VIRY.CZ

ahoj.
pri surfovani mi vyskakuji ruzne reklamy ... prosim o jakoukoliv pomoc ,radu ... diky
posilam log

Logfile of random's system information tool 1.10 (written by random/random)
Run by Monika1 at 2016-11-04 16:04:00
Microsoft Windows 8.1
System drive C: has 802 GB (86%) free of 931 GB
Total RAM: 11461 MB (79% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:04:08, on 04.11.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe
C:\Program Files (x86)\Nero\Nero TuneItUp\ServiceProvider.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Monika1.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPDTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com?pc=HPDTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: AdblockIE - {90EFF544-3981-4d46-85C9-C0361D0931D6} - mscoree.dll (file missing)
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [AudialsNotifier] C:\Program Files (x86)\Music Recorder\Music Recorder 2016\AudialsNotifier.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Monika1\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Monika1\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [HP ENVY 4500 series (NET)] "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN56M340SJ05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Update-Dienst (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem12.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) - Reimage® - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11518 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
C:\Windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPSP
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 1032491780688
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe"
dashost.exe {101c0e3c-160d-4fa0-8bcaa10f77bbe4b9}
"C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe"
"C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
taskeng.exe {5CB01A3E-9A07-4F40-B2D5-F6AE04BAD4BD}
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe" autolaunch
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Nero\Nero TuneItUp\ServiceProvider.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=54.0.2840.71 --handshake-handle=0x124
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SubresourceFilter/Disabled/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,15,16,17,19,33,59 --gpu-vendor-id=0x1002 --gpu-device-id=0x990f --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.352.1004.0 --gpu-driver-date=4-6-2014 --gpu-secondary-vendor-ids=0x1002 --gpu-secondary-device-ids=0x6900 --mojo-application-channel-token=99CC8885BFB187C3B44E5DC025FF83CE --mojo-platform-channel-handle=1312 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/Disabled/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --primordial-pipe-token=F3D2CB159D59D1DBDA5BF3D34142E7EA --lang=de --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=F3D2CB159D59D1DBDA5BF3D34142E7EA --channel="4584.1.871792395\2104414478" --mojo-platform-channel-handle=2268 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/Disabled/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --primordial-pipe-token=935BE7E81090E0C61CCF9B96CFBFCB3D --lang=de --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=935BE7E81090E0C61CCF9B96CFBFCB3D --channel="4584.3.1737595578\2141088399" --mojo-platform-channel-handle=2804 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/Disabled/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --primordial-pipe-token=838382CE8438FBD94BB919B75C90F9D0 --lang=de --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=838382CE8438FBD94BB919B75C90F9D0 --channel="4584.4.67734122\840517483" --mojo-platform-channel-handle=2824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/Disabled/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/" --primordial-pipe-token=DCEA0B9290BDE7B0122EA1A3C00D4874 --lang=de --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=DCEA0B9290BDE7B0122EA1A3C00D4874 --channel="4584.5.2014547914\1051456732" --mojo-platform-channel-handle=2836 /prefetch:1
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/Disabled/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/" --primordial-pipe-token=B9A5CCC46EB8F22F72D8BD2526CCC9EB --lang=de --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=B9A5CCC46EB8F22F72D8BD2526CCC9EB --channel="4584.12.1445792118\603638245" --mojo-platform-channel-handle=9100 /prefetch:1

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/Disabled/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/" --primordial-pipe-token=1DC5F2729FDD9732CDB8F5FF7092245D --lang=de --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=1DC5F2729FDD9732CDB8F5FF7092245D --channel="4584.15.789638860\1999864651" --mojo-platform-channel-handle=8344 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/Disabled/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/" --primordial-pipe-token=F34E8CEA0FB2406A63DAE48BE5724767 --lang=de --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=F34E8CEA0FB2406A63DAE48BE5724767 --channel="4584.18.1782401280\60772923" --mojo-platform-channel-handle=7820 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 572 576 584 65536 580
"C:\Users\Monika1\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Nero TuneItUp PRO (Tray).job - C:\Program Files (x86)\Nero\Nero TuneItUp\ServiceProvider.exe
C:\Windows\tasks\Nero TuneItUp PRO.job - C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe -task

