VIRY.CZ

Logfile of random's system information tool 1.10 (written by random/random)
Run by Nikolas.B at 2016-06-07 03:23:47
Microsoft Windows 10 Pro
System drive C: has 34 GB (5%) free of 715 GB
Total RAM: 5582 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:23:56, on 7. 6. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Nikolas.B\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Nikolas.B.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Google Update] "C:\Users\Nikolas.B\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Nikolas.B\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nikolas.B\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files\ASUS\P4G\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Technology Access Software Asset Manager (Intel(R) TA SAM) - Intel Corporation - C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe
O23 - Service: Intel(R) Technology Access Legacy CS Loader (Intel(R) TechnologyAccessLegacyCSLoader) - Intel(R) Corporation - C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe
O23 - Service: Intel(R) Technology Access Service (Intel(R) TechnologyAccessService) - Intel(R) Corporation - C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12239 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\ASUS\P4G\InsOnSrv.exe"
"C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe"
"C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
dashost.exe {764085b5-c58a-47c3-9e82f17e866bfd21}
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files\ASUS\P4G\InsOnWMI.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
sihost.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskeng.exe {86551B12-5831-4DD3-AFEA-05009A0AD30B}
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
igfxEM.exe
igfxHK.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Users\Nikolas.B\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe"

"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=50.0.2661.102 --handshake-handle=0x1b4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4940.0.2078328098\2118812877" --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,15,24,53 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4276 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention,brotli-encoding<BrotliEncoding --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Control/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_82/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4940.2.2145065063\1850625422" /prefetch:1
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention,brotli-encoding<BrotliEncoding --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Control/*AutomaticTabDiscarding/Enabled_Once_10-gen2/*BrotliEncoding/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Control50pct/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_82/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4940.4.919111892\1307438591" /prefetch:1
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
wmiadap.exe /F /T /R
C:\WINDOWS\System32\svchost.exe -k smphost
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 632 636 644 8192 640
"C:\Users\Nikolas.B\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\686de449-a0f3-4b39-a8cc-971426386681.job - C:\Program Files (x86)\Internet Speed Checker\686de449-a0f3-4b39-a8cc-971426386681.exe 001726 30a443baf908b1ba60a696e79c4b11cdIE 61752 1439805847 93-0,102-0,178-288,179-288,180-288,223-288,263-24 Internet Speed Checker
C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3450977487-3989787405-2438237038-1001Core.job - C:\Users\Nikolas.B\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-3450977487-3989787405-2438237038-1001UA.job - C:\Users\Nikolas.B\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\wcCxzCN4n57TND.job - C:\Users\Nikolas.B\AppData\Roaming\wcCxzCN4n57TND.exe --c=mfbMFlZ0m9Viuj7hYhQRxtRtTXXUBrQ7xxjYUrf9ryNKYoV1nCJozO/ZEKBgYhFscdylgYivLWC0fhbydwhUsyNrOv9uxIkxAUTZMfd6iv4rHORxObGNZDp9UkzJLfLKUmW2kvuTLH3uhRVBozmvN2xfeqNs1262EzbRwEIdfGa564BvE/hrNf0W2pQG+m4vUGQJmRtgqkH42ENjyAGq0AmbD/EmIC5oaeF33y0U1NSkIQ5D6RYuIZF4d0kTpYL7884KtgA7f7WcqAoOThsoSp0YpzSVurTlqPEmd6dmXj9tpFSY3vEM04L/rCNfVoguHDdyuvVQqwSTqnRfnnft4A==
C:\WINDOWS\tasks\WWY7vM4EhKsI7HH2YNTrb8fjdl.job - C:\Users\Nikolas.B\AppData\Roaming\WWY7vM4EhKsI7HH2YNTrb8fjdl.exe --c=FaPhsBFujVEv2C/ti34SmLmMsxp4F2wr0JqyBwqHke6EImyIjgpXcqAvuHJ/rZI1pmHMI6EJmjoZx22UxG0v7EhaZHfrBTqtPNOXSswQxZ6NeOBkPr58InCJJcL042KItvLZuyoFQmrZibTgxU5qLN3v4/w+CVKyhTng7PvVZ4R2PKP40S/fY5gxB6Va8oxI/hjjUJ4w0lamk7QrhXiT+yl2K/gBI4UWP7db0aZivRxR4FwNuQ4sl+nB81QtEk6hcrAH3kplVzk2g1Zk41LuNh59Ywqwjupydm3XwR1uDPaQDtpDP7KyskDTl9Lb3LPPdfJv8/1mVryV1F1uSWtPrw==

