VIRY.CZ

Dobrý den,
prosím o prozkoumání logu, je velké množství vyskakujícch reklam, skoro nejde serfovat
Logfile of random's system information tool 1.10 (written by random/random)
Run by Stenly at 2014-11-03 19:36:04
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 10 GB (7%) free of 153 GB
Total RAM: 1983 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:36:37, on 3.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
C:\Users\Stenly\Desktop\RSIT.exe
C:\Program Files\trend micro\Stenly.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe

--
End of file - 3287 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Stenly\AppData\Roaming\Mozilla\Firefox\Profiles\qk2jp7u1.default-1410426806268

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Stenly\AppData\Roaming\Mozilla\Firefox\Profiles\qk2jp7u1.default-1410426806268\extensions\
{11b496ea-481a-11dc-8314-0800200c9a66}

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 974432]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-14 2299176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Stenly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\Windows\system32\NvCpl.dll [2009-03-06 13605408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\Windows\system32\NvMcTray.dll [2009-03-06 92704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2012-12-04 968592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-03 19:36:04 ----D---- C:\rsit
2014-11-03 19:36:04 ----D---- C:\Program Files\trend micro
2014-11-03 19:04:58 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-11-03 19:04:09 ----D---- C:\ProgramData\Malwarebytes
2014-11-03 19:04:09 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2014-11-03 19:04:09 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-11-03 19:04:09 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-11-03 19:04:09 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-11-03 18:45:27 ----A---- C:\Windows\system32\sqlite3.dll
2014-11-03 18:44:27 ----D---- C:\AdwCleaner
2014-11-03 18:21:19 ----SHD---- C:\Config.Msi
2014-10-30 22:31:44 ----D---- C:\Program Files\Mozilla Firefox
2014-10-15 10:29:55 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 10:29:55 ----A---- C:\Windows\system32\termsrv.dll
2014-10-15 10:29:54 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 10:29:54 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 10:29:53 ----A---- C:\Windows\system32\TSpkg.dll
2014-10-15 10:29:53 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 10:29:52 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 10:29:52 ----A---- C:\Windows\system32\credssp.dll
2014-10-15 10:28:29 ----A---- C:\Windows\system32\generaltel.dll
2014-10-15 10:28:27 ----A---- C:\Windows\system32\aepdu.dll
2014-10-15 10:28:24 ----A---- C:\Windows\system32\aeinv.dll
2014-10-15 10:28:21 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 10:27:02 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 10:26:24 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-10-15 10:26:24 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-10-15 10:26:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 10:26:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 10:26:21 ----A---- C:\Windows\system32\jsproxy.dll
2014-10-15 10:26:20 ----A---- C:\Windows\system32\ieUnatt.exe
2014-10-15 10:26:19 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 10:26:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 10:26:19 ----A---- C:\Windows\system32\dxtmsft.dll
2014-10-15 10:26:18 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 10:26:15 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 10:26:14 ----A---- C:\Windows\system32\ieui.dll
2014-10-15 10:26:13 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 10:26:12 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-10-15 10:26:12 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 10:26:11 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 10:26:02 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 10:26:00 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 10:25:59 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\iernonce.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 10:25:54 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 10:25:54 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 10:25:53 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 10:25:46 ----A---- C:\Windows\system32\msrating.dll
2014-10-15 10:25:45 ----A---- C:\Windows\system32\iesetup.dll
2014-10-15 10:25:41 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 10:20:45 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 10:20:45 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 10:20:43 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 10:20:36 ----A---- C:\Windows\system32\tsgqec.dll
2014-10-15 10:20:36 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 10:20:36 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 10:20:35 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 10:20:33 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 10:20:10 ----A---- C:\Windows\system32\msi.dll
2014-10-15 10:19:40 ----A---- C:\Windows\system32\packager.dll
2014-10-15 10:18:36 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 10:18:36 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 10:18:34 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 10:18:32 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 10:18:29 ----A---- C:\Windows\system32\mf.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\ci.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-10-15 10:18:26 ----A---- C:\Windows\system32\winload.exe
2014-10-15 10:18:26 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 10:18:26 ----A---- C:\Windows\system32\AudioSes.dll
2014-10-15 10:18:25 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 10:18:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 10:18:25 ----A---- C:\Windows\system32\EncDump.dll
2014-10-15 10:18:25 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 10:18:24 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 10:18:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 10:18:23 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 10:18:23 ----A---- C:\Windows\system32\evr.dll
2014-10-15 10:18:22 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 10:18:22 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 10:18:21 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 10:18:21 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 10:18:18 ----A---- C:\Windows\system32\AudioEng.dll
2014-10-15 10:18:17 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 10:18:14 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 10:18:14 ----A---- C:\Windows\system32\audiosrv.dll
2014-10-15 10:18:13 ----A---- C:\Windows\system32\audiodg.exe
2014-10-15 10:18:12 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 10:18:12 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 10:18:11 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 10:18:10 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 10:18:09 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 10:18:09 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 10:18:08 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 10:18:07 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 10:18:07 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 10:18:06 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 10:18:03 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 10:18:03 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 10:18:02 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 10:18:02 ----A---- C:\Windows\system32\mferror.dll
2014-10-12 19:12:50 ----D---- C:\Users\Stenly\AppData\Roaming\LavasoftStatistics

