Vir - Google Chrome - Reklamy

[Wooden]

Dobrý den,
pár dnů se mi v Chromu skoro na každé stránce zobrazují dole tři reklamy. Když dám křížek, reklama zmizí, ale zůstane po ní šedé okénko. Když i to zavřu, reklama zmizí, ale při další stránce se zase spustí. Dokonce se mi spouští různé stránky při kliknutí mimo odkazy, vlastně kamkoliv (např. jste výherce atd.). Navíc na Google.cz mi to při vyhledávání na začátek stránky hodí 5 odkazů pod sebou ze stránky http://www.Czech Rep..com

Snad mi pomůžete, předem děkuji.
_____________________________________________________________________________________________________

Logfile of random's system information tool 1.10 (written by random/random)
Run by Wooden at 2015-07-15 17:40:18
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 55 GB (53%) free of 103 GB
Total RAM: 8137 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:40:19, on 15.7.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17910)
Boot mode: Normal

Running processes:
D:\Programy\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
D:\Programy\Avast\avastui.exe
D:\Programy\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Reader_sl.exe
C:\Program Files\trend micro\Wooden.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Programy\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "D:\Programy\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Steam] "D:\Programy\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "D:\Programy\CC Cleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: MSI Gaming APP.lnk = C:\Program Files (x86)\MSI\MSI Gaming APP\SGamingApp.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - D:\Programy\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - D:\Programy\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_LiveUpdate_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7976 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"D:\Programy\Avast\AvastSvc.exe"
atieclxx
C:\Windows\Explorer.EXE
"C:\Windows\system32\Dwm.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe"
taskeng.exe {A4059F50-6006-43DD-9965-D2C27A78968F}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
"D:\Programy\Avast\ng\vbox\AvastVBoxSVC.exe"
ngservice.exe pipeserver
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"D:\Programy\Steam\Steam.exe" -silent
"D:\Programy\CC Cleaner\CCleaner64.exe" /MONITOR
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"D:\Programy\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp.exe" --normal
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"D:\Programy\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Wooden\AppData\Local\Steam\htmlcache" -steampid 3668 -buildid 1433441724 -steamid "0" --disable-gpu-compositing --disable-gpu --enable-threaded-compositing --disable-pinch-virtual-viewport --process-per-tab --disable-spell-checking --enable-direct-write
"C:\Windows\SYSTEM32\WISPTIS.EXE" /ManualLaunch;
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4376.0.1939771477\86155585" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x1002 --gpu-device-id=0x6811 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/BackgroundRendererProcesses/AllowIdleFromBrowser2/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A5_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledWithReno/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_10/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4376 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4376.2.191518319\1348937576" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowIdleFromBrowser2/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A5_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledWithReno/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_10/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4376 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4376.3.1372847516\955200278" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowIdleFromBrowser2/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A5_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledWithReno/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_10/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4376 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4376.8.1739838859\1079440915" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4376.10.2027451325\362333213" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" -startup
taskeng.exe {F66A591A-80C8-483B-9A8B-3ED4758BAF9C}
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\Reader_sl.exe"
"C:\Users\Wooden\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\G2MUpdateTask-S-1-5-21-3557442113-3572958904-2194699600-1000.job - C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mupdate.exe
C:\Windows\tasks\G2MUploadTask-S-1-5-21-3557442113-3572958904-2194699600-1000.job - C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mupload.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - D:\Programy\Avast\aswWebRepIE64.dll [2015-05-19 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - D:\Programy\Avast\aswWebRepIE.dll [2015-05-19 565304]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-24 13662936]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=D:\Programy\Steam\steam.exe [2015-06-04 2892992]
"CCleaner Monitoring"=D:\Programy\CC Cleaner\CCleaner64.exe [2015-04-23 8204056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
D:\Programy\CC Cleaner\CCleaner64.exe [2015-04-23 8204056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Live Update]
C:\Program Files (x86)\MSI\Live Update\Live Update.exe [2015-06-11 3454632]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-09-16 134616]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"AvastUI.exe"=D:\Programy\Avast\AvastUI.exe [2015-05-19 5515496]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]

