Logfile of random's system information tool 1.14 (written by random/random)
Run by Zdeněk at 2017-02-08 19:00:27
Microsoft Windows 10 Pro
System drive C: has 1488 GB (87%) free of 1708 GB
Total RAM: 16303 MB (84% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:00:35, on 8.2.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
C:\Users\michal\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
C:\Users\michal\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe
C:\Program Files\trend micro\Zdeněk_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaVXAdGTZAYinpjEm-Grl56hZufuN-sk6CBdsrQA_UMLNuvJtw-3b6zBMu-TFL1AMMxVilyOLWdyUSksRwCfaeNbErFHr4Tf0Uhtn1Su5phb1cWcF_iMHp6dsS1cPuKBlfxzTaCFcH5jY1FQAgmBFKyesRqsmYEC2wRzUBcQYc5o,&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaVXAdGTZAYinpjEm-Grl56hZufuN-sk6CBdsrQA_UMLNuvJtw-3b6zBMu-TFL1AMMxVilyOLWdyUSksRwCfaeNbErFHr4Tf0Uhtn1Su5phb1cWcF_iMHp6dsS1cPuKBlfxzTaCFcH5jY1FQAgmBFKyesRqsmYEC2wRzUBcQYc5o,&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaVXAdGTZAYinpjEm-Grl56hZufuN-sk6CBdsrQA_UMLNuvJtw-3b6zBMu-TFL1AMMxVilyOLWdyUSksRwCfaeNbErFHr4Tf0Uhtn1Su5phb1cWcF_iMHp6dsS1cPuKBlfxzTaCFcH5jY1FQAgmBFKyesRqsmYEC2wRzUBcQYc5o,&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaVXAdGTZAYinpjEm-Grl56hZufuN-sk6CBdsrQA_UMLNuvJtw-3b6zBMu-TFL1AMMxVilyOLWdyUSksRwCfaeNbErFHr4Tf0Uhtn1Su5phb1cWcF_iMHp6dsS1cPuKBlfxzTaCFcH5jY1FQAgmBFKyesRqsmYEC2wRzUBcQYc5o,&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8118
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: 13.69.186.195 global.bing.com
O1 - Hosts: 13.69.186.195 www.bing.com
O1 - Hosts: 13.69.186.195 cn.bing.com
O1 - Hosts: 13.69.186.195 bing.com
O1 - Hosts: 13.69.186.195 0search.internetquickaccess.com
O1 - Hosts: 13.69.186.195 1and1.com
O1 - Hosts: 13.69.186.195 22find.com
O1 - Hosts: 13.69.186.195 24img.com
O1 - Hosts: 13.69.186.195 7mcn.tvnewtabsearch.com
O1 - Hosts: 13.69.186.195 abcsearch.ru
O1 - Hosts: 13.69.186.195 airzip.inspsearch.com
O1 - Hosts: 13.69.186.195 alexnova.com
O1 - Hosts: 13.69.186.195 alles-im-inter.net
O1 - Hosts: 13.69.186.195 allinsearch.com
O1 - Hosts: 13.69.186.195 allsearch.ca
O1 - Hosts: 13.69.186.195 allsearch.space
O1 - Hosts: 13.69.186.195 alternativesearch.ru
O1 - Hosts: 13.69.186.195 amaizingsearches.info
O1 - Hosts: 13.69.186.195 amazon.smart-search.com
O1 - Hosts: 13.69.186.195 appiance.com
O1 - Hosts: 13.69.186.195 apps.searchalgo.com
O1 - Hosts: 13.69.186.195 asiasearch.co
O1 - Hosts: 13.69.186.195 ask.com
O1 - Hosts: 13.69.186.195 atajitos.com
O1 - Hosts: 13.69.186.195 autosearch.centurylink.com
O1 - Hosts: 13.69.186.195 autosearch.zoominternet.net
O1 - Hosts: 13.69.186.195 avg.com
O1 - Hosts: 13.69.186.195 avg.nation.com
O1 - Hosts: 13.69.186.195 awesomehp.com
O1 - Hosts: 13.69.186.195 baidu.com
O1 - Hosts: 13.69.186.195 best-found.com
O1 - Hosts: 13.69.186.195 bestqualitysearch.com
O1 - Hosts: 13.69.186.195 bestsearch.com
O1 - Hosts: 13.69.186.195 bestsearch.space
O1 - Hosts: 13.69.186.195 bestsearchsresult.com
O1 - Hosts: 13.69.186.195 betasearch.ru
O1 - Hosts: 13.69.186.195 better-search.net
O1 - Hosts: 13.69.186.195 bilisearch.com
O1 - Hosts: 13.69.186.195 bit-search.com
O1 - Hosts: 13.69.186.195 bittorrent.inspsearch.com
O1 - Hosts: 13.69.186.195 br.ask.com
O1 - Hosts: 13.69.186.195 browsesearchpage.com
O1 - Hosts: 13.69.186.195 buenosearch.com
O1 - Hosts: 13.69.186.195 calcitapp.info
O1 - Hosts: 13.69.186.195 catalog.qc.coccoc.com
O1 - Hosts: 13.69.186.195 certified-toolbar.com
O1 - Hosts: 13.69.186.195 cheapsearch.info
O1 - Hosts: 13.69.186.195 claro-search.com
O1 - Hosts: 13.69.186.195 cleanresults.co
O1 - Hosts: 13.69.186.195 clicks.bestqualitysearch.com
O1 - Hosts: 13.69.186.195 coccoc.com
O1 - Hosts: 13.69.186.195 coldsearch.com
O1 - Hosts: 13.69.186.195 context.qc.coccoc.com
O1 - Hosts: 13.69.186.195 coolersearch.com
O1 - Hosts: 13.69.186.195 coolsearches.info
O1 - Hosts: 13.69.186.195 crawlerezdfdgfvsfdcvc.com
O1 - Hosts: 13.69.186.195 dailysearchlinks.com
O1 - Hosts: 13.69.186.195 dalesearch.com
O1 - Hosts: 13.69.186.195 dealwifi.com
O1 - Hosts: 13.69.186.195 default-search.net
O1 - Hosts: 13.69.186.195 delta-homes.com
O1 - Hosts: 13.69.186.195 delta-search.com
O1 - Hosts: 13.69.186.195 delta-search.net
O1 - Hosts: 13.69.186.195 digbysearch.com
O1 - Hosts: 13.69.186.195 disconnect.me
O1 - Hosts: 13.69.186.195 disk.yandex.com
O1 - Hosts: 13.69.186.195 dnsrsearch.com
O1 - Hosts: 13.69.186.195 do-search.com
O1 - Hosts: 13.69.186.195 doko-search.com
O1 - Hosts: 13.69.186.195 dosearches.com
O1 - Hosts: 13.69.186.195 dothop.com
O1 - Hosts: 13.69.186.195 duckduckgo.com
O1 - Hosts: 13.69.186.195 earchqm.com
O1 - Hosts: 13.69.186.195 easytopsearches.com
O1 - Hosts: 13.69.186.195 email.1and1.com
O1 - Hosts: 13.69.186.195 emaildefendsearch.com
O1 - Hosts: 13.69.186.195 emusearch.com
O1 - Hosts: 13.69.186.195 en.eazel.com
O1 - Hosts: 13.69.186.195 enhanced-search.com
O1 - Hosts: 13.69.186.195 eseeky.com
O1 - Hosts: 13.69.186.195 eshop.avg.com
O1 - Hosts: 13.69.186.195 espeedcheck.searchalgo.com
O1 - Hosts: 13.69.186.195 espeedmusic.gomusix.com
O1 - Hosts: 13.69.186.195 extsearch.maxwebsearch.com
O1 - Hosts: 13.69.186.195 fanyi.baidu.com
O1 - Hosts: 13.69.186.195 find.rockettab.com
O1 - Hosts: 13.69.186.195 findwide.com
O1 - Hosts: 13.69.186.195 fixsearch.info
O1 - Hosts: 13.69.186.195 forsearch.nethome
O1 - Hosts: 13.69.186.195 foxtab.com
O1 - Hosts: 13.69.186.195 freesearchquick.com
O1 - Hosts: 13.69.186.195 game.coccoc.com
O1 - Hosts: 13.69.186.195 games.searchalgo.com
O1 - Hosts: 13.69.186.195 gboxapp.com
O1 - Hosts: 13.69.186.195 get.searchlock.com
O1 - Hosts: 13.69.186.195 gettopsearches.com
O1 - Hosts: 13.69.186.195 gjirafa.com
O1 - Hosts: 13.69.186.195 go-search.ru
O1 - Hosts: 13.69.186.195 go.raaz.io
O1 - Hosts: 13.69.186.195 go.searchlock.com
O1 - Hosts: 13.69.186.195 go.speedbit.com
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: QPMIEHelper - {50F4150A-48B2-417A-BE4C-C83F580FB904} - C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [DeathTaker] C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [BingSvc] C:\Users\michal\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [Interstat] C:\Users\michal\AppData\Roaming\Interstat\interstat.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\michal\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\michal\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D?publisher=apsnapdoam&co=CZ&userid=6c56f6b7-b7a6-19eb-da32-5c26b2881f80&searchtype=sc&installDate=14.08.2016&barcodeid=50046888&channelid=888&av=windows
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: GIGABYTE OC_GURU.lnk = C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - Unknown owner - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: RtlService - Realtek Semiconductor Corp. - C:\Program Files (x86)\D-Link\GO-USB-N150\RtlService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) Common Connectivity Framework (STCServ) - Intel Corporation - C:\Program Files\Intel\STCServ\STCServ.exe
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 17670 bytes
======Enumerating Processes======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\mqsvc.exe
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
C:\Windows\system32\IProsetMonitor.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
"C:\Program Files (x86)\D-Link\GO-USB-N150\RtlService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\taskhostw.exe
"C:\Program Files\Solvusoft\WinThruster\WinThruster64.exe" /delay 180
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\D-Link\GO-USB-N150\RtWlan.exe" /H
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\AUDIODG.EXE 0x350
"C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe" "--AUTO_START" "--start" "--address" "127.0.0.1" "--port" "49330" "--depend_on_key" "SYSTEM\CurrentControlSet\Services\ESRV_SVC_WILLAMETTE" "--depend_on_value" "run" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=w output_folder='C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll','process_input_options.txt' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll','service=yes' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll','pause=60000 working_dir=C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData override_existing_tracing=no limit_output_by_filesize_mb=10' os='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\os_counters.txt' "
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe"
"C:\Users\michal\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe"
C:\Program Files\CCleaner\CCleaner64.exe
