Vyskakující okna v internetovém prohlížeči

[vkudla]

Prosím o pomoc. V internetovém prohlížeči (Chrome i IE) mi neustále vyskakují reklamní okna. Avast něco odhalil a odstranil, ale dělá to stále.Posílám log. Děkuji V. Kudla

Logfile of random's system information tool 1.10 (written by random/random)
Run by Vlastimil at 2015-09-27 15:35:52
Microsoft Windows 10 Home
System drive C: has 841 GB (90%) free of 936 GB
Total RAM: 8106 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:36:06, on 27.09.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
C:\Users\Vlastimil\AppData\Local\Pokki\Engine\ServiceHostApp.exe
C:\Users\Vlastimil\AppData\Local\Pokki\Engine\ServiceHostApp.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\FreeCommander XE\FreeCommander.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Vlastimil.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8118
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\RunOnce: [Application Restart #1] C:\Users\Vlastimil\AppData\Local\Pokki\Engine\HostAppService.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\Vlastimil\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to filterlist (WebWasher) - http://-Web.Washer-/ie_add
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros - C:\Program Files (x86)\Qualcomm Atheros\Qualcomm Atheros 61x4 Wireless LAN&Bluetooth Installer\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: Privoxy (PrivoxyService) (PrivoxyService) - The Privoxy team - www.privoxy.org - C:\Program Files (x86)\Gamma Task Menager\privoxy.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) - Reimage® - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13674 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Qualcomm Atheros\Qualcomm Atheros 61x4 Wireless LAN&Bluetooth Installer\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Gamma Task Menager\privoxy.exe" --service
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
dashost.exe {e73890e9-aa4d-4b20-9bc7a56cf2f32d4b}
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Users\Vlastimil\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe /LOGON
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
igfxTray.exe
"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files\Dolby Digital Plus\ddp.exe" -autostart
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe"
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe" task
"C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" task
"C:\Program Files (x86)\Acer\Care Center\ACCStd.exe"
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" -r "C:\Users\Vlastimil\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" -u S-1-5-21-742910424-4206236665-810335847-1001 -c 492 -s 538 -g "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Users\Vlastimil\AppData\Local\Pokki\Engine\ServiceHostApp.exe"
"C:\Users\Vlastimil\AppData\Local\Pokki\Engine\ServiceHostApp.exe" --type=renderer --disable-breakpad --disable-desktop-notifications --disable-logging --disable-speech-input --lang=en-US --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prefetch/ContentPrefetchPrefetchOn/Prerender/PrerenderMulti/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V1/SpeculativePrefetchingLearning/SpeculativePrefetchingLearningEnabled/Test0PercentDefault/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --noerrdialogs --disable-client-side-phishing-detection --disable-bundled-ppapi-flash --channel="10092.1.1457038127\460637928" /prefetch:3
"C:\Users\Vlastimil\AppData\Local\Pokki\Engine\ServiceStartMenuIndexer.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{478B41E6-3257-4519-BDA8-E971F9843849}
"C:\WINDOWS\System32\NetworkUXBroker.exe" -ServerName:Windows.Networking.UX
"C:\Program Files\AVAST Software\Avast\avastui.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"C:\Program Files (x86)\FreeCommander XE\FreeCommander.exe"
"C:\Program Files (x86)\FreeCommander XE\FcContextMenu64.exe" "-POSITION=51,262" "-FILE=C:\Users\VLASTI~1\AppData\Local\Temp\FreeCommander7780\25B2.tmp" -SENDER=1050076 -AUTOCLOSE=20
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.9.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe" -ServerName:App.AppXqagq4n4gvy0tjw576pgh6xr601s1h1mv.mca
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13251.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 04b6fd75-dd29-4477-a2d9-b9abf590bd31
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --on-initialized-event-handle=764 --parent-handle=776
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="10340.0.1546355421\581740660" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x1616 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4256 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="10340.2.1156920057\1098930785" --font-cache-shared-handle=2592 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="10340.3.775419195\658624620" --font-cache-shared-handle=2772 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="10340.5.1087739736\974949392" --font-cache-shared-handle=5596 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="10340.6.258277276\591645503" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
taskeng.exe {3FF6D890-B0A6-45B4-BA14-9903B150CD8C}
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-742910424-4206236665-810335847-100114_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-742910424-4206236665-810335847-100114 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe"
"C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 632 636 644 8192 640
"C:\Users\Vlastimil\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-08 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01 2133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-08 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-08-18 2634872]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-08-18 1710568]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-15 405584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-09-17 57864728]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-08-19 2899136]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-12-21 1168896]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #1"=C:\Users\Vlastimil\AppData\Local\Pokki\Engine\HostAppService.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend=C:\Users\Vlastimil\AppData\Local\Pokki\Engine\inspector --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session []
"Uninstall C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-08-03 5579624]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-09-27 6134544]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-27 15:35:53 ----D---- C:\Program Files\trend micro
2015-09-27 15:35:52 ----D---- C:\rsit
2015-09-27 15:33:57 ----D---- C:\ProgramData\Reimage Protector
2015-09-27 15:33:40 ----D---- C:\Program Files\Reimage
2015-09-27 15:33:25 ----D---- C:\rei
2015-09-27 15:32:45 ----A---- C:\WINDOWS\Reimage.ini
2015-09-27 12:08:38 ----HD---- C:\OneDriveTemp
2015-09-27 10:13:29 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-09-27 10:13:29 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2015-09-27 10:13:29 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2015-09-27 10:13:29 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2015-09-27 10:13:29 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-09-27 10:13:29 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2015-09-27 10:13:29 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2015-09-27 10:13:29 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-09-27 10:13:28 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-09-27 10:13:22 ----A---- C:\WINDOWS\avastSS.scr
2015-09-27 09:42:52 ----D---- C:\Program Files (x86)\WebWasher
2015-09-27 09:16:37 ----A---- C:\WINDOWS\system32\sdnclean64.exe
2015-09-27 09:16:36 ----D---- C:\ProgramData\Spybot - Search & Destroy
2015-09-27 09:16:33 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-09-27 00:31:24 ----D---- C:\Users\Vlastimil\AppData\Roaming\AVG
2015-09-27 00:31:01 ----D---- C:\Users\Vlastimil\AppData\Roaming\TuneUp Software
2015-09-27 00:18:00 ----D---- C:\Program Files (x86)\Gamma Task Menager
2015-09-27 00:17:57 ----D---- C:\Users\Vlastimil\AppData\Roaming\Internet Defrag
2015-09-26 22:59:25 ----D---- C:\Users\Vlastimil\AppData\Roaming\uTorrent
2015-09-23 21:14:02 ----D---- C:\Users\Vlastimil\AppData\Roaming\Foxit Software
2015-09-20 22:35:17 ----D---- C:\ProgramData\MFAData
2015-09-20 22:28:08 ----HD---- C:\ProgramData\Common Files
2015-09-20 22:28:08 ----D---- C:\ProgramData\Avg
2015-09-20 21:43:20 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2015-09-20 21:24:14 ----D---- C:\WINDOWS\Minidump
2015-09-14 22:36:46 ----D---- C:\Users\Vlastimil\AppData\Roaming\GameRanger
2015-09-12 09:43:05 ----D---- C:\Program Files (x86)\FreeCommander XE
2015-09-10 21:03:45 ----D---- C:\Users\Vlastimil\AppData\Roaming\Spotify
2015-09-10 21:01:56 ----A---- C:\WINDOWS\system32\drivers\SynRMIHID.sys
2015-09-10 21:01:50 ----D---- C:\Program Files\Common Files\Atheros
2015-09-10 21:01:48 ----A---- C:\WINDOWS\system32\drivers\btfilter.sys
2015-09-10 21:01:48 ----A---- C:\WINDOWS\system32\BtContextMenu.dll
2015-09-10 21:01:48 ----A---- C:\WINDOWS\system32\btcoinst.dll
2015-09-08 22:49:16 ----D---- C:\Users\Vlastimil\AppData\Roaming\AVAST Software
2015-09-08 22:46:05 ----D---- C:\Program Files\AVAST Software
2015-09-08 22:37:37 ----D---- C:\ProgramData\AVAST Software
2015-09-08 21:46:27 ----D---- C:\Program Files (x86)\Steam
2015-09-08 19:46:44 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-09-08 19:46:42 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-09-08 19:46:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-09-08 19:46:39 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-09-08 19:46:37 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-08 19:46:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-08 19:46:36 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-08 19:46:36 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-09-08 19:46:36 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-08 19:46:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-08 19:46:35 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-08 19:46:35 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-08 19:46:34 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-08 19:46:33 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-08 19:46:33 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-08 19:46:33 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-09-08 19:46:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-08 19:46:33 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-08 19:46:33 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-08 19:46:32 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-08 19:46:32 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-08 19:46:32 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-08 19:46:32 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-08 19:46:32 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-08 19:46:32 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-09-08 19:46:31 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-08 19:46:31 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-08 19:46:31 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-08 19:46:31 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-08 19:46:31 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-08 19:46:30 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-08 19:46:30 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-06 16:12:19 ----D---- C:\Users\Vlastimil\AppData\Roaming\Wargaming.net
2015-09-06 13:30:45 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2015-09-06 13:30:45 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2015-09-06 13:30:44 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2015-09-06 13:30:43 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2015-09-06 13:30:43 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2015-09-06 13:30:43 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2015-09-06 13:30:43 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2015-09-06 13:30:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2015-09-06 13:30:42 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2015-09-06 13:30:41 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2015-09-06 13:30:41 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2015-09-06 13:30:40 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2015-09-06 13:30:40 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2015-09-06 13:30:40 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2015-09-06 13:30:40 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2015-09-06 13:30:39 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2015-09-06 13:30:39 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2015-09-06 13:29:46 ----HD---- C:\WINDOWS\msdownld.tmp
2015-09-06 13:29:45 ----D---- C:\WINDOWS\SYSWOW64\directx
2015-09-06 13:29:37 ----D---- C:\Games
2015-08-28 22:34:02 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-28 22:33:58 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-28 22:33:57 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 22:33:56 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-28 22:33:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-28 22:33:56 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-28 22:33:55 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-28 22:33:55 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-28 22:33:55 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-28 22:33:54 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-28 22:33:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-28 22:33:54 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-08-28 22:33:54 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-28 22:33:53 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-08-28 22:33:53 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-28 22:33:53 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-28 22:33:53 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-08-28 22:33:53 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-28 22:33:52 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-28 22:33:52 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-28 22:33:52 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-28 22:33:52 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2015-08-28 22:33:52 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-28 22:33:51 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-08-28 22:33:51 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-08-28 22:33:51 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-08-28 22:33:51 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-08-28 22:33:50 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-08-28 22:33:50 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-08-28 22:33:50 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-08-28 22:33:50 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-08-28 22:33:50 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-08-28 22:33:50 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-28 22:33:49 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-08-28 22:33:49 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-08-28 22:33:49 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-08-28 22:33:49 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-08-28 22:33:49 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-08-28 22:33:49 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-28 22:33:49 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-28 22:33:48 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll

======List of files/folders modified in the last 1 month======

2015-09-27 15:35:53 ----RD---- C:\Program Files
2015-09-27 15:35:49 ----D---- C:\WINDOWS\Prefetch
2015-09-27 15:35:17 ----D---- C:\WINDOWS\Temp
2015-09-27 15:35:17 ----D---- C:\WINDOWS\System32
2015-09-27 15:34:46 ----D---- C:\WINDOWS\system32\Tasks
2015-09-27 15:33:57 ----HD---- C:\ProgramData
2015-09-27 15:32:45 ----D---- C:\Windows
2015-09-27 15:27:58 ----D---- C:\WINDOWS\system32\sru
2015-09-27 15:26:28 ----D---- C:\Users\Vlastimil\AppData\Roaming\Skype
2015-09-27 15:01:55 ----D---- C:\Users\Vlastimil\AppData\Roaming\.minecraft
2015-09-27 13:50:37 ----D---- C:\HRY
2015-09-27 13:43:16 ----SHD---- C:\WINDOWS\Installer
2015-09-27 13:43:15 ----SHD---- C:\Config.Msi
2015-09-27 13:42:02 ----D---- C:\ProgramData\Skype
2015-09-27 13:28:38 ----RD---- C:\Program Files (x86)
2015-09-27 13:27:37 ----D---- C:\WINDOWS\Tasks
2015-09-27 13:27:34 ----D---- C:\Program Files (x86)\Google
2015-09-27 12:08:07 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-27 11:41:24 ----SHD---- C:\System Volume Information
2015-09-27 10:13:29 ----D---- C:\WINDOWS\system32\drivers
2015-09-27 10:07:02 ----HD---- C:\WINDOWS\ELAMBKUP
2015-09-27 10:07:00 ----D---- C:\WINDOWS\INF
2015-09-27 09:53:41 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-27 09:52:07 ----D---- C:\WINDOWS\system32\config
2015-09-27 09:42:32 ----D---- C:\WINDOWS\SysWOW64
2015-09-27 09:24:28 ----D---- C:\Program Files\Common Files\AV
2015-09-27 09:16:42 ----SD---- C:\ProgramData\Microsoft
2015-09-27 09:12:56 ----D---- C:\WINDOWS\SYSWOW64\config
2015-09-27 00:30:55 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-26 23:36:03 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-26 22:49:21 ----D---- C:\WINDOWS\WinSxS
2015-09-26 22:49:21 ----D---- C:\WINDOWS\CbsTemp
2015-09-26 13:06:35 ----D---- C:\WINDOWS\AppReadiness
2015-09-24 22:59:09 ----HD---- C:\Program Files\WindowsApps
2015-09-21 19:53:00 ----D---- C:\WINDOWS\system32\WDI
2015-09-16 15:59:02 ----D---- C:\Program Files (x86)\Minecraft
2015-09-15 18:12:10 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-09-14 22:08:25 ----D---- C:\WINDOWS\system32\MRT
2015-09-13 18:46:52 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-09-11 20:22:19 ----RSD---- C:\WINDOWS\assembly
2015-09-10 22:45:19 ----D---- C:\WINDOWS\Logs
2015-09-10 21:01:50 ----D---- C:\Program Files\Common Files
2015-09-10 20:57:34 ----D---- C:\WINDOWS\system32\appraiser
2015-09-10 20:57:34 ----D---- C:\WINDOWS\AppPatch
2015-09-10 20:57:34 ----D---- C:\Program Files\Windows Journal
2015-09-08 21:46:29 ----D---- C:\Program Files (x86)\Common Files
2015-09-08 19:42:12 ----D---- C:\WINDOWS\system32\catroot2
2015-09-06 17:23:26 ----D---- C:\WINDOWS\rescache
2015-09-05 11:26:45 ----D---- C:\WINDOWS\system32\oobe
2015-08-31 22:17:46 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-08-28 21:17:59 ----D---- C:\WINDOWS\OCR