C:\Users\Wooden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MSI Gaming APP.lnk - C:\Program Files (x86)\MSI\MSI Gaming APP\SGamingApp.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-07-15 17:39:22 ----D---- C:\rsit
2015-07-15 17:39:22 ----D---- C:\Program Files\trend micro
2015-07-15 16:59:53 ----D---- C:\Users\Wooden\AppData\Roaming\Vuze Leap
2015-07-15 16:51:17 ----SHD---- C:\$RECYCLE.BIN
2015-07-15 15:43:42 ----D---- C:\Windows\Temp
2015-07-15 15:43:42 ----A---- C:\Windows\zoek-delete.exe
2015-07-15 15:26:46 ----D---- C:\zoek_backup
2015-07-15 15:22:16 ----D---- C:\AdwCleaner
2015-07-15 14:54:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-15 14:54:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-15 14:54:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-15 14:54:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-15 14:54:55 ----A---- C:\Windows\system32\urlmon.dll
2015-07-15 14:54:55 ----A---- C:\Windows\system32\mshtml.dll
2015-07-15 14:54:55 ----A---- C:\Windows\system32\ieui.dll
2015-07-15 14:54:55 ----A---- C:\Windows\system32\ieframe.dll
2015-07-15 14:54:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-15 14:54:54 ----A---- C:\Windows\system32\iertutil.dll
2015-07-15 14:54:53 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-15 14:54:53 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-15 14:54:53 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-07-15 14:54:53 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-07-15 14:54:53 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-15 14:54:53 ----A---- C:\Windows\system32\iernonce.dll
2015-07-15 14:54:53 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-07-15 14:54:53 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-07-15 14:54:53 ----A---- C:\Windows\system32\ie4uinit.exe
2015-07-15 14:54:52 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-15 14:54:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-15 14:54:52 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-07-15 14:54:52 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-15 14:54:52 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-15 14:54:51 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-07-15 14:54:51 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-15 14:54:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-07-15 14:54:51 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-07-15 14:54:51 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-15 14:54:51 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-07-15 14:54:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-15 14:54:51 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-15 14:54:51 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-07-15 14:54:51 ----A---- C:\Windows\system32\iedkcs32.dll
2015-07-15 14:54:51 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-15 14:54:50 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-07-15 14:54:50 ----A---- C:\Windows\system32\vbscript.dll
2015-07-15 14:54:50 ----A---- C:\Windows\system32\iesetup.dll
2015-07-15 14:54:50 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-15 14:54:49 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-15 14:54:49 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-15 14:54:49 ----A---- C:\Windows\system32\jsproxy.dll
2015-07-15 14:54:49 ----A---- C:\Windows\system32\ieUnatt.exe
2015-07-15 14:54:49 ----A---- C:\Windows\system32\dxtmsft.dll
2015-07-15 14:54:48 ----A---- C:\Windows\system32\wininet.dll
2015-07-15 14:54:48 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-07-15 14:54:48 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-15 14:54:48 ----A---- C:\Windows\system32\jscript.dll
2015-07-15 14:54:47 ----A---- C:\Windows\system32\msrating.dll
2015-07-15 14:54:47 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-15 14:54:45 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-15 14:54:45 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-15 14:54:45 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-15 14:54:45 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-15 14:54:45 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wups2.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wups.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wudriver.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wucltux.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wuapp.exe
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wuapi.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-07-15 14:54:45 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-07-15 14:54:43 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\wdigest.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\TSpkg.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\sspisrv.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\sspicli.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\schannel.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\secur32.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\ncrypt.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\msobjs.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\msaudite.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\lsass.exe
2015-07-15 14:54:43 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\kerberos.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-15 14:54:43 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-15 14:54:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-15 14:54:43 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-15 14:54:43 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-07-15 14:54:43 ----A---- C:\Windows\system32\cryptbase.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\credssp.dll
2015-07-15 14:54:43 ----A---- C:\Windows\system32\auditpol.exe
2015-07-15 14:54:43 ----A---- C:\Windows\system32\adtschema.dll
2015-07-15 14:54:34 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-07-15 14:54:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-15 14:54:34 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 14:54:34 ----A---- C:\Windows\system32\jscript9diag.dll
2015-07-15 14:54:34 ----A---- C:\Windows\system32\jscript9.dll
2015-07-15 14:54:33 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-15 14:54:33 ----A---- C:\Windows\system32\rdpcorets.dll
2015-07-15 14:54:32 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-15 14:54:32 ----A---- C:\Windows\system32\wksprt.exe
2015-07-15 14:54:32 ----A---- C:\Windows\system32\mstscax.dll
2015-07-15 14:54:32 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-15 14:54:31 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-07-15 14:54:31 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-07-15 14:54:31 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-07-15 14:54:31 ----A---- C:\Windows\system32\tsgqec.dll
2015-07-15 14:54:31 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-07-15 14:54:30 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 14:54:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 14:54:30 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 14:54:30 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 14:54:27 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-15 14:54:27 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-15 14:54:27 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 14:54:27 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 14:54:27 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 14:54:27 ----A---- C:\Windows\system32\msimsg.dll
2015-07-15 14:54:27 ----A---- C:\Windows\system32\msihnd.dll
2015-07-15 14:54:27 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 14:54:27 ----A---- C:\Windows\system32\msi.dll
2015-07-15 14:54:27 ----A---- C:\Windows\system32\consent.exe
2015-07-15 14:54:27 ----A---- C:\Windows\system32\authui.dll
2015-07-15 14:54:27 ----A---- C:\Windows\system32\appinfo.dll
2015-07-15 14:54:25 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-15 14:54:25 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-15 14:54:25 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-15 14:54:25 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-15 14:54:25 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-15 14:54:25 ----A---- C:\Windows\system32\lpk.dll
2015-07-15 14:54:25 ----A---- C:\Windows\system32\fontsub.dll
2015-07-15 14:54:25 ----A---- C:\Windows\system32\dciman32.dll
2015-07-15 14:54:25 ----A---- C:\Windows\system32\atmlib.dll
2015-07-15 14:54:25 ----A---- C:\Windows\system32\atmfd.dll
2015-07-14 14:27:15 ----RASHOT---- C:\Windows\SYSWOW64\ActionCenterForms.dll
2015-07-12 01:46:32 ----D---- C:\Windows\SYSWOW64\Adobe
2015-07-11 12:53:25 ----A---- C:\Windows\system32\invagent.dll
2015-07-11 12:53:25 ----A---- C:\Windows\system32\generaltel.dll
2015-07-11 12:53:25 ----A---- C:\Windows\system32\devinv.dll
2015-07-11 12:53:25 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-11 12:53:25 ----A---- C:\Windows\system32\appraiser.dll
2015-07-11 12:53:25 ----A---- C:\Windows\system32\aepdu.dll
2015-07-11 12:53:25 ----A---- C:\Windows\system32\aeinv.dll
2015-07-11 12:53:25 ----A---- C:\Windows\system32\acmigration.dll
2015-07-08 14:39:41 ----A---- C:\debugfile.txt
2015-07-08 14:39:16 ----D---- C:\ProgramData\NovaTech Network
2015-07-08 14:38:46 ----D---- C:\Program Files (x86)\NovaTech Network
2015-06-27 19:09:53 ----A---- C:\Windows\system32\aswBoot.exe
2015-06-25 22:42:59 ----D---- C:\ProgramData\Auslogics
2015-06-20 05:42:22 ----D---- C:\Program Files (x86)\Opera
2015-06-20 05:42:07 ----A---- C:\Windows\prleth.sys
2015-06-20 05:42:07 ----A---- C:\Windows\hgfs.sys
2015-06-17 06:27:49 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-06-17 06:27:48 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-06-17 06:27:48 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-06-17 06:27:48 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-06-17 06:27:48 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-06-17 06:27:48 ----A---- C:\Windows\system32\wintrust.dll
2015-06-17 06:27:48 ----A---- C:\Windows\system32\cryptsvc.dll
2015-06-17 06:27:48 ----A---- C:\Windows\system32\cryptnet.dll
2015-06-17 06:27:48 ----A---- C:\Windows\system32\crypt32.dll

======List of files/folders modified in the last 1 month======

2015-07-15 17:39:48 ----D---- C:\Windows\Prefetch
2015-07-15 17:39:22 ----RD---- C:\Program Files
2015-07-15 17:30:41 ----D---- C:\Windows\system32\config
2015-07-15 17:26:51 ----D---- C:\Windows\Tasks
2015-07-15 16:51:26 ----HD---- C:\ProgramData
2015-07-15 16:50:53 ----D---- C:\Windows
2015-07-15 16:49:55 ----D---- C:\Windows\inf
2015-07-15 16:08:27 ----D---- C:\Windows\rescache
2015-07-15 15:43:34 ----RD---- C:\Program Files (x86)
2015-07-15 15:40:31 ----HD---- C:\Windows\system32\GroupPolicy
2015-07-15 15:40:31 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2015-07-15 15:27:58 ----SHD---- C:\System Volume Information
2015-07-15 15:26:47 ----D---- C:\Windows\SysWOW64
2015-07-15 15:22:49 ----D---- C:\Program Files (x86)\Common Files
2015-07-15 15:19:33 ----D---- C:\Windows\Logs
2015-07-15 15:19:33 ----D---- C:\Windows\debug
2015-07-15 15:02:44 ----D---- C:\Windows\winsxs
2015-07-15 15:01:23 ----D---- C:\Windows\SYSWOW64\en-US
2015-07-15 15:01:23 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-07-15 15:01:23 ----D---- C:\Windows\system32\en-US
2015-07-15 15:01:23 ----D---- C:\Windows\system32\cs-CZ
2015-07-15 15:01:23 ----D---- C:\Windows\System32
2015-07-15 15:01:23 ----D---- C:\Program Files\Internet Explorer
2015-07-15 15:01:23 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-15 15:01:21 ----D---- C:\Windows\system32\drivers
2015-07-15 14:57:50 ----D---- C:\Windows\system32\MRT
2015-07-15 14:53:54 ----D---- C:\Windows\system32\catroot2
2015-07-14 20:06:34 ----SHD---- C:\Windows\Installer
2015-07-14 16:32:31 ----D---- C:\Windows\system32\Tasks
2015-07-14 16:23:37 ----A---- C:\Windows\win.ini
2015-07-14 16:00:01 ----D---- C:\Windows\system32\LogFiles
2015-07-14 14:21:57 ----D---- C:\Windows\SoftwareDistribution
2015-07-14 14:20:21 ----D---- C:\Windows\system32\NDF
2015-07-14 14:17:26 ----SD---- C:\ProgramData\Microsoft
2015-07-11 13:10:36 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-11 13:10:36 ----SD---- C:\Windows\system32\GWX
2015-07-11 12:53:56 ----SD---- C:\Windows\system32\CompatTel
2015-07-11 12:53:56 ----D---- C:\Windows\system32\wbem
2015-07-11 12:53:56 ----D---- C:\Windows\system32\appraiser
2015-07-11 12:53:56 ----D---- C:\Windows\AppPatch
2015-07-09 11:39:09 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-06-27 19:10:29 ----D---- C:\Windows\system32\DriverStore
2015-06-23 13:30:20 ----N---- C:\Windows\system32\MpSigStub.exe
2015-06-20 16:32:36 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-06-20 05:26:03 ----D---- C:\Program Files (x86)\Microsoft
2015-06-18 17:25:40 ----D---- C:\Windows\Panther
2015-06-16 09:43:29 ----D---- C:\Windows\PolicyDefinitions