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\STCServ\STCServ.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --disable-gpu-compositing --no-sandbox --primordial-pipe-token=D54D31D76AA1B7A85687B57EFFC400EA --lang=en-US --lang=en-US --log-file="C:\Users\michal\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\debug.log" --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --service-request-channel-token=D54D31D76AA1B7A85687B57EFFC400EA --mojo-platform-channel-handle=1592 /prefetch:1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
C:\WINDOWS\system32\fontdrvhost.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\NVIDIA Corporation\nvstreamsrv\NvStreamUserAgent.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\SysWoW64\rundll32.exe
"C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe"
"C:\Users\michal\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe" --type=gpu-process --channel="2532.0.832158964\138584989" --no-sandbox --lang=en-US --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27,33 --gpu-vendor-id=0x10de --gpu-device-id=0x1401 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7849 --lang=en-US /prefetch:822062411
C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
C:\WINDOWS\system32\browser_broker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:9636 CREDAT:140545 /prefetch:2
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3840739302-1456224039-1861530772-10002_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3840739302-1456224039-1861530772-10002 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 680 684 692 8192 688
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:9636 CREDAT:206089 /prefetch:2
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe" SCODEF:9636 CREDAT:75111 /prefetch:2
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\michal\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\WinThruster64-Zdeněk-Notification.job - C:\Program Files\Solvusoft\WinThruster\Sync.exe
C:\WINDOWS\tasks\WinThruster64-Zdeněk-Startup.job - C:\Program Files\Solvusoft\WinThruster\WinThruster64.exe /delay 180
C:\WINDOWS\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe -check pepperplugin
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\AsrAPPShop - C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe
C:\WINDOWS\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\IntelBootstrapCCDashExe - C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe /tasktrayonly
C:\WINDOWS\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\WINDOWS\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\WINDOWS\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\WINDOWS\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Opera scheduled Autoupdate 1457475392 - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\Opera scheduled Autoupdate 1462833673 - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\USER_ESRV_SVC_WILLAMETTE - "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{7F9F3DAB-C833-4AB6-A7C8-498080ED4BA3} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\WinThruster64-Zdeněk-Notification - C:\Program Files\Solvusoft\WinThruster\Sync.exe
C:\WINDOWS\system32\tasks\WinThruster64-Zdeněk-Startup - C:\Program Files\Solvusoft\WinThruster\WinThruster64.exe /delay 180
C:\WINDOWS\system32\tasks\{009F28BB-1F35-4E32-9F8D-6C58735374DF} - C:\Program Files (x86)\Dirt 2\dirt2.exe
C:\WINDOWS\system32\tasks\{02AED45C-901A-44C3-AB27-368A91E37D9F} - C:\Windows\system32\pcalua.exe -a E:\hry\LeagueofLegends_EUNE_Installer_9_15_2014.exe -d C:\Windows\SysWOW64 -c /groupsextract:100;101;102; /out:"C:\Users\michal\AppData\Roaming\Riot Games\League of Legends\prerequisites" /callbackid:2948
C:\WINDOWS\system32\tasks\{035E96EC-EF5A-490B-B6E8-CB8EE58E92DD} - C:\Program Files (x86)\Total War ROME II\Rome2.exe
C:\WINDOWS\system32\tasks\{12FABAF0-4314-4971-AC01-726269FAF150} - C:\Program Files (x86)\DayZ Standalone v0.46\DayZ.exe
C:\WINDOWS\system32\tasks\{21A99E9C-FAE0-440C-9DA2-53D7E12934F7} - C:\Users\michal\Desktop\FIFA 15\Origin.Games.Reg.Tools.v1.0-3DM.exe
C:\WINDOWS\system32\tasks\{2922F59D-5547-41D7-9A32-1E7F412BFC5D} - C:\Program Files (x86)\Grand Theft Auto V\Launcher.exe
C:\WINDOWS\system32\tasks\{2A663AE7-6AC9-4C69-BB9A-F3E4A314392C} - C:\Users\michal\Desktop\FIFA 15\Origin.Games.Reg.Tools.v1.0-3DM.exe
C:\WINDOWS\system32\tasks\{2FED86E8-A57B-40D2-AD93-2850AF10CC69} - C:\Program Files (x86)\Dirt 2\dirt2.exe
C:\WINDOWS\system32\tasks\{34617407-B9DD-4DF2-9283-6F4C4FC5EDB5} - C:\Program Files (x86)\Opera\launcher.exe
C:\WINDOWS\system32\tasks\{3A62C252-80EA-4A70-8BBE-D8967F7E5F39} - C:\Users\michal\Desktop\WoW Cata\Wow.exe
C:\WINDOWS\system32\tasks\{3D005666-1526-4A86-88BF-E650248F50D7} - C:\Program Files (x86)\Assassins Creed IV Black Flag\AC4BFSP.exe
C:\WINDOWS\system32\tasks\{436913D2-540C-4835-9A78-16B82B812660} - C:\Program Files (x86)\Dirt 2\dirt2.exe
C:\WINDOWS\system32\tasks\{48A4680F-CA68-4A47-A4AF-779E85AC8618} - C:\Program Files (x86)\Assassins Creed IV Black Flag\AC4BFSP.exe
C:\WINDOWS\system32\tasks\{4BDF2C57-6106-4C83-8E6B-41A6FB5702EA} - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
C:\WINDOWS\system32\tasks\{51D8B2B8-C07D-4879-82D3-8D85761F13CD} - C:\Users\michal\Desktop\Rust legacy\rust.exe
C:\WINDOWS\system32\tasks\{530A55B6-B8A6-4E67-870D-2870ECE4D6EA} - E:\Games\DayZ Standalone v0.46\DayZ Whitelister.exe
C:\WINDOWS\system32\tasks\{540DBCC7-06BF-4188-8170-48327C37E5DC} - C:\Users\michal\Desktop\EloBuddy-Setup.exe
C:\WINDOWS\system32\tasks\{644F2C1D-6A29-44DC-9AE8-39504A3DD133} - C:\Users\michal\Desktop\rust.exe
C:\WINDOWS\system32\tasks\{68B3139E-0DCC-4950-87F9-4963BBE4490F} - C:\Users\michal\Desktop\EloBuddy-Setup.exe
C:\WINDOWS\system32\tasks\{6B0757E9-206A-4D6C-8A6E-2C85BCC7C3A2} - C:\Program Files (x86)\Dirt 2\dirt2.exe
C:\WINDOWS\system32\tasks\{7678D4DA-CEE9-4F2B-B6F1-D607AF721526} - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
C:\WINDOWS\system32\tasks\{784A2C55-9645-4264-A69D-F168591941FC} - C:\Program Files (x86)\Grand Theft Auto V\Launcher.exe
C:\WINDOWS\system32\tasks\{8AEBE826-7B37-49C4-96E8-1F1C4B159C62} - C:\Users\michal\Desktop\EloBuddy.exe
C:\WINDOWS\system32\tasks\{8B63AB9F-9892-491D-8D97-49E7AC24743A} - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
C:\WINDOWS\system32\tasks\{8FD9EF87-CE77-41EA-9FCC-36C66A561C7F} - C:\Users\michal\Desktop\Hry\Minecraft Launcher.exe
C:\WINDOWS\system32\tasks\{93E81BC2-65C7-4D20-AEA0-2102EF240FCC} - C:\Program Files (x86)\Opera\launcher.exe
C:\WINDOWS\system32\tasks\{9A42A9F9-DF29-4627-91AA-8D6E86728672} - C:\Users\michal\Desktop\FIFA 15\Origin.Games.Reg.Tools.v1.0-3DM.exe
C:\WINDOWS\system32\tasks\{9F6FCFF3-9C93-451F-BB34-91162966AE67} - C:\Users\michal\Desktop\EloBuddy-Setup.exe
C:\WINDOWS\system32\tasks\{A6B153D7-59D0-42F7-8063-6E2CEA4B32DF} - C:\Program Files (x86)\Call of Duty Black Ops 2\Launcher.exe
C:\WINDOWS\system32\tasks\{AD67A693-E68C-4450-A2AF-E4405A6D03C1} - C:\Program Files (x86)\Dirt 2\dirt2.exe
C:\WINDOWS\system32\tasks\{B41D0795-B783-4A7F-B932-EA7B471AFCAE} - C:\Program Files (x86)\Assassins Creed IV Black Flag\AC4BFSP.exe
C:\WINDOWS\system32\tasks\{B5A6C507-BB5E-455E-A857-5EA87E7F32EE} - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
C:\WINDOWS\system32\tasks\{B9D9357E-7007-4283-9B23-7089F172B629} - C:\Users\michal\Desktop\WoW Cata\Wow.exe
C:\WINDOWS\system32\tasks\{C9635196-E1D7-4789-825D-6BC7D9F6809A} - C:\Program Files (x86)\Dirt 2\dirt2.exe
C:\WINDOWS\system32\tasks\{CC338F1D-1D3F-4398-9E14-2CF1049BC92E} - C:\Program Files (x86)\League of Legends\lol.launcher.exe
C:\WINDOWS\system32\tasks\{CDBF8E05-8D74-4667-9213-F5333292C1C2} - C:\Users\michal\Desktop\Hry\Minecraft Launcher.exe
C:\WINDOWS\system32\tasks\{D2F9B62B-104E-4D76-822D-9689713C57A0} - C:\Users\michal\Desktop\Hry\Minecraft Launcher.exe
C:\WINDOWS\system32\tasks\{D444E6A3-07FE-4350-A74F-3297B918EA19} - C:\Program Files (x86)\DayZ Standalone v0.46\DayZServer.exe
C:\WINDOWS\system32\tasks\{D6DC3FD1-BC9C-4966-9614-6084C23A8A71} - C:\Program Files (x86)\Assassins Creed IV Black Flag\AC4BFSP.exe
C:\WINDOWS\system32\tasks\{D7E89730-ADEA-4AD2-8959-359343ADD4B0} - C:\Users\michal\Desktop\Hry\Minecraft Launcher.exe
C:\WINDOWS\system32\tasks\{E32CFE1E-DE71-42B2-B605-CBF064ED4117} - C:\Program Files (x86)\DayZ Standalone v0.46\DayZ.exe
C:\WINDOWS\system32\tasks\{E3D2610B-ACF5-4509-9DDC-2B8EA14D161B} - C:\Users\michal\Desktop\FIFA 15\Origin.Games.Reg.Tools.v1.0-3DM.exe
C:\WINDOWS\system32\tasks\{EB040415-8BC2-4EBB-AD50-911E10A08B7D} - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\tasks\{F0A0F896-9F2C-4F57-A121-3C8436647900} - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