======List of files/folders modified in the last 1 month======

2014-11-03 19:36:21 ----D---- C:\Windows\Prefetch
2014-11-03 19:36:04 ----RD---- C:\Program Files
2014-11-03 19:31:00 ----D---- C:\Windows\System32
2014-11-03 19:31:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-03 19:29:10 ----D---- C:\Windows\system32\config
2014-11-03 19:26:16 ----D---- C:\Windows\Temp
2014-11-03 19:24:00 ----D---- C:\Windows\system32\drivers
2014-11-03 19:24:00 ----D---- C:\Windows\en-US
2014-11-03 19:22:10 ----D---- C:\Program Files\Common Files
2014-11-03 19:04:09 ----HD---- C:\ProgramData
2014-11-03 18:46:22 ----D---- C:\Windows\Tasks
2014-11-03 18:46:21 ----D---- C:\Windows\system32\Tasks
2014-11-03 18:22:16 ----SHD---- C:\Windows\Installer
2014-11-03 18:20:58 ----SHD---- C:\System Volume Information
2014-11-03 18:18:26 ----D---- C:\Windows\Minidump
2014-11-03 18:18:26 ----D---- C:\Windows
2014-10-31 23:04:47 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-10-30 12:24:45 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-27 09:52:20 ----D---- C:\Windows\system32\wfp
2014-10-27 09:52:20 ----D---- C:\Windows\system32\DriverStore
2014-10-27 09:52:20 ----D---- C:\Windows\system32\catroot2
2014-10-27 09:52:19 ----D---- C:\Windows\system32\wbem
2014-10-27 09:52:18 ----D---- C:\Windows\inf
2014-10-27 09:52:18 ----D---- C:\Users\Stenly\AppData\Roaming\vlc
2014-10-27 09:52:16 ----D---- C:\Windows\registration
2014-10-27 09:52:16 ----D---- C:\Users\Stenly\AppData\Roaming\dvdcss
2014-10-27 09:52:10 ----D---- C:\Windows\ehome
2014-10-18 11:58:15 ----D---- C:\Windows\rescache
2014-10-17 12:36:41 ----D---- C:\Windows\Microsoft.NET
2014-10-17 12:34:11 ----RSD---- C:\Windows\assembly
2014-10-16 11:32:13 ----D---- C:\Windows\winsxs
2014-10-16 11:26:35 ----SD---- C:\Windows\system32\CompatTel
2014-10-16 11:26:28 ----D---- C:\Windows\system32\en-US
2014-10-16 11:26:23 ----D---- C:\Program Files\Internet Explorer
2014-10-16 11:26:18 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 11:26:03 ----D---- C:\Windows\system32\Dism
2014-10-16 11:26:03 ----D---- C:\Program Files\Windows Media Player
2014-10-16 11:25:48 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 11:25:48 ----D---- C:\Windows\system32\Boot
2014-10-16 10:58:41 ----D---- C:\Windows\system32\MRT
2014-10-16 10:46:47 ----D---- C:\Windows\debug
2014-10-16 10:46:35 ----A---- C:\Windows\system32\MRT.exe
2014-10-15 10:19:30 ----D---- C:\Windows\system32\catroot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 231800]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-07 242240]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-17 12672]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\XAudio32.sys [2009-04-29 8704]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-10-09 1096704]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-03-04 188416]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2009-02-12 980992]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2009-02-12 207360]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-10-01 23256]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-11-03 114904]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-10-01 51928]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-10-14 299312]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2009-02-12 661504]
S1 MpKsl4b90d7ad;MpKsl4b90d7ad; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D109E106-3D54-4E97-B34B-105937C4832D}\MpKsl4b90d7ad.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 MSICDSetup;MSICDSetup; \??\\\JANULKA-PC\D\CDriver.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 HsfXAudioService;HsfXAudioService; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-01 968504]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-01 1871160]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 22192]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-03-06 203296]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-30 114288]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-13 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

tento program už jsem předtím iniciativně použil snad s tím nebude problém. Výsledek logu je tady:

# AdwCleaner v3.311 - Report created 05/11/2014 at 18:46:57
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : Stenly - STENLY-PC
# Running from : C:\Users\Stenly\Downloads\adwcleaner_3.311.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Mozilla Firefox v33.0.2 (x86 cs)

[ File : C:\Users\Stenly\AppData\Roaming\Mozilla\Firefox\Profiles\qk2jp7u1.default-1410426806268\prefs.js ]

Line Found : user_pref("extensions.aUIMGMKB37220652DPOEER3647180com61792.61792.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon.com%22%2C%22anth[...]
Line Found : user_pref("extensions.aUIMGMKB37220652DPOEER3647180com61792.61792.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%[...]

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [9159 octets] - [03/11/2014 18:44:29]
AdwCleaner[R1].txt - [1521 octets] - [03/11/2014 18:58:18]
AdwCleaner[R2].txt - [1282 octets] - [05/11/2014 18:46:57]
AdwCleaner[S0].txt - [9454 octets] - [03/11/2014 18:46:05]
AdwCleaner[S1].txt - [1588 octets] - [03/11/2014 18:59:34]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1462 octets] ##########

a zde je log po cleanu:
# AdwCleaner v3.311 - Report created 05/11/2014 at 18:51:34
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : Stenly - STENLY-PC
# Running from : C:\Users\Stenly\Downloads\adwcleaner_3.311.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Mozilla Firefox v33.0.2 (x86 cs)

[ File : C:\Users\Stenly\AppData\Roaming\Mozilla\Firefox\Profiles\qk2jp7u1.default-1410426806268\prefs.js ]

Line Deleted : user_pref("extensions.aUIMGMKB37220652DPOEER3647180com61792.61792.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon.com%22%2C%22anth[...]
Line Deleted : user_pref("extensions.aUIMGMKB37220652DPOEER3647180com61792.61792.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%[...]

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [9159 octets] - [03/11/2014 18:44:29]
AdwCleaner[R1].txt - [1521 octets] - [03/11/2014 18:58:18]
AdwCleaner[R2].txt - [1542 octets] - [05/11/2014 18:46:57]
AdwCleaner[S0].txt - [9454 octets] - [03/11/2014 18:46:05]
AdwCleaner[S1].txt - [1588 octets] - [03/11/2014 18:59:34]
AdwCleaner[S2].txt - [1467 octets] - [05/11/2014 18:51:34]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1527 octets] ##########

Dejte nový log RSIT.

Dobrý večer, nový log je zde:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Stenly at 2014-11-05 19:04:03
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 10 GB (7%) free of 153 GB
Total RAM: 1983 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:04:34, on 5.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
C:\Users\Stenly\Desktop\RSIT.exe
C:\Program Files\trend micro\Stenly.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe

--
End of file - 3298 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Stenly\AppData\Roaming\Mozilla\Firefox\Profiles\qk2jp7u1.default-1410426806268

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Stenly\AppData\Roaming\Mozilla\Firefox\Profiles\qk2jp7u1.default-1410426806268\extensions\
{11b496ea-481a-11dc-8314-0800200c9a66}