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-27 790552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-09-27 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-27 664848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{90EFF544-3981-4d46-85C9-C0361D0931D6}]
af0.Adblock.BHO - C:\Windows\system32\mscoree.dll [2013-08-22 382976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-04-04 585568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-09-27 193136]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-09-27 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-09-27 193136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-03-10 7546072]
"SimplePass"=C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2014-03-28 3962936]
"OPBHOBroker"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2014-03-28 415288]
"OPBHOBrokerDesktop"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2014-03-28 415288]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-06-04 2818800]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AudialsNotifier"=C:\Program Files (x86)\Music Recorder\Music Recorder 2016\AudialsNotifier.exe [2016-03-15 4535192]
"cz.seznam.software.autoupdate"=C:\Users\Monika1\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Monika1\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"HP ENVY 4500 series (NET)"=C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [2014-07-21 3487240]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-06 767200]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2014-04-01 126240]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-10-27 9099440]
"HPMessageService"=C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [2015-06-29 653576]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-11-04 16:04:01 ----D---- C:\Program Files\trend micro
2016-11-04 16:04:00 ----D---- C:\rsit
2016-10-26 21:32:54 ----D---- C:\ProgramData\Reimage Protector
2016-10-26 21:32:43 ----D---- C:\Program Files\Reimage
2016-10-26 21:32:27 ----D---- C:\rei
2016-10-26 21:31:38 ----A---- C:\Windows\Reimage.ini
2016-10-11 19:28:12 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-10-11 19:28:12 ----A---- C:\Windows\system32\appraiser.dll
2016-10-11 19:28:12 ----A---- C:\Windows\system32\aeinv.dll
2016-10-11 19:28:12 ----A---- C:\Windows\system32\acmigration.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\invagent.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\generaltel.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\devinv.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\centel.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\aepic.dll
2016-10-11 19:28:05 ----A---- C:\Windows\system32\shell32.dll
2016-10-11 19:28:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-10-11 19:28:02 ----A---- C:\Windows\system32\twinui.dll
2016-10-11 19:28:01 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-10-11 19:28:00 ----A---- C:\Windows\system32\authui.dll
2016-10-11 19:27:59 ----A---- C:\Windows\SYSWOW64\RestoreOptIn.exe
2016-10-11 19:27:59 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-10-11 19:27:59 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-10-11 19:27:59 ----A---- C:\Windows\system32\RestoreOptIn.exe
2016-10-11 19:27:59 ----A---- C:\Windows\explorer.exe
2016-10-11 19:27:44 ----A---- C:\Windows\system32\mshtml.dll
2016-10-11 19:27:41 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-10-11 19:27:41 ----A---- C:\Windows\system32\actxprxy.dll
2016-10-11 19:27:38 ----A---- C:\Windows\system32\wmp.dll
2016-10-11 19:27:36 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-10-11 19:27:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-10-11 19:27:27 ----A---- C:\Windows\SYSWOW64\esent.dll
2016-10-11 19:27:27 ----A---- C:\Windows\system32\esent.dll
2016-10-11 19:27:26 ----A---- C:\Windows\system32\jscript9.dll
2016-10-11 19:27:25 ----A---- C:\Windows\system32\ieframe.dll
2016-10-11 19:27:23 ----A---- C:\Windows\system32\d3d11.dll
2016-10-11 19:27:22 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2016-10-11 19:27:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-10-11 19:27:21 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-10-11 19:27:21 ----A---- C:\Windows\system32\DWrite.dll
2016-10-11 19:27:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-10-11 19:27:19 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2016-10-11 19:27:18 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-10-11 19:27:18 ----A---- C:\Windows\system32\MSVidCtl.dll
2016-10-11 19:27:17 ----A---- C:\Windows\system32\wininet.dll
2016-10-11 19:27:17 ----A---- C:\Windows\system32\urlmon.dll
2016-10-11 19:27:17 ----A---- C:\Windows\system32\FntCache.dll
2016-10-11 19:27:16 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2016-10-11 19:27:16 ----A---- C:\Windows\system32\iertutil.dll
2016-10-11 19:27:15 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-10-11 19:27:15 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-10-11 19:27:15 ----A---- C:\Windows\system32\win32k.sys
2016-10-11 19:27:14 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-10-11 19:27:14 ----A---- C:\Windows\system32\ntshrui.dll
2016-10-11 19:27:14 ----A---- C:\Windows\system32\lsasrv.dll
2016-10-11 19:27:14 ----A---- C:\Windows\system32\drivers\dfsc.sys
2016-10-11 19:27:13 ----AC---- C:\Windows\system32\drivers\spaceport.sys
2016-10-11 19:27:13 ----A---- C:\Windows\system32\wbengine.exe
2016-10-11 19:27:13 ----A---- C:\Windows\system32\GdiPlus.dll
2016-10-11 19:27:12 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2016-10-11 19:27:12 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-10-11 19:27:12 ----A---- C:\Windows\system32\winload.exe
2016-10-11 19:27:11 ----AC---- C:\Windows\system32\drivers\parport.sys
2016-10-11 19:27:11 ----A---- C:\Windows\system32\wmploc.DLL
2016-10-11 19:27:10 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-10-11 19:27:08 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-10-11 19:27:08 ----A---- C:\Windows\system32\vbscript.dll
2016-10-11 19:27:08 ----A---- C:\Windows\system32\PlayToDevice.dll
2016-10-11 19:27:08 ----A---- C:\Windows\system32\inetcomm.dll
2016-10-11 19:27:07 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2016-10-11 19:27:07 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2016-10-11 19:27:06 ----A---- C:\Windows\SYSWOW64\PlayToDevice.dll
2016-10-11 19:27:06 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2016-10-11 19:27:06 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-10-11 19:27:06 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-10-11 19:27:06 ----A---- C:\Windows\system32\drivers\tm.sys
2016-10-11 19:27:05 ----A---- C:\Windows\system32\winresume.exe
2016-10-11 19:27:05 ----A---- C:\Windows\system32\rastapi.dll
2016-10-11 19:27:05 ----A---- C:\Windows\system32\msfeeds.dll
2016-10-11 19:27:04 ----AC---- C:\Windows\system32\drivers\serial.sys
2016-10-11 19:27:04 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2016-10-11 19:27:04 ----A---- C:\Windows\system32\twinui.appcore.dll
2016-10-11 19:27:04 ----A---- C:\Windows\system32\drivers\vwifimp.sys
2016-10-11 19:27:04 ----A---- C:\Windows\system32\adsmsext.dll
2016-10-11 19:27:01 ----AC---- C:\Windows\system32\drivers\serenum.sys
2016-10-11 19:27:01 ----A---- C:\Windows\SYSWOW64\offreg.dll
2016-10-11 19:27:01 ----A---- C:\Windows\system32\offreg.dll
2016-10-11 19:27:01 ----A---- C:\Windows\system32\drivers\vwifibus.sys
2016-10-11 19:27:01 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-10-11 19:27:00 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-10-11 19:27:00 ----A---- C:\Windows\system32\iedkcs32.dll
2016-10-11 19:27:00 ----A---- C:\Windows\system32\ie4uinit.exe
2016-10-11 19:27:00 ----A---- C:\Windows\system32\drivers\vwififlt.sys
2016-10-11 19:27:00 ----A---- C:\Windows\system32\certcli.dll
2016-10-11 19:26:59 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-10-11 19:26:58 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-10-11 19:26:58 ----A---- C:\Windows\system32\jscript.dll
2016-10-11 19:26:57 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-10-11 19:26:57 ----A---- C:\Windows\system32\ieapfltr.dll