C:\WINDOWS\system32\tasks\{F512D7D9-8BE6-4A58-907B-3C9A47B092C1} - C:\Program Files (x86)\DayZ Standalone v0.46\DayZ.exe
C:\WINDOWS\system32\tasks\{F5E1C22D-504D-4E4C-84C8-2585CD2F16C0} - C:\WINDOWS\system32\pcalua.exe -a C:\Users\michal\Desktop\KaM-TPR_CZ_Full_v1.00.exe -d C:\Users\michal\Desktop
C:\WINDOWS\system32\tasks\{F7DAD7E3-F25C-43F3-986D-B1D7B70558F2} - C:\Program Files (x86)\Total War ROME II\Rome2.exe
C:\WINDOWS\system32\tasks\{FC97C7C7-653E-48AD-A03A-9070D84D088C} - C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe" -c uninstall=402
C:\WINDOWS\system32\tasks\{FE2D6309-DF1A-49EF-9674-5CCA20A31805} - E:\hry\Assassin's Creed IV Black Flag Gold Edition-SKIDROWCRACK\AC4BFSP.exe
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-3840739302-1456224039-1861530772-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan - c:\Program Files\Microsoft Security Client\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
C:\WINDOWS\system32\tasks\Apple\AppleSoftwareUpdate - C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task
=========Google Chrome=========
C:\Users\michal\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension fcfenmboojpjinhpgggodefccipikbpd 2 MSN Homepage & Bing Search Engine 0.0.0.8
Extension fcgnigmofekcllgbiejhmigggmgehkip 2 Wiki-Search.me 1.1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 2 Dokumenty Google offline 1.1
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.8.6
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension lifbcibllhkdhoafpjfnlhfpfgnpldfl 2 Skype Click to Call 7.5.0.9082
Extension mdhadonngioggicfabobfakagcelpkff 1 Ad Block Super 1.15
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage: http://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaVXAdGTZAYinpmLoy_EdaGNgtQU11oQyObAYJzKAQE4-cJ_Hz4vLFi0IymF-DSiO-BW-hfpcWhCVt6WeXLrcJ7hPHaMACp3QmkBRZwRSIsVP4Svd0ay_u9Hf9ZlZ5oQTsW7H1mad2P7EioekdjqPInee_ghleWtfkOQmEYTI8Hg,
default_search_provider.search_url:
C:\Users\michal\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fcgnigmofekcllgbiejhmigggmgehkip]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={ielnksrch}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\ielnksrch]
"URL"=http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNaVXAdGTZAYinpjEm-Grl56hZufuN-sk6CBdsrQA_UMLNuvJtw-3b6zBMu-TFL1AMMxVilyOLWdyUSksRwCfaeNbErFHr4Tf0Uhtn1Su5phb1cWcF_iMHp6dsS1cPuKBlfxzTaCFcH5jY1FQAgmBFKyesRqsmYEC2wRzUBcQYc5o,&q={searchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904}]
Ó¦Óñ¦Ň»Ľü°˛×°˛ĺĽţ - C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll [2014-05-30 140344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-08 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-08 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-07-26 13636824]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-30 36352]
"IntelConnectCenter"=C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [2015-03-16 90112]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-01-20 1872320]
"CommonToolkitTray_Solvusoft"=C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe [2015-09-23 1686088]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BingSvc"=C:\Users\michal\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-11-16 144008]
"Interstat"=C:\Users\michal\AppData\Roaming\Interstat\interstat.exe [2016-04-28 4551680]
"OneDrive"=C:\Users\michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-02-07 1517280]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-21 9292504]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\michal\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"=C:\WINDOWS\system32\cmd.exe [2016-07-16 232960]
"Application Restart #0"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2017-02-01 945496]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"DeathTaker"=C:\Program Files (x86)\Genius\DeathTaker\mousehid.exe [2013-04-03 303616]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2016-08-22 596640]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe /gui []
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
GIGABYTE OC_GURU.lnk - C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-02-08 19:00:27 ----D---- C:\rsit
2017-02-08 19:00:27 ----D---- C:\Program Files\trend micro
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswD3CE.tmp
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswD3BD.tmp
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswD3BC.tmp
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswD3BB.tmp
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswD3BA.tmp
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswD3AA.tmp
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswD3A9.tmp
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswD398.tmp
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswbuniva.sys
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswbloga.sys
2017-02-08 18:49:39 ----A---- C:\WINDOWS\system32\drivers\aswbidsha.sys
2017-02-08 18:49:36 ----A---- C:\WINDOWS\system32\drivers\aswbidsdrivera.sys
2017-02-08 18:49:18 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-02-08 18:37:48 ----A---- C:\WINDOWS\cFosSpeed_Setup_Log.txt
2017-02-08 18:11:46 ----D---- C:\Program Files\CCleaner
2017-02-08 18:04:57 ----D---- C:\Program Files\Common Files\AV
2017-02-08 17:51:30 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFThevc.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\nvDecMFTMjpeg.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvEncMFThevc.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvdispgenco6437849.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvdispco6437849.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-02-08 17:48:42 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-02-07 17:38:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-02-07 17:38:13 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-02-07 17:38:12 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-02-07 17:38:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-02-07 17:38:11 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-02-07 17:38:10 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-02-07 17:38:10 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-02-07 17:38:10 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-02-07 17:38:10 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-02-07 17:38:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-02-07 17:38:09 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-02-07 17:38:09 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-02-07 17:38:09 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-02-07 17:38:08 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-02-07 17:38:07 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-02-07 17:38:07 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-02-07 17:38:06 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-02-07 17:38:06 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-02-07 17:38:05 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-02-07 17:38:04 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-02-07 17:38:04 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-02-07 17:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2017-02-07 17:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2017-02-07 17:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-02-07 17:38:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2017-02-07 17:38:03 ----A---- C:\WINDOWS\system32\D3D12.dll
2017-02-07 17:38:02 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2017-02-07 17:38:02 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-02-07 17:38:02 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-02-07 17:38:02 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-02-07 17:38:02 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-02-07 17:38:02 ----A---- C:\WINDOWS\system32\samsrv.dll
2017-02-07 17:38:01 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2017-02-07 17:38:01 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2017-02-07 17:38:01 ----A---- C:\WINDOWS\system32\offlinesam.dll
2017-02-07 17:38:01 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-02-07 17:38:00 ----A---- C:\WINDOWS\system32\shell32.dll
2017-02-07 17:37:58 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-02-07 17:37:56 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-02-07 17:37:56 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-02-07 17:37:55 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-02-07 17:37:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-02-07 17:37:55 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-02-07 17:37:55 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-02-07 17:37:55 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2017-02-07 17:37:54 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2017-02-07 17:37:54 ----A---- C:\WINDOWS\system32\wow64.dll