=========Mozilla firefox=========

ProfilePath - C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-11-20 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-05 901600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-11-20 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-05 678656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-05-02 2398776]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2015-10-14 15009400]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Nikolas.B\AppData\Local\Google\Update\GoogleUpdate.exe [2015-05-19 144200]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-05-13 8721624]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Nikolas.B\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-03-23 7139256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.vorbis"=vorbis.acm
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-06-07 03:23:48 ----D---- C:\Program Files\trend micro
2016-06-07 03:23:47 ----D---- C:\rsit
2016-06-02 17:44:44 ----D---- C:\Program Files (x86)\rFactor
2016-06-02 09:09:20 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-06-02 08:28:43 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2016-06-02 08:28:43 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2016-06-02 08:28:43 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2016-06-02 08:28:43 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2016-06-01 07:58:36 ----AD---- C:\Program Files\CCleaner
2016-05-31 08:55:05 ----D---- C:\WINDOWS\LastGood.Tmp
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvopencl.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvdispgenco6436822.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvdispco6436822.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvcuda.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2016-05-31 08:54:06 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2016-05-12 01:49:30 ----AD---- C:\Program Files (x86)\PokerStars.EU
2016-05-11 10:45:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-11 10:45:06 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-11 10:45:03 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-05-11 10:44:58 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-11 10:44:58 ----A---- C:\WINDOWS\system32\shell32.dll
2016-05-11 10:44:54 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-11 10:44:53 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-11 10:44:52 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-05-11 10:44:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-05-11 10:44:49 ----A---- C:\WINDOWS\system32\twinui.dll
2016-05-11 10:44:49 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-11 10:44:48 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-05-11 10:44:46 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-05-11 10:44:46 ----A---- C:\WINDOWS\explorer.exe
2016-05-11 10:44:45 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-11 10:44:45 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-05-11 10:44:45 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-05-11 10:44:45 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-05-11 10:44:44 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-05-11 10:44:42 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-05-11 10:44:41 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-11 10:44:40 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 10:44:40 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-11 10:44:39 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-11 10:44:39 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-11 10:44:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-05-11 10:44:37 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-11 10:44:37 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-05-11 10:44:36 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-05-11 10:44:36 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-05-11 10:44:35 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-05-11 10:44:35 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-11 10:44:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-05-11 10:44:34 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-05-11 10:44:33 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-05-11 10:44:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-05-11 10:44:32 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-11 10:44:32 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-11 10:44:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-11 10:44:31 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-11 10:44:31 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-05-11 10:44:31 ----A---- C:\WINDOWS\system32\devinv.dll
2016-05-11 10:44:30 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-05-11 10:44:30 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-11 10:44:29 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-05-11 10:44:29 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-11 10:44:29 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-11 10:44:29 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-11 10:44:28 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-11 10:44:28 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-05-11 10:44:28 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-05-11 10:44:28 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-11 10:44:27 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-11 10:44:27 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-05-11 10:44:27 ----A---- C:\WINDOWS\system32\invagent.dll
2016-05-11 10:44:27 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-11 10:44:27 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-05-11 10:44:26 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-05-11 10:44:26 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-05-11 10:44:26 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-05-11 10:44:26 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-05-11 10:44:25 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-11 10:44:25 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-11 10:44:25 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-05-11 10:44:25 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-05-11 10:44:24 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-05-11 10:44:24 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-05-11 10:44:24 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 10:44:24 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-05-11 10:44:24 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-11 10:44:23 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-05-11 10:44:23 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-05-11 10:44:23 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-05-11 10:44:23 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-11 10:44:23 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-11 10:44:22 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-05-11 10:44:22 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-05-11 10:44:22 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-05-11 10:44:22 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-11 10:44:22 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-11 10:44:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-05-11 10:44:22 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-05-11 10:44:21 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-11 10:44:21 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 10:44:21 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 10:44:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-11 10:44:21 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-05-11 10:44:21 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-11 10:44:21 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-11 10:44:21 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-05-11 10:44:20 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-05-11 10:44:20 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-05-11 10:44:20 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-05-11 10:44:20 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-11 10:44:20 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-05-11 10:44:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-11 10:44:19 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-05-11 10:44:19 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-11 10:44:19 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-11 10:44:19 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-11 10:44:18 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-05-11 10:44:18 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-05-11 10:44:18 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-05-11 10:44:18 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-11 10:44:18 ----A---- C:\WINDOWS\system32\drivers\sdport.sys
2016-05-11 10:44:17 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-05-11 10:44:17 ----A---- C:\WINDOWS\system32\shacct.dll
2016-05-11 10:44:17 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 10:44:17 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-11 10:44:17 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-11 10:44:17 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-05-11 10:44:16 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-11 10:44:16 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-11 10:44:16 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-05-11 10:44:16 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-05-11 10:44:16 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-11 10:44:16 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-05-11 10:44:16 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-11 10:44:16 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-05-11 10:44:16 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-05-11 10:44:16 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 10:44:15 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-05-11 10:44:15 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-05-11 10:44:15 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-05-11 10:44:15 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-11 10:44:15 ----A---- C:\WINDOWS\system32\provengine.dll
2016-05-11 10:44:15 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-11 10:44:14 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2016-05-11 10:44:14 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-11 10:44:14 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-05-11 10:44:14 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-05-11 10:44:14 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\system32\wininit.exe
2016-05-11 10:44:13 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 10:44:13 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2016-05-11 10:44:12 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-05-11 10:44:12 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-11 10:44:12 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-11 10:44:12 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-05-11 10:44:12 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-11 10:44:12 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-05-11 10:44:12 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-11 10:44:12 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-11 10:44:12 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-05-11 10:44:11 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-05-11 10:44:11 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2016-05-11 10:44:11 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 10:44:11 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-05-11 10:44:10 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-05-11 10:44:10 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-05-11 10:44:10 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-11 10:44:10 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-11 10:44:10 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-05-11 10:44:10 ----A---- C:\WINDOWS\system32\moshost.dll
2016-05-11 10:44:10 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-11 10:44:09 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-05-11 10:44:09 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-05-11 10:44:09 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-11 10:44:09 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-11 10:44:09 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-11 10:44:09 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-05-11 10:44:08 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-05-11 10:44:08 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-11 10:44:08 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-05-11 10:44:07 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-05-11 10:44:07 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-05-11 10:44:07 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-05-11 10:44:07 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-11 10:44:07 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-11 10:44:06 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-11 10:44:06 ----A---- C:\WINDOWS\system32\dwminit.dll
2016-05-11 10:44:05 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-05-11 10:44:05 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-11 10:44:05 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2016-05-11 10:44:05 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-05-11 10:44:05 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-11 10:44:04 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-05-11 10:44:04 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-05-11 10:44:04 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-11 10:44:04 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2016-05-11 10:44:04 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-11 10:44:04 ----A---- C:\WINDOWS\system32\drivers\filecrypt.sys
2016-05-11 10:44:03 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\system32\hmkd.dll
2016-05-11 10:44:03 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-05-11 10:44:02 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-05-11 10:44:02 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-05-11 10:44:02 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-05-11 10:44:02 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-11 10:44:02 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-05-11 10:44:02 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-05-11 10:44:01 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2016-05-11 10:44:01 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-05-11 10:44:01 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2016-05-11 10:44:01 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2016-05-11 10:44:01 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-11 10:44:01 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-11 10:43:59 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-11 10:43:58 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2016-05-11 10:43:58 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-05-11 10:43:58 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-05-11 10:43:58 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-11 10:43:58 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-11 10:43:58 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-11 10:43:58 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-05-11 10:43:58 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-11 10:43:57 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2016-05-11 10:43:57 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2016-05-11 10:43:57 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-05-11 10:43:57 ----A---- C:\WINDOWS\system32\wshbth.dll
2016-05-11 10:43:57 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-11 10:43:57 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-05-11 10:43:57 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-05-11 10:43:56 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-05-11 10:43:56 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-05-11 10:43:56 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-11 10:43:56 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-05-11 10:43:56 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-05-11 10:43:56 ----A---- C:\WINDOWS\system32\AppCapture.dll