======List of files/folders modified in the last 1 month======

2016-11-04 16:04:01 ----RD---- C:\Program Files
2016-11-04 16:02:00 ----D---- C:\Windows\system32\sru
2016-11-04 16:01:25 ----RD---- C:\Windows\System32
2016-11-04 15:59:54 ----D---- C:\Windows\Prefetch
2016-11-04 15:50:39 ----D---- C:\Windows\Inf
2016-11-04 15:50:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-11-04 15:46:34 ----D---- C:\Windows\system32\Tasks
2016-11-04 15:46:18 ----D---- C:\Windows\Temp
2016-11-04 15:33:15 ----D---- C:\Windows\system32\drivers
2016-11-03 18:06:01 ----D---- C:\Windows\Microsoft.NET
2016-11-02 09:09:27 ----D---- C:\Windows\system32\config
2016-11-02 05:18:04 ----D---- C:\Windows\system32\DriverStore
2016-11-01 21:17:45 ----D---- C:\Windows\WinSxS
2016-11-01 20:52:32 ----HD---- C:\ProgramData
2016-11-01 20:40:08 ----D---- C:\Windows\CbsTemp
2016-11-01 20:40:07 ----D---- C:\Windows\SysWOW64
2016-11-01 20:39:21 ----SHD---- C:\System Volume Information
2016-10-26 21:31:38 ----D---- C:\Windows
2016-10-24 22:57:06 ----D---- C:\Users\Monika1\AppData\Roaming\Seznam.cz
2016-10-24 22:54:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-10-22 08:17:51 ----D---- C:\Windows\system32\catroot2
2016-10-19 23:41:48 ----D---- C:\Program Files (x86)\TeamViewer
2016-10-17 22:02:33 ----D---- C:\Windows\rescache
2016-10-16 17:01:32 ----SD---- C:\Windows\system32\CompatTel
2016-10-16 17:01:32 ----D---- C:\Windows\system32\appraiser
2016-10-15 22:08:44 ----A---- C:\Windows\system32\pcasvc.dll
2016-10-15 21:51:52 ----D---- C:\Windows\AppReadiness
2016-10-13 20:26:43 ----RSD---- C:\Windows\assembly
2016-10-13 19:54:44 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-13 19:54:43 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 18:03:07 ----RD---- C:\Windows\ToastData
2016-10-13 18:03:06 ----D---- C:\Windows\SYSWOW64\en-GB
2016-10-13 18:03:06 ----D---- C:\Windows\SYSWOW64\de-DE
2016-10-13 18:03:06 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-10-13 18:03:06 ----D---- C:\Windows\system32\en-GB
2016-10-13 18:03:06 ----D---- C:\Windows\system32\de-DE
2016-10-13 18:03:06 ----D---- C:\Windows\system32\cs-CZ
2016-10-13 18:03:06 ----D---- C:\Windows\system32\Boot
2016-10-13 18:03:06 ----D---- C:\Windows\apppatch
2016-10-13 18:03:06 ----D---- C:\Program Files\Internet Explorer
2016-10-13 18:03:06 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-13 10:14:34 ----D---- C:\Windows\system32\MRT
2016-10-13 10:03:35 ----AC---- C:\Windows\system32\MRT.exe
2016-10-13 09:59:54 ----SHD---- C:\Windows\Installer
2016-10-13 09:50:43 ----D---- C:\Windows\Logs
2016-10-11 19:31:41 ----HD---- C:\Program Files\WindowsApps

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem1.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2013-12-14 36608]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-09-27 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-10-13 293352]
R0 hpdskflt;@oem12.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-09-27 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-09-27 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-09-27 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-09-27 513632]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2013-11-12 91912]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2016-08-13 71680]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-11-04 59648]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-09-27 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-09-27 163416]
R3 Accelerometer;@oem12.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-07 13941760]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-07 628224]
R3 AtiHDAudioService;@oem3.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdWB6.sys [2013-12-20 222720]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 clwvd;@oem14.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2014-01-28 41704]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-12 3891800]
R3 RSP2STOR;@oem8.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2014-01-04 291544]
R3 RtkBtFilter;@oem10.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [2014-02-26 559832]
R3 RTL8168;@oem6.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-12-18 839896]
R3 RTWlanE;@oem18.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\Windows\system32\DRIVERS\rtwlane.sys [2016-07-28 5641224]
R3 SmbDrv;SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver_AMDASF.sys [2014-06-04 30448]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2014-10-29 11776]
R3 SynTP;@oem5.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-06-04 546032]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2014-02-17 60640]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2016-08-13 38912]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-09-27 37656]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2015-06-09 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Treiber für energiearme Bluetooth-Geräte; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2015-07-10 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 dc3d;@oem36.inf,%dc3d.SvcDesc%;MS Hardware Device Detection Driver; C:\Windows\system32\DRIVERS\dc3d.sys [2015-09-04 96536]
S3 dot4;@oem15.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem16.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\Windows\System32\drivers\Dot4Prt.sys [2012-10-19 27040]
S3 dot4usb;@oem15.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 GENERICDRV;GENERICDRV; \??\C:\Users\ADMINI~1\AppData\Local\Temp\pftCD5.tmp\amifldrv64.sys []
S3 NuidFltr;@oem26.inf,%NuidFltr.SvcDesc%;NUID filter driver; C:\Windows\System32\drivers\NuidFltr.sys [2014-03-19 29904]
S3 Point64;@oem25.inf,%point64.SvcDesc%;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\System32\drivers\point64.sys [2015-07-08 68912]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 SmbDrvI;SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [2014-06-04 31472]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-07 240128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-06 344064]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2014-10-29 38792]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-27 197128]
R2 Bonjour Service;Dienst "Bonjour"; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2014-03-05 88064]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
R2 hpsrv;@oem12.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-08-15 29728]
R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2015-06-29 602888]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2016-01-28 792944]
R2 omniserv; HP SimplePass Service; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [2014-03-28 88064]
R2 ReimageRealTimeProtector;Reimage Real Time Protector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2016-09-28 7953776]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-04-14 389896]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-01-08 290520]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2014-06-04 191728]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2014-05-19 1129760]
S2 gupdate;Google Update-Dienst (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-04-24 203344]
S3 gupdatem;Google Update-Dienst (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2016-09-27 194032]
S3 w3logsvc;@%windir%\system32\inetsrv\iisres.dll,-30014; C:\Windows\system32\svchost.exe [2014-10-29 38792]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2014-10-29 38792]

-----------------EOF-----------------

Zdravím, přes Odebrat programy nebo CCleaner níže odinstaluj vše od Seznam.cz.


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.


Nakonec použij Mbam z mého podpisu a dej mi sem z něj log, předem nic nemazat !

# AdwCleaner v6.030 - Logfile created 04/11/2016 at 20:44:42
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-04.2 [Server]
# Operating System : Windows 8.1 (X64)
# Username : Monika1 - MONIKA
# Running from : C:\Users\Monika1\Downloads\adwcleaner.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support



***** [ Services ] *****

[-] Service deleted: ReimageRealTimeProtector


***** [ Folders ] *****

[-] Folder deleted: C:\Users\Monika1\AppData\Roaming\Nico Mak Computing\WinZip Malware Protector
[-] Folder deleted: C:\Program Files\Reimage
[-] Folder deleted: C:\rei
[-] Folder deleted: C:\ProgramData\Reimage Protector
[-] Folder deleted: C:\ProgramData\Nico Mak Computing\WinZip Malware Protector
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Reimage Protector
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Nico Mak Computing\WinZip Malware Protector
[-] Folder deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reimage repair
[-] Folder deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Malware Protector
[-] Folder deleted: C:\Program Files (x86)\WinZip Malware Protector


***** [ Files ] *****

[-] File deleted: C:\Windows\SysNative\wsusnative64.exe
[-] File deleted: C:\Users\Public\Desktop\WinZip Malware Protector.lnk
[-] File deleted: C:\Windows\Reimage.ini


