VIRY.CZ

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ricardino at 2015-10-26 12:54:47
Microsoft Windows 10 Home
System drive C: has 385 GB (84%) free of 456 GB
Total RAM: 16296 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:54:48, on 26.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\Programy\OpenVPN\bin\openvpn-gui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
D:\Programy\OpenVPN\bin\openvpn.exe
C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Ricardino.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: DCA - {B49699FC-1665-4414-A1CB-C4A2A4A13EEC} - C:\Program Files (x86)\Consumer Input\InternetExplorer\dca-bho.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Programy\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{946e0766-5d15-455d-afbd-d7bc10d32352}: NameServer = 213.151.222.34 85.237.225.250
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - D:\Programy\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: CCSDK - Unknown owner - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel Bluetooth Service (ibtsiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: LenovoSetSvr - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: LUService - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
O23 - Service: Maxthon Core Update Service (MaxthonUpdateSvc) - Maxthon - C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: OpenVPN Service (OpenVPNService) - The OpenVPN Project - D:\Programy\OpenVPN\bin\openvpnserv.exe
O23 - Service: PGService - PointGrab LTD - C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
O23 - Service: PG_Service_Launcher - PointGrab LTD - C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
O23 - Service: Lenovo PhoneCompanionPusher Service (PhoneCompanionPusher) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
O23 - Service: Lenovo PhoneCompanionVap Service (PhoneCompanionVap) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TESHelper - Lenovo - c:\Program Files\Common Files\Lenovo\Magic Transfer\x64\MagicTransferTESHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14049 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"dwm.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b3ca20fc-9d3a-4877-aec2-0ce7015d2556 -SystemEventPortName:HostProcess-8c69e0b1-9667-4ca0-be1c-6fded56575ed -IoCancelEventPortName:HostProcess-f20ed838-edf8-4d6b-a387-d39eb7379086 -NonStateChangingEventPortName:HostProcess-d0f4d4f8-cdf8-4a58-a87a-28e20de502da -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ca7f1b9d-31d8-415f-8d95-700af0c17ad6 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k netsvcs
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Elantech\ETDService.exe"
"D:\Programy\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe"
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
"C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
dashost.exe {064395ff-54f1-4568-86e9046049953784}
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\ProgramData\DatacardService\DCSHelper.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
igfxEM.exe
igfxHK.exe
igfxTray.exe
taskeng.exe {8B483738-8ECF-47CD-A38A-EA959B267A38}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Windows\RTFTrack.exe"
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
"C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe" 1 1 1 1
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5256.0.851587166\996359333" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4256 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A1_Stable_R1/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5256.2.555704934\412748867" --font-cache-shared-handle=2708 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A1_Stable_R1/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5256.3.670138303\1178960757" --font-cache-shared-handle=2656 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A1_Stable_R1/*PasswordGeneration/Disabled/*PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5256.6.477850592\1445301900" --font-cache-shared-handle=5124 /prefetch:673131151

C:\Windows\System32\InstallAgent.exe -Embedding
"D:\Programy\OpenVPN\bin\openvpn-gui.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
openvpn --config "ipvanish-LU-Luxembourg-lux-c01.ovpn" --service 124400003120 0 --log "D:\Programy\OpenVPN\log\ipvanish-LU-Luxembourg-lux-c01.log" --auth-retry interact --management 127.0.0.1 25340 stdin --management-query-passwords --management-query-proxy --management-hold
\??\C:\WINDOWS\system32\conhost.exe 0x4
adb fork-server server
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-835443a8-9619-43f9-9da4-e7839e197df9 -SystemEventPortName:HostProcess-8225259f-ef6c-45a4-bee5-4daaefc45008 -IoCancelEventPortName:HostProcess-ba4e9236-8219-4fae-b800-69084f67073b -NonStateChangingEventPortName:HostProcess-ac2c86bf-5cc7-4de2-a7b0-fe34140676e2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:af64796d-b689-40b4-a1ae-90e5ffa95a6e -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A1_Stable_R1/*PasswordGeneration/Disabled/*PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5256.10.1392116367\160942379" --font-cache-shared-handle=6752 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AudioProcessing48kHzSupport/Default/*AutofillClassifier/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A1_Stable_R1/*PasswordGeneration/Disabled/*PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Enabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5256.11.805888381\468885633" --font-cache-shared-handle=6108 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5256.12.415965337\1844645345" --ppapi-flash-args=enable_hw_video_decode=1 --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding

C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"D:\Programy\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CIMT_daily_S-1-5-21-488808105-4097251070-3538552251-1001.job - C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe /daily
C:\WINDOWS\tasks\CIMT_S-1-5-21-488808105-4097251070-3538552251-1001.job - C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe
C:\WINDOWS\tasks\ConsumerInputUpdateTaskMachineCore.job - C:\Program Files (x86)\Consumer Input\Update\ConsumerInputUpdate.exe /c
C:\WINDOWS\tasks\ConsumerInputUpdateTaskMachineUA.job - C:\Program Files (x86)\Consumer Input\Update\ConsumerInputUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d041401ac3b372.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d091142e5862b2.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d0bfa37948bd6.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01 205416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-27 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 877720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 2322576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-27 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25 728840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01 139368]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-27 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}]
Consumer Input DCA BHO - C:\Program Files (x86)\Consumer Input\InternetExplorer\dca-bho.dll [2015-08-21 844816]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 704664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-27 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25 617736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-09-27 3743976]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2015-06-16 5060864]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-01-21 2234144]
"ShadowPlay"=C:\windows\system32\nvspcap64.dll [2014-01-21 1179576]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2014-12-04 836592]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-12-04 16093512]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-12-04 8235848]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2015-07-08 5595848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EpicScale"= []
"DAEMON Tools Lite"=D:\Programy\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Bloody2"=C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-12-30 16294912]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"=C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [2014-09-09 110344]
"CLVirtualDrive"=C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [2014-09-09 492808]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-10-26 12:39:32 ----D---- C:\rsit
2015-10-17 10:56:06 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2015-10-07 15:00:00 ----D---- C:\.Xilinx
2015-10-07 14:58:06 ----D---- C:\ProgramData\.cse
2015-10-07 14:57:38 ----D---- C:\Program Files (x86)\Digilent
2015-10-07 14:57:38 ----A---- C:\WINDOWS\system32\drivers\xpc4drvr.sys
2015-10-07 14:56:59 ----D---- C:\Program Files (x86)\WinPcap
2015-10-07 14:37:54 ----D---- C:\Users\Ricardino\AppData\Roaming\Xilinx
2015-10-02 03:14:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-10-01 14:31:02 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-01 14:31:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-01 14:31:01 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-01 14:31:00 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-10-01 14:30:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-10-01 14:30:58 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-10-01 14:30:56 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-10-01 14:30:55 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-01 14:30:55 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-01 14:30:55 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-01 14:30:54 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-10-01 14:30:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-10-01 14:30:53 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 14:30:53 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-01 14:30:52 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 14:30:51 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-10-01 14:30:51 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 14:30:51 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 14:30:51 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-01 14:30:50 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-10-01 14:30:50 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 14:30:50 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 14:30:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-10-01 14:30:49 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-10-01 14:30:49 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-01 14:30:47 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-10-01 14:30:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-10-01 14:30:47 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-10-01 14:30:47 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-01 14:30:46 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-10-01 14:30:46 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-01 14:30:46 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-01 14:30:46 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-01 14:30:45 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2015-10-01 14:30:45 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-01 14:30:45 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 14:30:45 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-01 14:30:45 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-01 14:30:45 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 14:30:44 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-10-01 14:30:44 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 14:30:44 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-01 14:30:44 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-01 14:30:44 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 14:30:44 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 14:30:44 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 14:30:43 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-10-01 14:30:43 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-10-01 14:30:43 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-01 14:30:43 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 14:30:43 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 14:30:43 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 14:30:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-10-01 14:30:42 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2015-10-01 14:30:42 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-10-01 14:30:42 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-01 14:30:42 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-01 14:30:42 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-01 14:30:41 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-10-01 14:30:41 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-10-01 14:30:41 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 14:30:41 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-10-01 14:30:41 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 14:30:41 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 14:30:41 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-01 14:30:41 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-01 14:30:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 14:30:40 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-10-01 14:30:40 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-01 14:30:40 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-01 14:30:40 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 14:30:40 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 14:30:40 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-01 14:30:39 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-10-01 14:30:39 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-10-01 14:30:39 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-01 14:30:39 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-01 14:30:38 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-10-01 14:30:38 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-10-01 14:30:38 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 14:30:38 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 14:30:38 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 14:30:38 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 14:30:38 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 14:30:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 14:30:37 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-01 14:30:37 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 14:30:37 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-01 14:30:37 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 14:30:36 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-10-01 14:30:36 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-10-01 14:30:36 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-10-01 14:30:36 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 14:30:36 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 14:30:35 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-01 14:30:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-10-01 14:30:34 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2015-10-01 14:30:34 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-10-01 14:30:34 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-10-01 14:30:34 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-01 14:30:34 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 14:30:34 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 14:30:34 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 14:30:33 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-10-01 14:30:33 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-10-01 14:30:33 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-10-01 14:30:33 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-01 14:30:33 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 14:30:33 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-01 14:30:33 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-01 14:30:33 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2015-10-01 14:30:32 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 14:30:32 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 14:30:31 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 14:30:30 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-10-01 14:30:30 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-01 14:30:30 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-01 14:30:30 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 14:30:30 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 14:30:30 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-01 14:30:29 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\mfps.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-01 14:30:29 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-01 14:30:28 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2015-10-01 14:30:28 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-01 14:30:28 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-01 14:30:28 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 14:30:28 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-01 14:30:28 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 14:30:28 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-01 14:30:27 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-01 14:30:27 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-01 14:30:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Speech.Pal.dll
2015-10-01 14:30:26 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2015-10-01 14:30:26 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2015-10-01 14:30:26 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 14:30:26 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-01 14:30:26 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-01 14:30:26 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 14:30:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-01 14:30:25 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-01 14:30:25 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 14:30:25 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 14:30:25 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-01 14:30:24 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-01 14:30:24 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-10-01 14:30:23 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\system32\LocationPeIP.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 14:30:22 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 14:30:21 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-10-01 14:30:21 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-10-01 14:30:21 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2015-10-01 14:30:21 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-01 14:30:21 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-01 14:30:21 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 14:30:21 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 14:30:21 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-01 14:30:20 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2015-10-01 14:30:20 ----A---- C:\WINDOWS\system32\nlasvc.dll
2015-10-01 14:30:19 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 14:30:19 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 14:30:19 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 14:30:19 ----A---- C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-01 14:30:19 ----A---- C:\WINDOWS\system32\LocationPeCell.dll
2015-10-01 14:30:19 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-01 14:30:19 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 14:30:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 14:30:18 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 14:30:18 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 14:30:18 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-09-27 18:42:05 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-09-27 18:41:42 ----A---- C:\WINDOWS\system32\ETDCoInstaller15005.dll