======List of files/folders modified in the last 1 month======

2016-06-07 03:23:48 ----RD---- C:\Program Files
2016-06-07 03:21:01 ----D---- C:\WINDOWS\Prefetch
2016-06-07 03:20:34 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-06-07 03:20:27 ----D---- C:\ProgramData\ASUS Smart Gesture
2016-06-07 03:18:20 ----D---- C:\WINDOWS\Temp
2016-06-07 03:16:29 ----D---- C:\WINDOWS\system32\sru
2016-06-06 17:45:33 ----D---- C:\Users\Nikolas.B\AppData\Roaming\Skype
2016-06-06 15:43:28 ----D---- C:\WINDOWS\System32
2016-06-06 15:43:28 ----D---- C:\WINDOWS\INF
2016-06-06 15:43:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-06 10:38:33 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-06 10:26:25 ----D---- C:\WINDOWS\AppReadiness
2016-06-05 14:25:26 ----D---- C:\WINDOWS\system32\config
2016-06-05 13:38:43 ----HD---- C:\Program Files\WindowsApps
2016-06-04 21:48:50 ----SHD---- C:\System Volume Information
2016-06-04 21:42:00 ----AD---- C:\KMPlayer
2016-06-04 21:34:12 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-04 21:34:02 ----D---- C:\WINDOWS\WinSxS
2016-06-04 01:04:04 ----HD---- C:\ProgramData
2016-06-03 23:33:51 ----D---- C:\Users\Nikolas.B\AppData\Roaming\vlc
2016-06-03 20:11:11 ----D---- C:\WINDOWS\system32\drivers
2016-06-03 20:11:11 ----D---- C:\Windows
2016-06-03 08:49:55 ----D---- C:\ProgramData\ProductData
2016-06-02 17:44:44 ----RD---- C:\Program Files (x86)
2016-06-02 09:09:21 ----HD---- C:\WINDOWS\msdownld.tmp
2016-06-02 09:09:21 ----D---- C:\WINDOWS\Logs
2016-06-02 09:09:20 ----D---- C:\WINDOWS\SysWOW64
2016-06-02 09:09:17 ----D---- C:\Games
2016-06-02 08:30:29 ----SHDC---- C:\WINDOWS\Installer
2016-06-02 08:30:28 ----SHD---- C:\Config.Msi
2016-06-02 08:28:46 ----D---- C:\Program Files (x86)\VulkanRT
2016-06-02 08:28:04 ----RSD---- C:\WINDOWS\Fonts
2016-06-01 20:49:13 ----D---- C:\WINDOWS\debug
2016-06-01 08:18:03 ----D---- C:\WINDOWS\SoftwareDistribution
2016-06-01 08:07:35 ----D---- C:\Users\Nikolas.B\AppData\Roaming\TeamViewer
2016-06-01 08:07:29 ----D---- C:\Users\Nikolas.B\AppData\Roaming\uTorrent
2016-06-01 08:06:49 ----DC---- C:\WINDOWS\Panther
2016-06-01 08:06:49 ----D---- C:\WINDOWS\Minidump
2016-06-01 07:58:39 ----D---- C:\WINDOWS\system32\Tasks
2016-05-31 08:56:22 ----D---- C:\ProgramData\NVIDIA
2016-05-31 08:55:05 ----D---- C:\Program Files\NVIDIA Corporation
2016-05-28 09:27:14 ----RD---- C:\Program Files (x86)\Skype
2016-05-20 10:03:48 ----A---- C:\WINDOWS\system32\nvinitx.dll
2016-05-20 10:03:48 ----A---- C:\WINDOWS\system32\nvapi64.dll
2016-05-20 04:08:45 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2016-05-20 04:08:45 ----A---- C:\WINDOWS\system32\nvcpl.dll
2016-05-20 04:08:43 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2016-05-20 04:08:43 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2016-05-20 04:08:43 ----A---- C:\WINDOWS\system32\nvshext.dll
2016-05-20 04:08:43 ----A---- C:\WINDOWS\system32\nvmctray.dll
2016-05-20 04:08:43 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2016-05-20 04:08:43 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2016-05-14 10:32:18 ----D---- C:\WINDOWS\CbsTemp
2016-05-12 18:00:37 ----D---- C:\WINDOWS\system32\catroot2
2016-05-12 10:44:02 ----D---- C:\WINDOWS\rescache
2016-05-12 10:42:29 ----RD---- C:\WINDOWS\assembly
2016-05-11 21:57:14 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-11 18:17:58 ----D---- C:\WINDOWS\system32\CatRoot
2016-05-11 18:17:00 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-05-11 18:17:00 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-11 18:16:55 ----D---- C:\WINDOWS\system32\oobe
2016-05-11 18:16:54 ----D---- C:\WINDOWS\system32\migration
2016-05-11 18:16:54 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-11 18:16:54 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-11 18:16:54 ----D---- C:\WINDOWS\system32\appraiser
2016-05-11 18:16:44 ----D---- C:\WINDOWS\Provisioning
2016-05-11 18:16:43 ----D---- C:\WINDOWS\bcastdvr
2016-05-11 18:16:42 ----D---- C:\WINDOWS\AppPatch
2016-05-11 18:16:42 ----D---- C:\Program Files\Windows Journal
2016-05-11 18:16:42 ----D---- C:\Program Files\Internet Explorer
2016-05-11 18:16:42 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-11 11:09:20 ----D---- C:\WINDOWS\system32\MRT
2016-05-11 10:57:34 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-11 02:03:52 ----D---- C:\WINDOWS\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-02-05 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-02-10 287016]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-09-14 647736]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2016-05-22 47048]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-02-05 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-03-09 1070904]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-02-24 463744]
R1 ATKWMIACPIIO_;ATKWMIACPI Driver_; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2013-07-02 19768]
R1 dtsoftbus01;@oem56.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2015-01-20 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 ndisrd;@oem19.inf,%ndisrfl_Desc%;Intel(R) Technology Access Filter Driver; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [2015-07-28 50448]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-02-05 37656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-03-09 107792]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-02-05 165344]
R2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AmUStor;@oem41.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2012-06-14 100992]
R3 ATP;@oem10.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2015-09-23 101368]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-04-23 84992]
R3 HIDSwitch;@oem68.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2015-11-20 19976]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-10 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-04-28 3949656]
R3 IntcDAud;@oem60.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-11-15 342528]