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-09-27 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-09-27 274808]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-09-27 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-09-27 1049880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-09-27 448968]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-09-27 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-09-27 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-09-27 153744]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2015-09-10 599688]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 Hamachi;@oem30.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-08-03 45680]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-07-18 6389688]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 iwdbus;@oem0.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-10-07 30512]
R3 LMDriver;@oem16.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2013-07-18 21360]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2014-10-10 129312]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-08-18 19576]
R3 nvvad_WaveExtensible;@oem28.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-08-11 50472]
R3 Qcamain10x64;@oem17.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN 11AC device driver; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2015-05-21 2257816]
R3 RadioShim;@oem16.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2013-07-18 14680]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-10 587264]
R3 RTSUER;@oem19.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
R3 SynRMIHID;@oem32.inf,%SynRMIHID.SVCDESC%;Synaptics HID Service; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [2015-09-10 56520]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2015-07-10 105984]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-08-20 929280]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 iaLPSS_GPIO;Intel(R) Serial IO GPIO Driver; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [2014-06-11 35832]
S3 iaLPSS_SPI;Intel(R) Serial IO SPI Driver; C:\WINDOWS\System32\drivers\iaLPSS_SPI.sys [2014-06-11 100856]
S3 iaLPSS_UART2;Intel(R) Serial IO UART Driver v2; C:\WINDOWS\System32\drivers\iaLPSS_UART2.sys [2014-06-11 143864]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IntcDAud;@oem2.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-10-24 454416]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-21 934752]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-21 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S4 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Qualcomm Atheros 61x4 Wireless LAN&Bluetooth Installer\Bluetooth Suite\adminservice.exe [2014-08-22 305664]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-09-27 146600]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-07-23 2858336]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-08-18 1155192]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-08-03 2545512]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-07-18 351120]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-08-03 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-12-30 455912]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-08-18 1872504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-08-18 5544568]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 PrivoxyService;Privoxy (PrivoxyService); C:\Program Files (x86)\Gamma Task Menager\privoxy.exe [2015-09-27 371200]
R2 ReimageRealTimeProtector;Reimage Real Time Protector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2015-08-19 7743472]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-07-18 283024]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-07-22 2573032]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-10-17 458984]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-10-17 449768]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-07-15 234240]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-27 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc_Session11;Hostitel synchronizace_Session11; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-22 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-04-24 203344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-27 144200]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-25 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-14 887256]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session11;Data kontaktů_Session11; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-21 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-08-19 838336]

-----------------EOF-----------------

[altrok]

Krasny den Vam preju


V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

• ukoncete vsechny programy
• kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
• kliknete na Scan, pote na Cleaning
• po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

[vkudla]

Dobrý den, tak jsem to projel a něco to odstranilo. Zatím to vypadá v pohodě. Přikládám log. Děkuji mockrát.

# AdwCleaner v5.009 - Logfile created 29/09/2015 at 21:38:13
# Updated 27/09/2015 by Xplode
# Database : 2015-09-27.1 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Vlastimil - NTBACER
# Running from : C:\Users\Vlastimil\Downloads\adwcleaner_5.009 (1).exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : PrivoxyService

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\Gamma Task Menager
[-] Folder Deleted : C:\ProgramData\pokki
[-] Folder Deleted : C:\ProgramData\productdata
[-] Folder Deleted : C:\Users\Vlastimil\AppData\Local\pokki
[-] Folder Deleted : C:\Users\Vlastimil\AppData\Roaming\productdata

***** [ Files ] *****

[-] File Deleted : C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Vlastimil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Pokki Start Menu.lnk
[-] File Deleted : C:\Users\Vlastimil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
[-] File Deleted : C:\WINDOWS\Reimage.ini

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : Pokki
[-] Task Deleted : Adobe Flash Player Updater
[-] Task Deleted : Pokki
[-] Task Deleted : UbtFrameworkService

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Classes\pokki
[-] Key Deleted : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\Directory\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\Drive\shell\pokki
[-] Key Deleted : HKCU\Software\Classes\lnkfile\shell\pokki
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\Reimage
[-] Key Deleted : HKLM\SOFTWARE\SecureWebChannel
[-] Key Deleted : HKLM\SOFTWARE\SecureWeb
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
[!] Key Not Deleted : [x64] HKCU\Software\Reimage
[-] Key Deleted : [x64] HKLM\SOFTWARE\Reimage

***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [3541 bytes] ##########

[altrok]

Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

[vkudla]

Přikládám FRST log. Addition je v příloze.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:30-09-2015
Ran by Vlastimil (administrator) on NTBACER (30-09-2015 22:13:19)
Running from C:\Users\Vlastimil\Downloads
Loaded Profiles: Vlastimil (Available Profiles: Vlastimil)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(Qualcomm Atheros) C:\Program Files (x86)\Qualcomm Atheros\Qualcomm Atheros 61x4 Wireless LAN&Bluetooth Installer\Bluetooth Suite\AdminService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
() C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Marek Jasinski) C:\Program Files (x86)\FreeCommander XE\FreeCommander.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-18] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-09-27] (AVAST Software)
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5889824 2015-07-28] (IObit)
HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [57864728 2015-09-17] (Skype Technologies S.A.)
HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2014-12-21] (Spotify Ltd)
HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\RunOnce: [Application Restart #1] => C:\Users\Vlastimil\AppData\Local\Pokki\Engine\HostAppService.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable (the data entry has 557 more characters).
HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\RunOnce: [Uninstall C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Vlastimil\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-27] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{9890f4ca-cb3e-49d7-9446-e7313f53ebc8}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-742910424-4206236665-810335847-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=ACJB
HKU\S-1-5-21-742910424-4206236665-810335847-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKU\S-1-5-21-742910424-4206236665-810335847-1001 -> DefaultScope {88D6D400-CF9C-4C4F-83C2-53F0179D9030} URL =
SearchScopes: HKU\S-1-5-21-742910424-4206236665-810335847-1001 -> {88D6D400-CF9C-4C4F-83C2-53F0179D9030} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-08] (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-08] (AVAST Software)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-22] ()
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-22] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-10-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-10-10] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
FF Plugin-x32: @mcafee.com/SAFFPlugin -> C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-27] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-08]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found