2017-02-07 17:37:54 ----A---- C:\WINDOWS\system32\WinSCard.dll
2017-02-07 17:37:54 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-02-07 17:37:54 ----A---- C:\WINDOWS\system32\cryptui.dll
2017-02-07 17:37:53 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2017-02-07 17:37:53 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2017-02-07 17:37:53 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-02-07 17:37:53 ----A---- C:\WINDOWS\system32\certprop.dll
2017-02-07 17:37:52 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2017-02-07 17:37:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-02-07 17:37:51 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2017-02-07 17:37:51 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-02-07 17:37:50 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-02-07 17:37:50 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-02-07 17:37:49 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-02-07 17:37:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-02-07 17:37:46 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-02-07 17:37:46 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-02-07 17:37:44 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-02-07 17:37:44 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-02-07 17:37:43 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-02-07 17:37:42 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2017-02-07 17:37:42 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-02-07 17:37:41 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-02-07 17:37:41 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-02-07 17:37:40 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-02-07 17:37:38 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-02-07 17:37:38 ----A---- C:\WINDOWS\system32\mspaint.exe
2017-02-07 17:37:38 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2017-02-07 17:37:38 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-02-07 17:37:37 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-02-07 17:37:36 ----A---- C:\WINDOWS\system32\winmde.dll
2017-02-07 17:37:36 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-02-07 17:37:36 ----A---- C:\WINDOWS\system32\twinui.dll
2017-02-07 17:37:35 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-02-07 17:37:34 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-02-07 17:37:30 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-02-07 17:37:30 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-02-07 17:37:29 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-02-07 17:37:29 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-02-07 17:37:28 ----A---- C:\WINDOWS\system32\usocore.dll
2017-02-07 17:37:28 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-02-07 17:37:28 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-02-07 17:37:28 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-02-07 17:37:27 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-02-07 17:37:27 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-02-07 17:37:27 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2017-02-07 17:37:27 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2017-02-07 17:37:27 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2017-02-07 17:37:27 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-02-07 17:37:26 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-02-07 17:37:26 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-02-07 17:37:26 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2017-02-07 17:37:26 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2017-02-07 17:37:26 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-02-07 17:37:25 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2017-02-07 17:37:25 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2017-02-07 17:37:25 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2017-02-07 17:37:24 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-02-07 17:37:24 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-02-07 17:37:24 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-02-07 17:37:24 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2017-02-07 17:37:24 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2017-02-07 17:37:24 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2017-02-07 17:37:23 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2017-02-07 17:37:23 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-02-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-02-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2017-02-07 17:37:22 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2017-02-07 17:37:22 ----A---- C:\WINDOWS\system32\win32k.sys
2017-02-07 17:37:22 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-02-07 17:37:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-02-07 17:37:21 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-02-07 17:37:21 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-02-07 17:37:20 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-02-07 17:37:20 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2017-02-07 17:37:20 ----A---- C:\WINDOWS\system32\SRH.dll
2017-02-07 17:37:19 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-02-07 17:37:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-02-07 17:37:19 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-02-07 17:37:19 ----A---- C:\WINDOWS\system32\domgmt.dll
2017-02-07 17:37:19 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2017-02-07 17:37:19 ----A---- C:\WINDOWS\system32\aclui.dll
2017-02-07 17:37:18 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-02-07 17:37:18 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-02-07 17:37:18 ----A---- C:\WINDOWS\system32\ClipUp.exe
2017-02-07 17:37:18 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-02-07 17:37:18 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-02-07 17:37:18 ----A---- C:\WINDOWS\system32\AudioEng.dll
2017-02-07 17:37:18 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-02-07 17:37:17 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-02-07 17:37:17 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-02-07 17:37:17 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-02-07 17:37:17 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-02-07 17:37:16 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-02-07 17:37:16 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-02-07 17:37:16 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-02-07 17:37:16 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2017-02-07 17:37:16 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-02-07 17:37:16 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-02-07 17:37:15 ----A---- C:\WINDOWS\SYSWOW64\mqmigplugin.dll
2017-02-07 17:37:15 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-02-07 17:37:15 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-02-07 17:37:15 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-02-07 17:37:15 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-02-07 17:37:15 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-02-07 17:37:15 ----A---- C:\WINDOWS\system32\mqcmiplugin.dll
2017-02-07 17:37:15 ----A---- C:\WINDOWS\system32\cloudAP.dll
2017-02-07 17:37:14 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-02-07 17:37:14 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-02-07 17:37:14 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-02-07 17:37:14 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2017-02-07 17:37:14 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2017-02-07 17:37:13 ----A---- C:\WINDOWS\system32\fhcfg.dll