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 974432]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-14 2299176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Stenly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\Windows\system32\NvCpl.dll [2009-03-06 13605408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\Windows\system32\NvMcTray.dll [2009-03-06 92704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2012-12-04 968592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-03 19:36:04 ----D---- C:\rsit
2014-11-03 19:36:04 ----D---- C:\Program Files\trend micro
2014-11-03 19:04:58 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-11-03 19:04:09 ----D---- C:\ProgramData\Malwarebytes
2014-11-03 19:04:09 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2014-11-03 19:04:09 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-11-03 19:04:09 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-11-03 19:04:09 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-11-03 18:45:27 ----A---- C:\Windows\system32\sqlite3.dll
2014-11-03 18:44:27 ----D---- C:\AdwCleaner
2014-11-03 18:21:19 ----SHD---- C:\Config.Msi
2014-10-30 22:31:44 ----D---- C:\Program Files\Mozilla Firefox
2014-10-15 10:29:55 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 10:29:55 ----A---- C:\Windows\system32\termsrv.dll
2014-10-15 10:29:54 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 10:29:54 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 10:29:53 ----A---- C:\Windows\system32\TSpkg.dll
2014-10-15 10:29:53 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 10:29:52 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 10:29:52 ----A---- C:\Windows\system32\credssp.dll
2014-10-15 10:28:29 ----A---- C:\Windows\system32\generaltel.dll
2014-10-15 10:28:27 ----A---- C:\Windows\system32\aepdu.dll
2014-10-15 10:28:24 ----A---- C:\Windows\system32\aeinv.dll
2014-10-15 10:28:21 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 10:27:02 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 10:26:24 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-10-15 10:26:24 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-10-15 10:26:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 10:26:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 10:26:21 ----A---- C:\Windows\system32\jsproxy.dll
2014-10-15 10:26:20 ----A---- C:\Windows\system32\ieUnatt.exe
2014-10-15 10:26:19 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 10:26:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 10:26:19 ----A---- C:\Windows\system32\dxtmsft.dll
2014-10-15 10:26:18 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 10:26:15 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 10:26:14 ----A---- C:\Windows\system32\ieui.dll
2014-10-15 10:26:13 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 10:26:12 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-10-15 10:26:12 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 10:26:11 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 10:26:02 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 10:26:00 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 10:25:59 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\iernonce.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 10:25:54 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 10:25:54 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 10:25:53 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 10:25:46 ----A---- C:\Windows\system32\msrating.dll
2014-10-15 10:25:45 ----A---- C:\Windows\system32\iesetup.dll
2014-10-15 10:25:41 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 10:20:45 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 10:20:45 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 10:20:43 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 10:20:36 ----A---- C:\Windows\system32\tsgqec.dll
2014-10-15 10:20:36 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 10:20:36 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 10:20:35 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 10:20:33 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 10:20:10 ----A---- C:\Windows\system32\msi.dll
2014-10-15 10:19:40 ----A---- C:\Windows\system32\packager.dll
2014-10-15 10:18:36 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 10:18:36 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 10:18:34 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 10:18:32 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 10:18:29 ----A---- C:\Windows\system32\mf.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\ci.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-10-15 10:18:26 ----A---- C:\Windows\system32\winload.exe
2014-10-15 10:18:26 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 10:18:26 ----A---- C:\Windows\system32\AudioSes.dll
2014-10-15 10:18:25 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 10:18:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 10:18:25 ----A---- C:\Windows\system32\EncDump.dll
2014-10-15 10:18:25 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 10:18:24 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 10:18:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 10:18:23 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 10:18:23 ----A---- C:\Windows\system32\evr.dll
2014-10-15 10:18:22 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 10:18:22 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 10:18:21 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 10:18:21 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 10:18:18 ----A---- C:\Windows\system32\AudioEng.dll
2014-10-15 10:18:17 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 10:18:14 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 10:18:14 ----A---- C:\Windows\system32\audiosrv.dll
2014-10-15 10:18:13 ----A---- C:\Windows\system32\audiodg.exe
2014-10-15 10:18:12 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 10:18:12 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 10:18:11 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 10:18:10 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 10:18:09 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 10:18:09 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 10:18:08 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 10:18:07 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 10:18:07 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 10:18:06 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 10:18:03 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 10:18:03 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 10:18:02 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 10:18:02 ----A---- C:\Windows\system32\mferror.dll
2014-10-12 19:12:50 ----D---- C:\Users\Stenly\AppData\Roaming\LavasoftStatistics