======List of files/folders modified in the last 1 month======

2015-10-26 22:06:24 ----D---- C:\WINDOWS\Tasks
2015-10-26 22:06:24 ----D---- C:\WINDOWS\system32\migration
2015-10-26 22:06:24 ----D---- C:\WINDOWS\system32\catroot2
2015-10-26 22:06:24 ----D---- C:\Windows
2015-10-26 22:06:23 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2015-10-26 22:06:23 ----D---- C:\WINDOWS\SysWOW64
2015-10-26 22:06:23 ----D---- C:\WINDOWS\system32\WinMetadata
2015-10-26 22:06:23 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-26 22:06:23 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-26 22:06:23 ----D---- C:\WINDOWS\system32\drivers
2015-10-26 22:06:23 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-26 22:06:23 ----D---- C:\WINDOWS\system32\Boot
2015-10-26 22:06:23 ----D---- C:\WINDOWS\system32\appraiser
2015-10-26 22:06:22 ----D---- C:\WINDOWS\AppPatch
2015-10-26 22:06:18 ----D---- C:\WINDOWS\WinSxS
2015-10-26 22:06:16 ----SHD---- C:\WINDOWS\Installer
2015-10-26 22:06:16 ----D---- C:\WINDOWS\system32\Sysprep
2015-10-26 22:06:15 ----D---- C:\Users\Ricardino\AppData\Roaming\Winamp
2015-10-26 22:06:15 ----D---- C:\Users\Ricardino\AppData\Roaming\vlc
2015-10-26 22:06:15 ----D---- C:\Users\Ricardino\AppData\Roaming\uTorrent
2015-10-26 22:06:06 ----D---- C:\ProgramData\Pokki
2015-10-26 22:06:06 ----D---- C:\ProgramData\LU
2015-10-26 22:05:56 ----RD---- C:\Program Files (x86)
2015-10-26 22:05:56 ----D---- C:\Program Files (x86)\Common Files
2015-10-26 22:04:38 ----RD---- C:\Program Files
2015-10-26 22:03:35 ----D---- C:\WINDOWS\system32\wbem
2015-10-26 21:57:41 ----D---- C:\WINDOWS\registration
2015-10-26 21:56:55 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-26 21:56:38 ----D---- C:\WINDOWS\Microsoft.NET
2015-10-26 21:55:19 ----HD---- C:\ProgramData
2015-10-26 21:55:19 ----D---- C:\ProgramData\Oracle
2015-10-26 21:54:38 ----D---- C:\Program Files\Java
2015-10-26 21:54:37 ----D---- C:\Program Files (x86)\Lenovo
2015-10-26 21:54:34 ----D---- C:\Program Files (x86)\Java
2015-10-26 21:54:31 ----D---- C:\Program Files (x86)\Consumer Input
2015-10-26 12:54:48 ----D---- C:\Program Files\trend micro
2015-10-26 12:50:08 ----D---- C:\WINDOWS\System32
2015-10-26 12:50:08 ----D---- C:\WINDOWS\INF
2015-10-26 12:50:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-26 12:48:50 ----D---- C:\WINDOWS\Temp
2015-10-26 12:47:13 ----HD---- C:\Program Files\WindowsApps
2015-10-26 12:46:31 ----D---- C:\WINDOWS\Prefetch
2015-10-26 12:40:29 ----D---- C:\WINDOWS\CbsTemp
2015-10-26 12:37:40 ----D---- C:\WINDOWS\system32\Tasks
2015-10-26 12:35:57 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-10-26 12:24:37 ----D---- C:\WINDOWS\AppReadiness
2015-10-26 12:21:56 ----D---- C:\WINDOWS\system32\sru
2015-10-26 12:21:10 ----SHD---- C:\System Volume Information
2015-10-26 12:20:40 ----D---- C:\WINDOWS\Logs
2015-10-26 12:19:25 ----D---- C:\WINDOWS\system32\config
2015-10-23 17:38:35 ----D---- C:\ProgramData\SoftwareDistribution
2015-10-23 17:36:53 ----D---- C:\AdwCleaner
2015-10-22 16:24:38 ----D---- C:\WINDOWS\system32\NDF
2015-10-17 11:13:09 ----D---- C:\WINDOWS\system32\MRT
2015-10-16 11:07:54 ----A---- C:\WINDOWS\system32\MRT.exe
2015-10-16 10:36:24 ----A---- C:\IFRToolLog.txt
2015-10-15 19:58:53 ----D---- C:\WINDOWS\LiveKernelReports
2015-10-13 19:46:41 ----D---- C:\Program Files\TAP-Windows
2015-10-13 15:24:45 ----D---- C:\ProgramData\CyberLink
2015-10-12 17:01:22 ----D---- C:\WINDOWS\debug
2015-10-12 15:40:03 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-08 15:16:39 ----D---- C:\WINDOWS\system32\LogFiles
2015-10-07 20:40:43 ----D---- C:\Program Files (x86)\Microsoft Toolkit Final
2015-10-02 16:21:56 ----D---- C:\WINDOWS\rescache
2015-10-02 03:11:17 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-10-02 03:11:17 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-10-02 03:11:16 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-02 03:11:16 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-02 03:11:15 ----SD---- C:\WINDOWS\system32\F12
2015-10-02 03:11:14 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-02 03:11:14 ----D---- C:\WINDOWS\Provisioning
2015-10-02 03:11:13 ----D---- C:\WINDOWS\L2Schemas
2015-09-28 20:27:05 ----D---- C:\Program Files\Elantech