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-05-19 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-05-19 272248]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-05-19 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-05-19 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-26 442264]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-05-19 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-05-19 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-05-19 137288]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\D:\Programy\Avast\ng\vbox\VBoxAswDrv.sys [2015-05-19 273824]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-11-21 18959360]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-11-21 589312]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-29 3698904]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 KbFilter_Kb_FlexDef3x;HID Keyboard(FlexDef3x) Driver Service; C:\Windows\system32\DRIVERS\KbFilter_FlexDef3x.sys [2012-10-16 22016]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-10-25 769168]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2014-03-19 76568]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2014-03-19 59160]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-11-21 244736]
R2 avast! Antivirus;Avast Antivirus; D:\Programy\Avast\AvastSvc.exe [2015-05-19 343336]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [2014-12-25 23504]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 MSI_LiveUpdate_Service;MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2015-06-08 1736872]
R3 AvastVBoxSvc;AvastVBox COM Service; D:\Programy\Avast\ng\vbox\AvastVBoxSVC.exe [2015-05-19 4034896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-19 116648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-19 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-06-20 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-05-19 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

[vyosek]

Zdravim

Log ze zoek-u a AdwCleaner-u by byl

Je problem i v jinych prohlizezich??

[Wooden]

Speciálně jsem si stáhl Firefox na porovnání a tam je to v pořádku.

Přikládám log z Adwcleaneru:

# AdwCleaner v4.208 - Log vytvořen 15/07/2015 v 18:30:16
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-15.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Wooden - WOODEN-PC
# Spuštěno z : C:\Users\Wooden\Desktop\adwcleaner_4.208.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Soubor Smazáno : C:\Users\Wooden\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_recordpage-a.akamaihd.net_0.localstorage
Soubor Smazáno : C:\Users\Wooden\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_recordpage-a.akamaihd.net_0.localstorage-journal

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****


***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17909


-\\ Mozilla Firefox v39.0 (x86 cs)


-\\ Google Chrome v43.0.2357.134


*************************

AdwCleaner[R0].txt - [7610 bytů] - [15/07/2015 15:22:21]
AdwCleaner[R1].txt - [879 bytů] - [15/07/2015 15:24:43]
AdwCleaner[R2].txt - [1327 bytů] - [15/07/2015 18:29:52]
AdwCleaner[S0].txt - [6456 bytů] - [15/07/2015 15:22:47]
AdwCleaner[S1].txt - [940 bytů] - [15/07/2015 15:25:13]
AdwCleaner[S2].txt - [1250 bytů] - [15/07/2015 18:30:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1308 bytů] ##########

___________________________________________________________________________________________________________________
___________________________________________________________________________________________________________________

A tu je log ze Zoeku:

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Wooden on st 15.07.2015 at 18:32:37,68.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Wooden\Desktop\zoek.exe [Scan all users] [Deep Scan] [Auto Clean]

==== Older Logs ======================

C:\zoek-results2015-07-15-145109.log 61131 bytes

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

D:\Programy\Avast\AvastSvc.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
D:\Programy\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
D:\Programy\Avast\avastui.exe
D:\Programy\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Wooden\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\Wooden\AppData\Roaming\Vuze Leap deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted

==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 8137 MB
CPU Info: Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz
CPU Speed: 3138,7 MHz
Sound Card: Reproduktory (Realtek High Defi |
Realtek Digital Output (Realtek |
Display Adapters: AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | AMD Radeon R9 200 Series | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; BenQ XL2411Z (Digital) |
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (E: | ) E: TSSTcorpCDDVDW SH-224DB
Ports: COM3 | COM1 LPT1
Mouse: 6 Button Wheel Mouse Present
Hard Disks: C: 100,5GB | D: 830,9GB
Hard Disks - Free: C: 53,3GB | D: 704,4GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 10/24/13 | ALASKA - 1072009
Time Zone: Střední Evropa (běžný čas)
Motherboard *: Gigabyte Technology Co., Ltd. B85M-D3H
Country: ¬esk ˙republika
Language: CSY

==== System Specs (Software) ======================

Anti-Virus: avast! Antivirus On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: avast! Antivirus disabled (Outdated)
Firewall: avast! Antivirus disabled
Default Browser: Google Chrome 43.0.2357.134
Internet Explorer Version: 11.0.9600.17914
Mozilla Firefox version: 39.0 (x86 cs)
Google Chrome version: 43.0.2357.134
Adobe Reader version: 15.7.20033.133275
Shockwave Player version: 12.1.8r158