======List of files/folders modified in the last 1 month======

2014-11-05 19:04:21 ----D---- C:\Windows\Temp
2014-11-05 18:59:54 ----D---- C:\Windows\System32
2014-11-05 18:59:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-05 18:58:23 ----D---- C:\Windows\system32\config
2014-11-05 18:46:52 ----D---- C:\Windows\Prefetch
2014-11-04 19:05:00 ----D---- C:\Windows\Minidump
2014-11-04 19:05:00 ----D---- C:\Windows
2014-11-03 20:14:56 ----SHD---- C:\System Volume Information
2014-11-03 19:36:04 ----RD---- C:\Program Files
2014-11-03 19:24:00 ----D---- C:\Windows\system32\drivers
2014-11-03 19:24:00 ----D---- C:\Windows\en-US
2014-11-03 19:22:10 ----D---- C:\Program Files\Common Files
2014-11-03 19:04:09 ----HD---- C:\ProgramData
2014-11-03 18:46:22 ----D---- C:\Windows\Tasks
2014-11-03 18:46:21 ----D---- C:\Windows\system32\Tasks
2014-11-03 18:22:16 ----SHD---- C:\Windows\Installer
2014-10-31 23:04:47 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-10-30 12:24:45 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-27 09:52:20 ----D---- C:\Windows\system32\wfp
2014-10-27 09:52:20 ----D---- C:\Windows\system32\DriverStore
2014-10-27 09:52:20 ----D---- C:\Windows\system32\catroot2
2014-10-27 09:52:19 ----D---- C:\Windows\system32\wbem
2014-10-27 09:52:18 ----D---- C:\Windows\inf
2014-10-27 09:52:18 ----D---- C:\Users\Stenly\AppData\Roaming\vlc
2014-10-27 09:52:16 ----D---- C:\Windows\registration
2014-10-27 09:52:16 ----D---- C:\Users\Stenly\AppData\Roaming\dvdcss
2014-10-27 09:52:10 ----D---- C:\Windows\ehome
2014-10-18 11:58:15 ----D---- C:\Windows\rescache
2014-10-17 12:36:41 ----D---- C:\Windows\Microsoft.NET
2014-10-17 12:34:11 ----RSD---- C:\Windows\assembly
2014-10-16 11:32:13 ----D---- C:\Windows\winsxs
2014-10-16 11:26:35 ----SD---- C:\Windows\system32\CompatTel
2014-10-16 11:26:28 ----D---- C:\Windows\system32\en-US
2014-10-16 11:26:23 ----D---- C:\Program Files\Internet Explorer
2014-10-16 11:26:18 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 11:26:03 ----D---- C:\Windows\system32\Dism
2014-10-16 11:26:03 ----D---- C:\Program Files\Windows Media Player
2014-10-16 11:25:48 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 11:25:48 ----D---- C:\Windows\system32\Boot
2014-10-16 10:58:41 ----D---- C:\Windows\system32\MRT
2014-10-16 10:46:47 ----D---- C:\Windows\debug
2014-10-16 10:46:35 ----A---- C:\Windows\system32\MRT.exe
2014-10-15 10:19:30 ----D---- C:\Windows\system32\catroot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 231800]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-07 242240]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-17 12672]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\XAudio32.sys [2009-04-29 8704]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-10-09 1096704]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-03-04 188416]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2009-02-12 980992]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2009-02-12 207360]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-10-01 23256]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-11-05 114904]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-10-01 51928]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-10-14 299312]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2009-02-12 661504]
S1 MpKsl4b90d7ad;MpKsl4b90d7ad; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D109E106-3D54-4E97-B34B-105937C4832D}\MpKsl4b90d7ad.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 MSICDSetup;MSICDSetup; \??\\\JANULKA-PC\D\CDriver.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 HsfXAudioService;HsfXAudioService; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-01 968504]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-01 1871160]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 22192]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-03-06 203296]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-30 114288]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-13 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Dobrý večer,
Všiml jsem si procesu Stenly.exe, což nejspíše není dobře. Zde máte nový log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Stenly at 2014-11-06 16:54:48
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 11 GB (7%) free of 153 GB
Total RAM: 1983 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:54:59, on 6.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Stenly\Desktop\RSIT.exe
C:\Program Files\trend micro\Stenly.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe

--
End of file - 2812 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Stenly\AppData\Roaming\Mozilla\Firefox\Profiles\qk2jp7u1.default-1410426806268

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Stenly\AppData\Roaming\Mozilla\Firefox\Profiles\qk2jp7u1.default-1410426806268\extensions\
{11b496ea-481a-11dc-8314-0800200c9a66}