Chrome:
=======
CHR Profile: C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-20]
CHR Extension: (Dokumenty Google) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-20]
CHR Extension: (Disk Google) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-20]
CHR Extension: (YouTube) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-20]
CHR Extension: (Vyhledávání Google) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-20]
CHR Extension: (Avast SafePrice) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-09-15]
CHR Extension: (Tabulky Google) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (Avast Online Security) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-09-09]
CHR Extension: (Skype Click to Call) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-08-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-20]
CHR Extension: (Gmail) - C:\Users\Vlastimil\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-20]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-09-08]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-08]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [814880 2015-04-03] (IObit)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Qualcomm Atheros 61x4 Wireless LAN&Bluetooth Installer\Bluetooth Suite\adminservice.exe [305664 2014-08-22] (Qualcomm Atheros) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-27] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-07-22] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-18] (NVIDIA Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [882464 2015-07-17] (IObit)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-14] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-10-10] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-09-27] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-18] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-18] (NVIDIA Corporation)
U2 OneSyncSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U2 OneSyncSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U3 PimIndexMaintenanceSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 PimIndexMaintenanceSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-10-17] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-10-17] (Acer Incorporate)
R2 StartMenuService; C:\PROGRAM FILES (X86)\IOBIT\START MENU 8\StartMenuServices.exe [1055008 2015-09-21] (IObit)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
U3 UnistoreSvc_Session11; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 UnistoreSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U3 UserDataSvc_Session11; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 UserDataSvc_Session11; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-27] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-27] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-27] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-09-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-09-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-09-27] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-27] (AVAST Software)
S3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [41976 2015-09-27] (Intel Corporation)
R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-03-25] (IObit)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-27] (REALiX(tm))
S3 iaLPSS_GPIO; C:\Windows\System32\drivers\iaLPSS_GPIO.sys [35832 2014-06-11] (Intel Corporation)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [132360 2015-09-27] (Intel Corporation)
S3 iaLPSS_SPI; C:\Windows\System32\drivers\iaLPSS_SPI.sys [100856 2014-06-11] (Intel Corporation)
S3 iaLPSS_UART2; C:\Windows\System32\drivers\iaLPSS_UART2.sys [143864 2014-06-11] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-09-27] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 Qcamain10x64; C:\Windows\System32\drivers\Qcamain10x64.sys [2327344 2015-09-27] (Qualcomm Atheros, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-03-25] (IObit.com)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-09-27] (Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402136 2015-09-27] (Realsil Semiconductor Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-09-27] (Synaptics Incorporated)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [56520 2015-09-10] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2015-03-25] (IObit.com)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S4 nvlddmkm; \SystemRoot\system32\DRIVERS\nvlddmkm.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-30 22:13 - 2015-09-30 22:13 - 00023948 _____ C:\Users\Vlastimil\Downloads\FRST.txt
2015-09-30 22:12 - 2015-09-30 22:13 - 00000000 ____D C:\FRST
2015-09-30 22:08 - 2015-09-30 22:11 - 02192384 _____ (Farbar) C:\Users\Vlastimil\Downloads\FRST64.exe
2015-09-30 21:59 - 2015-09-30 21:59 - 00000000 ___HD C:\OneDriveTemp
2015-09-30 21:58 - 2015-09-30 21:58 - 00016148 _____ C:\WINDOWS\system32\NTBACER_Vlastimil_HistoryPrediction.bin
2015-09-29 21:40 - 2015-09-29 21:40 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\ProductData
2015-09-29 21:39 - 2015-09-29 21:40 - 00000000 ____D C:\ProgramData\ProductData
2015-09-29 21:36 - 2015-09-29 21:38 - 00000000 ____D C:\AdwCleaner
2015-09-29 21:36 - 2015-09-29 21:36 - 01670656 _____ C:\Users\Vlastimil\Downloads\adwcleaner_5.009 (1).exe
2015-09-28 12:47 - 2015-09-28 12:47 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-28 12:47 - 2015-09-28 12:47 - 00000000 _____ C:\WINDOWS\setupact.log
2015-09-27 23:05 - 2015-09-27 23:05 - 00000000 _____ C:\autoexec.bat
2015-09-27 22:59 - 2015-09-27 23:01 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Vlastimil\Downloads\SpyHunter-Installer.exe
2015-09-27 22:29 - 2015-09-27 22:29 - 09890008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2015-09-27 22:29 - 2015-09-27 22:29 - 01455552 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2015-09-27 22:29 - 2015-09-27 22:29 - 00895256 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2015-09-27 22:29 - 2015-09-27 22:29 - 00768624 _____ C:\WINDOWS\system32\Drivers\qca61x4_1_1_2.bin
2015-09-27 22:29 - 2015-09-27 22:29 - 00091272 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-09-27 22:27 - 2015-09-27 22:27 - 00184608 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-09-27 22:25 - 2015-09-27 22:25 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfCoInstaller01011.dll
2015-09-27 22:25 - 2015-09-27 22:25 - 00041976 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\dptf_pch.sys
2015-09-27 22:24 - 2015-09-27 22:24 - 00033960 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-09-27 22:24 - 2015-09-27 22:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-09-27 22:24 - 2015-09-27 22:24 - 00000000 ____D C:\Program Files\Synaptics
2015-09-27 22:22 - 2015-09-27 22:22 - 00132360 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS_I2C.sys
2015-09-27 22:19 - 2015-09-27 22:19 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-09-27 22:19 - 2015-09-27 22:19 - 00003354 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scan
2015-09-27 22:19 - 2015-09-27 22:19 - 00003302 _____ C:\WINDOWS\System32\Tasks\Driver Booster Update
2015-09-27 22:19 - 2015-09-27 22:19 - 00003080 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Vlastimil)
2015-09-27 22:18 - 2015-09-27 22:19 - 00002221 _____ C:\Users\Public\Desktop\Driver Booster 2.lnk
2015-09-27 22:18 - 2015-09-27 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-09-27 22:17 - 2015-09-27 22:17 - 00001250 _____ C:\Users\Public\Desktop\IObit Malware Fighter.lnk
2015-09-27 22:17 - 2015-09-27 22:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2015-09-27 22:14 - 2015-09-27 22:16 - 29619504 _____ (IObit ) C:\Users\Vlastimil\Downloads\IObit-Malware-Fighter-Setup.exe
2015-09-27 21:56 - 2015-09-27 21:56 - 00001356 _____ C:\Users\Public\Desktop\Start Menu 8.lnk
2015-09-27 21:56 - 2015-09-27 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8
2015-09-27 21:55 - 2015-09-27 21:55 - 00003308 _____ C:\WINDOWS\System32\Tasks\SmartDefrag4_Startup
2015-09-27 21:55 - 2015-09-27 21:55 - 00003304 _____ C:\WINDOWS\System32\Tasks\SmartDefrag4_Update
2015-09-27 21:55 - 2015-09-27 21:55 - 00001247 _____ C:\Users\Public\Desktop\Smart Defrag 4.lnk
2015-09-27 21:55 - 2015-09-27 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2015-09-27 21:55 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\SysWOW64\IObitSmartDefragExtension.dll
2015-09-27 21:55 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2015-09-27 21:55 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-09-27 21:55 - 2014-06-04 15:17 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2015-09-27 21:48 - 2015-09-27 21:48 - 00003314 _____ C:\WINDOWS\System32\Tasks\ASC8_PerformanceMonitor
2015-09-27 21:48 - 2015-09-27 21:48 - 00002504 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Vlastimil
2015-09-27 21:48 - 2015-09-27 21:48 - 00001305 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-09-27 21:48 - 2015-09-27 21:48 - 00000302 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Vlastimil.job
2015-09-27 21:48 - 2015-09-27 21:48 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2015-09-27 21:48 - 2015-09-27 21:48 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\Apple Computer
2015-09-27 21:47 - 2015-09-30 21:59 - 00002258 _____ C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2015-09-27 21:47 - 2015-09-28 09:21 - 00000266 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_Vlastimil.job