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-06-20 03:42:07 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\prleth.sys
2015-06-20 03:42:07 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\hgfs.sys
====== C:\Users\Wooden\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-07-15 12:54:57 116F506573B59B85CD0DC18527E9951A 19877376 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2015-07-15 12:54:56 AFAEB9E4269846C64DC9721B1BFA5CEC 12855296 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2015-07-15 12:54:56 4E4B3CAC5C62415AF5C6B0167A376EB8 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2015-07-15 12:54:56 37BC6BC6CFC38A6202B28459F7CCE4CD 479232 ----a-w- C:\Windows\SysWOW64\ieui.dll
2015-07-15 12:54:56 05CA106A1B68770BDABB9AA7AEAE516A 1310720 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2015-07-15 12:54:54 8EDF7B6D3A563DAA06DD87053C734168 2279424 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2015-07-15 12:54:53 E8F3572F002B556D19AC3AE4A11CAC2E 342736 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2015-07-15 12:54:53 E42BB0E02C8F6C8D1CCBFE6AB8EB199F 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2015-07-15 12:54:53 E3883C13DB4D19E29095C9F4BC27B755 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2015-07-15 12:54:53 D503616B296B869486AA84D6DB8FB6A5 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-15 12:54:53 1A04239A054D810CF32C46F2B70C47B7 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2015-07-15 12:54:52 95C40DFE3B3CFCEBA2DF9E493945A7B5 689152 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2015-07-15 12:54:52 87E5B70C9F0DE7E3D620E1E3A60AA274 504320 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2015-07-15 12:54:52 18465944F711AD3FDE58675C3C42FA99 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2015-07-15 12:54:52 019019007E6980EACAC80DE04B5D330A 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-07-15 12:54:51 E475D4B65088F4F7FABF7D427CD3D30E 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2015-07-15 12:54:51 CC044CFF6018AD0368AF3A8149721407 2052608 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2015-07-15 12:54:51 81ED1F775E5DDBE990D9C3AFF507DAC2 664064 ----a-w- C:\Windows\SysWOW64\jscript.dll
2015-07-15 12:54:51 442DB5B16073DE2E79E1912D0B77F343 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2015-07-15 12:54:51 43CF584D989A4A0EA6B5D3EBFAD260B7 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2015-07-15 12:54:51 2CC6836C44C84583386702468125654F 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2015-07-15 12:54:51 0CB44ADB09C5BE7CE9D1D1F04E909067 418304 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2015-07-15 12:54:50 0DE5FE06603CF80238EFD9D67AB45A56 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2015-07-15 12:54:49 72D524ED31A2FBA7432801361CE41FC3 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
2015-07-15 12:54:49 63B01F72FD727D5736DBEF54174D8F93 1951232 ----a-w- C:\Windows\SysWOW64\wininet.dll
2015-07-15 12:54:49 17DFCBA042195666632C889E04913E19 341504 ----a-w- C:\Windows\SysWOW64\html.iec
2015-07-15 12:54:45 E2A2B221A47271DD4176FB9B93F670E6 93184 ----a-w- C:\Windows\SysWOW64\wudriver.dll
2015-07-15 12:54:45 CBC91E2E6158358E82D153D811B73C38 30208 ----a-w- C:\Windows\SysWOW64\wups.dll
2015-07-15 12:54:45 7F13188A9656355F664313334971DA22 173056 ----a-w- C:\Windows\SysWOW64\wuwebv.dll
2015-07-15 12:54:45 1728A7831E95BCEEEA3F0D07AE6F74EE 566784 ----a-w- C:\Windows\SysWOW64\wuapi.dll
2015-07-15 12:54:45 13810657EE732C2F5453C0C877FD5DB2 34816 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2015-07-15 12:54:43 E97B4515FC3846CB5C6853C40E71EF28 36864 ----a-w- C:\Windows\SysWOW64\cryptbase.dll
2015-07-15 12:54:43 E6F375BAA4F839592627DA3E95BF3977 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll
2015-07-15 12:54:43 E344031017D52F5F1A4C759A815625CC 259584 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
2015-07-15 12:54:43 CA017983095846BFCFBE9C02B40958B3 221184 ----a-w- C:\Windows\SysWOW64\ncrypt.dll
2015-07-15 12:54:43 A719B9156A6DCDBACC201D9163AFF8D1 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll
2015-07-15 12:54:43 A41BF25E4F145E1BC00445B6421B9E11 686080 ----a-w- C:\Windows\SysWOW64\adtschema.dll
2015-07-15 12:54:43 98226182583DF1715F1BE6CCEA6E8D95 248832 ----a-w- C:\Windows\SysWOW64\schannel.dll
2015-07-15 12:54:43 96741CBB4CC3638A2BCB11F93B92B738 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
2015-07-15 12:54:43 81E207D09B2A7723A549EFB34B47C7EA 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
2015-07-15 12:54:43 6AE6E08938D5BA9D8BA305506620B48D 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll
2015-07-15 12:54:43 4466D67AC240FE1CCCB32BE743BCB488 552960 ----a-w- C:\Windows\SysWOW64\kerberos.dll
2015-07-15 12:54:43 393FDE87F56A8E98AC1B37ADB2181332 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
2015-07-15 12:54:43 2E8C9C3223E05F4B42FB89C03DD09C1D 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
2015-07-15 12:54:43 2B4A31319D74B3D3407AB64942B7FF32 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe
2015-07-15 12:54:43 02CD86D59807467D065F521BE81BB858 665088 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll
2015-07-15 12:54:34 3D73FC0D0997DA1EF6F705EF9936AB20 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2015-07-15 12:54:34 31165F9D71D3C249AB97FBAE55DE4B49 4520448 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2015-07-15 12:54:32 6E91F67335D57DDFFE798C815444B0E3 210432 ----a-w- C:\Windows\SysWOW64\cewmdm.dll
2015-07-15 12:54:31 603ADCCAA52D1E0675C63646AFBBA992 856064 ----a-w- C:\Windows\SysWOW64\rdvidcrl.dll
2015-07-15 12:54:31 5E3ED0FB3D07258A72C27CAFAA9D0101 6131200 ----a-w- C:\Windows\SysWOW64\mstscax.dll
2015-07-15 12:54:31 2CECF5A9E952E3165F14267544A2E6A6 53248 ----a-w- C:\Windows\SysWOW64\tsgqec.dll
2015-07-15 12:54:30 4548507ED3C17DB4739DBBEAF6378004 1414656 ----a-w- C:\Windows\SysWOW64\ole32.dll
2015-07-15 12:54:30 143046AC227C193B5B2E0E20BC0CF1DD 312320 ----a-w- C:\Windows\SysWOW64\gdi32.dll
2015-07-15 12:54:27 F61A069A5517F85662ED9A6C5AD5445A 73216 ----a-w- C:\Windows\SysWOW64\msiexec.exe
2015-07-15 12:54:27 D7C4ABB0F1FFA371928EED0C7A6E24DC 2364416 ----a-w- C:\Windows\SysWOW64\msi.dll
2015-07-15 12:54:27 C08582E7F8EA706A2D4A3C7BD5AC35C1 337408 ----a-w- C:\Windows\SysWOW64\msihnd.dll
2015-07-15 12:54:27 A344B1EFA7DB86AE1407039CD596FB1E 25088 ----a-w- C:\Windows\SysWOW64\msimsg.dll
2015-07-15 12:54:27 7B4277F9E9F48D5D8E6AEA341F8048E8 1805824 ----a-w- C:\Windows\SysWOW64\authui.dll