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Key deleted: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Key deleted: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\protector_dll.Protector
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{0757C9D8-D8A3-33F5-CEE2-11D09918BA8F}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key deleted: HKU\S-1-5-21-2034388857-1708302463-3317163625-1002\Software\Reimage
[-] Key deleted: HKU\S-1-5-21-2034388857-1708302463-3317163625-1002\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Key deleted: HKU\S-1-5-21-2034388857-1708302463-3317163625-1002\Software\NICO MAK COMPUTING\WINZIP MALWARE PROTECTOR
[#] Key deleted on reboot: HKCU\Software\Reimage
[#] Key deleted on reboot: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Key deleted on reboot: HKCU\Software\NICO MAK COMPUTING\WINZIP MALWARE PROTECTOR
[-] Key deleted: HKLM\SOFTWARE\NICO MAK COMPUTING\WINZIP MALWARE PROTECTOR
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinZip Malware Protector_is1
[#] Key deleted on reboot: [x64] HKCU\Software\Reimage
[#] Key deleted on reboot: [x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Key deleted on reboot: [x64] HKCU\Software\NICO MAK COMPUTING\WINZIP MALWARE PROTECTOR
[-] Key deleted: [x64] HKLM\SOFTWARE\Reimage
[-] Key deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\slunecnice.cz
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.slunecnice.cz
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\slunecnice.cz
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.slunecnice.cz
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [5350 Bytes] - [04/11/2016 20:44:42]
C:\AdwCleaner\AdwCleaner[S0].txt - [5359 Bytes] - [04/11/2016 20:43:08]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5496 Bytes] ##########








Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 04.11.2016
Cas skenování: 21:00
Protokol: mbam.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.11.04.08
Databáze rootkitu: v2016.10.31.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Monika1

Typ skenu: Sken hrozeb
Výsledek: Dokonceno
Prohledaných objektu: 307504
Uplynulý cas: 19 min, 11 sek

Pamet: Zapnuto
Po spuštení: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíce registru: 3
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}, , [33156d4f6733f73fb590ee08ac586d93],
PUP.Optional.Reimage, HKLM\SOFTWARE\CLASSES\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}, , [e563d5e7bfdbef47e2643bbb927246ba],
PUP.Optional.WinZipMalwareProtector, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WinZip Malware Protector, , [ce7aeece59412f07f3baf9ebe51efc04],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 85
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\adapter, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\abstractbutton, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\abstractbutton\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\alert, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\alert\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedhtml, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedhtml\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedhtml\html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedhtml\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedscript, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedscript\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedscript\html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedscript\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\flare, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\flare\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\flare\icons, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\generic, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\generic\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\link, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\link\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\images, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\rss, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\rss\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\thirdparty, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\thirdparty\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\uninstall, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\uninstall\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\weather, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\weather\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\common, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio\css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\rss, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\rss\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\topapps, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\topapps\css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\topapps\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\weather, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\weather\css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\weather\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\window, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews\css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews\html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\foreground, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\radioWrapper, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\search, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\search\background, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\search\html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\icons, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native\libs, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\_metadata, , [ea5e2498e4b6e74f9aa325a3ba48817f],

Soubory: 242
PUP.Optional.Reimage, C:\Users\Monika1\Downloads\ReimageRepair.exe, , [f553ffbdbfdb72c44fde9c5ae51f748c],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mabloidgodmbnmnhoenmhlcjkfelomgp_0.localstorage, , [4afec1fb5c3e61d56abf862418ebf010],
PUP.Optional.ReMarkIt.PrxySvrRST, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage, , [e95f7646910948eef012db1317ecc13f],
PUP.Optional.ReMarkIt.PrxySvrRST, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.re-markit00.re-markit.co_0.localstorage-journal, , [80c8f3c95e3ccd6950b232bc5da649b7],
PUP.Optional.Reimage, C:\Windows\Temp\reimage.log, , [94b41e9eb3e774c21024ed25b352a858],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\spent.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\bg.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\buildVars, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\buildVars.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\companionSW.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\config.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\contentScript.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\contentScript.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\debug.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\debug.jade, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\extension_toolbar_api.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\initWidgetWindow.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\manifest.json, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\newTabContentScript.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\options.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\spent.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\spent.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\spent2.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\spent2.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\spentJ.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\spentK.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\spentK.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\startup.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\stub.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\stubby.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\superFrame.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\toolbar.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\toolbar.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\toolbarUI.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\toolbarUI.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\toolbarUI.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\url.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\webtooltab.cs.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\adapter\adapterUtil.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\adapter\widget-adapter.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\abstractbutton\background\abstractButton.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\alert\background\alertButton.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedhtml\background\embedHtmlWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedhtml\html\embedHtmlTemplate.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedhtml\html\innerEmbedHtmlTemplate.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedhtml\js\embedHtmlUI.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedscript\background\embedScriptWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedscript\html\embedScriptTemplate.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedscript\html\innerEmbedScriptTemplate.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\embedscript\js\embedScriptUI.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\flare\background\FlareWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\flare\icons\Icon_Flare_blue.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\flare\icons\Icon_Flare_pink.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\flare\icons\Thumbs.db, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\generic\background\GenericWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\link\background\linkButton.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\README.txt, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\background\menuButton.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\css\menuframe.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\html\menuframe.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\images\right_arrow.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\images\right_arrow_white.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\js\jquery-1.7.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\js\menuframe.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\js\query-string.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\menu\js\underscore-1.3.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\rss\background\RssWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\thirdparty\background\thirdPartyWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\uninstall\background\uninstallButton.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\components\weather\background\weatherButton.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\bs.30.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\common.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\dynamic.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\enableDetect.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\eventListening.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\global.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\jquery-1.7.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\list-interaction.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\messageEventListener.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\navRedirector.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\paramReplacer.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\PartnerId.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\set.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\underscore-1.3.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\underscore-1.5.2.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\js\unifiedLogging.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widget-context-1.0.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\common\common.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\common\eventListening.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\common\jquery-1.7.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\common\list-interaction.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\common\set.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\common\underscore-1.3.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio\radio-widget.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio\css\radio-widget.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio\js\radio-custom.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio\js\radio-parser.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio\js\radio-widget-ui.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\radio\js\radio-widget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\rss\rssWidget.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\rss\js\rss-widget-custom.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\rss\js\rss-widget-parse.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\rss\js\rss-widget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test\invalid.json, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test\jquery.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test\qunit.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test\qunit.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test\resource.json, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test\resource.xml, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test\testWidget.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\test\testWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\topapps\widget.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\topapps\css\widget.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\topapps\js\nanigans-topapps-feed.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\topapps\js\topapps-config.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\topapps\js\widget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\weather\weatherButton.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\weather\css\weatherButton.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\common\widget-api\widgets\weather\js\weather.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\background\ApiBasedWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\background\widget-api-impl.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\window\hiddenWidgetWindow.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\window\hiddenWidgetWindow.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\window\hiddenWidgetWindowInit.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\window\widgetWindow.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\api\window\widgetWindow.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\background\updateSearch.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\background\updateSearchPromptBg.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\07_buttons2.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\08_buttons2.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\defaultSearchModal.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\defaultSearchModalInjector.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\defaultSearchModalInjector.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\tvf_btn_ok.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\tvf_btn_ok2.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\tvf_restart_alert_icon.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\tvf_restart_icon.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\defaultSearch\foreground\updateSearchPromptFg.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews\background\MovieReviewsWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews\css\movieReviews.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews\html\movieReviews.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\moviereviews\js\movieReviews.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\background\RadioWidget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\css\toolbar-item.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\foreground\button.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\radioWrapper\radioWrapper.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\radio\radioWrapper\radioWrapper.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\search\background\searchBox.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\search\html\searchSuggestions.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\search\html\searchSuggestions.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\search\html\searchSuggestions.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\search\html\searchSuggestionsInit.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\css\supertab.css, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\html\supertab.html, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\js\newtabfork.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\js\reporting.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\js\srchsugg.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\js\supertab.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\js\unifiedLogging.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\components\supertab\js\__utm.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\icons\arrowSprite.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\icons\icon128.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\icons\icon16.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\icons\icon19disabled.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\icons\icon19on.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\icons\icon48.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\icons\tb_icon_search_disappearing_ask.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\224324348.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\224324383.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\224324404.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\224324440.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\224324457.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\224324582.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\225377011.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\225853656.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\down_arrow.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\IDR_PRODUCT_LOGO_16.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\IDR_WEBSTORE_ICON.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\magnifying_glass.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\RadioPlayerSprite.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\search_button.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\tvf_icon_guide.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\tvf_logo.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\images\wrench.png, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\newTabInitialize.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\chromeStorage.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\chromeUtils.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\companionSWUtils.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\exeManager.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\exeManagerNMD.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\exePackageManager.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\focusManager.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\globalBlacklistManager.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\messaging.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\mutation_summary-min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\mutation_summary.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\nativeMessagingDispatcher.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\newTabInfo.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\options.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\readLocalStorage.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\reservespacefortoolbar.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\reservespaceifenabled.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\scriptInjector.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\searchContext.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\settingsOverrides.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\toolbarCookieParser.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\toolbarPreinit.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\underscore-1.3.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\URILoaderContentScript.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\webTooltabAPI.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\Widget.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\widgetContentScriptInjectee.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\widgetFactory.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\js\widgetWindowManager.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native\cache.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native\ce.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native\debug.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native\ss.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native\libs\jquery-1.7.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native\libs\jquery-1.9.1.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\native\libs\underscore-1.5.2.min.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\activePing.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\buttonLogger.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\competitorDnsList.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\console.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\FFPreferencesPersister.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\httpTransport.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\HttpURL.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\internationalSearch.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\LocalStoragePersister.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\MindsparkGlobal.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\MindsparkGlobal.unitTest.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\MindsparkGlobalNotes.txt, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\rsvp-latest.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\searchSuggestLocale.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\testHttpTransport.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\unifiedLogger.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\unifiedLogging.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\universalConsole.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\shared\utils.js, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\_metadata\computed_hashes.json, , [ea5e2498e4b6e74f9aa325a3ba48817f],
PUP.Optional.MindSpark, C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp\12.202.10.29532_0\_metadata\verified_contents.json, , [ea5e2498e4b6e74f9aa325a3ba48817f],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Vše co Mbam našel nech po jeho znovuspuštění smazat.