2017-02-07 17:37:13 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2017-02-07 17:37:12 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-02-07 17:36:58 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-02-07 17:36:58 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-02-07 17:36:58 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-02-07 17:36:57 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-02-07 17:36:57 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-02-07 17:36:57 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-02-07 17:36:57 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-02-07 17:36:56 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2017-02-07 17:36:55 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2017-02-07 17:36:55 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-02-07 17:36:55 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2017-02-07 17:36:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-02-07 17:36:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-02-07 17:36:54 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-02-07 17:36:54 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-02-07 17:36:54 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-02-07 17:36:53 ----A---- C:\WINDOWS\system32\provengine.dll
2017-02-07 17:36:53 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-02-07 17:36:52 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2017-02-07 17:36:52 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2017-02-07 17:36:52 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2017-02-07 17:36:52 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2017-02-07 17:25:24 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2017-02-07 17:25:24 ----A---- C:\WINDOWS\system32\poqexec.exe
2017-02-07 16:56:07 ----D---- C:\Program Files (x86)\Ubisoft
2017-02-07 16:53:46 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-02-07 16:51:44 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2017-02-07 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-02-07 16:51:40 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
======List of files/folders modified in the last 1 month======
2017-02-08 19:00:27 ----RD---- C:\Program Files
2017-02-08 18:57:25 ----D---- C:\WINDOWS\system32\config
2017-02-08 18:55:18 ----D---- C:\WINDOWS\Temp
2017-02-08 18:49:47 ----D---- C:\WINDOWS\Prefetch
2017-02-08 18:49:39 ----D---- C:\WINDOWS\system32\Tasks
2017-02-08 18:49:39 ----D---- C:\WINDOWS\system32\drivers
2017-02-08 18:49:38 ----D---- C:\WINDOWS\INF
2017-02-08 18:49:18 ----D---- C:\WINDOWS\System32
2017-02-08 18:48:53 ----D---- C:\ProgramData\NVIDIA
2017-02-08 18:47:33 ----D---- C:\Windows
2017-02-08 18:46:16 ----RD---- C:\WINDOWS\Microsoft.NET
2017-02-08 18:46:15 ----D---- C:\WINDOWS\WinSxS
2017-02-08 18:45:25 ----D---- C:\WINDOWS\system32\DriverStore
2017-02-08 18:45:00 ----D---- C:\WINDOWS\system32\sru
2017-02-08 18:44:07 ----D---- C:\WINDOWS\system32\catroot2
2017-02-08 18:43:35 ----D---- C:\WINDOWS\SysWOW64
2017-02-08 18:43:32 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-02-08 18:43:32 ----D---- C:\WINDOWS\system32\wbem
2017-02-08 18:43:32 ----D---- C:\WINDOWS\system32\oobe
2017-02-08 18:43:27 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-02-08 18:43:27 ----D---- C:\WINDOWS\ShellExperiences
2017-02-08 18:43:27 ----D---- C:\WINDOWS\Provisioning
2017-02-08 18:43:27 ----D---- C:\WINDOWS\PolicyDefinitions
2017-02-08 18:43:26 ----D---- C:\Program Files\Internet Explorer
2017-02-08 18:43:26 ----D---- C:\Program Files (x86)\Internet Explorer
2017-02-08 18:41:26 ----SHDC---- C:\WINDOWS\Installer
2017-02-08 18:41:24 ----D---- C:\Program Files (x86)\ASUS
2017-02-08 18:41:23 ----HD---- C:\ProgramData
2017-02-08 18:41:20 ----D---- C:\WINDOWS\Logs
2017-02-08 18:40:56 ----HD---- C:\Program Files\WindowsApps
2017-02-08 18:40:49 ----SD---- C:\Users\michal\AppData\Roaming\Microsoft
2017-02-08 18:40:49 ----D---- C:\Program Files (x86)
2017-02-08 18:40:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-02-08 18:40:38 ----AD---- C:\Program Files (x86)\Gaming Keyboard
2017-02-08 18:40:29 ----D---- C:\ProgramData\BOINC
2017-02-08 18:40:06 ----D---- C:\Users\michal\AppData\Roaming\New Technology Studio
2017-02-08 18:39:07 ----HD---- C:\ProgramData\{B96EB44A-7860-4F13-BC9A-0A73CA5F11C2}
2017-02-08 18:38:25 ----D---- C:\Program Files\ASRock
2017-02-08 18:35:30 ----D---- C:\WINDOWS\system32\SleepStudy
2017-02-08 18:28:16 ----D---- C:\WINDOWS\CbsTemp
2017-02-08 18:21:35 ----D---- C:\Users\michal\AppData\Roaming\uTorrent
2017-02-08 18:21:35 ----D---- C:\Users\michal\AppData\Roaming\TS3Client
2017-02-08 18:21:35 ----D---- C:\Users\michal\AppData\Roaming\DAEMON Tools Lite
2017-02-08 18:14:40 ----D---- C:\Program Files (x86)\Common Files
2017-02-08 18:14:20 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2017-02-08 18:14:05 ----D---- C:\Program Files (x86)\Java
2017-02-08 18:13:49 ----DC---- C:\WINDOWS\Panther
2017-02-08 18:13:48 ----D---- C:\WINDOWS\debug
2017-02-08 18:12:51 ----D---- C:\WINDOWS\system32\Macromed
2017-02-08 18:12:48 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-02-08 18:12:47 ----AD---- C:\Program Files (x86)\Opera
2017-02-08 18:04:57 ----D---- C:\Program Files\Common Files
2017-02-08 18:01:31 ----D---- C:\WINDOWS\AppReadiness
2017-02-08 17:55:54 ----D---- C:\WINDOWS\system32\CatRoot
2017-02-08 17:55:45 ----D---- C:\Program Files\ASRock Utility
2017-02-08 17:55:38 ----D---- C:\Program Files (x86)\Cisco
2017-02-08 17:53:16 ----SHD---- C:\System Volume Information
2017-02-08 17:52:20 ----D---- C:\ProgramData\EPSON
2017-02-08 17:52:05 ----D---- C:\ProgramData\NVIDIA Corporation
2017-02-08 17:50:11 ----D---- C:\Program Files\NVIDIA Corporation
2017-02-08 17:48:23 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-08 17:45:14 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-02-08 17:39:28 ----D---- C:\Games
2017-02-08 17:38:44 ----D---- C:\ProgramData\Apple
2017-02-08 17:36:29 ----D---- C:\ProgramData\Origin
2017-02-08 17:36:29 ----D---- C:\ProgramData\Electronic Arts
2017-02-08 17:35:27 ----D---- C:\Program Files (x86)\Origin Games
2017-02-08 17:11:35 ----D---- C:\WINDOWS\twain_32
2017-02-07 17:53:10 ----D---- C:\WINDOWS\system32\MRT
2017-02-07 17:48:00 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-02-07 17:12:15 ----D---- C:\WINDOWS\LiveKernelReports
2017-02-07 16:54:04 ----D---- C:\ProgramData\Skype
2017-01-24 01:00:01 ----A---- C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-01-20 19:39:24 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2017-01-20 19:39:24 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2017-01-20 19:39:24 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2017-01-20 19:39:23 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2017-01-20 19:39:23 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-01-20 17:38:29 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2017-01-20 17:38:29 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2017-01-20 17:38:29 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2017-01-20 17:38:29 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2017-01-20 17:38:29 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2017-01-20 17:38:29 ----A---- C:\WINDOWS\system32\OpenCL.dll
2017-01-20 17:38:29 ----A---- C:\WINDOWS\system32\nvapi64.dll
2017-01-20 16:13:06 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-01-20 16:13:06 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-01-20 16:13:04 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-01-20 16:13:04 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-01-20 16:13:04 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-01-20 16:13:04 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-01-20 16:13:04 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-01-20 15:04:17 ----A---- C:\WINDOWS\NvContainerRecovery.bat
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AsrRamDisk;AsrRamDisk; C:\WINDOWS\System32\drivers\AsrRamDisk.sys [2013-08-02 40200]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-02-08 74680]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-02-08 337080]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-07-29 1462720]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-02-08 100640]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-02-08 991496]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-02-08 547904]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-02-08 126088]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-02-08 162528]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 rzpmgrk;rzpmgrk; \??\C:\WINDOWS\system32\drivers\rzpmgrk.sys [2015-09-22 37184]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2015-12-14 130880]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-08-21 175616]
R3 NVHDA;@oem97.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-01-24 217528]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_02838dee03d82b94\nvlddmkm.sys [2017-01-21 14427064]
R3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-01-20 27584]
R3 nvvad_WaveExtensible;@oem51.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-01-06 47672]