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-07-14 251632]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-07-14 72400]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-11-12 91912]
R1 dtsoftbus01;@oem53.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2015-01-04 283064]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2014-10-10 243440]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2014-10-10 169280]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2014-10-10 44632]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 SASDIFSV;SASDIFSV; \??\D:\Programy\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\D:\Programy\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2014-10-10 222280]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 ACPIVPC;@oem34.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-12-04 35576]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 ETD;@oem89.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-09-27 468568]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2015-09-27 30808]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2013-11-30 91648]
R3 ibtusb;@oem72.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2015-07-14 263952]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-07-17 6389688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 iwdbus;@oem50.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-03-26 27032]
R3 MEIx64;@oem70.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2015-07-10 3496216]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-07-23 11142984]
R3 nvvad_WaveExtensible;@oem13.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 rt640x64;@oem81.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-22 886528]
R3 RTSPER;@oem74.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-06-15 761600]
R3 rtsuvc;@oem75.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-06-16 3068160]
R3 tap0901;@oem5.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2014-04-08 27136]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-09-17 929280]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 dg_ssudbus;@oem36.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-03-26 38296]
S3 IntcDAud;@oem18.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-04-16 450520]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2009-10-20 47632]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-03 934752]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
S3 ssudmdm;@oem25.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 tapoas;@oem26.inf,%DeviceDescription%;TAP-Win32 Adapter OAS; C:\WINDOWS\System32\drivers\tapoas.sys [2012-07-15 30720]
S4 RsFx0103;RsFx0103 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0103.sys [2009-03-30 311656]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; D:\Programy\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2014-07-10 592880]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2015-07-08 1353720]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-09-27 134888]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 ibtsiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2014-12-12 125168]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-07-17 351120]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-16 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-03-06 584632]
R2 LenovoSetSvr;LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe [2014-12-04 389680]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-12-04 198192]
R2 MaxthonUpdateSvc;Maxthon Core Update Service; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [2015-08-27 1871784]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2009-03-30 57617752]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-01-21 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-01-21 16939296]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-07-23 937800]
R2 OneSyncSvc_Session1;Sync Host_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2014-12-04 288240]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 157720]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-06-01 5495056]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-18 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 LUService;LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [2014-04-21 37624]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2013-10-26 651856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc_Session9;Sync Host_Session9; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 PG_Service_Launcher;PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [2014-02-26 512776]
S2 PGService;PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [2014-02-26 167176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-07-17 283024]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-09-23 561408]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 OpenVPNService;OpenVPN Service; D:\Programy\OpenVPN\bin\openvpnserv.exe [2014-10-21 33080]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2014-12-04 308720]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session1;Contact Data_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session9;Contact Data_Session9; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2009-10-20 117264]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-03 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-10-14 838224]
S3 TESHelper;TESHelper; c:\Program Files\Common Files\Lenovo\Magic Transfer\x64\MagicTransferTESHelper.exe [2014-12-04 104696]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-22 61976]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 427880]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2009-03-30 254808]

-----------------EOF-----------------

Log je v pořádku.