Spusť skener Cure It podle TOHOTO návodu

po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.

(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)

snad jsem to udelal spravne

Total 7876738281 bytes in 41846 files scanned (45801 objects)
Total 41813 files (45762 objects) are clean
There are no infected objects detected
Total 37 files are raised error condition
Scan time is 00:08:32.138

mirecek píše:snad jsem to udelal spravne

No a jak se PC chová, repektive co ten prohlížeč ?

stale jeste vyskakuje dalsi panel ...
napr. tato stranka hxxp://de.reimageplus.com/lp/sxs/index.php?tracking=XML&banner=Feed1_Open1_CZ_0.8_SXS&adgroup=seznam.cz&ads_name=seznam%20%20najdu%20tam%20co%20nezn%C3%A1m&keyword=direct&xml_uuid=2B9973C5-DE63-43B4-8AD9-31275AB9CF12

mirecek píše:stale jeste vyskakuje dalsi panel ...
napr. tato stranka hxxp://de.reimageplus.com/lp/sxs/index.php?tracking=XML&banner=Feed1_Open1_CZ_0.8_SXS&adgroup=seznam.cz&ads_name=seznam%20%20najdu%20tam%20co%20nezn%C3%A1m&keyword=direct&xml_uuid=2B9973C5-DE63-43B4-8AD9-31275AB9CF12

No ano tahle bude vyskakovat, protože tam máš (měls) od nich software - Reimage

Dej mi sem aktuální log z Rsit, mrknu kde se to zavrtalo.

Logfile of random's system information tool 1.14 (written by random/random)
Run by Monika1 at 2016-11-10 15:17:33
Microsoft Windows 8.1
System drive C: has 802 GB (86%) free of 931 GB
Total RAM: 11461 MB (80% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:17:38, on 10.11.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Nero\Nero TuneItUp\ServiceProvider.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Monika1_RSITx64 (1).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPDTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com?pc=HPDTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: AdblockIE - {90EFF544-3981-4d46-85C9-C0361D0931D6} - mscoree.dll (file missing)
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [AudialsNotifier] C:\Program Files (x86)\Music Recorder\Music Recorder 2016\AudialsNotifier.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Monika1\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Monika1\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [HP ENVY 4500 series (NET)] "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN56M340SJ05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (file missing)
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Update-Dienst (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem12.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11447 bytes