R3 nvvhci;@oem41.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-01-20 57792]
R3 rzendpt;@oem63.inf,%rzendpt.SvcDesc%;rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [2015-08-13 50392]
R3 rzmpos;@oem66.inf,%rzmpos.SvcDesc%;rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [2015-08-13 48840]
R3 rzudd;@oem75.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-13 202952]
R3 semav6msr64;semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [2015-06-04 21984]
S0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-02-08 189768]
S0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-02-08 334600]
S0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-02-08 48528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2016-09-19 381608]
S1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-02-08 309784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-16 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-16 141152]
S3 AsrAutoChkUpdDrv;AsrAutoChkUpdDrv; \??\C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys [2017-02-07 22280]
S3 AsrDrv101;AsrDrv101; \??\C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [2015-11-16 22280]
S3 AsusVBus;AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [2016-09-22 39704]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-02-08 38296]
S3 dtlitescsibus;@oem8.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-11-15 30264]
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [2014-08-28 14376]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-16 179040]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll"=%windir%\system32\inetsrv\apphostsvc.dll
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-10-16 197128]
R2 CDPUserSvc_b5dc9;CDPUserSvc_b5dc9; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [2006-12-19 94208]
R2 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2015-09-14 414360]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-08-26 192200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-27 18856]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2013-07-08 195336]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-08-21 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-20 462784]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-01-20 464440]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-01-20 425408]
R2 OneSyncSvc_b5dc9;Hostitel synchronizace_b5dc9; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2015-11-05 188072]
R2 RtlService;RtlService; C:\Program Files (x86)\D-Link\GO-USB-N150\RtlService.exe [2012-05-10 36864]
R2 STCServ;Intel(R) Common Connectivity Framework; C:\Program Files\Intel\STCServ\STCServ.exe [2015-03-16 8095456]
R3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-20 462784]
R3 PimIndexMaintenanceSvc_b5dc9;Data kontaktů_b5dc9; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe []
S3 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2016-03-15 240416]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\hvhostsvc.dll
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-09-18 171072]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_b5dc9;Služba zasílání zpráv_b5dc9; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-12-14 822624]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Neskutečne pomale
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Neskutečne pomale
Zdravím, stáhni a spusť AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po dokončení skenu klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zkopíruj Report.
Spusť skener Cure It podle TOHOTO návodu
po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.
(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)
ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po dokončení skenu klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zkopíruj Report.
Spusť skener Cure It podle TOHOTO návodu
po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.
(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)
-
zdeny.m
- Návštěvník
- Příspěvky: 74
- Registrován: 29 lis 2004 18:54
- Bydliště: Holýšov
- Kontaktovat uživatele:
Re: Neskutečne pomale
# AdwCleaner v6.043 - Log vytvořen 10/02/2017 v 17:59:45
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-02-09.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Zdeněk - MICHAL-PC
# Spuštěno z : C:\Users\michal\Downloads\adwcleaner_6.043.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
[-] Služba smazána: TSSKX64
***** [ Složky ] *****
[-] Složka smazána: C:\Users\michal\AppData\Local\Prompt Downloader
[-] Složka smazána: C:\Users\michal\AppData\Local\SysassistByHotWheel
[-] Složka smazána: C:\Users\michal\AppData\Roaming\Interstat
[-] Složka smazána: C:\Users\michal\AppData\Roaming\IQIYI Video
[-] Složka smazána: C:\Users\michal\AppData\Roaming\RHEng
[-] Složka smazána: C:\Users\michal\AppData\Roaming\Solvusoft
[-] Složka smazána: C:\Users\michal\AppData\Roaming\Tencent
[#] Složka smazána po restartu: C:\Users\michal\AppData\Roaming\InterStat
[-] Složka smazána: C:\Users\michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Interstat
[#] Složka smazána po restartu: C:\Users\michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InterStat
[-] Složka smazána: C:\Program Files\cmdidx
[-] Složka smazána: C:\Program Files\Solvusoft
[-] Složka smazána: C:\Program Files\Common Files\Tencent
[-] Složka smazána: C:\Users\michal\AppData\Local\VirtualStore\Program Files (x86)\Tencent
[-] Složka smazána: C:\ProgramData\caMyciloPs
[-] Složka smazána: C:\ProgramData\IQIYI Video
[-] Složka smazána: C:\ProgramData\Medlights
[-] Složka smazána: C:\ProgramData\Solvusoft
[-] Složka smazána: C:\ProgramData\TXQMPC
[-] Složka smazána: C:\ProgramData\serfevs
[-] Složka smazána: C:\ProgramData\sulpnars
[-] Složka smazána: C:\ProgramData\xifss
[-] Složka smazána: C:\ProgramData\xifs
[-] Složka smazána: C:\ProgramData\serfev
[-] Složka smazána: C:\ProgramData\Tencent
[-] Složka smazána: C:\ProgramData\oceps
[-] Složka smazána: C:\ProgramData\ocep
[-] Složka smazána: C:\ProgramData\{B96EB44A-7860-4F13-BC9A-0A73CA5F11C2}
[-] Složka smazána: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft
[-] Složka smazána: C:\Program Files (x86)\Solvusoft
[-] Složka smazána: C:\Program Files (x86)\Common Files\Tencent
***** [ Soubory ] *****
[-] Soubor smazán: C:\WINDOWS\SysNative\drivers\TSSKX64.sys
[-] Soubor smazán: C:\WINDOWS\SysNative\drivers\TFsFltX64.sys
[-] Soubor smazán: C:\Users\Public\Desktop\WinThruster.lnk
[-] Soubor smazán: C:\WINDOWS\SysWoW64\findit.xml
[-] Soubor smazán: C:\WINDOWS\SysWoW64\drivers\TS888x64.sys
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
[-] Úloha smazána: amiupdaterExd
[-] Úloha smazána: amiupdaterExi
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting
[#] Klíč smazán po restartu: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting
[-] Klíč smazán: HKLM\SOFTWARE\Classes\metnsd
[-] Klíč smazán: HKLM\SOFTWARE\Classes\qmgcfiles
[-] Klíč smazán: HKLM\SOFTWARE\Classes\QQAppIEAgentEx.AgentForAndroid
[-] Klíč smazán: HKLM\SOFTWARE\Classes\QQAppIEAgentEx.AgentForAndroid.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\metnsd
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\qmgcfiles
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\QQAppIEAgentEx.AgentForAndroid
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\QQAppIEAgentEx.AgentForAndroid.1
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-86DB50A2FD64}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{D96C1D26-5CDF-4506-9244-57233C3984DF}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{50F4150A-48B2-417A-BE4C-C83F580FB904}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{D96C1D26-5CDF-4506-9244-57233C3984DF}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[#] Klíč smazán po restartu: HKCU\Software\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{6E1533F0-E0B5-465A-9F16-98FF0C76D493}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{8519F1E4-E25B-42B1-B361-0C643F45CF11}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{50F4150A-48B2-417A-BE4C-C83F580FB904}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{29B6CFD5-0064-411A-8C42-9890C83F9921}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FB4F6285-4C32-49F2-950F-A5998F9CEC6C}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{50F4150A-48B2-417A-BE4C-C83F580FB904}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [{754DF2CE-51E8-4895-B53C-6381418B84AE}]
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Interstat
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\PPStream
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\PRODUCTSETUP
