F68BE77D69C} - System32\Tasks\{9A81871D-626E-4318-899D-8A2347823101} => pcalua.exe -a F:\autorun.exe -d F:\
Task: {555B8CC4-1621-4247-95CC-89CB6BAD3AE8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {6775F8BF-F299-4944-A79D-8616F78C815E} - \Microsoft\Windows\Setup\gwx\runappraiser -> No File <==== ATTENTION
Task: {8D22F3B1-5BF8-492F-8EB2-B8AAB27CEC97} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-11-10] (Synaptics Incorporated)
Task: {A441E17F-7ADB-4F57-856D-312940775686} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17] (Adobe Systems Incorporated)
Task: {ABA69471-3559-47BF-A1F4-24DE82E48189} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {B1EDBD3A-6ABC-4EF5-8888-EB2D8FFF3145} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C3CC18E3-42FF-4463-A537-EBB5E743C89A} - System32\Tasks\{929C1364-770E-44C1-A496-4B4189C18251} => pcalua.exe -a D:\Download\SAMSUNG_USB_Driver_for_Mobile_Phones.exe -d D:\Download
Task: {C9388E8D-732B-40FD-9395-34E33639E990} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {CB60885F-0676-49FD-9F80-0119ACCB47FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {D020AE2A-2AA9-4493-8F95-A98CEE350D63} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {D304F5E0-8567-4927-AC94-EE8C440F0CD8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-13] (Lenovo)
Task: {D546E8F9-3B92-4FA8-82BF-C0C8B2D696D1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-09] (AVAST Software)
Task: {D5F421E6-5888-495F-AA0E-8C6FEB3C19D3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D909297A-9A5F-46D0-9A45-96CFC6E996CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {E83EE727-5712-4A6F-BF71-010799517CD5} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-10-16] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (Whitelisted) ==============

#14 Příspěvek od **altrok** » 11 lis 2015 00:12

Malware nevidim, ale fixneme nekolik zbytecnych polozek a vyprazdnime cache prohlizecu (vcetne historie) a tempy.

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-08-07] (NVIDIA Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> DefaultScope {CD24D5E2-B737-456D-AA1E-4FB535438552} URL =
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Toolbar: HKLM - No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
Toolbar: HKLM-x32 - No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
Toolbar: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
S3 WinRing0_1_2_0; \??\D:\Software\Real temp\WinRing0x64.sys [X]
2015-11-10 22:59 - 2015-11-10 22:59 - 00112640 _____ (forum.viry.cz) C:\Users\milan\Desktop\FRSTLauncher.exe
2015-11-10 22:06 - 2015-11-10 22:06 - 00058983 _____ C:\Users\milan\Desktop\sfcdetails.txt
2015-11-07 11:28 - 2015-11-07 11:28 - 00000000 ____D C:\rsit
2015-11-07 10:37 - 2015-11-07 10:40 - 00000000 ____D C:\AdwCleaner
2015-11-07 11:28 - 2015-01-28 12:21 - 00000000 ____D C:\Program Files\trend micro
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {C3CC18E3-42FF-4463-A537-EBB5E743C89A} - System32\Tasks\{929C1364-770E-44C1-A496-4B4189C18251} => pcalua.exe -a D:\Download\SAMSUNG_USB_Driver_for_Mobile_Phones.exe -d D:\Download
Task: {463F7243-DA51-4906-A3DF-7F68BE77D69C} - System32\Tasks\{9A81871D-626E-4318-899D-8A2347823101} => pcalua.exe -a F:\autorun.exe -d F:\
EmptyTemp:
End

M95M · #15 Příspěvek od **M95M** » 11 lis 2015 08:21

Fix result of Farbar Recovery Scan Tool (x64) Version:07-11-2015
Ran by milan (2015-11-11 08:02:56) Run:1
Running from C:\Users\milan\Desktop
Loaded Profiles: milan (Available Profiles: milan)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-08-07] (NVIDIA Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> DefaultScope {CD24D5E2-B737-456D-AA1E-4FB535438552} URL =
SearchScopes: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKLM - No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
Toolbar: HKLM-x32 - No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
Toolbar: HKU\S-1-5-21-2089458334-2673280626-1588876847-1001 -> No Name - {4AB31959-F732-4360-B3CF-6EE76E101734} - No File
S3 WinRing0_1_2_0; \??\D:\Software\Real temp\WinRing0x64.sys [X]
2015-11-10 22:59 - 2015-11-10 22:59 - 00112640 _____ (forum.viry.cz) C:\Users\milan\Desktop\FRSTLauncher.exe
2015-11-10 22:06 - 2015-11-10 22:06 - 00058983 _____ C:\Users\milan\Desktop\sfcdetails.txt
2015-11-07 11:28 - 2015-11-07 11:28 - 00000000 ____D C:\rsit
2015-11-07 10:37 - 2015-11-07 10:40 - 00000000 ____D C:\AdwCleaner
2015-11-07 11:28 - 2015-01-28 12:21 - 00000000 ____D C:\Program Files\trend micro
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {C3CC18E3-42FF-4463-A537-EBB5E743C89A} - System32\Tasks\{929C1364-770E-44C1-A496-4B4189C18251} => pcalua.exe -a D:\Download\SAMSUNG_USB_Driver_for_Mobile_Phones.exe -d D:\Download
Task: {463F7243-DA51-4906-A3DF-7F68BE77D69C} - System32\Tasks\{9A81871D-626E-4318-899D-8A2347823101} => pcalua.exe -a F:\autorun.exe -d F:\
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value removed successfully
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => key removed successfully
HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => key removed successfully
HKCR\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => key removed successfully
HKCR\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => key removed successfully
HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => key removed successfully
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => key removed successfully
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => key removed successfully
HKCR\Wow6432Node\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => key removed successfully
HKCR\Wow6432Node\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => key removed successfully
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => key removed successfully
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{4AB31959-F732-4360-B3CF-6EE76E101734} => value removed successfully
HKCR\CLSID\{4AB31959-F732-4360-B3CF-6EE76E101734} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{4AB31959-F732-4360-B3CF-6EE76E101734} => value removed successfully
HKCR\Wow6432Node\CLSID\{4AB31959-F732-4360-B3CF-6EE76E101734} => key not found.
HKU\S-1-5-21-2089458334-2673280626-1588876847-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4AB31959-F732-4360-B3CF-6EE76E101734} => value removed successfully
HKCR\CLSID\{4AB31959-F732-4360-B3CF-6EE76E101734} => key not found.
WinRing0_1_2_0 => service removed successfully
C:\Users\milan\Desktop\FRSTLauncher.exe => moved successfully
C:\Users\milan\Desktop\sfcdetails.txt => moved successfully
C:\rsit => moved successfully
C:\AdwCleaner => moved successfully
C:\Program Files\trend micro => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C3CC18E3-42FF-4463-A537-EBB5E743C89A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C3CC18E3-42FF-4463-A537-EBB5E743C89A}" => key removed successfully
C:\WINDOWS\System32\Tasks\{929C1364-770E-44C1-A496-4B4189C18251} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{929C1364-770E-44C1-A496-4B4189C18251}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{463F7243-DA51-4906-A3DF-7F68BE77D69C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{463F7243-DA51-4906-A3DF-7F68BE77D69C}" => key removed successfully
C:\WINDOWS\System32\Tasks\{9A81871D-626E-4318-899D-8A2347823101} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9A81871D-626E-4318-899D-8A2347823101}" => key removed successfully
EmptyTemp: => 135.7 MB temporary data Removed.

The system needed a reboot.

==== End of Fixlog 08:05:11 ====

VIRY.CZ

Podozrenie na virus

Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus

Re: Podozrenie na virus