2015-09-27 21:47 - 2015-09-27 22:19 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\IObit
2015-09-27 21:47 - 2015-09-27 22:19 - 00000000 ____D C:\ProgramData\IObit
2015-09-27 21:47 - 2015-09-27 21:55 - 00000000 ____D C:\Program Files (x86)\IObit
2015-09-27 21:47 - 2015-09-27 21:47 - 00002454 _____ C:\WINDOWS\System32\Tasks\ASC8_SkipUac_Vlastimil
2015-09-27 21:47 - 2015-09-27 21:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-09-27 21:47 - 2015-09-27 21:47 - 00000000 ____D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-09-27 21:46 - 2015-09-27 21:46 - 47735072 _____ (IObit) C:\Users\Vlastimil\Downloads\advanced-systemcare-setup.exe
2015-09-27 21:41 - 2015-09-27 21:41 - 00000085 _____ C:\WINDOWS\wininit.ini
2015-09-27 20:46 - 2015-09-27 20:47 - 09486824 _____ (Crawler Group ) C:\Users\Vlastimil\Downloads\SpywareTerminatorSetup.exe
2015-09-27 20:33 - 2015-09-27 20:33 - 01670656 _____ C:\Users\Vlastimil\Downloads\adwcleaner_5.009.exe
2015-09-27 15:35 - 2015-09-27 15:36 - 00000000 ____D C:\rsit
2015-09-27 15:35 - 2015-09-27 15:36 - 00000000 ____D C:\Program Files\trend micro
2015-09-27 15:35 - 2015-09-27 15:35 - 01222144 _____ C:\Users\Vlastimil\Downloads\RSITx64.exe
2015-09-27 15:32 - 2015-09-27 15:32 - 00772016 _____ (Reimage®) C:\Users\Vlastimil\Downloads\reimagerepair.exe
2015-09-27 13:28 - 2015-09-27 13:28 - 00002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-27 13:26 - 2015-09-27 13:27 - 00929872 _____ (Google Inc.) C:\Users\Vlastimil\Downloads\ChromeSetup.exe
2015-09-27 13:25 - 2015-09-27 13:25 - 08432504 _____ (AVAST Software) C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (3).exe
2015-09-27 10:19 - 2015-09-27 10:19 - 08432504 _____ (AVAST Software) C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (2).exe
2015-09-27 10:13 - 2015-09-27 10:13 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-09-27 10:13 - 2015-09-27 10:13 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-09-27 10:13 - 2015-09-27 10:13 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-09-27 10:13 - 2015-09-27 10:13 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-09-27 10:13 - 2015-09-27 10:13 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-09-27 10:13 - 2015-09-27 10:13 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-09-27 10:13 - 2015-09-27 10:13 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-09-27 10:13 - 2015-09-27 10:13 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-09-27 10:13 - 2015-09-27 10:13 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-09-27 10:13 - 2015-09-27 10:13 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-09-27 10:07 - 2015-09-27 10:11 - 05693040 _____ (AVAST Software) C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (1).exe
2015-09-27 09:42 - 2015-09-27 09:43 - 00000000 ____D C:\Program Files (x86)\WebWasher
2015-09-27 09:42 - 2015-09-27 09:42 - 01088949 _____ C:\Users\Vlastimil\Downloads\wash34.exe
2015-09-27 09:42 - 2015-09-27 09:42 - 00001056 _____ C:\Users\Vlastimil\Desktop\WebWasher.lnk
2015-09-27 09:42 - 2015-09-27 09:42 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WebWasher
2015-09-27 09:16 - 2015-09-27 21:41 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-09-27 09:16 - 2015-09-27 09:16 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-09-27 09:12 - 2015-09-27 09:15 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Vlastimil\Downloads\spybot-2.4.exe
2015-09-27 00:31 - 2015-09-27 00:31 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\TuneUp Software
2015-09-27 00:31 - 2015-09-27 00:31 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\AVG
2015-09-27 00:17 - 2015-09-27 10:19 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\Internet Defrag
2015-09-26 22:59 - 2015-09-27 09:53 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\uTorrent
2015-09-26 22:58 - 2015-09-26 22:59 - 02168712 _____ (emc) C:\Users\Vlastimil\Downloads\uTorrent221.exe
2015-09-23 22:39 - 2015-09-23 23:23 - 777005690 _____ C:\Users\Vlastimil\Downloads\Ex-Machina-(2015)-(CZ)-(Drama,-Sci-Fi,-Thriller).avi
2015-09-23 21:21 - 2015-09-23 21:22 - 00902627 _____ C:\Users\Vlastimil\Downloads\atlantsky-mor.epub
2015-09-23 21:14 - 2015-09-23 21:14 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\Foxit Software
2015-09-20 22:35 - 2015-09-27 10:09 - 00000000 ____D C:\ProgramData\MFAData
2015-09-20 22:35 - 2015-09-20 22:35 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\MFAData
2015-09-20 22:35 - 2015-09-20 22:35 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\Avg2015
2015-09-20 22:28 - 2015-09-27 10:10 - 00000000 ____D C:\ProgramData\Avg
2015-09-20 22:27 - 2015-09-27 10:10 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\AvgSetupLog
2015-09-20 22:27 - 2015-09-27 10:09 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\Avg
2015-09-20 22:16 - 2015-09-20 22:27 - 16903768 _____ (AVG Technologies) C:\Users\Vlastimil\Downloads\avg_gsr_stb_all_ltst_800.exe
2015-09-20 21:24 - 2015-09-20 21:24 - 00281112 _____ C:\WINDOWS\Minidump\092015-26515-01.dmp
2015-09-20 21:24 - 2015-09-20 21:24 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-14 22:37 - 2015-09-14 22:38 - 18744520 _____ (Adobe Systems Incorporated) C:\Users\Vlastimil\Downloads\install_flash_player.exe
2015-09-14 22:36 - 2015-09-14 22:36 - 00001164 _____ C:\Users\Vlastimil\Desktop\GameRanger.lnk
2015-09-14 22:36 - 2015-09-14 22:36 - 00001150 _____ C:\Users\Vlastimil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
2015-09-14 22:36 - 2015-09-14 22:36 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\GameRanger
2015-09-14 22:35 - 2015-09-14 22:36 - 00114352 _____ (GameRanger Technologies) C:\Users\Vlastimil\Downloads\GameRangerSetup.exe
2015-09-13 18:46 - 2015-09-13 18:46 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-09-13 16:37 - 2015-09-13 16:38 - 16758313 _____ C:\Users\Vlastimil\Downloads\Minecraft---Pocket-Edition_0.12.1.b13.apk
2015-09-12 09:43 - 2015-09-12 09:43 - 00001161 _____ C:\Users\Vlastimil\Desktop\FreeCommander XE.lnk
2015-09-12 09:43 - 2015-09-12 09:43 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\FreeCommanderXE
2015-09-12 09:43 - 2015-09-12 09:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeCommander XE
2015-09-12 09:43 - 2015-09-12 09:43 - 00000000 ____D C:\Program Files (x86)\FreeCommander XE
2015-09-12 09:41 - 2015-09-12 09:42 - 05814759 _____ C:\Users\Vlastimil\Downloads\FreeCommanderXE_setup.zip
2015-09-10 21:03 - 2015-09-10 21:03 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\Spotify
2015-09-10 21:03 - 2015-09-10 21:03 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\Spotify
2015-09-10 21:01 - 2015-09-10 21:01 - 00599688 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2015-09-10 21:01 - 2015-09-10 21:01 - 00191512 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll
2015-09-10 21:01 - 2015-09-10 21:01 - 00190488 _____ (Qualcomm Atheros Communications Inc.) C:\WINDOWS\system32\btcoinst.dll
2015-09-10 21:01 - 2015-09-10 21:01 - 00065768 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000300.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00057560 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000200.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00056520 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID.sys
2015-09-10 21:01 - 2015-09-10 21:01 - 00036688 _____ C:\WINDOWS\system32\Drivers\AthrBT_TF_0x00000302.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00031732 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000302.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48_NFA435_10dbm.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_TF_0x00000302_48.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48_NFA354A_10db.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00001969 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000302_48.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00001890 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48_NFA435_10db.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48_NFA354.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00001859 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000200_48.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00001857 _____ C:\WINDOWS\system32\Drivers\ramps_0x00000300_48.dfu
2015-09-10 21:01 - 2015-09-10 21:01 - 00000000 ____D C:\Program Files\Common Files\Atheros
2015-09-10 19:41 - 2015-09-10 19:41 - 00000219 _____ C:\Users\Vlastimil\Desktop\Dota 2.url
2015-09-10 19:41 - 2015-09-10 19:41 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-08 22:49 - 2015-09-08 22:49 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\AVAST Software
2015-09-08 22:48 - 2015-09-27 10:13 - 00001971 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-09-08 22:48 - 2015-09-08 22:48 - 00004006 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-09-08 22:48 - 2015-09-08 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-09-08 22:46 - 2015-09-08 22:46 - 00000000 ____D C:\Program Files\AVAST Software
2015-09-08 22:37 - 2015-09-08 22:37 - 00000000 ____D C:\ProgramData\AVAST Software
2015-09-08 22:36 - 2015-09-08 22:37 - 05685704 _____ (AVAST Software) C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online.exe
2015-09-08 21:51 - 2015-09-08 21:51 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\Steam