Ako znížiť to zaťaženie disku? Dosť dlho reštartuje, vypína a zapína win.

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum kontroly: 26.10.2015
Čas kontroly: 17:40
Protokol: log.txt
Správca: Áno

Verzia: 2.2.0.1024
Dazabáza malware: v2015.10.26.05
Databáza rootkitov: v2015.10.23.01
Licencia: Bezplatná verzia
Ochrana pred škodlivým softvérom: Vypnuté
Ochrana pred škodlivými webstránkami: Vypnuté
Vlastná ochrana: Vypnuté

OS: Windows 10
CPU: x64
Súborový systém: NTFS
Používateľ: Ricardino

Typ kontroly: Kontrola hrozieb
Výsledok: Dokončená
Skontrolovaných objektov: 346901
Uplynulý čas: 12 min, 37 s

Pamäť: Zapnuté
Pri spustení: Zapnuté
Súborový systém: Zapnuté
Archívy: Zapnuté
Rootkity: Vypnuté
Heuristika: Zapnuté
PUP: Zapnuté
PUM: Zapnuté

Procesy: 0
(Žiadne škodlivé položky neboli zistené)

Moduly: 0
(Žiadne škodlivé položky neboli zistené)

Kľúče databázy Registry: 131
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\APPID\{A57F7191-1E7F-4852-BAAF-F80A43E2687A}, , [25689dbedbb059dd96b41e075da54db3],
PUP.Optional.Compete, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{A57F7191-1E7F-4852-BAAF-F80A43E2687A}, , [25689dbedbb059dd96b41e075da54db3],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{A57F7191-1E7F-4852-BAAF-F80A43E2687A}, , [25689dbedbb059dd96b41e075da54db3],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\APPID\{D2A19E15-4D23-41F5-8035-E2D730DA691C}, , [0c814b104f3c8ea84dc466b7f50d6a96],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{D2A19E15-4D23-41F5-8035-E2D730DA691C}, , [0c814b104f3c8ea84dc466b7f50d6a96],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{D2A19E15-4D23-41F5-8035-E2D730DA691C}, , [0c814b104f3c8ea84dc466b7f50d6a96],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D2A19E15-4D23-41F5-8035-E2D730DA691C}, , [0c814b104f3c8ea84dc466b7f50d6a96],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{D2A19E15-4D23-41F5-8035-E2D730DA691C}, , [0c814b104f3c8ea84dc466b7f50d6a96],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\APPID\{D5FA0C65-08BE-4F86-B30F-2E285694863A}, , [c3ca174468233df9e96c69bc5ea4c739],
PUP.Optional.Compete, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{D5FA0C65-08BE-4F86-B30F-2E285694863A}, , [c3ca174468233df9e96c69bc5ea4c739],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{D5FA0C65-08BE-4F86-B30F-2E285694863A}, , [c3ca174468233df9e96c69bc5ea4c739],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\APPID\{DD7C44CC-0F60-4FD9-A38F-5CF30D698AC2}, , [bfcefa61fc8fc96dda75f92c8e745da3],
PUP.Optional.Compete, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{DD7C44CC-0F60-4FD9-A38F-5CF30D698AC2}, , [bfcefa61fc8fc96dda75f92c8e745da3],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{DD7C44CC-0F60-4FD9-A38F-5CF30D698AC2}, , [bfcefa61fc8fc96dda75f92c8e745da3],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\APPID\{E3EBCC2D-D239-4CA9-BF77-8DC68381D6CA}, , [3f4e79e287040036bc560c11ca389868],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{E3EBCC2D-D239-4CA9-BF77-8DC68381D6CA}, , [3f4e79e287040036bc560c11ca389868],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{E3EBCC2D-D239-4CA9-BF77-8DC68381D6CA}, , [3f4e79e287040036bc560c11ca389868],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E3EBCC2D-D239-4CA9-BF77-8DC68381D6CA}, , [3f4e79e287040036bc560c11ca389868],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{E3EBCC2D-D239-4CA9-BF77-8DC68381D6CA}, , [3f4e79e287040036bc560c11ca389868],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0C6D49F4-6E41-4632-BE86-F210D5D894BA}, , [95f8c9922f5c42f437d11508d32ff50b],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{0C6D49F4-6E41-4632-BE86-F210D5D894BA}, , [95f8c9922f5c42f437d11508d32ff50b],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0DC6DC6C-048E-4B03-8F2D-7D6B90571172}, , [4746d982a2e93402ea3880a5986ab14f],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{0DC6DC6C-048E-4B03-8F2D-7D6B90571172}, , [4746d982a2e93402ea3880a5986ab14f],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{1AB0B6A3-9BC5-419B-B86D-40FA2998A131}, , [3f4ec596d4b7a69042c764b9b34f6f91],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{1AB0B6A3-9BC5-419B-B86D-40FA2998A131}, , [3f4ec596d4b7a69042c764b9b34f6f91],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{1E218D71-6C28-46EE-AC6A-20C95989D566}, , [741962f991fac3739f84988d60a2e917],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{1E218D71-6C28-46EE-AC6A-20C95989D566}, , [741962f991fac3739f84988d60a2e917],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3A40DF53-EB22-49FE-9246-8084403424E7}, , [3f4eb4a754370b2b0307958823dfaa56],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{3A40DF53-EB22-49FE-9246-8084403424E7}, , [3f4eb4a754370b2b0307958823dfaa56],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3DBBAB3C-4077-4EC4-BF2C-E89C7784846A}, , [1c7199c2741757df878426f7ef131de3],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