R3 iwdbus;@oem64.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 kbfiltr;@oem15.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-02 14992]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2015-10-30 121344]
R3 LGBusEnum;@oem42.inf,%LGBusEnum.SVCDESC%;Logitech Gaming Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\LGBusEnum.sys [2015-06-11 37408]
R3 LGJoyXlCore;@oem42.inf,%LGJoyXlCore.SVCDESC%;Logitech Translation Layer Driver (LGS); C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [2015-06-11 68384]
R3 LGVirHid;@oem22.inf,%LGVirHid.SVCDESC%;Logitech Gamepanel Virtual HID Device Driver; C:\WINDOWS\system32\drivers\LGVirHid.sys [2015-06-11 26912]
R3 MEIx64;@oem12.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 netr28x;@oem45.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2015-09-14 2554528]
R3 NetTap630;@oem32.inf,%NetTap.Service.DispName%;Intel(R) Technology Access TAP Driver (NDIS 6.30); C:\WINDOWS\system32\DRIVERS\nettap630.sys [2015-07-29 76560]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-05-22 13509184]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-05-02 28216]
R3 nvvad_WaveExtensible;@oem35.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2016-04-14 56384]
R3 rtbth;@oem28.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2015-09-14 1219200]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-04-23 112640]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-04-23 954368]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 dg_ssudbus;@oem31.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-04-25 129152]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 LADF_CaptureOnly;LADF Capture Filter Driver; C:\WINDOWS\system32\DRIVERS\ladfGSCamd64.sys [2013-04-15 410008]
S3 LADF_RenderOnly;LADF Render Filter Driver; C:\WINDOWS\system32\DRIVERS\ladfGSRamd64.sys [2013-04-15 102808]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 181248]
S3 ssudmdm;@oem65.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-10-13 206080]
S3 tap0901;TAP-Windows Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2013-08-22 40664]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016-04-05 2021592]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [2014-03-26 115512]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\P4G\InsOnSrv.exe [2013-04-29 277120]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-02-05 237096]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-05-02 1165368]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-10 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-06-27 129856]
R2 Intel(R) TechnologyAccessLegacyCSLoader;Intel(R) Technology Access Legacy CS Loader; C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe [2015-12-03 157344]
R2 Intel(R) TechnologyAccessService;Intel(R) Technology Access Service; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [2015-12-03 486048]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-30 2909472]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2015-10-14 193144]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-05-02 1881144]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-05-02 2522680]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-05-20 1352760]
R2 OneSyncSvc_36db2;Hostitel synchronizace_36db2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-10-13 743688]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-10 291744]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-05-02 3634232]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_10087751;Hostitel synchronizace_10087751; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1a8a89;Hostitel synchronizace_1a8a89; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1e0dd766;Hostitel synchronizace_1e0dd766; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1e2c864;Hostitel synchronizace_1e2c864; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3d33ef1;Hostitel synchronizace_3d33ef1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3d7f5;Hostitel synchronizace_3d7f5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_40b4c;Hostitel synchronizace_40b4c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) TA SAM;Intel(R) Technology Access Software Asset Manager; C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-08-12 19088]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-26 178312]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_10087751;Služba zasílání zpráv_10087751; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1a8a89;Služba zasílání zpráv_1a8a89; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1e0dd766;Služba zasílání zpráv_1e0dd766; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1e2c864;Služba zasílání zpráv_1e2c864; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_36db2;Služba zasílání zpráv_36db2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3d33ef1;Služba zasílání zpráv_3d33ef1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_40b4c;Služba zasílání zpráv_40b4c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-03-21 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_10087751;Data kontaktů_10087751; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1a8a89;Data kontaktů_1a8a89; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1e0dd766;Data kontaktů_1e0dd766; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1e2c864;Data kontaktů_1e2c864; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_36db2;Data kontaktů_36db2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3d33ef1;Data kontaktů_3d33ef1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_40b4c;Data kontaktů_40b4c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

Zdravím, odinstaluj vše od IObit


Stiskni klávesy Windows + R do okna Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)
Služba Google Update (gupdatem)
LiveUpdate (LiveUpdateSvc)

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.