2015-09-08 21:51 - 2015-09-08 21:51 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\CEF
2015-09-08 21:46 - 2015-09-30 22:02 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-08 21:46 - 2015-09-08 21:46 - 00001036 _____ C:\Users\Public\Desktop\Steam.lnk
2015-09-08 21:46 - 2015-09-08 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-08 21:45 - 2015-09-08 21:46 - 01476720 _____ C:\Users\Vlastimil\Downloads\SteamSetup.exe
2015-09-08 19:46 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-08 19:46 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-08 19:46 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-08 19:46 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-08 19:46 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-08 19:46 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-08 19:46 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-08 19:46 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-08 19:46 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-08 19:46 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-08 19:46 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-08 19:46 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-08 19:46 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-08 19:46 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-08 19:46 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-08 19:46 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-08 19:46 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-08 19:46 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-08 19:46 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-08 19:46 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-08 19:46 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-08 19:46 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-08 19:46 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-08 19:46 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-08 19:46 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-08 19:46 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 19:46 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-08 19:46 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-08 19:46 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-08 19:46 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-08 19:46 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-08 19:46 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-07 18:42 - 2015-09-07 18:42 - 00522272 _____ C:\WINDOWS\system32\Drivers\fwdump_ar6320v2_reg.log
2015-09-07 18:42 - 2015-09-07 18:42 - 00458752 _____ C:\WINDOWS\system32\Drivers\fwdump_ar6320v2_dram.log
2015-09-07 18:42 - 2015-09-07 18:42 - 00098304 _____ C:\WINDOWS\system32\Drivers\fwdump_ar6320v2_axi.log
2015-09-07 18:42 - 2015-09-07 18:42 - 00001957 _____ C:\WINDOWS\system32\Drivers\fwdump_ce_reg.log
2015-09-06 18:17 - 2015-09-06 18:59 - 708964352 _____ C:\Users\Vlastimil\Downloads\Past-na-zraloka-2-cz-avi.avi
2015-09-06 16:12 - 2015-09-06 16:12 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\Wargaming.net
2015-09-06 16:11 - 2015-09-06 17:58 - 1543946742 _____ C:\Users\Vlastimil\Downloads\Past-na-žraloka-2-cz.mkv
2015-09-06 13:30 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-09-06 13:30 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-09-06 13:30 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-09-06 13:30 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-09-06 13:30 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2015-09-06 13:30 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2015-09-06 13:30 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-09-06 13:30 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-09-06 13:30 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2015-09-06 13:30 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-09-06 13:30 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2015-09-06 13:30 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2015-09-06 13:30 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-09-06 13:30 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-09-06 13:30 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2015-09-06 13:30 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-09-06 13:30 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2015-09-06 13:29 - 2015-09-06 13:30 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-09-06 13:29 - 2015-09-06 13:30 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-09-06 13:29 - 2015-09-06 13:29 - 00000814 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2015-09-06 13:29 - 2015-09-06 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2015-09-06 13:29 - 2015-09-06 13:29 - 00000000 ____D C:\Games
2015-09-06 13:28 - 2015-09-06 13:28 - 06798176 _____ (Wargaming.net ) C:\Users\Vlastimil\Downloads\WoT_internet_install_eu.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-30 22:10 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-30 22:07 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-30 22:06 - 2015-08-21 22:52 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\Skype
2015-09-30 22:04 - 2015-08-20 20:47 - 00004200 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5470BB81-638C-476B-A77E-4FF1F60B99DF}
2015-09-30 22:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-30 22:00 - 2015-08-24 14:37 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\LogMeIn Hamachi
2015-09-30 22:00 - 2014-12-21 05:30 - 00006469 _____ C:\WINDOWS\SysWOW64\Gms.log
2015-09-30 21:59 - 2015-08-20 20:44 - 00000000 ____D C:\Users\Vlastimil\OneDrive
2015-09-30 21:59 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-30 21:58 - 2015-08-20 23:56 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-30 21:58 - 2015-08-20 22:21 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-30 21:58 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-29 23:13 - 2015-07-10 11:05 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2015-09-29 22:32 - 2015-08-20 22:21 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-28 20:35 - 2015-08-21 22:26 - 00000000 ____D C:\Users\Vlastimil\AppData\Roaming\.minecraft
2015-09-28 13:01 - 2015-08-20 23:59 - 00000000 ____D C:\Users\Vlastimil
2015-09-27 22:37 - 2015-08-21 00:12 - 01762290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-27 22:37 - 2015-07-10 18:02 - 00746648 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-27 22:37 - 2015-07-10 18:02 - 00149550 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-27 22:29 - 2015-05-21 04:08 - 02327344 _____ (Qualcomm Atheros, Inc.) C:\WINDOWS\system32\Drivers\Qcamain10x64.sys
2015-09-27 22:29 - 2015-05-14 12:10 - 00402136 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2015-09-27 22:29 - 2015-05-14 12:10 - 00083160 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2015-09-27 22:29 - 2014-12-21 05:25 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-09-27 22:09 - 2015-07-10 14:20 - 00236872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-27 21:53 - 2015-08-21 00:49 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-27 15:33 - 2015-08-21 08:58 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\CrashDumps
2015-09-27 13:50 - 2015-08-24 13:16 - 00000000 ____D C:\HRY
2015-09-27 13:43 - 2015-08-21 22:52 - 00000000 ____D C:\ProgramData\Skype
2015-09-27 13:28 - 2015-08-20 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-09-27 13:27 - 2015-08-20 22:21 - 00004032 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-27 13:27 - 2015-08-20 22:21 - 00003800 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-27 13:27 - 2015-08-20 22:21 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-27 10:07 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-09-27 09:48 - 2015-08-20 20:36 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\VirtualStore
2015-09-27 09:24 - 2015-08-20 21:15 - 00000000 ____D C:\Program Files\Common Files\AV
2015-09-27 00:33 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-09-20 21:47 - 2015-08-20 20:47 - 00000000 __SHD C:\Users\Vlastimil\AppData\Local\EmieUserList
2015-09-20 21:47 - 2015-08-20 20:47 - 00000000 __SHD C:\Users\Vlastimil\AppData\Local\EmieSiteList
2015-09-20 21:38 - 2015-08-20 20:37 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\clear.fi
2015-09-20 21:24 - 2014-12-21 04:41 - 797874578 _____ C:\WINDOWS\MEMORY.DMP
2015-09-16 16:08 - 2015-08-20 20:36 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\Packages
2015-09-16 15:59 - 2015-08-21 22:25 - 00000000 ____D C:\Program Files (x86)\Minecraft
2015-09-15 21:56 - 2015-08-21 06:24 - 00002411 _____ C:\Users\Vlastimil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-15 18:12 - 2015-07-10 13:06 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 18:12 - 2015-07-10 13:06 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-14 22:08 - 2015-08-21 09:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-12 13:33 - 2015-08-20 22:21 - 00000000 ____D C:\Users\Vlastimil\AppData\Local\Google
2015-09-10 20:57 - 2015-07-10 18:05 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 20:57 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-06 17:23 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-05 11:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-31 22:17 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