2015-07-15 12:54:25 E5D33416F2BA5E11C11215439DD3BF23 299008 ----a-w- C:\Windows\SysWOW64\atmfd.dll
2015-07-15 12:54:25 B1BD587DE3E077CBB9F749C2CC3B8D6C 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll
2015-07-15 12:54:25 94815184BAAB8518F4027E92C6025505 70656 ----a-w- C:\Windows\SysWOW64\fontsub.dll
2015-07-15 12:54:25 5945A57802C6641478AF680FF839287E 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll
2015-07-15 12:54:25 4644A3B2AFDDAEA57C3EC30F8D079E54 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll
2015-07-14 12:27:15 691C6265C05EB1B31ACD0E5FDBB3FF3E 606152 --shatr- C:\Windows\SysWOW64\ActionCenterForms.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-07-15 12:54:56 FC165889E97E37BCB55C5B79BEB3D331 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2015-07-15 12:54:55 D74E2BE157B8A2A9CF29BEBB052B8A42 25193984 ----a-w- C:\Windows\Sysnative\mshtml.dll
2015-07-15 12:54:55 78E4D3781E5632BA88E5153510BEB625 1545728 ----a-w- C:\Windows\Sysnative\urlmon.dll
2015-07-15 12:54:55 6A70888EEC05B45C8990E8977C480019 14453248 ----a-w- C:\Windows\Sysnative\ieframe.dll
2015-07-15 12:54:55 120E3CE08505A9637CAB72D35A2D2E8C 615936 ----a-w- C:\Windows\Sysnative\ieui.dll
2015-07-15 12:54:54 41D59904967A4033FB4497DCED7320AD 2885632 ----a-w- C:\Windows\Sysnative\iertutil.dll
2015-07-15 12:54:53 A51BF63E9EA6DDED50A69797EAD23576 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2015-07-15 12:54:53 50AAC6B4AFD93060456134A29C35FB1E 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2015-07-15 12:54:53 44D98BF1ED7B520602A55446E28D8840 720384 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2015-07-15 12:54:53 3A46FC42EDE2021399FCD9E4A7A406F8 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
2015-07-15 12:54:52 4887D79B5CE61A00FCC5C53AA2216007 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2015-07-15 12:54:51 DAECFA33350D863D49157506587D5EF8 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2015-07-15 12:54:51 BCE51D1B0F7BC8977CDAECD24A0D4C88 801280 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2015-07-15 12:54:51 80E899C111219316B94BBA72FAFF7D11 968704 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2015-07-15 12:54:51 7EEC52D1B800230A4E8EC81B92D61118 389832 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2015-07-15 12:54:51 434CBA59035C4F3A02E5AB92FD6C816B 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2015-07-15 12:54:50 BB33A140CA61A22B5882486881E2191A 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2015-07-15 12:54:50 B5164F4515C4BC4F45FBF5B3A99685C0 584192 ----a-w- C:\Windows\Sysnative\vbscript.dll
2015-07-15 12:54:50 AF3D4DA49A9C9C9778953CE9D7470C11 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
2015-07-15 12:54:50 58243D92748201D38AACDAEA22527412 2125824 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2015-07-15 12:54:49 9B9D2B99A865CB3B9BAA9BE77A300680 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2015-07-15 12:54:49 4024752E6B341B07F3823B7DA72C45D2 490496 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2015-07-15 12:54:49 142D20CA55870589B009D53C37C0B75C 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2015-07-15 12:54:48 F30702F2607AEE462A6AB8715E72FC03 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2015-07-15 12:54:48 E066FDC3A2074D926903B8C31EF3B347 2427392 ----a-w- C:\Windows\Sysnative\wininet.dll
2015-07-15 12:54:48 88E26FC9F8BDE0635F379BB8FE6BFFF1 417792 ----a-w- C:\Windows\Sysnative\html.iec
2015-07-15 12:54:48 796A89701B2560FF453FF08FF941A169 816640 ----a-w- C:\Windows\Sysnative\jscript.dll
2015-07-15 12:54:48 74F367C596EEF3106EBC65625F04C807 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2015-07-15 12:54:47 C95EE658B7816B3588418E948EF55F83 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2015-07-15 12:54:47 8DA3623D372E5147914973383D998980 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
2015-07-15 12:54:45 F56E83C1EFEDEF919033CBFF071602B6 36864 ----a-w- C:\Windows\Sysnative\wups.dll
2015-07-15 12:54:45 D79E3C2D45315ADCAA267A05355DFBF5 12288 ----a-w- C:\Windows\Sysnative\wu.upgrade.ps.dll
2015-07-15 12:54:45 BC80574FF264848F8613A3F6F7AF7642 192000 ----a-w- C:\Windows\Sysnative\wuwebv.dll
2015-07-15 12:54:45 AA3E844A2595B1AA5825C70CA50D963E 2603008 ----a-w- C:\Windows\Sysnative\wuaueng.dll
2015-07-15 12:54:45 84CEF9B2D8ED8006B3975DC1D8109B3D 696320 ----a-w- C:\Windows\Sysnative\wuapi.dll
2015-07-15 12:54:45 80381DD7C4797A601E59F8E001B46793 3154944 ----a-w- C:\Windows\Sysnative\wucltux.dll
2015-07-15 12:54:45 3F9239D5F65F1318A53EBAEC01C092F1 139776 ----a-w- C:\Windows\Sysnative\wuauclt.exe
2015-07-15 12:54:45 3EDB01024BA86C5B4D2CB307DC5D3AC0 37376 ----a-w- C:\Windows\Sysnative\wuapp.exe
2015-07-15 12:54:45 2896A06239E19379CE44FAFCDB1675B1 91136 ----a-w- C:\Windows\Sysnative\WinSetupUI.dll
2015-07-15 12:54:45 00DCC688DF459A9FEE42C7397668C62B 98304 ----a-w- C:\Windows\Sysnative\wudriver.dll
2015-07-15 12:54:45 00383E521D3D039968B92A0998BA76FD 37888 ----a-w- C:\Windows\Sysnative\wups2.dll
2015-07-15 12:54:43 F66102F990EE913261ED7907403718ED 729088 ----a-w- C:\Windows\Sysnative\kerberos.dll
2015-07-15 12:54:43 F01A58E45BB8E28CCE6BCF272FF0F9A8 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe
2015-07-15 12:54:43 EEB192537935BB12A998CAB8F5A07E78 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll
2015-07-15 12:54:43 E8560BC8E1B85A5A081AEF43626187B1 44032 ----a-w- C:\Windows\Sysnative\cryptbase.dll
2015-07-15 12:54:43 D5844B744F7BAF826965DD634FF8DB00 1461760 ----a-w- C:\Windows\Sysnative\lsasrv.dll
2015-07-15 12:54:43 C3F6A9A41CC8591EF0370708E54DE474 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
2015-07-15 12:54:43 C3F0594AF92FE71B13A44177FDB80784 29184 ----a-w- C:\Windows\Sysnative\sspisrv.dll
2015-07-15 12:54:43 B1D191D0EDEB86197A5FD5030B65420F 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
2015-07-15 12:54:43 A66FF313F2F8A6CBF9BB2B0CC92D5ACD 1216512 ----a-w- C:\Windows\Sysnative\rpcrt4.dll
2015-07-15 12:54:43 9F2CCDE3F30C224C082984B6F95D3D95 309760 ----a-w- C:\Windows\Sysnative\ncrypt.dll
2015-07-15 12:54:43 9EA6DA45B95599C27B1661C1D99307D7 342016 ----a-w- C:\Windows\Sysnative\schannel.dll
2015-07-15 12:54:43 97D879A884E7CDFED51AD63348A35254 31232 ----a-w- C:\Windows\Sysnative\lsass.exe
2015-07-15 12:54:43 7C26CACB82ECA09874B984B155B06AD4 686080 ----a-w- C:\Windows\Sysnative\adtschema.dll
2015-07-15 12:54:43 750C44D6F7A708F0C6618F075A0A68A7 315392 ----a-w- C:\Windows\Sysnative\msv1_0.dll
2015-07-15 12:54:43 55750A7588D91B102EB17E69BFF2AAF1 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll
2015-07-15 12:54:43 48A88348F1539CC7C8CB4E032DD79DAA 136192 ----a-w- C:\Windows\Sysnative\sspicli.dll
2015-07-15 12:54:43 3B96392CBE54FF44BEAEB0B4BCC65487 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll
2015-07-15 12:54:43 09730D830B2B69B626817F4A95945308 210944 ----a-w- C:\Windows\Sysnative\wdigest.dll
2015-07-15 12:54:34 C4EA3D63E8BF077ECD1E93BF6556AE99 3207168 ----a-w- C:\Windows\Sysnative\win32k.sys
2015-07-15 12:54:34 837BD6BB879405B416A4326C8B723D83 5923840 ----a-w- C:\Windows\Sysnative\jscript9.dll
2015-07-15 12:54:34 2A795629E0746D82A229A01EEE75FCE5 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2015-07-15 12:54:33 F6D23F6707CAEA235E4C84A4AC87EB2A 3180544 ----a-w- C:\Windows\Sysnative\rdpcorets.dll
2015-07-15 12:54:33 960D313FFBC9C4C14D9DFDB1FEB21CBD 16384 ----a-w- C:\Windows\Sysnative\RdpGroupPolicyExtension.dll
2015-07-15 12:54:32 823BAE27CBF54C1E3E0CD964909A253E 7077376 ----a-w- C:\Windows\Sysnative\mstscax.dll
2015-07-15 12:54:32 673CF0DA2BE5D86282FC7C5BE3172470 429568 ----a-w- C:\Windows\Sysnative\wksprt.exe
2015-07-15 12:54:32 60696836CAD56F1B47059E1BA739787D 254976 ----a-w- C:\Windows\Sysnative\cewmdm.dll
2015-07-15 12:54:31 18B16B510258DEBE6121CA25CFCD2AE8 1057792 ----a-w- C:\Windows\Sysnative\rdvidcrl.dll
2015-07-15 12:54:31 04A5640833EE276AA4E8C71EB56613AF 62976 ----a-w- C:\Windows\Sysnative\tsgqec.dll
2015-07-15 12:54:30 EFFFE1C77ACCE66C82CCFD18A9687F48 404992 ----a-w- C:\Windows\Sysnative\gdi32.dll
2015-07-15 12:54:30 E3EB94B45A2735D4559558B5899732E8 2087424 ----a-w- C:\Windows\Sysnative\ole32.dll
2015-07-15 12:54:27 D9A91A779B5059E72D7FAD2B38275EA4 3242496 ----a-w- C:\Windows\Sysnative\msi.dll
2015-07-15 12:54:27 CDAD406033C31DB34185DDAECDD35FE2 504320 ----a-w- C:\Windows\Sysnative\msihnd.dll
2015-07-15 12:54:27 978DC0A1FBE9CC91B21B40AF66CB396A 70656 ----a-w- C:\Windows\Sysnative\appinfo.dll
2015-07-15 12:54:27 91593D4FB7D89249014564A5F3EC389B 25088 ----a-w- C:\Windows\Sysnative\msimsg.dll
2015-07-15 12:54:27 81CB8D34112178CE1826C86BA5F268C3 128000 ----a-w- C:\Windows\Sysnative\msiexec.exe
2015-07-15 12:54:27 5489E74E56C0255159C8AE2C70744458 1941504 ----a-w- C:\Windows\Sysnative\authui.dll
2015-07-15 12:54:27 0D9514850CC3A99A6600643F2888858B 112064 ----a-w- C:\Windows\Sysnative\consent.exe
2015-07-15 12:54:25 AE7E9E9581E2B874348A0DF38AD04722 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll
2015-07-15 12:54:25 690FE1D790C8C7E94EAA55B669BC5CE0 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll
2015-07-15 12:54:25 44F32DF903B984B4C6A164E99A39FC58 372224 ----a-w- C:\Windows\Sysnative\atmfd.dll
2015-07-15 12:54:25 373CB9C184589E3BE07412DFD5DF3D4F 41984 ----a-w- C:\Windows\Sysnative\lpk.dll
2015-07-15 12:54:25 2C4AD63E4D89661C9FED77E81053735D 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll
2015-07-11 10:53:25 D236055773550118989C0C81CBE79A29 765440 ----a-w- C:\Windows\Sysnative\invagent.dll
2015-07-11 10:53:25 BBA5CB528CB7482E118D0FEAF808987A 17856 ----a-w- C:\Windows\Sysnative\CompatTelRunner.exe
2015-07-11 10:53:25 782C216AFEE0561680706698F70B2A93 1085440 ----a-w- C:\Windows\Sysnative\appraiser.dll
2015-07-11 10:53:25 658B5EC540CD94D76889D0E8390B1C04 433664 ----a-w- C:\Windows\Sysnative\devinv.dll
2015-07-11 10:53:25 5D507961F680D0A0392CC5EB6515E70A 726528 ----a-w- C:\Windows\Sysnative\generaltel.dll
2015-07-11 10:53:25 5663847B3DCC8382B1D1F1EEB4A92994 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll
2015-07-11 10:53:25 474EA5201E3883F747D540D3EF57C1F2 1145856 ----a-w- C:\Windows\Sysnative\aeinv.dll
2015-07-11 10:53:25 0919F433ED64E6CD1912C016F1E80BE7 67584 ----a-w- C:\Windows\Sysnative\acmigration.dll
====== C:\Windows\Sysnative\drivers =====
2015-07-15 12:54:43 C0A6C3D6E02B61B5D100FE17306C276F 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2015-07-15 12:54:43 7A7328E427694CC7244235C3BC299F80 155584 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-07-15 12:54:43 45A03A0B6461EFBEE77E0A6AC2816EDA 129024 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys
2015-07-15 12:54:43 21AF322605D8C7F2A627C22634D1C9C9 290816 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys
2015-07-15 12:54:43 1877EB1495CFBDAB27D6A32F6DDF3818 159232 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys
====== C:\Windows\Tasks ======
2015-06-25 20:44:16 -------- d-----w- C:\Windows\Sysnative\Tasks\Auslogics
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-07-15 15:39:22 -------- d-----w- C:\Program Files\trend micro
======= C:\PROGRA~2 =====
2015-07-15 16:24:56 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service
2015-07-08 12:38:46 -------- d-----w- C:\PROGRA~2\NovaTech Network
2015-06-20 03:42:22 -------- d-----w- C:\PROGRA~2\Opera
======= C: =====
2015-07-08 12:39:41 E2AEEA2B7C41D569CF0D75B57E9D5887 5491 ----a-w- C:\debugfile.txt
====== C:\Users\Wooden\AppData\Roaming ======
2015-07-15 16:25:04 -------- d-----w- C:\Users\Wooden\AppData\Roaming\Mozilla
2015-07-15 16:25:04 -------- d-----w- C:\Users\Wooden\AppData\Local\Mozilla
2015-07-15 14:59:54 -------- d-----w- C:\Users\Wooden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vuze Leap
2015-07-15 13:43:42 -------- d-----w- C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp
2015-07-15 13:43:42 -------- d-----w- C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp
2015-07-15 13:43:42 -------- d-----w- C:\Users\Wooden\AppData\Local\Temp
2015-07-15 13:43:42 -------- d-----w- C:\Users\Default\AppData\Local\Temp
2015-07-15 13:43:42 -------- d-----w- C:\Users\Default User\AppData\Local\Temp
2015-07-14 14:44:33 -------- d-----w- C:\Users\Wooden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2015-07-14 12:20:17 -------- d-----w- C:\Users\Wooden\AppData\Local\ElevatedDiagnostics
2015-06-18 15:19:11 -------- d-----w- C:\Users\Wooden\AppData\Local\GWX
====== C:\Users\Wooden ======
2015-07-15 16:24:57 -------- d-----w- C:\ProgramData\Mozilla
2015-07-15 15:39:16 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Wooden\Desktop\RSITx64.exe
2015-07-15 13:17:41 09B6F6FCCC35DBAFCB38CB3751FA7C2F 2248704 ----a-w- C:\Users\Wooden\Desktop\adwcleaner_4.208.exe
2015-07-08 12:39:16 -------- d-----w- C:\ProgramData\NovaTech Network
2015-07-08 12:38:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NovaBench
2015-07-08 12:38:16 CE1502C99F67F6D8EF459A98A38987FC 12284512 ----a-w- C:\Users\Wooden\Downloads\novabench3.exe
2015-06-25 20:42:59 -------- d-----w- C:\ProgramData\Auslogics
2015-06-25 20:42:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics

====== C: exe-files ==
2015-07-15 16:24:58 5D985370D2384392234CE89F6D3E3D79 85052 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe
2015-07-15 16:24:56 22A7042C70F90F8261840740DDBB5176 148136 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
2015-07-15 15:39:22 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Wooden.exe
2015-07-15 15:39:16 8045ABB21A3BDD66A48E1ED5C0F0EF6A 1222144 ----a-w- C:\Users\Wooden\Desktop\RSITx64.exe
2015-07-15 15:27:51 394EA0490D4A382627D5D3951633DE16 86880 ----a-w- C:\Windows\Temp\devcon64.exe
2015-07-15 13:17:41 09B6F6FCCC35DBAFCB38CB3751FA7C2F 2248704 ----a-w- C:\Users\Wooden\Desktop\adwcleaner_4.208.exe
2015-07-15 12:54:56 26492D0AE6279B60A3801EDBE3CB794C 473600 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2015-07-15 12:54:55 3698C298719803F6502612D651A852B2 491008 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe
2015-07-15 12:54:53 8EA2ED812E996D95DE37CD2CE3158C2C 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2015-07-15 12:54:53 50AAC6B4AFD93060456134A29C35FB1E 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe
2015-07-15 12:54:53 44D98BF1ED7B520602A55446E28D8840 720384 ----a-w- C:\Windows\System32\ie4uinit.exe
2015-07-15 12:54:51 E475D4B65088F4F7FABF7D427CD3D30E 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2015-07-15 12:54:51 C899B9E60D663BE24B35EFBC29192A7C 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe
2015-07-15 12:54:51 A7B6589F92C9CB498CDBA42EBEB23EE4 815312 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2015-07-15 12:54:51 80E899C111219316B94BBA72FAFF7D11 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2015-07-15 12:54:50 D295049B06D31020A88B170445123D33 814280 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2015-07-15 12:54:49 142D20CA55870589B009D53C37C0B75C 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2015-07-15 12:54:45 3F9239D5F65F1318A53EBAEC01C092F1 139776 ----a-w- C:\Windows\System32\wuauclt.exe
2015-07-15 12:54:45 3EDB01024BA86C5B4D2CB307DC5D3AC0 37376 ----a-w- C:\Windows\System32\wuapp.exe
2015-07-15 12:54:45 13810657EE732C2F5453C0C877FD5DB2 34816 ----a-w- C:\Windows\SysWOW64\wuapp.exe
2015-07-15 12:54:43 F01A58E45BB8E28CCE6BCF272FF0F9A8 64000 ----a-w- C:\Windows\System32\auditpol.exe
2015-07-15 12:54:43 97D879A884E7CDFED51AD63348A35254 31232 ----a-w- C:\Windows\System32\lsass.exe
2015-07-15 12:54:43 2B4A31319D74B3D3407AB64942B7FF32 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe
2015-07-15 12:54:32 673CF0DA2BE5D86282FC7C5BE3172470 429568 ----a-w- C:\Windows\System32\wksprt.exe
2015-07-15 12:54:27 F61A069A5517F85662ED9A6C5AD5445A 73216 ----a-w- C:\Windows\SysWOW64\msiexec.exe
2015-07-15 12:54:27 81CB8D34112178CE1826C86BA5F268C3 128000 ----a-w- C:\Windows\System32\msiexec.exe
2015-07-15 12:54:27 0D9514850CC3A99A6600643F2888858B 112064 ----a-w- C:\Windows\System32\consent.exe
2015-07-14 18:06:30 99C59D9E130667B55E56B262E59C8077 386720 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe
2015-07-14 18:06:30 6AA37B42F5AF70FD6C2E5EA3FE9527CC 359584 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe
2015-07-14 18:06:30 612C3822EA87EE13A260354708E2831F 310432 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe
2015-07-14 18:06:30 612C3822EA87EE13A260354708E2831F 310432 ----a-w- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe
2015-07-14 18:06:30 49B4A5735A0927092CFD5AACA0C14D0A 59392 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe
2015-07-14 17:24:17 E06EB83F9B05760B54FAEA13063C5833 1080912 ----a-w- C:\Program Files (x86)\Google\Update\Install\{A60311BA-7592-4EC8-A46E-0EC9C29D409C}\43.0.2357.134_43.0.2357.132_chrome_updater.exe
2015-07-14 17:24:17 E06EB83F9B05760B54FAEA13063C5833 1080912 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\43.0.2357.134\43.0.2357.134_43.0.2357.132_chrome_updater.exe
2015-07-11 23:46:32 CCED3E695DCC88BCE552D5D80D46C648 88554 ----a-w- C:\Windows\SysWOW64\Adobe\Shockwave 12\uninstaller.exe
2015-07-11 11:20:09 EFC4163D619806AB008278F90C9E95C0 7850504 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mtranscoder.exe
2015-07-11 11:20:09 D20B41EFA291D3EFFE8FF9F9A30553F8 42504 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mvideoconference.exe
2015-07-11 11:20:09 D20B41EFA291D3EFFE8FF9F9A30553F8 42504 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mupload.exe
2015-07-11 11:20:09 D20B41EFA291D3EFFE8FF9F9A30553F8 42504 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mupdate.exe
2015-07-11 11:20:09 D20B41EFA291D3EFFE8FF9F9A30553F8 42504 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mstart.exe
2015-07-11 11:20:09 D20B41EFA291D3EFFE8FF9F9A30553F8 42504 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mlauncher.exe
2015-07-11 11:20:07 1B8B830CDCF47775FA0D72A06BD6B5C3 42504 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mui.exe
2015-07-11 11:20:07 12A7EAF94EE9D2B1ADE29DD7FAB442DE 43016 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mcomm.exe
2015-07-11 11:20:06 D20B41EFA291D3EFFE8FF9F9A30553F8 42504 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\G2MInstaller.exe
2015-07-11 11:20:06 A34AA805D9C5E328A124DD6456F5EA3B 397824 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\scrutil.exe
2015-07-11 11:20:06 80D572F8E0F29FE5F97509AF9B329F36 43016 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\G2MUninstall.exe
2015-07-11 11:20:06 80D572F8E0F29FE5F97509AF9B329F36 43016 ----a-w- C:\Program Files (x86)\Citrix\GoToMeeting\3019\G2MInstHigh.exe
2015-07-11 10:53:31 B3DBD6A2286BA43018F58349E51EC8B1 691712 ----a-w- C:\Windows\System32\GWX\GWXConfigManager.exe
2015-07-11 10:53:31 7B375C10CACC2FEBEC978D023ADBAB9C 513024 ----a-w- C:\Windows\System32\GWX\GWX.exe
2015-07-11 10:53:31 621FC2FCBB852684C1F1106E28CCC84F 438784 ----a-w- C:\Windows\SysWOW64\GWX\GWX.exe
2015-07-11 10:53:31 6008147E0BDAC5C23A0A314E96783F72 413696 ----a-w- C:\Windows\System32\GWX\GWXUX.exe
2015-07-11 10:53:31 1608E63BD26C74BEBB31BCAFDFC96BD6 343040 ----a-w- C:\Windows\System32\GWX\GWXDetector.exe
2015-07-11 10:53:31 0A31B851379818A8ECF1F7643FFA3F5A 382768 ----a-w- C:\Windows\System32\GWX\GWXUXWorker.exe
2015-07-11 10:53:25 BBA5CB528CB7482E118D0FEAF808987A 17856 ----a-w- C:\Windows\System32\CompatTelRunner.exe
2015-07-09 09:37:36 A0ACC31A0E2A62B48A4D8913DE3A2EE0 411648 ----a-w- C:\Users\Wooden\Desktop\testdisk-6.11.3\win\photorec_win.exe
2015-07-09 09:37:36 8D9F4E8E3D64FDA4FE360F97A069A698 379392 ----a-w- C:\Users\Wooden\Desktop\testdisk-6.11.3\win\testdisk_win.exe
=== C: other files ==
2015-07-15 12:54:43 C0A6C3D6E02B61B5D100FE17306C276F 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2015-07-15 12:54:43 7A7328E427694CC7244235C3BC299F80 155584 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2015-07-15 12:54:43 45A03A0B6461EFBEE77E0A6AC2816EDA 129024 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2015-07-15 12:54:43 21AF322605D8C7F2A627C22634D1C9C9 290816 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2015-07-15 12:54:43 1877EB1495CFBDAB27D6A32F6DDF3818 159232 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2015-07-15 12:54:34 C4EA3D63E8BF077ECD1E93BF6556AE99 3207168 ----a-w- C:\Windows\System32\win32k.sys
2015-07-09 09:37:28 3C6FCCBD9D60D7BBA9B3D6572C304485 1561733 ----a-w- C:\Users\Wooden\Downloads\testdisk-6.11.3.win.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3557442113-3572958904-2194699600-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"="D:\Programy\Steam\steam.exe -silent"
"CCleaner Monitoring"="D:\Programy\CC Cleaner\CCleaner64.exe /MONITOR"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
"USB3MON"="C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"AvastUI.exe"="D:\Programy\Avast\AvastUI.exe /nogui"
"StartCCC"="C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"="D:\Programy\Steam\steam.exe -silent"
"CCleaner Monitoring"="D:\Programy\CC Cleaner\CCleaner64.exe /MONITOR"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CCleaner Monitoring]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CCleaner Monitoring"
"hkey"="HKCU"
"command"="\"D:\\Programy\\CC Cleaner\\CCleaner64.exe\" /MONITOR"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Live Update]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Live Update"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\MSI\\Live Update\\Live Update.exe /REMINDER"