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Prompt Downloader
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Solvusoft
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtMedlight
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\csastats
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtxifs
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtApService
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtcaMyciloP
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtocep
[#] Klíč smazán po restartu: HKCU\Software\Interstat
[#] Klíč smazán po restartu: HKCU\Software\PPStream
[#] Klíč smazán po restartu: HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: HKCU\Software\Prompt Downloader
[#] Klíč smazán po restartu: HKCU\Software\Solvusoft
[#] Klíč smazán po restartu: HKCU\Software\mtMedlight
[#] Klíč smazán po restartu: HKCU\Software\csastats
[#] Klíč smazán po restartu: HKCU\Software\mtxifs
[#] Klíč smazán po restartu: HKCU\Software\mtApService
[#] Klíč smazán po restartu: HKCU\Software\mtcaMyciloP
[#] Klíč smazán po restartu: HKCU\Software\mtocep
[-] Klíč smazán: HKLM\SOFTWARE\omniboxesSoftware
[-] Klíč smazán: HKLM\SOFTWARE\TData
[-] Klíč smazán: HKLM\SOFTWARE\WindoWeather
[-] Klíč smazán: HKLM\SOFTWARE\mtxifs
[-] Klíč smazán: HKLM\SOFTWARE\mtApService
[-] Klíč smazán: HKLM\SOFTWARE\mtcaMyciloP
[-] Klíč smazán: HKLM\SOFTWARE\mtocep
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80107F16-CB2E-42AB-AB9D-6C11540D5A8B}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Interstat
[#] Klíč smazán po restartu: [x64] HKCU\Software\PPStream
[#] Klíč smazán po restartu: [x64] HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: [x64] HKCU\Software\Prompt Downloader
[#] Klíč smazán po restartu: [x64] HKCU\Software\Solvusoft
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtMedlight
[#] Klíč smazán po restartu: [x64] HKCU\Software\csastats
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtxifs
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtApService
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtcaMyciloP
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtocep
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Solvusoft
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80107F16-CB2E-42AB-AB9D-6C11540D5A8B}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Features\61F70108E2BCBA24BAD9C61145D0A5B8
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Products\61F70108E2BCBA24BAD9C61145D0A5B8
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\61F70108E2BCBA24BAD9C61145D0A5B8
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\61F70108E2BCBA24BAD9C61145D0A5B8
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\61F70108E2BCBA24BAD9C61145D0A5B8
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\61F70108E2BCBA24BAD9C61145D0A5B8
[-] Hodnota smazána: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Microsoft\Windows\CurrentVersion\Run [Interstat]
[-] Hodnota smazána: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Interstat]
[#] Hodnota smazána po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Interstat]
[#] Hodnota smazána po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Interstat]
[-] Hodnota smazána: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [CommonToolkitTray_Solvusoft]
[#] Hodnota smazána po restartu: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Microsoft\Windows\CurrentVersion\Run [InterStat]
[#] Hodnota smazána po restartu: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [InterStat]
[#] Hodnota smazána po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [InterStat]
[#] Hodnota smazána po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [InterStat]
[-] Klíč smazán: HKCU\Software\MozillaPlugins\@iqiyi.com/npWebPlayer
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [ExploreTech.exe]
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [QyBrowser.exe]
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [WindoWeather.exe]
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\SEARCHSCOPES\IELNKSRCH
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Stpro.exe
[-] Klíč smazán: HKLM\SOFTWARE\MozillaPlugins\@iqiyi.com/npWebPlayer
[-] Klíč smazán: HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
[-] Hodnota smazána: HKCU\Environment [SNF]
[-] Hodnota smazána: HKCU\Environment [SNP]
[-] Klíč smazán: HKLM\SOFTWARE\MozillaPlugins\@qq.com/npandroidassistant
[#] Klíč smazán po restartu: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [AndroidServer.exe]
[-] Klíč smazán: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\XIFS.EXE
[#] Hodnota smazána po restartu: HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION [QyBrowser.exe]
[#] Klíč smazán po restartu: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Stpro.exe
[#] Klíč smazán po restartu: HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\IELNKSRCH
[-] Klíč smazán: HKEY_CLASSES_ROOT\.qmgc
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Applications\Setup_WinThruster_2016.exe
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WinThruster.exe
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Applications\WinThrusterSetup.exe
[-] Klíč smazán: HKLM\SOFTWARE\CLASSES\APPLICATIONS\SolvusoftTray.exe
[-] Klíč smazán: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] Klíč smazán po restartu: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\fcgnigmofekcllgbiejhmigggmgehkip
***** [ Prohlížeče ] *****
[-] [C:\Users\michal\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\michal\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: fcgnigmofekcllgbiejhmigggmgehkip
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [14395 Bajty] - [10/02/2017 17:59:45]
C:\AdwCleaner\AdwCleaner[S0].txt - [13674 Bajty] - [10/02/2017 17:58:30]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [14543 Bajty] ##########
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-02-09.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Zdeněk - MICHAL-PC
# Spuštěno z : C:\Users\michal\Downloads\adwcleaner_6.043.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
[-] Služba smazána: TSSKX64
***** [ Složky ] *****
[-] Složka smazána: C:\Users\michal\AppData\Local\Prompt Downloader
[-] Složka smazána: C:\Users\michal\AppData\Local\SysassistByHotWheel
[-] Složka smazána: C:\Users\michal\AppData\Roaming\Interstat
[-] Složka smazána: C:\Users\michal\AppData\Roaming\IQIYI Video
[-] Složka smazána: C:\Users\michal\AppData\Roaming\RHEng
[-] Složka smazána: C:\Users\michal\AppData\Roaming\Solvusoft
[-] Složka smazána: C:\Users\michal\AppData\Roaming\Tencent
[#] Složka smazána po restartu: C:\Users\michal\AppData\Roaming\InterStat
[-] Složka smazána: C:\Users\michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Interstat
[#] Složka smazána po restartu: C:\Users\michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InterStat
[-] Složka smazána: C:\Program Files\cmdidx
[-] Složka smazána: C:\Program Files\Solvusoft
[-] Složka smazána: C:\Program Files\Common Files\Tencent
[-] Složka smazána: C:\Users\michal\AppData\Local\VirtualStore\Program Files (x86)\Tencent
[-] Složka smazána: C:\ProgramData\caMyciloPs
[-] Složka smazána: C:\ProgramData\IQIYI Video
[-] Složka smazána: C:\ProgramData\Medlights
[-] Složka smazána: C:\ProgramData\Solvusoft
[-] Složka smazána: C:\ProgramData\TXQMPC
[-] Složka smazána: C:\ProgramData\serfevs
[-] Složka smazána: C:\ProgramData\sulpnars
[-] Složka smazána: C:\ProgramData\xifss
[-] Složka smazána: C:\ProgramData\xifs
[-] Složka smazána: C:\ProgramData\serfev
[-] Složka smazána: C:\ProgramData\Tencent
[-] Složka smazána: C:\ProgramData\oceps
[-] Složka smazána: C:\ProgramData\ocep
[-] Složka smazána: C:\ProgramData\{B96EB44A-7860-4F13-BC9A-0A73CA5F11C2}
[-] Složka smazána: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft
[-] Složka smazána: C:\Program Files (x86)\Solvusoft
[-] Složka smazána: C:\Program Files (x86)\Common Files\Tencent
***** [ Soubory ] *****
[-] Soubor smazán: C:\WINDOWS\SysNative\drivers\TSSKX64.sys
[-] Soubor smazán: C:\WINDOWS\SysNative\drivers\TFsFltX64.sys
[-] Soubor smazán: C:\Users\Public\Desktop\WinThruster.lnk
[-] Soubor smazán: C:\WINDOWS\SysWoW64\findit.xml
[-] Soubor smazán: C:\WINDOWS\SysWoW64\drivers\TS888x64.sys
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
[-] Úloha smazána: amiupdaterExd
[-] Úloha smazána: amiupdaterExi
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting
[#] Klíč smazán po restartu: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting
[-] Klíč smazán: HKLM\SOFTWARE\Classes\metnsd