V Knihovně Plánovače úloh zakaž Google Update bude to tam vícekrát, wcCxzCN4n57TND a WWY7vM4EhKsI7HH2YNTrb8fjdl


Stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:
klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem zkopíruj obsah logu uloženého na C:\_OTMoveIt\MovedFiles\



Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

bohužel ale orbit mi to nenabízí na odinstalací programu přes win nic z jménem ani orbit tam není

i s příkazem tam nemám nic z položky G prostě nic končí to F a začíná H

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\WINDOWS\tasks\wcCxzCN4n57TND.job moved successfully.
File/Folder C:\Users\Nikolas.B\AppData\Roaming\wcCxzCN4n57TND.exe not found.
C:\WINDOWS\tasks\WWY7vM4EhKsI7HH2YNTrb8fjdl.job moved successfully.
File/Folder C:\Users\Nikolas.B\AppData\Roaming\WWY7vM4EhKsI7HH2YNTrb8fjdl.exe not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: Nikolas.B
->Temp folder emptied: 216288248 bytes
->Temporary Internet Files folder emptied: 73764450 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 78320435 bytes
->Google Chrome cache emptied: 333908818 bytes
->Flash cache emptied: 826 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 321725804 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 14872770 bytes
RecycleBin emptied: 4575513682 bytes

Total Files Cleaned = 5 354,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 06082016_115931

Files moved on Reboot...
C:\Users\Nikolas.B\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b76 not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b77 not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b78 not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b79 not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7a not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7b not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7c not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7d not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7e not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7f not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b80 not found!
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\Low\SkypeClickToCall\Logs\AutoUpdateSvc.log scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\.NIKOLAS.NIKOLAS$.log.ERROR..log scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\.NIKOLAS.NIKOLAS$.log.WARNING..log scheduled to be moved on reboot.
C:\WINDOWS\temp\a67cb766-88a3-4911-84ef-a1001ad03cf5.NIKOLAS.NIKOLAS$.log.ERROR..log moved successfully.
C:\WINDOWS\temp\a67cb766-88a3-4911-84ef-a1001ad03cf5.NIKOLAS.NIKOLAS$.log.WARNING..log moved successfully.
File move failed. C:\WINDOWS\temp\adobegc.log scheduled to be moved on reboot.

Registry entries deleted on Reboot...

po restartu



All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\WINDOWS\tasks\wcCxzCN4n57TND.job moved successfully.
File/Folder C:\Users\Nikolas.B\AppData\Roaming\wcCxzCN4n57TND.exe not found.
C:\WINDOWS\tasks\WWY7vM4EhKsI7HH2YNTrb8fjdl.job moved successfully.
File/Folder C:\Users\Nikolas.B\AppData\Roaming\WWY7vM4EhKsI7HH2YNTrb8fjdl.exe not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: Nikolas.B
->Temp folder emptied: 216288248 bytes
->Temporary Internet Files folder emptied: 73764450 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 78320435 bytes
->Google Chrome cache emptied: 333908818 bytes
->Flash cache emptied: 826 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 321725804 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 14872770 bytes
RecycleBin emptied: 4575513682 bytes

Total Files Cleaned = 5 354,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 06082016_115931

Files moved on Reboot...
C:\Users\Nikolas.B\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b76 not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b77 not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b78 not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b79 not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7a not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7b not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7c not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7d not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7e not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b7f not found!
File C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Cache\f_004b80 not found!
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\Low\SkypeClickToCall\Logs\AutoUpdateSvc.log scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\.NIKOLAS.NIKOLAS$.log.ERROR..log scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\.NIKOLAS.NIKOLAS$.log.WARNING..log scheduled to be moved on reboot.
C:\WINDOWS\temp\a67cb766-88a3-4911-84ef-a1001ad03cf5.NIKOLAS.NIKOLAS$.log.ERROR..log moved successfully.
C:\WINDOWS\temp\a67cb766-88a3-4911-84ef-a1001ad03cf5.NIKOLAS.NIKOLAS$.log.WARNING..log moved successfully.
File move failed. C:\WINDOWS\temp\adobegc.log scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Hanes píše:bohužel ale orbit mi to nenabízí na odinstalací programu přes win nic z jménem ani orbit tam není

kolega pisal IObit
nie orbit skus poriadne citat

adw sken

# AdwCleaner v5.119 - Log vytvořen 08/06/2016 v 12:14:53
# Aktualizováno 30/05/2016 by Xplode
# Databáze : 2016-06-07.1 [Server]
# Operační system : Windows 10 Pro (X64)
# Uživatelské jméno : Nikolas.B - NIKOLAS
# Spuštěno z : C:\Users\Nikolas.B\Downloads\adwcleaner_5.119.exe
# Nastavení : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****

[-] Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] Složka Smazáno : C:\Program Files (x86)\globalUpdate
[-] Složka Smazáno : C:\Program Files (x86)\myfree codec
[-] Složka Smazáno : C:\Users\Nikolas.B\AppData\Local\globalUpdate