==================== Files in the root of some directories =======

2015-08-20 23:57 - 2015-08-20 23:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Vlastimil\AppData\Local\Temp\ASCSetup_327203.exe
C:\Users\Vlastimil\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Vlastimil\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-14 20:21

==================== End of FRST.txt ============================

[vkudla]

Přikládám log Addition

[altrok]

Odinstalujte

• Skype Click to Call - adware z instalace Skypu http://forum.viry.cz/viewtopic.php?p=1374439#p1374439

Odinstalujte Advanced System Care a dale i ostatni produkty od IObitu. Jsou to cinske smejdy, ktere svou karieru zapocaly kradezi databaze spolecnosti Malwarebytes a navic pri nekterych "opravach" timto produktem nekolikrat doslo k poskozeni operacniho systemu takovym zpusobem, ze vse zcela vyresil az kompletni reinstall. Obecne jsem proti vsem zrychlovacum a optimizerum krome nekolik let odzkouseneho CCleaneru, ktery je v defaultnim nastaveni neskodny.

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na C:\Users\Vlastimil\Downloads jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu bude v C:\Users\Vlastimil\Downloads ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CreateRestorePoint:
  CloseProcesses:
  File: C:\Users\Vlastimil\Downloads\reimagerepair.exe
  HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
  HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-18] (NVIDIA Corporation)
  SearchScopes: HKU\S-1-5-21-742910424-4206236665-810335847-1001 -> DefaultScope {88D6D400-CF9C-4C4F-83C2-53F0179D9030} URL =
  SearchScopes: HKU\S-1-5-21-742910424-4206236665-810335847-1001 -> {88D6D400-CF9C-4C4F-83C2-53F0179D9030} URL = 
  FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
  FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
  FF Plugin-x32: @mcafee.com/SAFFPlugin -> C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll [No File]
  FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
  FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
  CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
  S4 nvlddmkm; \SystemRoot\system32\DRIVERS\nvlddmkm.sys [X]
  2015-09-30 22:13 - 2015-09-30 22:13 - 00023948 _____ C:\Users\Vlastimil\Downloads\FRST.txt
  2015-09-29 21:36 - 2015-09-29 21:38 - 00000000 ____D C:\AdwCleaner
  2015-09-29 21:36 - 2015-09-29 21:36 - 01670656 _____ C:\Users\Vlastimil\Downloads\adwcleaner_5.009 (1).exe
  2015-09-27 22:59 - 2015-09-27 23:01 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Vlastimil\Downloads\SpyHunter-Installer.exe
  2015-09-27 21:46 - 2015-09-27 21:46 - 47735072 _____ (IObit) C:\Users\Vlastimil\Downloads\advanced-systemcare-setup.exe
  2015-09-27 20:33 - 2015-09-27 20:33 - 01670656 _____ C:\Users\Vlastimil\Downloads\adwcleaner_5.009.exe
  2015-09-27 15:35 - 2015-09-27 15:36 - 00000000 ____D C:\rsit
  2015-09-27 15:35 - 2015-09-27 15:36 - 00000000 ____D C:\Program Files\trend micro
  2015-09-27 15:35 - 2015-09-27 15:35 - 01222144 _____ C:\Users\Vlastimil\Downloads\RSITx64.exe
  2015-09-27 15:32 - 2015-09-27 15:32 - 00772016 _____ (Reimage®) C:\Users\Vlastimil\Downloads\reimagerepair.exe
  2015-09-27 13:25 - 2015-09-27 13:25 - 08432504 _____ (AVAST Software) C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (3).exe
  2015-09-27 10:19 - 2015-09-27 10:19 - 08432504 _____ (AVAST Software) C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (2).exe
  2015-08-20 23:57 - 2015-08-20 23:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
  Task: {17B78AA9-6FD2-4629-8E48-478170A1C1F2} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2015-06-01] (McAfee, Inc.)
  Task: C:\WINDOWS\Tasks\ASC8_SkipUac_Vlastimil.job => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe
  Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Vlastimil.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
  FirewallRules: [{D7BE3D71-D8A0-4750-A5C6-002A465C4738}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
  FirewallRules: [{1F137559-A0EE-44D4-811A-276CF56D6168}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
  FirewallRules: [{AD5D4AFB-2295-4FE8-9FAB-42923FD0FA3C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
  FirewallRules: [{5223A354-DADC-4422-8504-B77F38939AAD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
  Hosts:
  EmptyTemp:
  End

[vkudla]

Odinstaloval jsem všechny programy podle rady a přikládám fixlog. Děkuji.

Fix result of Farbar Recovery Scan Tool (x64) Version:30-09-2015
Ran by Vlastimil (2015-10-01 21:14:59) Run:1
Running from C:\Users\Vlastimil\Downloads
Loaded Profiles: Vlastimil (Available Profiles: Vlastimil)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
File: C:\Users\Vlastimil\Downloads\reimagerepair.exe
HKU\S-1-5-21-742910424-4206236665-810335847-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-18] (NVIDIA Corporation)
SearchScopes: HKU\S-1-5-21-742910424-4206236665-810335847-1001 -> DefaultScope {88D6D400-CF9C-4C4F-83C2-53F0179D9030} URL =
SearchScopes: HKU\S-1-5-21-742910424-4206236665-810335847-1001 -> {88D6D400-CF9C-4C4F-83C2-53F0179D9030} URL =
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File]
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File]
FF Plugin-x32: @mcafee.com/SAFFPlugin -> C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll [No File]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx <not found>
S4 nvlddmkm; \SystemRoot\system32\DRIVERS\nvlddmkm.sys [X]
2015-09-30 22:13 - 2015-09-30 22:13 - 00023948 _____ C:\Users\Vlastimil\Downloads\FRST.txt
2015-09-29 21:36 - 2015-09-29 21:38 - 00000000 ____D C:\AdwCleaner
2015-09-29 21:36 - 2015-09-29 21:36 - 01670656 _____ C:\Users\Vlastimil\Downloads\adwcleaner_5.009 (1).exe
2015-09-27 22:59 - 2015-09-27 23:01 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Vlastimil\Downloads\SpyHunter-Installer.exe
2015-09-27 21:46 - 2015-09-27 21:46 - 47735072 _____ (IObit) C:\Users\Vlastimil\Downloads\advanced-systemcare-setup.exe
2015-09-27 20:33 - 2015-09-27 20:33 - 01670656 _____ C:\Users\Vlastimil\Downloads\adwcleaner_5.009.exe
2015-09-27 15:35 - 2015-09-27 15:36 - 00000000 ____D C:\rsit
2015-09-27 15:35 - 2015-09-27 15:36 - 00000000 ____D C:\Program Files\trend micro
2015-09-27 15:35 - 2015-09-27 15:35 - 01222144 _____ C:\Users\Vlastimil\Downloads\RSITx64.exe
2015-09-27 15:32 - 2015-09-27 15:32 - 00772016 _____ (Reimage®) C:\Users\Vlastimil\Downloads\reimagerepair.exe
2015-09-27 13:25 - 2015-09-27 13:25 - 08432504 _____ (AVAST Software) C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (3).exe
2015-09-27 10:19 - 2015-09-27 10:19 - 08432504 _____ (AVAST Software) C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (2).exe
2015-08-20 23:57 - 2015-08-20 23:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Task: {17B78AA9-6FD2-4629-8E48-478170A1C1F2} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2015-06-01] (McAfee, Inc.)
Task: C:\WINDOWS\Tasks\ASC8_SkipUac_Vlastimil.job => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Vlastimil.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
FirewallRules: [{D7BE3D71-D8A0-4750-A5C6-002A465C4738}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{1F137559-A0EE-44D4-811A-276CF56D6168}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{AD5D4AFB-2295-4FE8-9FAB-42923FD0FA3C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{5223A354-DADC-4422-8504-B77F38939AAD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.

========================= File: C:\Users\Vlastimil\Downloads\reimagerepair.exe ========================

File is digitally signed
MD5: 72CB31555DA5996B6DC008F2F6BCBBFF
Creation and modification date: 2015-09-27 15:32 - 2015-09-27 15:32
Size: 0772016
Attributes: ----A
Company Name: Reimage®
Internal Name: Reimage Downloader
Original Name:
Product: Reimage Repair
Description: Reimage Downloader
File Version: 1.519
Product Version: 1.519
Copyright: © Reimage 2015

====== End of File: ======

HKU\S-1-5-21-742910424-4206236665-810335847-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Advanced SystemCare 8 => value not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => value removed successfully
HKU\S-1-5-21-742910424-4206236665-810335847-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-742910424-4206236665-810335847-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{88D6D400-CF9C-4C4F-83C2-53F0179D9030}" => key removed successfully
HKCR\CLSID\{88D6D400-CF9C-4C4F-83C2-53F0179D9030} => key not found.
"HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@mcafee.com/SAFFPlugin" => key removed successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => value removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho" => key removed successfully
nvlddmkm => service removed successfully
C:\Users\Vlastimil\Downloads\FRST.txt => moved successfully
C:\AdwCleaner => moved successfully
C:\Users\Vlastimil\Downloads\adwcleaner_5.009 (1).exe => moved successfully
C:\Users\Vlastimil\Downloads\SpyHunter-Installer.exe => moved successfully
C:\Users\Vlastimil\Downloads\advanced-systemcare-setup.exe => moved successfully
C:\Users\Vlastimil\Downloads\adwcleaner_5.009.exe => moved successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\Vlastimil\Downloads\RSITx64.exe => moved successfully
C:\Users\Vlastimil\Downloads\reimagerepair.exe => moved successfully
C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (3).exe => moved successfully
C:\Users\Vlastimil\Downloads\avast_free_antivirus_setup_online (2).exe => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{17B78AA9-6FD2-4629-8E48-478170A1C1F2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{17B78AA9-6FD2-4629-8E48-478170A1C1F2}" => key removed successfully
C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare) => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee Remediation (Prepare)" => key removed successfully
C:\WINDOWS\Tasks\ASC8_SkipUac_Vlastimil.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\Uninstaller_SkipUac_Vlastimil.job => moved successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D7BE3D71-D8A0-4750-A5C6-002A465C4738} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1F137559-A0EE-44D4-811A-276CF56D6168} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AD5D4AFB-2295-4FE8-9FAB-42923FD0FA3C} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5223A354-DADC-4422-8504-B77F38939AAD} => value removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 204.4 MB temporary data Removed.


The system needed a reboot..

==== End of Fixlog 21:15:50 ====

[altrok]

Takze jeste uklidime.

• Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
• Oznacte jen moznost "Remove disinfection tools"
• kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.