==== Startup Folders ======================

2015-06-14 13:04:54 1077 ----a-w- C:\Users\Wooden\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MSI Gaming APP.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\G2MUpdateTask-S-1-5-21-3557442113-3572958904-2194699600-1000.job --a------ C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mupdate.exe [11.07.2015 13:19]
C:\Windows\tasks\G2MUploadTask-S-1-5-21-3557442113-3572958904-2194699600-1000.job --a------ C:\Program Files (x86)\C:itrix\GoToMeeting\3019\g2mupload.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["D:\Programy\CC Cleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\G2MUpdateTask-S-1-5-21-3557442113-3572958904-2194699600-1000" [C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mupdate.exe]
"C:\Windows\SysNative\tasks\G2MUploadTask-S-1-5-21-3557442113-3572958904-2194699600-1000" [C:\Program Files (x86)\Citrix\GoToMeeting\3019\g2mupload.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\Auslogics\BoostSpeed\Scan and Repair" [rundll32.exe TaskSchedulerHelper.dll,RunTask "BoostSpeed.exe" "-UseTray -Schedule"]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="D:\Programy\Avast\WebRep\FF" [27.06.2015 19:09]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Wooden\AppData\Roaming\Mozilla\Firefox\Profiles\tvs2q5mj.default
9A77557E21CB7F86ECA830AF457DA9F5 - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll - Shockwave for Director / Shockwave for Director
E3B4EA121F7BDEB0F6366E2BA9608CB5 - C:\Users\Wooden\AppData\Local\Citrix\Plugins\104\npappdetector.dll - Citrix Online Web Deployment Plugin 1.0.0.104


==== Chromium Look ======================

Google Chrome Version: 43.0.2357.134

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - D:\Programy\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[19.05.2015 10:22]
gomekmidlodglbbmalcneegieacbdmki - D:\Programy\Avast\WebRep\Chrome\aswWebRepChrome.crx[19.05.2015 10:22]

Avast SafePrice - Wooden\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Avast Online Security - Wooden\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - Wooden\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chromium Startpages ======================

C:\Users\Wooden\AppData\Local\Google\Chrome\User Data\Default\Preferences
probability":1.0,"protocol_str":"quic"}]},"storage.googleapis.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"t0.gstatic.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"t1.gstatic.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"t2.gstatic.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"t3.gstatic.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"themes.googleusercontent.com:443":{"network_stats":{"srtt":15813}},"tools.google.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"tpc.googlesyndication.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"tpc.googlesyndication.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"translate.google.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"translate.google.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":133162}},"translate.googleapis.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"wow-na-wow.blogspot.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"wow-na-wow.blogspot.cz:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"www-ytaddtoplaylist-opensocial.googleusercontent.com:443":{"network_stats":{"srtt":116818}},"www-ytbanner-opensocial.googleusercontent.com:443":{"network_stats":{"srtt":116818}},"www.blogger.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"www.facebook.com:443":{"supports_spdy":true},"www.gmail.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":112253}},"www.google-analytics.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":181264}},"www.google.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"www.google.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":118495}},"www.google.cz:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"www.google.cz:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":96284}},"www.google.sk:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"www.google.sk:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"www.googleadservices.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":18467},"supports_spdy":true},"www.googleadservices.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":17075}},"www.googleapis.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"www.googlecommerce.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"www.googletagmanager.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"www.googletagmanager.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":184139}},"www.googletagservices.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"www.googletagservices.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":16651}},"www.gstatic.com:443":{"supports_spdy":true},"www.gstatic.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"www.youtube-nocookie.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"www.youtube.com:443":{"supports_spdy":true},"www.youtube.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":129064}},"youtu.be:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"network_stats":{"srtt":85969}},"youtu.be:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"youtube.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"youtube.com:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}]},"youtube.cz:80":{"alternative_service":[{"port":80,"probability":0.0,"protocol_str":"quic"}],"network_stats":{"srtt":81750}},"yt3.ggpht.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true}},"supports_quic":{"address":"192.168.0.100","used_quic":true},"version":3}},"password_bubble":{"nopes":0},"plugins":{"migrated_to_pepper_flash":true,"plugins_list":[],"removed_old_component_pepper_flash_settings":true},"profile":{"avatar_index":26,"content_settings":{"exceptions":{"app_banner":{},"auto_select_certificate":{},"automatic_downloads":{},"cookies":{},"fullscreen":{"http://video.aktualne.cz:80,http://video.aktualne.cz:80":{"setting":1},"https://www.facebook.com:443,https://www.facebook.com:443":{"setting":1},"https://www.youtube.com:443,https://www.youtube.com:443":{"setting":1}},"geolocation":{"http://www.nissan.cz:80,http://www.nissan.cz:80":{"last_used":1434650496.671144,"setting":1},"https://www.alza.cz:443,https://www.alza.cz:443":{"last_used":1434776171.251252,"setting":1}},"images":{},"javascript":{},"media_stream":{},"media_stream_camera":{},"media_stream_mic":{},"metro_switch_to_desktop":{},"midi_sysex":{},"mixed_script":{},"mouselock":{},"notifications":{"http://cm-eu.wargaming.net:80,*":{"last_used":1432739868.642314,"setting":1},"http://cm-eu.wargaming.net:80,http://cm-eu.wargaming.net:80":{"last_used":1432739874.969961}},"plugins":{},"popups":{},"ppapi_broker":{},"protocol_handlers":{},"push_messaging":{},"ssl_cert_decisions":{}},"pattern_pairs":{"http://video.aktualne.cz:80,http://video.aktualne.cz:80":{"fullscreen":1},"https://www.facebook.com:443,https://www.facebook.com:443":{"fullscreen":1},"https://www.youtube.com:443,https://www.youtube.com:443":{"fullscreen":1}},"pref_version":1},"exit_type":"Normal","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"PrvnĂ­ uĹľivatel","password_manager_enabled":false,"per_host_zoom_levels":{}},"protection":{"macs":{}},"savefile":{"default_directory":"D:\\InstalaÄŤky"},"selectfile":{"last_directory":"D:\\InstalaÄŤky"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13076498309610415"},"sync_promo":{"show_on_first_run_allowed":false},"translate_accepted_count":{"en":0},"translate_blocked_languages":["cs"],"translate_denied_count":{"en":3},"translate_last_denied_time":1432032906024.732,"translate_too_often_denied":true,"translate_whitelists":{}}


==== Chromium Fix ======================

C:\Users\Wooden\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage deleted successfully
C:\Users\Wooden\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.kingtopdeals.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Programy\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "D:\Programy\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Steam] "D:\Programy\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "D:\Programy\CC Cleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: MSI Gaming APP.lnk = C:\Program Files (x86)\MSI\MSI Gaming APP\SGamingApp.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - D:\Programy\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - D:\Programy\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_LiveUpdate_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Wooden\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Wooden\AppData\Local\Mozilla\Firefox\Profiles\tvs2q5mj.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Wooden\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=271 folders=101 189008586 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Wooden\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Wooden\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on st 15.07.2015 at 18:50:43,26 ======================

[vyosek]

Odinstalujte G Chrome

Smaznete jeho profil C:\Users\Wooden\AppData\Local\Google\Chrome

Nainstalujte G Chrome a napiste jestli je tam smejd porad

[Wooden]

Děkuju, odinstalace Chromu pomohla a problém zmizel úplně.
Opravdu bych nevěřil, že čistá reinstalace dokáže pomoct

Ještě jednou díky!

[vyosek]

Tak jeste uklidime

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič

• Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

• dejte Hledej problémy
• nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
• postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

• Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse