virus? nefunguje windo ws updete,centrum zabezpečení

[kyzi01]

Dobrý večer. Již dlouho jsem tady nebyl,mám problém.Zřejmě se mě do pc dostala škodná-nefunguje windo
ws updete,centrum zabezpečení.Díky za radu

[kyzi01]

Dobrý večer. Již dlouho jsem tady nebyl,mám problém.Zřejmě se mě do pc dostala škodná-nefunguje windo
ws updete,centrum zabezpečení.Díky za radu

zde je lg z RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by ION at 2016-02-12 19:45:44
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 37 GB (37%) free of 100 GB
Total RAM: 3327 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:48:16, on 12.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
C:\Program Files\AVG\Av\avgui.exe
C:\Program Files\AVG\Framework\Common\avguix.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\ION\Downloads\RSIT.exe
C:\Program Files\trend micro\ION.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Av\avuirunnerx.exe" C:\Program Files\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\Windows\system32\MSTMON_N.EXE
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\nvidia corporation\networkaccessmanager\bin32\nvlsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - Easybits - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe

--
End of file - 7575 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-01-24 176736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-26 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12 1725056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-26 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-01-24 4438104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-11-16 7518752]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-11-16 1833504]
"AVG_UI"=C:\Program Files\AVG\Av\avuirunnerx.exe [2016-02-01 25512]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-01-12 179624]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [2015-12-11 563416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoLogoff"=0
"TaskbarNoNotification"=1
"HideSCAHealth"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
"TaskbarNoNotification"=1
"HideSCAHealth"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoxmled.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mstore.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvcplui.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstlink.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstview.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ois.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pccompanion.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rlvknlg.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\skype.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Winword.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-12 19:38:55 ----D---- C:\Program Files\trend micro
2016-02-12 19:38:52 ----D---- C:\rsit
2016-02-10 18:02:23 ----D---- C:\Users\ION\AppData\Roaming\Zoner
2016-02-10 18:02:16 ----D---- C:\ProgramData\Zoner
2016-02-10 18:01:10 ----D---- C:\Program Files\Zoner
2016-02-09 20:06:25 ----D---- C:\Program Files\Nero
2016-02-07 14:54:12 ----D---- C:\Program Files\DriverToolkit
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MUINST_N.EXE
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MTAG32_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSTMON_N.EXE
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSTMON_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSPOOL_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MLPTDR_N.SYS
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MLMON__N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\MSUMLT_N.INI
2016-02-07 14:33:57 ----A---- C:\Windows\MSTMON_N.INI
2016-02-07 14:33:57 ----A---- C:\Windows\MREADM_N.TXT
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MINFIN_N.EXE
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MIMF32_N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MICM___N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MGDI32_N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MCMM___N.DLL
2016-01-29 19:21:29 ----D---- C:\Users\ION\AppData\Roaming\ezMagicMail
2016-01-29 19:16:04 ----D---- C:\ProgramData\Easybits
2016-01-29 19:15:06 ----A---- C:\Windows\system32\ezsvc7x.dll
2016-01-29 19:15:06 ----A---- C:\Windows\system32\ezSharedSvcHost.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezUPBHook64.dll
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezUninst.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezseng.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezMAPIHelper.exe
2016-01-22 15:13:44 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
2016-01-13 18:13:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\iernonce.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ie4uinit.exe
2016-01-13 18:13:46 ----A---- C:\Windows\system32\urlmon.dll
2016-01-13 18:13:46 ----A---- C:\Windows\system32\occache.dll
2016-01-13 18:13:46 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-13 18:13:46 ----A---- C:\Windows\system32\iedkcs32.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\jscript9diag.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\ieUnatt.exe
2016-01-13 18:13:45 ----A---- C:\Windows\system32\ieapfltr.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-01-13 18:13:44 ----A---- C:\Windows\system32\msfeeds.dll
2016-01-13 18:13:41 ----A---- C:\Windows\system32\webcheck.dll
2016-01-13 18:13:40 ----A---- C:\Windows\system32\msrating.dll
2016-01-13 18:13:40 ----A---- C:\Windows\system32\iesetup.dll
2016-01-13 18:13:39 ----A---- C:\Windows\system32\wininet.dll
2016-01-13 18:13:39 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-01-13 18:13:36 ----A---- C:\Windows\system32\dxtrans.dll
2016-01-13 18:13:35 ----A---- C:\Windows\system32\ieui.dll
2016-01-13 18:13:34 ----A---- C:\Windows\system32\ieframe.dll
2016-01-13 18:13:30 ----A---- C:\Windows\system32\mshtmled.dll
2016-01-13 18:13:29 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-01-13 18:13:27 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-01-13 18:13:26 ----A---- C:\Windows\system32\iertutil.dll
2016-01-13 18:13:22 ----A---- C:\Windows\system32\mshtml.dll
2016-01-13 18:13:18 ----A---- C:\Windows\system32\jscript9.dll
2016-01-13 18:13:16 ----A---- C:\Windows\system32\vbscript.dll
2016-01-13 18:13:16 ----A---- C:\Windows\system32\jscript.dll
2016-01-13 18:13:03 ----A---- C:\Windows\system32\advapi32.dll
2016-01-13 18:12:54 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-01-13 18:12:53 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-01-13 18:12:52 ----A---- C:\Windows\system32\schannel.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\ntdll.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\ncrypt.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\lsasrv.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\kerberos.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-01-13 18:12:52 ----A---- C:\Windows\system32\adtschema.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\wdigest.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\msv1_0.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-01-13 18:12:50 ----A---- C:\Windows\system32\TSpkg.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\sspicli.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\srcore.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\srclient.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\smss.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\secur32.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\rstrui.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\lsass.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\cryptbase.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\credssp.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\auditpol.exe
2016-01-13 18:12:49 ----A---- C:\Windows\system32\sspisrv.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\msaudite.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\csrsrv.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\apisetschema.dll
2016-01-13 18:12:48 ----A---- C:\Windows\system32\msobjs.dll
2016-01-13 18:12:32 ----A---- C:\Windows\system32\gdi32.dll
2016-01-13 18:12:30 ----A---- C:\Windows\system32\qedit.dll
2016-01-13 18:12:29 ----A---- C:\Windows\system32\win32k.sys
2016-01-13 18:12:27 ----A---- C:\Windows\system32\mapistub.dll
2016-01-13 18:12:27 ----A---- C:\Windows\system32\mapi32.dll
2016-01-13 18:12:27 ----A---- C:\Windows\system32\fixmapi.exe
2016-01-13 18:12:24 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-01-13 18:12:24 ----A---- C:\Windows\system32\msmpeg2adec.dll
2016-01-13 18:12:23 ----A---- C:\Windows\system32\WMVDECOD.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\WMADMOD.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\mf.dll
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMVSDECD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMVENCOD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\wmpmde.dll
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMADMOE.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\COLORCNV.DLL
2016-01-13 18:12:21 ----A---- C:\Windows\system32\WMVXENCD.DLL
2016-01-13 18:12:21 ----A---- C:\Windows\system32\quartz.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\qdvd.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\mcmde.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\evr.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\devenum.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMVSENCD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\VIDRESZR.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\SysFxUI.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\qasf.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MPG4DECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MP4SDECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MP43DECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\mfplat.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\rrinstaller.exe
2016-01-13 18:12:19 ----A---- C:\Windows\system32\MP3DMOD.DLL
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfvdsp.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfps.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfpmp.exe
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mferror.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\ksuser.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\portcls.sys
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\drmk.sys

======List of files/folders modified in the last 1 month======

2016-02-12 19:47:37 ----D---- C:\Windows\Temp
2016-02-12 19:46:19 ----D---- C:\Windows\Prefetch
2016-02-12 19:38:55 ----RD---- C:\Program Files
2016-02-12 19:22:41 ----D---- C:\Windows
2016-02-12 19:06:39 ----D---- C:\Program Files\Apps Hat
2016-02-12 18:56:03 ----D---- C:\Users\ION\AppData\Roaming\uTorrent
2016-02-12 18:53:05 ----D---- C:\Windows\system32\config
2016-02-12 18:33:21 ----D---- C:\Windows\System32
2016-02-12 18:33:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-12 18:33:20 ----D---- C:\Windows\inf
2016-02-12 18:27:35 ----D---- C:\Windows\system32\Tasks
2016-02-12 18:27:09 ----SD---- C:\ProgramData\Microsoft
2016-02-12 18:26:35 ----D---- C:\Users\ION\AppData\Roaming\vlc
2016-02-12 15:30:45 ----D---- C:\ProgramData\MFAData
2016-02-11 21:32:01 ----SHD---- C:\Windows\Installer
2016-02-11 21:30:38 ----D---- C:\Windows\system32\drivers
2016-02-11 00:00:32 ----SHD---- C:\System Volume Information
2016-02-10 18:02:16 ----HD---- C:\ProgramData
2016-02-09 20:16:02 ----D---- C:\ProgramData\Nero
2016-02-09 20:15:52 ----D---- C:\Program Files\Common Files\Nero
2016-02-07 17:14:22 ----D---- C:\Windows\Tasks
2016-02-07 15:27:36 ----D---- C:\Windows\system32\DriverStore
2016-02-04 18:35:21 ----D---- C:\Users\ION\AppData\Roaming\Seznam.cz
2016-02-01 15:22:48 ----D---- C:\ProgramData\CanonIJPLM
2016-01-15 06:15:41 ----SHD---- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2016-01-14 16:06:57 ----D---- C:\Windows\rescache
2016-01-14 12:54:41 ----D---- C:\Windows\winsxs
2016-01-14 12:50:36 ----D---- C:\Windows\system32\cs-CZ
2016-01-14 12:50:35 ----D---- C:\Windows\system32\en-US
2016-01-14 12:50:29 ----D---- C:\Program Files\Internet Explorer
2016-01-13 21:00:44 ----D---- C:\ProgramData\Microsoft Help
2016-01-13 20:53:06 ----D---- C:\Windows\system32\MRT
2016-01-13 20:42:42 ----A---- C:\Windows\system32\MRT.exe
2016-01-13 18:11:17 ----D---- C:\Windows\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-08 207792]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-08-14 308656]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-01-22 198576]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-12-04 37296]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-01-08 23472]
R0 nvamacpi;NVIDIA Away Mode System; C:\Windows\system32\DRIVERS\NVAMACPI.sys [2009-11-19 24608]
R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-11-19 213024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-02-25 466008]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-11-06 149936]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-01-05 257456]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-10-21 229296]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-10-08 231856]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-24 30616]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-11-16 2364960]
R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2009-06-10 55808]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-11-19 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-11-19 17920]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-06-04 166912]
R3 RTL8187Se;Síťový adaptér Realtek RTL8187SE Wireless 802.11b/g 54Mbps PCIE; C:\Windows\system32\DRIVERS\RTL8187Se.sys [2009-07-01 372224]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-11-16 10088]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv.sys []
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;Sony sa0102 ADB Interface; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2016-02-01 3881184]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-01-12 865704]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2016-02-01 561104]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2015-10-24 505360]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2015-07-07 785904]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-07-14 215584]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-10-11 66872]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2013-12-10 1729336]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-11 144200]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AvgAMPS;AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [2016-02-01 604144]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-11 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-12-12 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
S4 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
S4 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-08-10 387616]
S4 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2011-02-07 138192]
S4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-08-10 178720]
S4 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S4 RelevantKnowledge;RelevantKnowledge; C:\Program Files\RelevantKnowledge\rlservice.exe [2013-08-17 186136]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2006-11-06 210432]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S4 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2009-07-14 239648]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[kyzi01]

Zde je log:


# AdwCleaner v5.033 - Logfile created 12/02/2016 at 21:22:48
# Updated 07/02/2016 by Xplode
# Database : 2016-02-07.2 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x86)
# Username : ION - ION-PC
# Running from : C:\Users\ION\Desktop\adwcleaner_5.033.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : RelevantKnowledge

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\apps hat
[-] Folder Deleted : C:\Program Files\AVG Security Toolbar
[-] Folder Deleted : C:\Program Files\DriverToolkit
[-] Folder Deleted : C:\Program Files\RelevantKnowledge
[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar
[-] Folder Deleted : C:\ProgramData\Avg_Update_0215tb
[-] Folder Deleted : C:\ProgramData\Avg_Update_0814tb
[-] Folder Deleted : C:\ProgramData\Avg_Update_1114tb
[-] Folder Deleted : C:\ProgramData\Avg_Update_1214tb
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
[-] Folder Deleted : C:\Users\ION\AppData\Local\DriverToolkit
[-] Folder Deleted : C:\Users\ION\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
[-] Folder Deleted : C:\Users\ION\AppData\LocalLow\apps hat
[-] Folder Deleted : C:\Users\ION\AppData\Roaming\Systweak

***** [ Files ] *****

[-] File Deleted : C:\Windows\system32\rlls.dll
[-] File Deleted : C:\Windows\system32\roboot.exe

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048559.Sandbox
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048559.Sandbox.1
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f3261505-d807-4d6b-a6e1-2185e754b32b}
[-] Key Deleted : HKCU\Software\DriverToolkit
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\Reg\Clean
[-] Key Deleted : HKCU\Software\smarttweak
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\Reg\Clean
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D08D9F98-1C78-4704-87E6-368B0023D831}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com

***** [ Web browsers ] *****

[-] [C:\Users\ION\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaaiabcopkplhgaedhbloeejhhankf
[-] [C:\Users\ION\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ndibdjnfmopecpmkdieinmbadjfpblof

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [3551 bytes] ##########

[Rudy]

Dejte nový log RSIT.

[kyzi01]

Zde je nový log :

Logfile of random's system information tool 1.10 (written by random/random)
Run by ION at 2016-02-12 21:41:24
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 44 GB (44%) free of 100 GB
Total RAM: 3327 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:42:19, on 12.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVG\Av\avgui.exe
C:\Program Files\AVG\Framework\Common\avguix.exe
C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\ION\Desktop\RSIT.exe
C:\Program Files\trend micro\ION.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Av\avuirunnerx.exe" C:\Program Files\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\Windows\system32\MSTMON_N.EXE
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - Easybits - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe

--
End of file - 6701 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-01-24 176736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-26 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12 1725056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-26 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-01-24 4438104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-11-16 7518752]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-11-16 1833504]
"AVG_UI"=C:\Program Files\AVG\Av\avuirunnerx.exe [2016-02-01 25512]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-01-12 179624]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [2015-12-11 563416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoLogoff"=0
"TaskbarNoNotification"=1
"HideSCAHealth"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
"TaskbarNoNotification"=1
"HideSCAHealth"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoxmled.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mstore.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvcplui.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstlink.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstview.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ois.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pccompanion.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rlvknlg.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\skype.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Winword.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-12 21:17:41 ----D---- C:\AdwCleaner
2016-02-12 19:38:55 ----D---- C:\Program Files\trend micro
2016-02-12 19:38:52 ----D---- C:\rsit
2016-02-10 18:02:23 ----D---- C:\Users\ION\AppData\Roaming\Zoner
2016-02-10 18:02:16 ----D---- C:\ProgramData\Zoner
2016-02-10 18:01:10 ----D---- C:\Program Files\Zoner
2016-02-09 20:06:25 ----D---- C:\Program Files\Nero
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MUINST_N.EXE
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MTAG32_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSTMON_N.EXE
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSTMON_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSPOOL_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MLPTDR_N.SYS
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MLMON__N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\MSUMLT_N.INI
2016-02-07 14:33:57 ----A---- C:\Windows\MSTMON_N.INI
2016-02-07 14:33:57 ----A---- C:\Windows\MREADM_N.TXT
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MINFIN_N.EXE
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MIMF32_N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MICM___N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MGDI32_N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MCMM___N.DLL
2016-01-29 19:21:29 ----D---- C:\Users\ION\AppData\Roaming\ezMagicMail
2016-01-29 19:16:04 ----D---- C:\ProgramData\Easybits
2016-01-29 19:15:06 ----A---- C:\Windows\system32\ezsvc7x.dll
2016-01-29 19:15:06 ----A---- C:\Windows\system32\ezSharedSvcHost.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezUPBHook64.dll
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezUninst.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezseng.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezMAPIHelper.exe
2016-01-22 15:13:44 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
2016-01-13 18:13:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\iernonce.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ie4uinit.exe
2016-01-13 18:13:46 ----A---- C:\Windows\system32\urlmon.dll
2016-01-13 18:13:46 ----A---- C:\Windows\system32\occache.dll
2016-01-13 18:13:46 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-13 18:13:46 ----A---- C:\Windows\system32\iedkcs32.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\jscript9diag.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\ieUnatt.exe
2016-01-13 18:13:45 ----A---- C:\Windows\system32\ieapfltr.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-01-13 18:13:44 ----A---- C:\Windows\system32\msfeeds.dll
2016-01-13 18:13:41 ----A---- C:\Windows\system32\webcheck.dll
2016-01-13 18:13:40 ----A---- C:\Windows\system32\msrating.dll
2016-01-13 18:13:40 ----A---- C:\Windows\system32\iesetup.dll
2016-01-13 18:13:39 ----A---- C:\Windows\system32\wininet.dll
2016-01-13 18:13:39 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-01-13 18:13:36 ----A---- C:\Windows\system32\dxtrans.dll
2016-01-13 18:13:35 ----A---- C:\Windows\system32\ieui.dll
2016-01-13 18:13:34 ----A---- C:\Windows\system32\ieframe.dll
2016-01-13 18:13:30 ----A---- C:\Windows\system32\mshtmled.dll
2016-01-13 18:13:29 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-01-13 18:13:27 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-01-13 18:13:26 ----A---- C:\Windows\system32\iertutil.dll
2016-01-13 18:13:22 ----A---- C:\Windows\system32\mshtml.dll
2016-01-13 18:13:18 ----A---- C:\Windows\system32\jscript9.dll
2016-01-13 18:13:16 ----A---- C:\Windows\system32\vbscript.dll
2016-01-13 18:13:16 ----A---- C:\Windows\system32\jscript.dll
2016-01-13 18:13:03 ----A---- C:\Windows\system32\advapi32.dll
2016-01-13 18:12:54 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-01-13 18:12:53 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-01-13 18:12:52 ----A---- C:\Windows\system32\schannel.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\ntdll.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\ncrypt.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\lsasrv.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\kerberos.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-01-13 18:12:52 ----A---- C:\Windows\system32\adtschema.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\wdigest.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\msv1_0.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-01-13 18:12:50 ----A---- C:\Windows\system32\TSpkg.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\sspicli.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\srcore.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\srclient.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\smss.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\secur32.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\rstrui.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\lsass.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\cryptbase.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\credssp.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\auditpol.exe
2016-01-13 18:12:49 ----A---- C:\Windows\system32\sspisrv.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\msaudite.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\csrsrv.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\apisetschema.dll
2016-01-13 18:12:48 ----A---- C:\Windows\system32\msobjs.dll
2016-01-13 18:12:32 ----A---- C:\Windows\system32\gdi32.dll
2016-01-13 18:12:30 ----A---- C:\Windows\system32\qedit.dll
2016-01-13 18:12:29 ----A---- C:\Windows\system32\win32k.sys
2016-01-13 18:12:27 ----A---- C:\Windows\system32\mapistub.dll
2016-01-13 18:12:27 ----A---- C:\Windows\system32\mapi32.dll
2016-01-13 18:12:27 ----A---- C:\Windows\system32\fixmapi.exe
2016-01-13 18:12:24 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-01-13 18:12:24 ----A---- C:\Windows\system32\msmpeg2adec.dll
2016-01-13 18:12:23 ----A---- C:\Windows\system32\WMVDECOD.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\WMADMOD.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\mf.dll
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMVSDECD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMVENCOD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\wmpmde.dll
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMADMOE.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\COLORCNV.DLL
2016-01-13 18:12:21 ----A---- C:\Windows\system32\WMVXENCD.DLL
2016-01-13 18:12:21 ----A---- C:\Windows\system32\quartz.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\qdvd.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\mcmde.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\evr.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\devenum.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMVSENCD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\VIDRESZR.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\SysFxUI.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\qasf.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MPG4DECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MP4SDECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MP43DECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\mfplat.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\rrinstaller.exe
2016-01-13 18:12:19 ----A---- C:\Windows\system32\MP3DMOD.DLL
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfvdsp.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfps.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfpmp.exe
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mferror.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\ksuser.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\portcls.sys
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\drmk.sys

======List of files/folders modified in the last 1 month======

2016-02-12 21:39:40 ----D---- C:\Windows\Temp
2016-02-12 21:25:17 ----D---- C:\Windows\Prefetch
2016-02-12 21:23:55 ----D---- C:\Windows
2016-02-12 21:22:49 ----D---- C:\Windows\System32
2016-02-12 21:22:48 ----RD---- C:\Program Files
2016-02-12 21:22:48 ----HD---- C:\ProgramData
2016-02-12 20:58:11 ----D---- C:\Users\ION\AppData\Roaming\uTorrent
2016-02-12 20:55:31 ----D---- C:\Windows\inf
2016-02-12 20:55:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-12 18:53:05 ----D---- C:\Windows\system32\config
2016-02-12 18:27:35 ----D---- C:\Windows\system32\Tasks
2016-02-12 18:27:09 ----SD---- C:\ProgramData\Microsoft
2016-02-12 18:26:35 ----D---- C:\Users\ION\AppData\Roaming\vlc
2016-02-12 15:30:45 ----D---- C:\ProgramData\MFAData
2016-02-11 21:32:01 ----SHD---- C:\Windows\Installer
2016-02-11 21:30:38 ----D---- C:\Windows\system32\drivers
2016-02-11 00:00:32 ----SHD---- C:\System Volume Information
2016-02-09 20:16:02 ----D---- C:\ProgramData\Nero
2016-02-09 20:15:52 ----D---- C:\Program Files\Common Files\Nero
2016-02-07 17:14:22 ----D---- C:\Windows\Tasks
2016-02-07 15:27:36 ----D---- C:\Windows\system32\DriverStore
2016-02-04 18:35:21 ----D---- C:\Users\ION\AppData\Roaming\Seznam.cz
2016-02-01 15:22:48 ----D---- C:\ProgramData\CanonIJPLM
2016-01-15 06:15:41 ----SHD---- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2016-01-14 16:06:57 ----D---- C:\Windows\rescache
2016-01-14 12:54:41 ----D---- C:\Windows\winsxs
2016-01-14 12:50:36 ----D---- C:\Windows\system32\cs-CZ
2016-01-14 12:50:35 ----D---- C:\Windows\system32\en-US
2016-01-14 12:50:29 ----D---- C:\Program Files\Internet Explorer
2016-01-13 21:00:44 ----D---- C:\ProgramData\Microsoft Help
2016-01-13 20:53:06 ----D---- C:\Windows\system32\MRT
2016-01-13 20:42:42 ----A---- C:\Windows\system32\MRT.exe
2016-01-13 18:11:17 ----D---- C:\Windows\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-08 207792]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-08-14 308656]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-01-22 198576]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-12-04 37296]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-01-08 23472]
R0 nvamacpi;NVIDIA Away Mode System; C:\Windows\system32\DRIVERS\NVAMACPI.sys [2009-11-19 24608]
R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-11-19 213024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-02-25 466008]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-11-06 149936]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-01-05 257456]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-10-21 229296]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-10-08 231856]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-24 30616]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-11-16 2364960]
R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2009-06-10 55808]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-11-19 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-11-19 17920]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-06-04 166912]
R3 RTL8187Se;Síťový adaptér Realtek RTL8187SE Wireless 802.11b/g 54Mbps PCIE; C:\Windows\system32\DRIVERS\RTL8187Se.sys [2009-07-01 372224]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-11-16 10088]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv.sys []
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;Sony sa0102 ADB Interface; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2016-02-01 3881184]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-01-12 865704]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2016-02-01 561104]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2015-10-24 505360]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2015-07-07 785904]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-07-14 215584]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-10-11 66872]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2013-12-10 1729336]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-11 144200]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AvgAMPS;AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [2016-02-01 604144]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-11 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-12-12 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-10-12 1433216]
S4 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-10-12 1773696]
S4 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-08-10 387616]
S4 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2011-02-07 138192]
S4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-08-10 178720]
S4 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2006-11-06 210432]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S4 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2009-07-14 239648]

-----------------EOF-----------------

[Rudy]

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files\Skype\Toolbars
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

[kyzi01]

Provedeno,zde je log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by ION at 2016-02-12 22:14:11
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 51 GB (51%) free of 100 GB
Total RAM: 3327 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:15:09, on 12.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
C:\Program Files\AVG\Framework\Common\avguix.exe
C:\Program Files\AVG\Av\avgui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\ctfmon.exe
C:\Users\ION\Desktop\RSIT.exe
C:\Program Files\trend micro\ION.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Av\avuirunnerx.exe" C:\Program Files\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\Windows\system32\MSTMON_N.EXE
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - Easybits - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe

--
End of file - 6592 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-01-24 176736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-26 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-26 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-01-24 4438104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-11-16 7518752]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-11-16 1833504]
"AVG_UI"=C:\Program Files\AVG\Av\avuirunnerx.exe [2016-02-01 25512]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-01-12 179624]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [2015-12-11 563416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoLogoff"=0
"TaskbarNoNotification"=1
"HideSCAHealth"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
"TaskbarNoNotification"=1
"HideSCAHealth"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoxmled.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mstore.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvcplui.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstlink.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstview.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ois.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pccompanion.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rlvknlg.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\skype.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Winword.exe]
"Debugger=""C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-12 22:08:07 ----D---- C:\_OTM
2016-02-12 21:17:41 ----D---- C:\AdwCleaner
2016-02-12 19:38:55 ----D---- C:\Program Files\trend micro
2016-02-12 19:38:52 ----D---- C:\rsit
2016-02-10 18:02:23 ----D---- C:\Users\ION\AppData\Roaming\Zoner
2016-02-10 18:02:16 ----D---- C:\ProgramData\Zoner
2016-02-10 18:01:10 ----D---- C:\Program Files\Zoner
2016-02-09 20:06:25 ----D---- C:\Program Files\Nero
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MUINST_N.EXE
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MTAG32_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSTMON_N.EXE
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSTMON_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MSPOOL_N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MLPTDR_N.SYS
2016-02-07 14:33:57 ----A---- C:\Windows\system32\MLMON__N.DLL
2016-02-07 14:33:57 ----A---- C:\Windows\MSUMLT_N.INI
2016-02-07 14:33:57 ----A---- C:\Windows\MSTMON_N.INI
2016-02-07 14:33:57 ----A---- C:\Windows\MREADM_N.TXT
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MINFIN_N.EXE
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MIMF32_N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MICM___N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MGDI32_N.DLL
2016-02-07 14:33:56 ----A---- C:\Windows\system32\MCMM___N.DLL
2016-01-29 19:21:29 ----D---- C:\Users\ION\AppData\Roaming\ezMagicMail
2016-01-29 19:16:04 ----D---- C:\ProgramData\Easybits
2016-01-29 19:15:06 ----A---- C:\Windows\system32\ezsvc7x.dll
2016-01-29 19:15:06 ----A---- C:\Windows\system32\ezSharedSvcHost.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezUPBHook64.dll
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezUninst.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezseng.exe
2016-01-29 19:15:01 ----A---- C:\Windows\system32\ezMAPIHelper.exe
2016-01-22 15:13:44 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
2016-01-13 18:13:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\iernonce.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-01-13 18:13:47 ----A---- C:\Windows\system32\ie4uinit.exe
2016-01-13 18:13:46 ----A---- C:\Windows\system32\urlmon.dll
2016-01-13 18:13:46 ----A---- C:\Windows\system32\occache.dll
2016-01-13 18:13:46 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-13 18:13:46 ----A---- C:\Windows\system32\iedkcs32.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\jscript9diag.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\ieUnatt.exe
2016-01-13 18:13:45 ----A---- C:\Windows\system32\ieapfltr.dll
2016-01-13 18:13:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-01-13 18:13:44 ----A---- C:\Windows\system32\msfeeds.dll
2016-01-13 18:13:41 ----A---- C:\Windows\system32\webcheck.dll
2016-01-13 18:13:40 ----A---- C:\Windows\system32\msrating.dll
2016-01-13 18:13:40 ----A---- C:\Windows\system32\iesetup.dll
2016-01-13 18:13:39 ----A---- C:\Windows\system32\wininet.dll
2016-01-13 18:13:39 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-01-13 18:13:36 ----A---- C:\Windows\system32\dxtrans.dll
2016-01-13 18:13:35 ----A---- C:\Windows\system32\ieui.dll
2016-01-13 18:13:34 ----A---- C:\Windows\system32\ieframe.dll
2016-01-13 18:13:30 ----A---- C:\Windows\system32\mshtmled.dll
2016-01-13 18:13:29 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-01-13 18:13:27 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-01-13 18:13:26 ----A---- C:\Windows\system32\iertutil.dll
2016-01-13 18:13:22 ----A---- C:\Windows\system32\mshtml.dll
2016-01-13 18:13:18 ----A---- C:\Windows\system32\jscript9.dll
2016-01-13 18:13:16 ----A---- C:\Windows\system32\vbscript.dll
2016-01-13 18:13:16 ----A---- C:\Windows\system32\jscript.dll
2016-01-13 18:13:03 ----A---- C:\Windows\system32\advapi32.dll
2016-01-13 18:12:54 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-01-13 18:12:53 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-01-13 18:12:52 ----A---- C:\Windows\system32\schannel.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\ntdll.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\ncrypt.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\lsasrv.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\kerberos.dll
2016-01-13 18:12:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-01-13 18:12:52 ----A---- C:\Windows\system32\adtschema.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\wdigest.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\msv1_0.dll
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-01-13 18:12:51 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-01-13 18:12:50 ----A---- C:\Windows\system32\TSpkg.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\sspicli.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\srcore.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\srclient.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\smss.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\secur32.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\rstrui.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\lsass.exe
2016-01-13 18:12:50 ----A---- C:\Windows\system32\cryptbase.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\credssp.dll
2016-01-13 18:12:50 ----A---- C:\Windows\system32\auditpol.exe
2016-01-13 18:12:49 ----A---- C:\Windows\system32\sspisrv.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\msaudite.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\csrsrv.dll
2016-01-13 18:12:49 ----A---- C:\Windows\system32\apisetschema.dll
2016-01-13 18:12:48 ----A---- C:\Windows\system32\msobjs.dll
2016-01-13 18:12:32 ----A---- C:\Windows\system32\gdi32.dll
2016-01-13 18:12:30 ----A---- C:\Windows\system32\qedit.dll
2016-01-13 18:12:29 ----A---- C:\Windows\system32\win32k.sys
2016-01-13 18:12:27 ----A---- C:\Windows\system32\mapistub.dll
2016-01-13 18:12:27 ----A---- C:\Windows\system32\mapi32.dll
2016-01-13 18:12:27 ----A---- C:\Windows\system32\fixmapi.exe
2016-01-13 18:12:24 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-01-13 18:12:24 ----A---- C:\Windows\system32\msmpeg2adec.dll
2016-01-13 18:12:23 ----A---- C:\Windows\system32\WMVDECOD.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\WMADMOD.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-13 18:12:23 ----A---- C:\Windows\system32\mf.dll
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMVSDECD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMVENCOD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\wmpmde.dll
2016-01-13 18:12:22 ----A---- C:\Windows\system32\WMADMOE.DLL
2016-01-13 18:12:22 ----A---- C:\Windows\system32\COLORCNV.DLL
2016-01-13 18:12:21 ----A---- C:\Windows\system32\WMVXENCD.DLL
2016-01-13 18:12:21 ----A---- C:\Windows\system32\quartz.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\qdvd.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\mcmde.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\evr.dll
2016-01-13 18:12:21 ----A---- C:\Windows\system32\devenum.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMVSENCD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\VIDRESZR.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\SysFxUI.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\qasf.dll
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MPG4DECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MP4SDECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MP43DECD.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2016-01-13 18:12:20 ----A---- C:\Windows\system32\mfplat.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\rrinstaller.exe
2016-01-13 18:12:19 ----A---- C:\Windows\system32\MP3DMOD.DLL
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfvdsp.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfps.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mfpmp.exe
2016-01-13 18:12:19 ----A---- C:\Windows\system32\mferror.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\ksuser.dll
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\portcls.sys
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2016-01-13 18:12:19 ----A---- C:\Windows\system32\drivers\drmk.sys