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-08-22 974432]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-14 2299176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Stenly\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\Windows\system32\NvCpl.dll [2009-03-06 13605408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\Windows\system32\NvMcTray.dll [2009-03-06 92704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe [2012-12-04 968592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-06 16:44:44 ----D---- C:\_OTM
2014-11-03 19:36:04 ----D---- C:\rsit
2014-11-03 19:36:04 ----D---- C:\Program Files\trend micro
2014-11-03 19:04:09 ----D---- C:\ProgramData\Malwarebytes
2014-11-03 18:45:27 ----A---- C:\Windows\system32\sqlite3.dll
2014-11-03 18:44:27 ----D---- C:\AdwCleaner
2014-11-03 18:21:19 ----SHD---- C:\Config.Msi
2014-10-30 22:31:44 ----D---- C:\Program Files\Mozilla Firefox
2014-10-15 10:29:55 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 10:29:55 ----A---- C:\Windows\system32\termsrv.dll
2014-10-15 10:29:54 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 10:29:54 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 10:29:53 ----A---- C:\Windows\system32\TSpkg.dll
2014-10-15 10:29:53 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 10:29:52 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 10:29:52 ----A---- C:\Windows\system32\credssp.dll
2014-10-15 10:28:29 ----A---- C:\Windows\system32\generaltel.dll
2014-10-15 10:28:27 ----A---- C:\Windows\system32\aepdu.dll
2014-10-15 10:28:24 ----A---- C:\Windows\system32\aeinv.dll
2014-10-15 10:28:21 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 10:27:02 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 10:26:24 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-10-15 10:26:24 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-10-15 10:26:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 10:26:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 10:26:21 ----A---- C:\Windows\system32\jsproxy.dll
2014-10-15 10:26:20 ----A---- C:\Windows\system32\ieUnatt.exe
2014-10-15 10:26:19 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 10:26:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 10:26:19 ----A---- C:\Windows\system32\dxtmsft.dll
2014-10-15 10:26:18 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 10:26:15 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 10:26:14 ----A---- C:\Windows\system32\ieui.dll
2014-10-15 10:26:13 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 10:26:12 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-10-15 10:26:12 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 10:26:11 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 10:26:02 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 10:26:00 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 10:25:59 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\iernonce.dll
2014-10-15 10:25:56 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 10:25:54 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 10:25:54 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 10:25:53 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 10:25:46 ----A---- C:\Windows\system32\msrating.dll
2014-10-15 10:25:45 ----A---- C:\Windows\system32\iesetup.dll
2014-10-15 10:25:41 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 10:20:45 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 10:20:45 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 10:20:43 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 10:20:36 ----A---- C:\Windows\system32\tsgqec.dll
2014-10-15 10:20:36 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 10:20:36 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 10:20:35 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 10:20:33 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 10:20:10 ----A---- C:\Windows\system32\msi.dll
2014-10-15 10:19:40 ----A---- C:\Windows\system32\packager.dll
2014-10-15 10:18:36 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 10:18:36 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 10:18:34 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 10:18:32 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 10:18:29 ----A---- C:\Windows\system32\mf.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\ci.dll
2014-10-15 10:18:28 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-10-15 10:18:26 ----A---- C:\Windows\system32\winload.exe
2014-10-15 10:18:26 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 10:18:26 ----A---- C:\Windows\system32\AudioSes.dll
2014-10-15 10:18:25 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 10:18:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 10:18:25 ----A---- C:\Windows\system32\EncDump.dll
2014-10-15 10:18:25 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 10:18:24 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 10:18:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 10:18:23 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 10:18:23 ----A---- C:\Windows\system32\evr.dll
2014-10-15 10:18:22 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 10:18:22 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 10:18:21 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 10:18:21 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 10:18:18 ----A---- C:\Windows\system32\AudioEng.dll
2014-10-15 10:18:17 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 10:18:14 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 10:18:14 ----A---- C:\Windows\system32\audiosrv.dll
2014-10-15 10:18:13 ----A---- C:\Windows\system32\audiodg.exe
2014-10-15 10:18:12 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 10:18:12 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 10:18:11 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 10:18:10 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 10:18:09 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 10:18:09 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 10:18:08 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 10:18:07 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 10:18:07 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 10:18:06 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 10:18:03 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 10:18:03 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 10:18:02 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 10:18:02 ----A---- C:\Windows\system32\mferror.dll
2014-10-12 19:12:50 ----D---- C:\Users\Stenly\AppData\Roaming\LavasoftStatistics