***** [ Soubory ] *****


***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úlohy ] *****


***** [ Registry ] *****

[-] Klíč Smazáno : HKCU\Software\1ffcf52b0cd64d83554855bd6f04fc1f
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Klíč Smazáno : HKCU\Software\APN PIP
[-] Klíč Smazáno : HKCU\Software\GlobalUpdate
[-] Klíč Smazáno : HKCU\Software\Internet Speed Checker
[-] Klíč Smazáno : HKCU\Software\Myfree Codec
[-] Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
[-] Klíč Smazáno : HKLM\SOFTWARE\Myfree Codec
[-] Klíč Smazáno : HKLM\SOFTWARE\Trymedia Systems
[-] Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21}
[-] Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SU
[-] Klíč Smazáno : HKU\S-1-5-21-3450977487-3989787405-2438237038-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer
[-] Hodnota Smazáno : HKU\S-1-5-21-3450977487-3989787405-2438237038-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]

***** [ Prohlížeče ] *****

[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("browser.search.searchengine.alias", "mystartsearch");
[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine");
[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("browser.search.searchengine.iconURL", "hxxp://www.mystartsearch.com/favicon.ico");
[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("browser.search.searchengine.name", "mystartsearch");
[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("browser.search.searchengine.ptid", "cmi");
[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("browser.search.searchengine.uid", "HGSTXHTS541075A9E680_JA13021H095WPK095WPKX");
[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("browser.search.searchengine.url", "hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... 95WPK095WP[...]
[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("extensions.quick_start.enable_search1", false);
[-] [C:\Users\Nikolas.B\AppData\Roaming\Mozilla\Firefox\Profiles\8r5gkgp6.default\prefs.js] Smazáno : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
[-] [C:\Users\Nikolas.B\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Smazáno : hxxp://www.mystartsearch.com/?type=hp&ts=14398 ... WPK095WPKX

*************************

:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [6534 bytů] - [08/06/2016 12:14:53]
C:\AdwCleaner\AdwCleaner[S1].txt - [356 bytů] - [08/06/2016 11:57:32]
C:\AdwCleaner\AdwCleaner[S2].txt - [7116 bytů] - [08/06/2016 12:10:28]
C:\AdwCleaner\AdwCleaner[S3].txt - [7185 bytů] - [08/06/2016 12:13:13]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [6825 bytů] ##########

JaRon píše:

Hanes píše:bohužel ale orbit mi to nenabízí na odinstalací programu přes win nic z jménem ani orbit tam není

kolega pisal IObit
nie orbit skus poriadne citat

ano omlouvám se překlep ale nic tam není navíc po restartu přestala fungovat lištička start

Ještě jednou spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:
klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem zkopíruj obsah logu uloženého na C:\_OTMoveIt\MovedFiles\


Pak použij Mbam z mého podpisu a dej mi sem z něj log po smazání nepořádku.


Co se týče té lišty Start, ani po restartu dalším nejde ?

ani po restartu nabídka start nefunguje.


All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\Program Files (x86)\IObit\LiveUpdate\update folder moved successfully.
C:\Program Files (x86)\IObit\LiveUpdate\Language folder moved successfully.
C:\Program Files (x86)\IObit\LiveUpdate folder moved successfully.
C:\Program Files (x86)\IObit folder moved successfully.
========== SERVICES/DRIVERS ==========
Service LiveUpdateSvc stopped successfully!
Service LiveUpdateSvc deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: Nikolas.B
->Temp folder emptied: 28618976 bytes
->Temporary Internet Files folder emptied: 8009085 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 363751777 bytes
->Flash cache emptied: 492 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 307662 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 382,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 06082016_224336

Files moved on Reboot...
C:\Users\Nikolas.B\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\Low\SkypeClickToCall\Logs\AutoUpdateSvc.log scheduled to be moved on reboot.
C:\WINDOWS\temp\avast_ash2\Mozilla Firefox\download.ini moved successfully.
File move failed. C:\WINDOWS\temp\adobegc.log scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\I.NIKOLAS.NIKOLAS$.log.ERROR..log scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\I.NIKOLAS.NIKOLAS$.log.WARNING..log scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 8. 6. 2016
Čas skenování: 22:52
Protokol: sken.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.06.08.06
Databáze rootkitů: v2016.05.27.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Nikolas.B

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 327753
Uplynulý čas: 26 min, 33 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 29
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{00EC3416-F0B1-4C3F-B9EA-B3ADB39FB692}, Smazat při restartu, [790dbd3d5445db5baea19a4748bb51af],
PUP.Optional.AnyProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{03B65244-3CD8-4418-A3DA-C0A9597D9F0F}, Smazat při restartu, [fb8b32c8e4b5b680600b01de3dc64cb4],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{09D860B3-544B-4F77-972B-0D0405F3E3EB}, Smazat při restartu, [91f5e6141683b680d5966e75e0237d83],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{195CAAB2-4378-4363-9360-09231B3CBE17}, Smazat při restartu, [7e0850aaa6f382b476f5964da360ec14],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2612564E-6CAA-4F00-B8EA-46E0BD7AE799}, Smazat při restartu, [05811fdb85146ec8b7b49f445ca707f9],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3332462F-3741-4066-B87E-C15121A6F515}, Smazat při restartu, [f78fee0c6d2c241293d88063ad5653ad],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{39C28726-AF84-41E3-9782-A51A891C27F9}, Smazat při restartu, [1c6ae01a7029c96d511a25be5aa9d22e],
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{5A6FF313-6700-4009-8BFD-DE8BE2DF8E26}, Smazat při restartu, [c6c0e2180d8ced498573677f2fd43bc5],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{62F1B748-F92F-4167-8BB3-E1B2F2F055BB}, Smazat při restartu, [2561d624bcdd60d63d2e2bb815eed12f],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{65DF3E25-EDCB-4BF7-9533-93178E4DC526}, Smazat při restartu, [e3a31bdf9603f14568bbb02f7d86e51b],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6D117C2F-77F4-4C68-85B3-8E074875F62C}, Smazat při restartu, [6a1c0af00c8d8fa7d09bb330b74c6d93],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6DADB0B4-00BA-4762-B66F-2348B05645FB}, Smazat při restartu, [34524dad316870c6e4879e45dc2730d0],
PUP.Optional.AnyProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{78462969-28C2-4138-AEE7-A6F68B21C3B9}, Smazat při restartu, [444232c89cfdbf77d695b42b37cc21df],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{78B681FE-83E2-484E-A015-FA1D204D018A}, Smazat při restartu, [6f17f00afe9b33036209c71c57ac6997],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{7DA956B0-630F-48B6-A986-069B655B8E1C}, Smazat při restartu, [c5c136c44c4d56e0d19ac81b7b883dc3],
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{921E416B-BB9C-4E63-80F4-F4A73A54CC97}, Smazat při restartu, [9aec3ebc6336a294e612d6102ed5c63a],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9DA32C9F-1675-41C4-8F4A-8EB7449FAA9A}, Smazat při restartu, [2f57ba401b7e78be204b548f0ff4a858],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AC88701B-6B90-4163-B3DA-B8D119A3EB78}, Smazat při restartu, [b4d238c2bedb45f172f9f1f2ca3935cb],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AC951690-92C9-42E1-A997-F23554BC9238}, Smazat při restartu, [b1d524d6950480b61a51db08c63dd22e],
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AE783F90-7D8F-4D80-883C-85EDE99E935D}, Smazat při restartu, [75113fbbf6a3082e13e518ce847fde22],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AF3CF636-E1D1-49F0-9A66-5CCA6E985A03}, Smazat při restartu, [d3b3b248425742f4d992f0f3cd36f010],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B3AB9455-949C-422F-82A1-27B45842F455}, Smazat při restartu, [dcaa9d5d78216fc798d3756e04ffaf51],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B75C0AC8-5028-4F0A-8747-D73E03276E1F}, Smazat při restartu, [8afcab4f17820d29d09b756e3fc47987],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B914D4FA-71CE-4D96-8F9E-204DFD8550EB}, Smazat při restartu, [4d39a65493065dd9bab1c122a55ee917],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C1CAFD8E-478D-4310-80D7-F378257B6739}, Smazat při restartu, [43436199adece5511b50cf14ba49f30d],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CA66BAB4-5520-43C3-A32A-A0D9FE5F1BF3}, Smazat při restartu, [e99d4ab02277082e2e3d24bf3bc8b44c],
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CC40F34A-3D4C-4E36-8467-30CB3968D8DD}, Smazat při restartu, [2a5c26d405943ff73cbc8f570300f010],
PUP.Optional.AnyProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D2AC20EC-21D4-41EC-8C83-E60AC03B7167}, Smazat při restartu, [4c3a6f8bddbc201688e3bd2221e230d0],
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F7E26634-1A24-4978-9D06-9480AA9C189E}, Smazat při restartu, [e2a434c6a4f5dd59d523be28bd469c64],

Hodnoty registru: 29
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{00EC3416-F0B1-4C3F-B9EA-B3ADB39FB692}|Path, \Crossbrowse, Smazat při restartu, [790dbd3d5445db5baea19a4748bb51af]
PUP.Optional.AnyProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{03B65244-3CD8-4418-A3DA-C0A9597D9F0F}|Path, \APSnotifierPP3, Smazat při restartu, [fb8b32c8e4b5b680600b01de3dc64cb4]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{09D860B3-544B-4F77-972B-0D0405F3E3EB}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-3, Smazat při restartu, [91f5e6141683b680d5966e75e0237d83]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{195CAAB2-4378-4363-9360-09231B3CBE17}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-11, Smazat při restartu, [7e0850aaa6f382b476f5964da360ec14]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{2612564E-6CAA-4F00-B8EA-46E0BD7AE799}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-7, Smazat při restartu, [05811fdb85146ec8b7b49f445ca707f9]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3332462F-3741-4066-B87E-C15121A6F515}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-4, Smazat při restartu, [f78fee0c6d2c241293d88063ad5653ad]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{39C28726-AF84-41E3-9782-A51A891C27F9}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-10_user, Smazat při restartu, [1c6ae01a7029c96d511a25be5aa9d22e]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{5A6FF313-6700-4009-8BFD-DE8BE2DF8E26}|Path, \temp_34253519-6f52-4834-a319-4da8df9b76fb-10_user, Smazat při restartu, [c6c0e2180d8ced498573677f2fd43bc5]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{62F1B748-F92F-4167-8BB3-E1B2F2F055BB}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-5, Smazat při restartu, [2561d624bcdd60d63d2e2bb815eed12f]
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{65DF3E25-EDCB-4BF7-9533-93178E4DC526}|Path, \PC SpeedUp Service Deactivator, Smazat při restartu, [e3a31bdf9603f14568bbb02f7d86e51b]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6D117C2F-77F4-4C68-85B3-8E074875F62C}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-5_user, Smazat při restartu, [6a1c0af00c8d8fa7d09bb330b74c6d93]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{6DADB0B4-00BA-4762-B66F-2348B05645FB}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-6, Smazat při restartu, [34524dad316870c6e4879e45dc2730d0]
PUP.Optional.AnyProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{78462969-28C2-4138-AEE7-A6F68B21C3B9}|Path, \APSnotifierPP2, Smazat při restartu, [444232c89cfdbf77d695b42b37cc21df]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{78B681FE-83E2-484E-A015-FA1D204D018A}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-6, Smazat při restartu, [6f17f00afe9b33036209c71c57ac6997]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{7DA956B0-630F-48B6-A986-069B655B8E1C}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-5_user, Smazat při restartu, [c5c136c44c4d56e0d19ac81b7b883dc3]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{921E416B-BB9C-4E63-80F4-F4A73A54CC97}|Path, \temp_686de449-a0f3-4b39-a8cc-971426386681, Smazat při restartu, [9aec3ebc6336a294e612d6102ed5c63a]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9DA32C9F-1675-41C4-8F4A-8EB7449FAA9A}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-10_user, Smazat při restartu, [2f57ba401b7e78be204b548f0ff4a858]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AC88701B-6B90-4163-B3DA-B8D119A3EB78}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-11, Smazat při restartu, [b4d238c2bedb45f172f9f1f2ca3935cb]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AC951690-92C9-42E1-A997-F23554BC9238}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-4, Smazat při restartu, [b1d524d6950480b61a51db08c63dd22e]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AE783F90-7D8F-4D80-883C-85EDE99E935D}|Path, \temp_34253519-6f52-4834-a319-4da8df9b76fb-6, Smazat při restartu, [75113fbbf6a3082e13e518ce847fde22]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AF3CF636-E1D1-49F0-9A66-5CCA6E985A03}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-1-7, Smazat při restartu, [d3b3b248425742f4d992f0f3cd36f010]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B3AB9455-949C-422F-82A1-27B45842F455}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-7, Smazat při restartu, [dcaa9d5d78216fc798d3756e04ffaf51]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B75C0AC8-5028-4F0A-8747-D73E03276E1F}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-5, Smazat při restartu, [8afcab4f17820d29d09b756e3fc47987]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B914D4FA-71CE-4D96-8F9E-204DFD8550EB}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-1-7, Smazat při restartu, [4d39a65493065dd9bab1c122a55ee917]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C1CAFD8E-478D-4310-80D7-F378257B6739}|Path, \ab107337-9465-4e74-a7c8-ac4407b60358-1-6, Smazat při restartu, [43436199adece5511b50cf14ba49f30d]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CA66BAB4-5520-43C3-A32A-A0D9FE5F1BF3}|Path, \34253519-6f52-4834-a319-4da8df9b76fb-1-6, Smazat při restartu, [e99d4ab02277082e2e3d24bf3bc8b44c]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CC40F34A-3D4C-4E36-8467-30CB3968D8DD}|Path, \temp_34253519-6f52-4834-a319-4da8df9b76fb-1-6, Smazat při restartu, [2a5c26d405943ff73cbc8f570300f010]
PUP.Optional.AnyProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{D2AC20EC-21D4-41EC-8C83-E60AC03B7167}|Path, \APSnotifierPP1, Smazat při restartu, [4c3a6f8bddbc201688e3bd2221e230d0]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F7E26634-1A24-4978-9D06-9480AA9C189E}|Path, \temp_ab107337-9465-4e74-a7c8-ac4407b60358-10_user, Smazat při restartu, [e2a434c6a4f5dd59d523be28bd469c64]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0


Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Znovu spusť OTMoveIt a nahoře v aplikaci klini na CleanUP!

tímto po sobě uklidí.


Odinstaluj Mbam, tedy samozřejmě po smazání nepořádku.


Co se týče té lišty Start, Microsoft má nástroj který je ke stažení ZDE a měl by pomoci.


Po té stiskni klávesy Windows + R do okna Spustit >> napiš - cmd >> Enter.

Do otevřeného okna s blikajícím kurzorem nakopíruj přesně tuto sfc /scannow


Pak dej vědět jestli to zabralo.

bohužel start stále nic pokud na nej kliknu pravím tlačítkem myši tak se zobrazí ořezaná verze ani centrum oznámení v pravo nejde


zde log z sfc /scannow

Microsoft Windows [Version 10.0.10586]
(c) 2015 Microsoft Corporation. Všechna práva vyhrazena.

C:\Users\Nikolas.B>Microsoft Windows [Version 10.0.10586]
'Microsoft' is not recognized as an internal or external command,
operable program or batch file.

C:\Users\Nikolas.B>(c) 2015 Microsoft Corporation. Všechna práva vyhrazena.
2015 was unexpected at this time.

C:\Users\Nikolas.B>
C:\Users\Nikolas.B>C:\Users\Nikolas.B>sfc /scannow
'C:\Users\Nikolas.B' is not recognized as an internal or external command,
operable program or batch file.

C:\Users\Nikolas.B>
C:\Users\Nikolas.B>You must be an administrator running a console session in order to
'You' is not recognized as an internal or external command,
operable program or batch file.

C:\Users\Nikolas.B>use the sfc utility.
'use' is not recognized as an internal or external command,
operable program or batch file.

C:\Users\Nikolas.B>
C:\Users\Nikolas.B>C:\Users\Nikolas.B>
The syntax of the command is incorrect.
C:\Users\Nikolas.B>
C:\Users\Nikolas.B>C:\Users\Nikolas.B>
The syntax of the command is incorrect.
C:\Users\Nikolas.B>
C:\Users\Nikolas.B>C:\Users\Nikolas.B>

Prosím Tě příkaz sfc /scannow máš asi napsaný špatně špatně neboli nekorektně jak hlásí Windows.

Musí to být přesně jak píšu jinak to nefunguje.