======List of files/folders modified in the last 1 month======

2016-02-12 22:13:51 ----D---- C:\Windows\Prefetch
2016-02-12 22:12:51 ----D---- C:\Windows\Temp
2016-02-12 22:11:11 ----D---- C:\Windows
2016-02-12 22:10:23 ----D---- C:\Windows\System32
2016-02-12 22:08:08 ----RD---- C:\Program Files\Skype
2016-02-12 22:08:08 ----HD---- C:\ProgramData
2016-02-12 22:08:08 ----D---- C:\Windows\Tasks
2016-02-12 21:22:48 ----RD---- C:\Program Files
2016-02-12 20:58:11 ----D---- C:\Users\ION\AppData\Roaming\uTorrent
2016-02-12 20:55:31 ----D---- C:\Windows\inf
2016-02-12 20:55:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-12 18:53:05 ----D---- C:\Windows\system32\config
2016-02-12 18:27:35 ----D---- C:\Windows\system32\Tasks
2016-02-12 18:27:09 ----SD---- C:\ProgramData\Microsoft
2016-02-12 18:26:35 ----D---- C:\Users\ION\AppData\Roaming\vlc
2016-02-12 15:30:45 ----D---- C:\ProgramData\MFAData
2016-02-11 21:32:01 ----SHD---- C:\Windows\Installer
2016-02-11 21:30:38 ----D---- C:\Windows\system32\drivers
2016-02-11 00:00:32 ----SHD---- C:\System Volume Information
2016-02-09 20:16:02 ----D---- C:\ProgramData\Nero
2016-02-09 20:15:52 ----D---- C:\Program Files\Common Files\Nero
2016-02-07 15:27:36 ----D---- C:\Windows\system32\DriverStore
2016-02-04 18:35:21 ----D---- C:\Users\ION\AppData\Roaming\Seznam.cz
2016-02-01 15:22:48 ----D---- C:\ProgramData\CanonIJPLM
2016-01-14 16:06:57 ----D---- C:\Windows\rescache
2016-01-14 12:54:41 ----D---- C:\Windows\winsxs
2016-01-14 12:50:36 ----D---- C:\Windows\system32\cs-CZ
2016-01-14 12:50:35 ----D---- C:\Windows\system32\en-US
2016-01-14 12:50:29 ----D---- C:\Program Files\Internet Explorer
2016-01-13 21:00:44 ----D---- C:\ProgramData\Microsoft Help
2016-01-13 20:53:06 ----D---- C:\Windows\system32\MRT
2016-01-13 20:42:42 ----A---- C:\Windows\system32\MRT.exe
2016-01-13 18:11:17 ----D---- C:\Windows\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-08 207792]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-08-14 308656]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-01-22 198576]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-12-04 37296]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-01-08 23472]
R0 nvamacpi;NVIDIA Away Mode System; C:\Windows\system32\DRIVERS\NVAMACPI.sys [2009-11-19 24608]
R0 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-11-19 213024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-02-25 466008]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-11-06 149936]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-01-05 257456]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-10-21 229296]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-10-08 231856]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-24 30616]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-11-16 2364960]
R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2009-06-10 55808]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-11-19 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-11-19 17920]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-06-04 166912]
R3 RTL8187Se;Síťový adaptér Realtek RTL8187SE Wireless 802.11b/g 54Mbps PCIE; C:\Windows\system32\DRIVERS\RTL8187Se.sys [2009-07-01 372224]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-11-16 10088]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv.sys []
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;Sony sa0102 ADB Interface; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2016-02-01 3881184]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-01-12 865704]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2016-02-01 561104]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2015-10-24 505360]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2015-07-07 785904]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-07-14 215584]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-10-11 66872]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2013-12-10 1729336]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-11 144200]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AvgAMPS;AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [2016-02-01 604144]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2016-01-11 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-12-12 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe /service []
S4 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe /service []
S4 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [2009-08-10 387616]
S4 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2011-02-07 138192]
S4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [2009-08-10 178720]
S4 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2006-11-06 210432]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S4 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2009-07-14 239648]

-----------------EOF-----------------

[Rudy]

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

[kyzi01]

Bohužel,stále nejde windows update firevall,centrum zabezpečení



Edit: Po různém laborování se mě povedlo zapnout přes services.msc-zde bylo vypnuté,ale nemůžu zapnout
tu vlaječku u u hodin-v položce vypnout nebo zapnout systémové ikony je tato možnost spolu s napájením zašedlá a nejde změnit.
Přitom já jsem správce-nemám jiné uživ.účty.
Celkově se mě PC zdá takové "jiné"

[Rudy]

Zkuste obnovu systému k datu, kdy korketně fungoval.

[kyzi01]

Obnova systému nebyla řádně dokončena,ale vlaječka už naskočila a již jde zapnout nebo vypnout.
Avšak nejde stáhnout a nainstalovat aktualizalizace Windows.Mám nastaveno na dotázat se,kvůli možné instalaci W 10.
Stahování je spuštěno,ale stále je staženo 0 b a 0 %

[Rudy]

Bude to zřejmě nějaká systémová chyba. Zkuste WindowsRepair: http://www.stahuj.centrum.cz/utility_a_ ... ws-repair/ .

[kyzi01]

Dobře stáhl a nainstaloval jsem,ale nevím co s tím,prosím o radu

[Rudy]

1. krok můžete vynechat. Zkontrolujte souborový systém a nakonec se v posledním kroku pokuste o opravu.