{3DBBAB3C-4077-4EC4-BF2C-E89C7784846A}, , [1c7199c2741757df878426f7ef131de3],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{5CF02202-6278-47EE-9947-C2D0A057EABD}, , [ff8ec992d7b4cd695cb06faeb84a3fc1],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{5CF02202-6278-47EE-9947-C2D0A057EABD}, , [ff8ec992d7b4cd695cb06faeb84a3fc1],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{65BF611F-85CD-4E7F-966C-853573462C14}, , [7d10e7746c1f94a218f526f719e99f61],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{65BF611F-85CD-4E7F-966C-853573462C14}, , [7d10e7746c1f94a218f526f719e99f61],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{7D87094D-49E1-4C72-8C9E-3D937A119BE5}, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\DcaHost.DcaHost.1, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\DcaHost.DcaHost, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\DcaHost.DcaHost, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\DcaHost.DcaHost, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\DcaHost.DcaHost.1, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\DcaHost.DcaHost.1, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{7D87094D-49E1-4C72-8C9E-3D937A119BE5}, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7D87094D-49E1-4C72-8C9E-3D937A119BE5}, , [75189bc09eed62d4e14392939f6301ff],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{87A125E5-B663-496F-954E-488A82FAC012}, , [e0ad4e0d9bf0e0561feff92439c9bf41],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{87A125E5-B663-496F-954E-488A82FAC012}, , [e0ad4e0d9bf0e0561feff92439c9bf41],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{8AF9C44C-E497-4776-A7EF-F6455F982825}, , [a3eac299c7c43600e62966b713ef16ea],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{8AF9C44C-E497-4776-A7EF-F6455F982825}, , [a3eac299c7c43600e62966b713ef16ea],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\dcabho.Dca.1, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\dcabho.Dca, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\dcabho.Dca, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\dcabho.Dca, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\dcabho.Dca.1, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\dcabho.Dca.1, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKU\S-1-5-21-488808105-4097251070-3538552251-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKU\S-1-5-21-488808105-4097251070-3538552251-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}, , [aedf3e1da3e84aec937daf6e07fb9070],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D4F484EE-BF68-4B61-AB83-C1E0EF88D876}, , [2d60fb60b9d2bc7a170ea77e11f1dc24],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{D4F484EE-BF68-4B61-AB83-C1E0EF88D876}, , [2d60fb60b9d2bc7a170ea77e11f1dc24],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{F90B8F59-792D-4F5A-97AD-06E83284F9AB}, , [038a9fbc305bb1853ad9b16cdf232cd4],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{F90B8F59-792D-4F5A-97AD-06E83284F9AB}, , [038a9fbc305bb1853ad9b16cdf232cd4],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F90B8F59-792D-4F5A-97AD-06E83284F9AB}, , [038a9fbc305bb1853ad9b16cdf232cd4],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\APPID\CptUrlPassthru.DLL, , [0a8370eb0c7f52e48edaeca950b326da],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\APPID\dca-bho.DLL, , [e7a67cdf68232313d099cec745be22de],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\APPID\dca-host.exe, , [f796f06b593291a53238831204ffa060],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\CptUrlPassthru.DLL, , [f29b203b94f73cfa6dfb0f8651b26a96],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\dca-bho.DLL, , [216ca7b4b3d848ee5e0bf1a412f160a0],
PUP.Optional.Compete, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\dca-host.exe, , [94f979e23d4efc3a9ccea6ef8c77e41c],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\CIMT_daily_S-1-5-21-488808105-4097251070-3538552251-1001, , [18757be0fe8d39fd83644c08a1627987],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\CIMT_S-1-5-21-488808105-4097251070-3538552251-1001, , [abe2c794e5a63ef87f69282c699a2bd5],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ConsumerInputUpdateTaskMachineCore, , [ace16af1f7947fb7b4354e06ca39d729],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ConsumerInputUpdateTaskMachineUA, , [1677e7741d6e77bffbeec193a75c6c94],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CompeteInc, , [0b82312a94f78da98684f352ff0444bc],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\ConsumerInput, , [622b4c0fe0abdd5926bed67e748f649c],
PUP.Optional.Compete, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\CptUrlPassthru.DLL, , [eaa373e857341d19ca9e3362f70c47b9],
PUP.Optional.Compete, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\dca-bho.DLL, , [7a139dbe1e6db5813534603542c1aa56],
PUP.Optional.Compete, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\dca-host.exe, , [4d403b203b50fe38e486ade8a75c936d],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\com.compete.cinm, , [781572e973185bdb7aec840fc043f10f],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\LENOVO\VisualDiscovery, , [414c76e505866ec821f91475bf449e62],
PUP.Optional.ConsumerInput, HKU\S-1-5-21-488808105-4097251070-3538552251-1001\SOFTWARE\Compete, , [e5a88dce1a71d26433d62025d231a759],
PUP.Optional.EpicScale, HKU\S-1-5-21-488808105-4097251070-3538552251-1001\SOFTWARE\EpicScale, , [0984c992eba0181e5da72f45887a6f91],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{60260024-AA48-4A2F-84DA-2C2DCB24AAD0}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\CptUrlPassthru.HttpMonitor.1, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\CptUrlPassthru.HttpMonitor, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CptUrlPassthru.HttpMonitor, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CptUrlPassthru.HttpMonitor, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CptUrlPassthru.HttpMonitor.1, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CptUrlPassthru.HttpMonitor.1, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{60260024-AA48-4A2F-84DA-2C2DCB24AAD0}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{82025773-B1B0-497b-B942-0171A2E42C3C}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\CptUrlPassthru.HttpHeaders.1, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\CptUrlPassthru.HttpHeaders, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CptUrlPassthru.HttpHeaders, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CptUrlPassthru.HttpHeaders, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CptUrlPassthru.HttpHeaders.1, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CptUrlPassthru.HttpHeaders.1, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{82025773-B1B0-497B-B942-0171A2E42C3C}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0E02C3DE-FDA9-4381-99E6-7ED76A518504}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{0E02C3DE-FDA9-4381-99E6-7ED76A518504}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D8F06F2A-FDCE-4F12-8D2A-7A97A752CF1A}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{D8F06F2A-FDCE-4F12-8D2A-7A97A752CF1A}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\TYPELIB\{CB6BF8B6-E12B-42FA-A478-91BCCDE475DC}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\INTERFACE\{2E5FA7B4-61A2-4662-BBCE-62BBB20FC649}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\INTERFACE\{5D7F05E3-075A-43AF-8BC7-21E2F7F38845}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\INTERFACE\{617E26CE-E6E1-4C75-A68A-A001F2B98491}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\INTERFACE\{79FBDBEA-A722-4ABD-BEC0-B7D463F6BA0E}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\INTERFACE\{8128586C-DF69-4266-873F-CF4C6F705A7C}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\INTERFACE\{C1F9CFCE-A7DC-4072-8B31-1DEA57004C86}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\INTERFACE\{EA4AD895-2A7F-430E-B973-DEE6C4E743A9}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\INTERFACE\{EBF4B60F-A863-426F-BE6F-5DFE83BC574F}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{2E5FA7B4-61A2-4662-BBCE-62BBB20FC649}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{5D7F05E3-075A-43AF-8BC7-21E2F7F38845}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{617E26CE-E6E1-4C75-A68A-A001F2B98491}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{79FBDBEA-A722-4ABD-BEC0-B7D463F6BA0E}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{8128586C-DF69-4266-873F-CF4C6F705A7C}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C1F9CFCE-A7DC-4072-8B31-1DEA57004C86}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EA4AD895-2A7F-430E-B973-DEE6C4E743A9}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EBF4B60F-A863-426F-BE6F-5DFE83BC574F}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{2E5FA7B4-61A2-4662-BBCE-62BBB20FC649}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{5D7F05E3-075A-43AF-8BC7-21E2F7F38845}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{617E26CE-E6E1-4C75-A68A-A001F2B98491}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{79FBDBEA-A722-4ABD-BEC0-B7D463F6BA0E}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{8128586C-DF69-4266-873F-CF4C6F705A7C}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C1F9CFCE-A7DC-4072-8B31-1DEA57004C86}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EA4AD895-2A7F-430E-B973-DEE6C4E743A9}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EBF4B60F-A863-426F-BE6F-5DFE83BC574F}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{CB6BF8B6-E12B-42FA-A478-91BCCDE475DC}, , [ace1b3a872194ee88c9acf9a679b58a8],
PUP.Optional.VisualDiscovery, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{CB6BF8B6-E12B-42FA-A478-91BCCDE475DC}, , [ace1b3a872194ee88c9acf9a679b58a8],