======Enumerating Processes======

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 328699734384
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\dashost.exe
"c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\WinLogon.exe -SpecialSession
C:\Windows\System32\dwm.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\atieclxx.exe
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\Explorer.EXE
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPSP
C:\Windows\system32\taskeng.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\Windows\system32\taskhostex.exe
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
C:\Windows\system32\taskeng.exe
"C:\Program Files (x86)\Nero\Nero TuneItUp\ServiceProvider.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Program Files\CCleaner\CCleaner64.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=54.0.2840.71 --handshake-handle=0x13c
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,15,16,17,19,33,59 --gpu-vendor-id=0x1002 --gpu-device-id=0x990f --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.352.1004.0 --gpu-driver-date=4-6-2014 --gpu-secondary-vendor-ids=0x1002 --gpu-secondary-device-ids=0x6900 --mojo-application-channel-token=0E913BCAD8DD246FF9304418A04BABC8 --mojo-platform-channel-handle=1280 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=DC8D9CAE4C00CE76A48263D4BB94D89C --lang=de --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=DC8D9CAE4C00CE76A48263D4BB94D89C --channel="7092.3.440736053\16329219" --mojo-platform-channel-handle=2728 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=9012C0B30B6679E380912797E7EA9660 --lang=de --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=9012C0B30B6679E380912797E7EA9660 --channel="7092.4.960117078\625672919" --mojo-platform-channel-handle=2732 /prefetch:1
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/OfferUploadCreditCards/Disabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_86/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=C952AFCA85B09E53C1EBD00CF9D5706F --lang=de --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=C952AFCA85B09E53C1EBD00CF9D5706F --channel="7092.5.1103554667\1686206860" --mojo-platform-channel-handle=2824 /prefetch:1
C:\Windows\system32\CompatTelRunner.exe
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\CompatTelRunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun -cv:qBwCRLmGHU2sXAd3.1
C:\Windows\WinStore\WSHost.exe -Embedding
"C:\Program Files\Internet Explorer\IELowutil.exe" -PID:123
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 560 572 580 65536 576
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Monika1\Downloads\RSITx64 (1).exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Nero TuneItUp PRO (Tray).job - C:\Program Files (x86)\Nero\Nero TuneItUp\ServiceProvider.exe
C:\Windows\tasks\Nero TuneItUp PRO.job - C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe -task
C:\Windows\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\HPCustParticipation HP ENVY 4500 series - "C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe" /UA 12.5 /DDV 0x0b00
C:\Windows\system32\tasks\Microsoft_Hardware_Launch_ipoint_exe - c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\Windows\system32\tasks\Microsoft_Hardware_Launch_itype_exe - c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Windows\system32\tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe - c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
C:\Windows\system32\tasks\Microsoft_MKC_Logon_Task_ipoint.exe - c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\Windows\system32\tasks\Microsoft_MKC_Logon_Task_itype.exe - c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Windows\system32\tasks\Nero TuneItUp PRO - C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe -task
C:\Windows\system32\tasks\Nero TuneItUp PRO (Tray) - C:\Program Files (x86)\Nero\Nero TuneItUp\ServiceProvider.exe
C:\Windows\system32\tasks\SafeZone scheduled Autoupdate 1458110003 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\Windows\system32\tasks\User_Feed_Synchronization-{2A721E35-9AA9-4103-A049-3D32719A3550} - C:\Windows\system32\msfeedssync.exe sync
C:\Windows\system32\tasks\YCMServiceAgent - C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-2034388857-1708302463-3317163625-1002 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\Nero\Nero Info - C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe -shedul
C:\Windows\system32\tasks\Microsoft\Windows\WS\License Validation - rundll32.exe WSClient.dll,WSpTLR licensing
C:\Windows\system32\tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask - rundll32.exe WSClient.dll,RefreshBannedAppsList
C:\Windows\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\Windows\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\Windows\system32\sc.exe start wuauserv
C:\Windows\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\Windows\system32\sc.exe start wuauserv
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\Windows\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\Windows\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\Windows\system32\tasks\Microsoft\Windows\RemovalTools\MRT_HB - C:\Windows\system32\MRT.exe /EHB /Q
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader - %windir%\system32\WSqmCons.exe -u
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\Windows\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent /increment
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\Windows\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
C:\Windows\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f
C:\Windows\system32\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe /byrunkey
C:\Windows\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs

=========Google Chrome=========

C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Google Präsentationen 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Web Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Google Docs 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Google Drive 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Google-Suche 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 0 Avast SafePrice 12.0.102
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Google Tabellen 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Google Docs Offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 1 Avast Online Security 12.0.124
Extension jfpicpeahbmmbigocblndhdmgpkcggpk 1 Towns 1
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension mabloidgodmbnmnhoenmhlcjkfelomgp 0 EasyDocMerge 12.202.10.29532
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension nbpagnldghgfoolbancepceaanlmhfmd 1 Hotword triggering 0.0.1.4
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.0
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Chrome Web Store-Zahlungen 1.0.0.0
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh 1 Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Google Mail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5416.905.0.6
Homepage:
default_search_provider.search_url:
C:\Users\Monika1\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx


======Registry dump======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTer ... c=HPNTDFJS
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{EC931466-7A16-4237-94CC-7D54DC008207}]
"URL"=http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-27 790552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-09-27 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-27 664848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{90EFF544-3981-4d46-85C9-C0361D0931D6}]
af0.Adblock.BHO - mscoree.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-04-04 585568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-09-27 193136]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-09-27 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-09-27 193136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-03-10 7546072]
"SimplePass"=C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2014-03-28 3962936]
"OPBHOBroker"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2014-03-28 415288]
"OPBHOBrokerDesktop"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2014-03-28 415288]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-06-04 2818800]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AudialsNotifier"=C:\Program Files (x86)\Music Recorder\Music Recorder 2016\AudialsNotifier.exe [2016-03-15 4535192]
"cz.seznam.software.autoupdate"=C:\Users\Monika1\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Monika1\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"HP ENVY 4500 series (NET)"=C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [2014-07-21 3487240]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-09-28 8944344]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-06 767200]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2014-04-01 126240]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-10-27 9099440]
"HPMessageService"=C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [2015-06-29 653576]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-11-04 20:58:06 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2016-11-04 20:57:11 ----D---- C:\ProgramData\Malwarebytes
2016-11-04 20:57:11 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-04 20:57:11 ----A---- C:\Windows\system32\drivers\mwac.sys
2016-11-04 20:57:11 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2016-11-04 20:57:11 ----A---- C:\Windows\system32\drivers\mbam.sys
2016-11-04 20:38:28 ----D---- C:\AdwCleaner
2016-11-04 20:28:43 ----D---- C:\Program Files\CCleaner
2016-11-04 16:04:01 ----D---- C:\Program Files\trend micro
2016-11-04 16:04:00 ----D---- C:\rsit
2016-10-11 19:28:12 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-10-11 19:28:12 ----A---- C:\Windows\system32\appraiser.dll
2016-10-11 19:28:12 ----A---- C:\Windows\system32\aeinv.dll
2016-10-11 19:28:12 ----A---- C:\Windows\system32\acmigration.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\invagent.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\generaltel.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\devinv.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\centel.dll
2016-10-11 19:28:11 ----A---- C:\Windows\system32\aepic.dll
2016-10-11 19:28:05 ----A---- C:\Windows\system32\shell32.dll
2016-10-11 19:28:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-10-11 19:28:02 ----A---- C:\Windows\system32\twinui.dll
2016-10-11 19:28:01 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-10-11 19:28:00 ----A---- C:\Windows\system32\authui.dll
2016-10-11 19:27:59 ----A---- C:\Windows\SYSWOW64\RestoreOptIn.exe
2016-10-11 19:27:59 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-10-11 19:27:59 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-10-11 19:27:59 ----A---- C:\Windows\system32\RestoreOptIn.exe
2016-10-11 19:27:59 ----A---- C:\Windows\explorer.exe
2016-10-11 19:27:44 ----A---- C:\Windows\system32\mshtml.dll
2016-10-11 19:27:41 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-10-11 19:27:41 ----A---- C:\Windows\system32\actxprxy.dll
2016-10-11 19:27:38 ----A---- C:\Windows\system32\wmp.dll
2016-10-11 19:27:36 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-10-11 19:27:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-10-11 19:27:27 ----A---- C:\Windows\SYSWOW64\esent.dll
2016-10-11 19:27:27 ----A---- C:\Windows\system32\esent.dll
2016-10-11 19:27:26 ----A---- C:\Windows\system32\jscript9.dll
2016-10-11 19:27:25 ----A---- C:\Windows\system32\ieframe.dll
2016-10-11 19:27:23 ----A---- C:\Windows\system32\d3d11.dll
2016-10-11 19:27:22 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2016-10-11 19:27:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-10-11 19:27:21 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-10-11 19:27:21 ----A---- C:\Windows\system32\DWrite.dll
2016-10-11 19:27:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-10-11 19:27:19 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2016-10-11 19:27:18 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-10-11 19:27:18 ----A---- C:\Windows\system32\MSVidCtl.dll
2016-10-11 19:27:17 ----A---- C:\Windows\system32\wininet.dll
2016-10-11 19:27:17 ----A---- C:\Windows\system32\urlmon.dll
2016-10-11 19:27:17 ----A---- C:\Windows\system32\FntCache.dll
2016-10-11 19:27:16 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2016-10-11 19:27:16 ----A---- C:\Windows\system32\iertutil.dll
2016-10-11 19:27:15 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-10-11 19:27:15 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-10-11 19:27:15 ----A---- C:\Windows\system32\win32k.sys
2016-10-11 19:27:14 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2016-10-11 19:27:14 ----A---- C:\Windows\system32\ntshrui.dll
2016-10-11 19:27:14 ----A---- C:\Windows\system32\lsasrv.dll
2016-10-11 19:27:14 ----A---- C:\Windows\system32\drivers\dfsc.sys
2016-10-11 19:27:13 ----AC---- C:\Windows\system32\drivers\spaceport.sys
2016-10-11 19:27:13 ----A---- C:\Windows\system32\wbengine.exe
2016-10-11 19:27:13 ----A---- C:\Windows\system32\GdiPlus.dll
2016-10-11 19:27:12 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2016-10-11 19:27:12 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-10-11 19:27:12 ----A---- C:\Windows\system32\winload.exe
2016-10-11 19:27:11 ----AC---- C:\Windows\system32\drivers\parport.sys
2016-10-11 19:27:11 ----A---- C:\Windows\system32\wmploc.DLL
2016-10-11 19:27:10 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-10-11 19:27:08 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-10-11 19:27:08 ----A---- C:\Windows\system32\vbscript.dll
2016-10-11 19:27:08 ----A---- C:\Windows\system32\PlayToDevice.dll
2016-10-11 19:27:08 ----A---- C:\Windows\system32\inetcomm.dll
2016-10-11 19:27:07 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2016-10-11 19:27:07 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2016-10-11 19:27:06 ----A---- C:\Windows\SYSWOW64\PlayToDevice.dll
2016-10-11 19:27:06 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2016-10-11 19:27:06 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-10-11 19:27:06 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-10-11 19:27:06 ----A---- C:\Windows\system32\drivers\tm.sys
2016-10-11 19:27:05 ----A---- C:\Windows\system32\winresume.exe
2016-10-11 19:27:05 ----A---- C:\Windows\system32\rastapi.dll
2016-10-11 19:27:05 ----A---- C:\Windows\system32\msfeeds.dll
2016-10-11 19:27:04 ----AC---- C:\Windows\system32\drivers\serial.sys
2016-10-11 19:27:04 ----A---- C:\Windows\SYSWOW64\adsmsext.dll
2016-10-11 19:27:04 ----A---- C:\Windows\system32\twinui.appcore.dll
2016-10-11 19:27:04 ----A---- C:\Windows\system32\drivers\vwifimp.sys
2016-10-11 19:27:04 ----A---- C:\Windows\system32\adsmsext.dll
2016-10-11 19:27:01 ----AC---- C:\Windows\system32\drivers\serenum.sys
2016-10-11 19:27:01 ----A---- C:\Windows\SYSWOW64\offreg.dll
2016-10-11 19:27:01 ----A---- C:\Windows\system32\offreg.dll
2016-10-11 19:27:01 ----A---- C:\Windows\system32\drivers\vwifibus.sys
2016-10-11 19:27:01 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-10-11 19:27:00 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-10-11 19:27:00 ----A---- C:\Windows\system32\iedkcs32.dll
2016-10-11 19:27:00 ----A---- C:\Windows\system32\ie4uinit.exe
2016-10-11 19:27:00 ----A---- C:\Windows\system32\drivers\vwififlt.sys
2016-10-11 19:27:00 ----A---- C:\Windows\system32\certcli.dll
2016-10-11 19:26:59 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-10-11 19:26:58 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-10-11 19:26:58 ----A---- C:\Windows\system32\jscript.dll
2016-10-11 19:26:57 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-10-11 19:26:57 ----A---- C:\Windows\system32\ieapfltr.dll