[-] Klíč smazán: HKLM\SOFTWARE\Classes\qmgcfiles
[-] Klíč smazán: HKLM\SOFTWARE\Classes\QQAppIEAgentEx.AgentForAndroid
[-] Klíč smazán: HKLM\SOFTWARE\Classes\QQAppIEAgentEx.AgentForAndroid.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\metnsd
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\qmgcfiles
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\QQAppIEAgentEx.AgentForAndroid
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\QQAppIEAgentEx.AgentForAndroid.1
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{70DE12EA-79F4-46BC-9812-86DB50A2FD64}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{D96C1D26-5CDF-4506-9244-57233C3984DF}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{50F4150A-48B2-417A-BE4C-C83F580FB904}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{D96C1D26-5CDF-4506-9244-57233C3984DF}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[#] Klíč smazán po restartu: HKCU\Software\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{E6F928E4-B672-4F3A-8CA2-53C4259235DE}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{6E1533F0-E0B5-465A-9F16-98FF0C76D493}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{8519F1E4-E25B-42B1-B361-0C643F45CF11}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{50F4150A-48B2-417A-BE4C-C83F580FB904}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{29B6CFD5-0064-411A-8C42-9890C83F9921}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FB4F6285-4C32-49F2-950F-A5998F9CEC6C}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{50F4150A-48B2-417A-BE4C-C83F580FB904}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [{754DF2CE-51E8-4895-B53C-6381418B84AE}]
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Interstat
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\PPStream
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\PRODUCTSETUP
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Prompt Downloader
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Solvusoft
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtMedlight
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\csastats
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtxifs
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtApService
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtcaMyciloP
[-] Klíč smazán: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\mtocep
[#] Klíč smazán po restartu: HKCU\Software\Interstat
[#] Klíč smazán po restartu: HKCU\Software\PPStream
[#] Klíč smazán po restartu: HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: HKCU\Software\Prompt Downloader
[#] Klíč smazán po restartu: HKCU\Software\Solvusoft
[#] Klíč smazán po restartu: HKCU\Software\mtMedlight
[#] Klíč smazán po restartu: HKCU\Software\csastats
[#] Klíč smazán po restartu: HKCU\Software\mtxifs
[#] Klíč smazán po restartu: HKCU\Software\mtApService
[#] Klíč smazán po restartu: HKCU\Software\mtcaMyciloP
[#] Klíč smazán po restartu: HKCU\Software\mtocep
[-] Klíč smazán: HKLM\SOFTWARE\omniboxesSoftware
[-] Klíč smazán: HKLM\SOFTWARE\TData
[-] Klíč smazán: HKLM\SOFTWARE\WindoWeather
[-] Klíč smazán: HKLM\SOFTWARE\mtxifs
[-] Klíč smazán: HKLM\SOFTWARE\mtApService
[-] Klíč smazán: HKLM\SOFTWARE\mtcaMyciloP
[-] Klíč smazán: HKLM\SOFTWARE\mtocep
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80107F16-CB2E-42AB-AB9D-6C11540D5A8B}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Interstat
[#] Klíč smazán po restartu: [x64] HKCU\Software\PPStream
[#] Klíč smazán po restartu: [x64] HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: [x64] HKCU\Software\Prompt Downloader
[#] Klíč smazán po restartu: [x64] HKCU\Software\Solvusoft
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtMedlight
[#] Klíč smazán po restartu: [x64] HKCU\Software\csastats
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtxifs
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtApService
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtcaMyciloP
[#] Klíč smazán po restartu: [x64] HKCU\Software\mtocep
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Solvusoft
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80107F16-CB2E-42AB-AB9D-6C11540D5A8B}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Features\61F70108E2BCBA24BAD9C61145D0A5B8
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Products\61F70108E2BCBA24BAD9C61145D0A5B8
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\61F70108E2BCBA24BAD9C61145D0A5B8
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\61F70108E2BCBA24BAD9C61145D0A5B8
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\61F70108E2BCBA24BAD9C61145D0A5B8
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\61F70108E2BCBA24BAD9C61145D0A5B8
[-] Hodnota smazána: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Microsoft\Windows\CurrentVersion\Run [Interstat]
[-] Hodnota smazána: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Interstat]
[#] Hodnota smazána po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Interstat]
[#] Hodnota smazána po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Interstat]
[-] Hodnota smazána: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [CommonToolkitTray_Solvusoft]
[#] Hodnota smazána po restartu: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Microsoft\Windows\CurrentVersion\Run [InterStat]
[#] Hodnota smazána po restartu: HKU\S-1-5-21-3840739302-1456224039-1861530772-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [InterStat]
[#] Hodnota smazána po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [InterStat]
[#] Hodnota smazána po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [InterStat]
[-] Klíč smazán: HKCU\Software\MozillaPlugins\@iqiyi.com/npWebPlayer
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [ExploreTech.exe]
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [QyBrowser.exe]
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [WindoWeather.exe]
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\SEARCHSCOPES\IELNKSRCH
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Stpro.exe
[-] Klíč smazán: HKLM\SOFTWARE\MozillaPlugins\@iqiyi.com/npWebPlayer
[-] Klíč smazán: HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}
[-] Hodnota smazána: HKCU\Environment [SNF]
[-] Hodnota smazána: HKCU\Environment [SNP]
[-] Klíč smazán: HKLM\SOFTWARE\MozillaPlugins\@qq.com/npandroidassistant
[#] Klíč smazán po restartu: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [AndroidServer.exe]
[-] Klíč smazán: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\XIFS.EXE
[#] Hodnota smazána po restartu: HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION [QyBrowser.exe]
[#] Klíč smazán po restartu: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Stpro.exe
[#] Klíč smazán po restartu: HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\IELNKSRCH
[-] Klíč smazán: HKEY_CLASSES_ROOT\.qmgc
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Applications\Setup_WinThruster_2016.exe
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\WinThruster.exe
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Applications\WinThrusterSetup.exe
[-] Klíč smazán: HKLM\SOFTWARE\CLASSES\APPLICATIONS\SolvusoftTray.exe
[-] Klíč smazán: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] Klíč smazán po restartu: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\fcgnigmofekcllgbiejhmigggmgehkip
***** [ Prohlížeče ] *****
[-] [C:\Users\michal\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\michal\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: fcgnigmofekcllgbiejhmigggmgehkip
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [14395 Bajty] - [10/02/2017 17:59:45]
C:\AdwCleaner\AdwCleaner[S0].txt - [13674 Bajty] - [10/02/2017 17:58:30]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [14543 Bajty] ##########
-
zdeny.m
- Návštěvník
- Příspěvky: 74
- Registrován: 29 lis 2004 18:54
- Bydliště: Holýšov
- Kontaktovat uživatele:
Re: Neskutečne pomale
Total 11926902238 bytes in 48185 files scanned (58844 objects)
Total 48244 files (58809 objects) are clean
Total 1 file are infected
Total 34 files are raised error condition
Scan time is 00:07:31.514
Total 48244 files (58809 objects) are clean
Total 1 file are infected
Total 34 files are raised error condition
Scan time is 00:07:31.514
-
zdeny.m
- Návštěvník
- Příspěvky: 74
- Registrován: 29 lis 2004 18:54
- Bydliště: Holýšov
- Kontaktovat uživatele:
Re: Neskutečne pomale
PC jede lip 
(ja to PC uz takhle prave koupil a nechce se mi reinstalovat win )
Diky za pomoc
(ja to PC uz takhle prave koupil a nechce se mi reinstalovat win )Diky za pomoc
Přispějete na provoz fóra?