Hodnoty databázy Registry: 2
PUP.Optional.ConsumerInput, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7D87094D-49E1-4C72-8C9E-3D937A119BE5}|AppPath, C:\Program Files (x86)\Consumer Input\InternetExplorer, , [4e3f26355b301e1874f3672c49ba01ff]
PUP.Optional.ConsumerInput, HKU\S-1-5-21-488808105-4097251070-3538552251-1001\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|ConsumerInput@Compete, C:\Program Files (x86)\Consumer Input\Firefox\ciff-3.2.0-12191.xpi, , [5b329ebdabe05fd709d903515ca7d62a]

Údaj databázy Registry: 0
(Žiadne škodlivé položky neboli zistené)

Priečinky: 11
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Firefox, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\x64, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Monitoring, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\Download, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\Download\{1138A907-2253-45D6-99C1-843A0AC58730}, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\Download\{1138A907-2253-45D6-99C1-843A0AC58730}\0.0.0.0, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.VisualDiscovery, C:\Program Files (x86)\Lenovo\VisualDiscovery, , [ace1b3a872194ee88c9acf9a679b58a8],

Súbory: 30
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\dca-bho.dll, , [aedf3e1da3e84aec937daf6e07fb9070],
HackTool.Komodia, C:\Program Files (x86)\Microsoft Toolkit Final\remedia-installer-1020.exe, , [7e0f3c1fbccf54e20ce1a93af011a858],
PUP.Optional.ConsumerInput, C:\Windows\System32\Tasks\CIMT_daily_S-1-5-21-488808105-4097251070-3538552251-1001, , [a1ecc19aa5e660d69f3bb0a4b44fc838],
PUP.Optional.ConsumerInput, C:\Windows\System32\Tasks\CIMT_S-1-5-21-488808105-4097251070-3538552251-1001, , [088538231e6dfe3873680d479271ef11],
PUP.Optional.ConsumerInput, C:\Windows\Tasks\CIMT_daily_S-1-5-21-488808105-4097251070-3538552251-1001.job, , [f598dd7e3b506fc74597173d4bb89d63],
PUP.Optional.ConsumerInput, C:\Windows\Tasks\CIMT_S-1-5-21-488808105-4097251070-3538552251-1001.job, , [e9a4bba026659e98f4e978dc7c87e719],
PUP.Optional.ConsumerInput, C:\Windows\Tasks\ConsumerInputUpdateTaskMachineCore.job, , [632ab2a9622941f5dd01d0849e65d729],
PUP.Optional.ConsumerInput, C:\Windows\Tasks\ConsumerInputUpdateTaskMachineUA.job, , [f29b85d62a6120162eb0cf85867dae52],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Firefox\uninstall.ico, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\cpturlpassthru.dll, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\dca-host.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\dca.js, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\mozjs185-1.0.dll, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\uninstall.ico, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\x64\cpturlpassthru.dll, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\InternetExplorer\x64\dca-bho.dll, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Monitoring\cinm-host.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Monitoring\uninstall.ico, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\ConsumerInputUpdate.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309\ConsumerInputCrashHandler.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309\ConsumerInputUpdate.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309\ConsumerInputUpdateBroker.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309\ConsumerInputUpdateHelper.msi, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309\ConsumerInputUpdateOnDemand.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309\goopdate.dll, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309\psmachine.dll, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\1.3.25.309\psuser.dll, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.ConsumerInput, C:\Program Files (x86)\Consumer Input\Update\Download\{1138A907-2253-45D6-99C1-843A0AC58730}\0.0.0.0\ciie-3.2.0-12413.exe, , [86071645e0ab2313274f7ccdea18e818],
PUP.Optional.VisualDiscovery, C:\Program Files (x86)\Lenovo\VisualDiscovery\VisualDiscovery.tlb, , [ace1b3a872194ee88c9acf9a679b58a8],

Fyzické sektory: 0
(Žiadne škodlivé položky neboli zistené)


(end)

Všechny nálezy smažte.

Hotovo.

Změnilo se něco?

ESET Service zaťažuje ten disk na takmer 100%, tak neviem či to je v poriadku. Po čase to aj klesne takmer na 0.

Možná se snaží o nějakou aktualizaci. Zkuste Eset přeinstalovat.

Zatiaľ sa to upokojilo tak to nechám tak, inak to budem riešiť. Navyše nemám momentálne inštalačku.

Ďakujem Vám teda za pomoc a Váš čas.

OK a nemáte zač!