======List of files/folders modified in the last 1 month======

2016-11-10 15:15:40 ----D---- C:\Windows\Prefetch
2016-11-10 15:15:27 ----D---- C:\Windows\Temp
2016-11-10 15:15:00 ----D---- C:\Windows\system32\drivers
2016-11-10 15:13:39 ----D---- C:\Windows\system32\sru
2016-11-06 17:27:26 ----D---- C:\Windows\Microsoft.NET
2016-11-06 17:06:53 ----RD---- C:\Windows\System32
2016-11-06 17:06:53 ----D---- C:\Windows\Inf
2016-11-06 17:06:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-11-06 16:55:37 ----D---- C:\Windows\Web
2016-11-05 09:34:16 ----D---- C:\Windows\debug
2016-11-05 09:27:06 ----D---- C:\Windows\SoftwareDistribution
2016-11-05 09:23:27 ----D---- C:\Program Files (x86)\TeamViewer
2016-11-04 20:57:11 ----RD---- C:\Program Files (x86)
2016-11-04 20:57:11 ----HD---- C:\ProgramData
2016-11-04 20:53:07 ----D---- C:\Windows
2016-11-04 20:44:26 ----D---- C:\Windows\system32\Tasks
2016-11-04 20:44:21 ----D---- C:\ProgramData\Nico Mak Computing
2016-11-04 20:43:50 ----RD---- C:\Program Files
2016-11-04 20:43:48 ----D---- C:\Users\Monika1\AppData\Roaming\Nico Mak Computing
2016-11-02 09:09:27 ----D---- C:\Windows\system32\config
2016-11-02 05:18:04 ----D---- C:\Windows\system32\DriverStore
2016-11-01 21:17:45 ----D---- C:\Windows\WinSxS
2016-11-01 20:40:08 ----D---- C:\Windows\CbsTemp
2016-11-01 20:40:07 ----D---- C:\Windows\SysWOW64
2016-11-01 20:39:21 ----SHD---- C:\System Volume Information
2016-10-24 22:57:06 ----D---- C:\Users\Monika1\AppData\Roaming\Seznam.cz
2016-10-24 22:54:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-10-22 08:17:51 ----D---- C:\Windows\system32\catroot2
2016-10-17 22:02:33 ----D---- C:\Windows\rescache
2016-10-16 17:01:32 ----SD---- C:\Windows\system32\CompatTel
2016-10-16 17:01:32 ----D---- C:\Windows\system32\appraiser
2016-10-15 22:08:44 ----A---- C:\Windows\system32\pcasvc.dll
2016-10-15 21:51:52 ----D---- C:\Windows\AppReadiness
2016-10-13 20:26:43 ----RSD---- C:\Windows\assembly
2016-10-13 19:54:44 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-13 19:54:43 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-13 18:03:07 ----RD---- C:\Windows\ToastData
2016-10-13 18:03:06 ----D---- C:\Windows\SYSWOW64\en-GB
2016-10-13 18:03:06 ----D---- C:\Windows\SYSWOW64\de-DE
2016-10-13 18:03:06 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-10-13 18:03:06 ----D---- C:\Windows\system32\en-GB
2016-10-13 18:03:06 ----D---- C:\Windows\system32\de-DE
2016-10-13 18:03:06 ----D---- C:\Windows\system32\cs-CZ
2016-10-13 18:03:06 ----D---- C:\Windows\system32\Boot
2016-10-13 18:03:06 ----D---- C:\Windows\apppatch
2016-10-13 18:03:06 ----D---- C:\Program Files\Internet Explorer
2016-10-13 18:03:06 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-13 10:14:34 ----D---- C:\Windows\system32\MRT
2016-10-13 10:03:35 ----AC---- C:\Windows\system32\MRT.exe
2016-10-13 09:59:54 ----SHD---- C:\Windows\Installer
2016-10-13 09:50:43 ----D---- C:\Windows\Logs
2016-10-11 19:31:41 ----HD---- C:\Program Files\WindowsApps

File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem1.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2013-12-14 36608]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-09-27 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-10-13 293352]
R0 hpdskflt;@oem12.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2013-07-23 30520]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-09-27 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-09-27 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-09-27 969184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-09-27 513632]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2013-11-12 91912]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2016-08-13 71680]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-11-04 59648]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-09-27 108816]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-09-27 163416]
R3 Accelerometer;@oem12.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2013-07-23 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-07 13941760]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-07 628224]
R3 AtiHDAudioService;@oem3.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdWB6.sys [2013-12-20 222720]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 clwvd;@oem14.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2014-01-28 41704]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-12 3891800]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-11-10 192216]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 65408]
R3 RSP2STOR;@oem8.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2014-01-04 291544]
R3 RtkBtFilter;@oem10.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [2014-02-26 559832]
R3 RTL8168;@oem6.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-12-18 839896]
R3 RTWlanE;@oem18.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\Windows\system32\DRIVERS\rtwlane.sys [2016-07-28 5641224]
R3 SmbDrv;SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver_AMDASF.sys [2014-06-04 30448]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2014-10-29 11776]
R3 SynTP;@oem5.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-06-04 546032]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2014-02-17 60640]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2016-08-13 38912]
S3 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-09-27 37656]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2015-06-09 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Treiber für energiearme Bluetooth-Geräte; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2015-07-10 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 dc3d;@oem36.inf,%dc3d.SvcDesc%;MS Hardware Device Detection Driver; C:\Windows\system32\DRIVERS\dc3d.sys [2015-09-04 96536]
S3 dot4;@oem15.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem16.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\Windows\System32\drivers\Dot4Prt.sys [2012-10-19 27040]
S3 dot4usb;@oem15.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 GENERICDRV;GENERICDRV; \??\C:\Users\ADMINI~1\AppData\Local\Temp\pftCD5.tmp\amifldrv64.sys []
S3 NuidFltr;@oem26.inf,%NuidFltr.SvcDesc%;NUID filter driver; C:\Windows\System32\drivers\NuidFltr.sys [2014-03-19 29904]
S3 Point64;@oem25.inf,%point64.SvcDesc%;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\System32\drivers\point64.sys [2015-07-08 68912]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 SmbDrvI;SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [2014-06-04 31472]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-07 240128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-06 344064]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll"=%windir%\system32\inetsrv\apphostsvc.dll
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-27 197128]
R2 Bonjour Service;Dienst "Bonjour"; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2014-03-05 88064]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
R2 hpsrv;@oem12.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-08-15 29728]
R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2015-06-29 602888]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2016-03-10 1514464]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2016-01-28 792944]
R2 omniserv; HP SimplePass Service; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [2014-03-28 88064]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-04-14 389896]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-01-08 290520]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2014-06-04 191728]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2014-05-19 1129760]
S2 gupdate;Google Update-Dienst (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation;"ServiceDll"=%SystemRoot%\System32\BthHFSrv.dll
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-04-24 203344]
S3 gupdatem;Google Update-Dienst (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2016-09-27 194032]
S3 w3logsvc;@%windir%\system32\inetsrv\iisres.dll,-30014; %windir%\system32\svchost.exe -k apphost;"ServiceDll"=%windir%\system32\inetsrv\w3logsvc.dll
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; %windir%\system32\svchost.exe -k iissvcs;"ServiceDll"=%windir%\system32\inetsrv\iisw3adm.dll

-----------------EOF-----------------

Stále je tam software od Seznamu i když jsem žádal o odinstalaci.

Nikde to již nevidím, zřejmě se to kouslo v prohlížeči, mrkni do jeho rozšíření zda to tam není a pokud nebude zbývá jeho kompletní odinstalace včetně uživatelských dat a pak znovu nainstalovat.