======List of files/folders modified in the last 1 month======

2014-11-06 16:51:57 ----D---- C:\Windows\Temp
2014-11-06 15:03:16 ----D---- C:\Windows\system32\config
2014-11-05 19:10:25 ----RD---- C:\Program Files
2014-11-05 19:10:24 ----D---- C:\Windows\system32\drivers
2014-11-05 18:59:54 ----D---- C:\Windows\System32
2014-11-05 18:59:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-05 18:46:52 ----D---- C:\Windows\Prefetch
2014-11-04 19:05:00 ----D---- C:\Windows\Minidump
2014-11-04 19:05:00 ----D---- C:\Windows
2014-11-03 20:14:56 ----SHD---- C:\System Volume Information
2014-11-03 19:24:00 ----D---- C:\Windows\en-US
2014-11-03 19:22:10 ----D---- C:\Program Files\Common Files
2014-11-03 19:04:09 ----HD---- C:\ProgramData
2014-11-03 18:46:22 ----D---- C:\Windows\Tasks
2014-11-03 18:46:21 ----D---- C:\Windows\system32\Tasks
2014-11-03 18:22:16 ----SHD---- C:\Windows\Installer
2014-10-31 23:04:47 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-10-30 12:24:45 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-27 09:52:20 ----D---- C:\Windows\system32\wfp
2014-10-27 09:52:20 ----D---- C:\Windows\system32\DriverStore
2014-10-27 09:52:20 ----D---- C:\Windows\system32\catroot2
2014-10-27 09:52:19 ----D---- C:\Windows\system32\wbem
2014-10-27 09:52:18 ----D---- C:\Windows\inf
2014-10-27 09:52:18 ----D---- C:\Users\Stenly\AppData\Roaming\vlc
2014-10-27 09:52:16 ----D---- C:\Windows\registration
2014-10-27 09:52:16 ----D---- C:\Users\Stenly\AppData\Roaming\dvdcss
2014-10-27 09:52:10 ----D---- C:\Windows\ehome
2014-10-18 11:58:15 ----D---- C:\Windows\rescache
2014-10-17 12:36:41 ----D---- C:\Windows\Microsoft.NET
2014-10-17 12:34:11 ----RSD---- C:\Windows\assembly
2014-10-16 11:32:13 ----D---- C:\Windows\winsxs
2014-10-16 11:26:35 ----SD---- C:\Windows\system32\CompatTel
2014-10-16 11:26:28 ----D---- C:\Windows\system32\en-US
2014-10-16 11:26:23 ----D---- C:\Program Files\Internet Explorer
2014-10-16 11:26:18 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 11:26:03 ----D---- C:\Windows\system32\Dism
2014-10-16 11:26:03 ----D---- C:\Program Files\Windows Media Player
2014-10-16 11:25:48 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 11:25:48 ----D---- C:\Windows\system32\Boot
2014-10-16 10:58:41 ----D---- C:\Windows\system32\MRT
2014-10-16 10:46:47 ----D---- C:\Windows\debug
2014-10-16 10:46:35 ----A---- C:\Windows\system32\MRT.exe
2014-10-15 10:19:30 ----D---- C:\Windows\system32\catroot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-07-17 231800]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-07 242240]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-17 12672]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\XAudio32.sys [2009-04-29 8704]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-10-09 1096704]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-03-04 188416]
R3 HpqRemHid;HP Remote Control HID Device; C:\Windows\system32\DRIVERS\HpqRemHid.sys [2007-07-11 7168]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2009-02-12 980992]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2009-02-12 207360]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-10-14 299312]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2009-02-12 661504]
S1 MpKsl4b90d7ad;MpKsl4b90d7ad; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D109E106-3D54-4E97-B34B-105937C4832D}\MpKsl4b90d7ad.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MSICDSetup;MSICDSetup; \??\\\JANULKA-PC\D\CDriver.sys []
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-07-17 95920]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 HsfXAudioService;HsfXAudioService; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-08-22 22192]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-03-06 203296]
R2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-30 114288]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-08-22 288120]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-13 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

Dobry den, mam asi stejny problem - s vyskakovanim reklam v Mozille a zvyraznovanim textu na webovych strankach.

Prikladam log z RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2014-11-06 18:23:59
Microsoft Windows 8.1
System drive C: has 55 GB (12%) free of 454 GB
Total RAM: 3911 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:24:20, on 6. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files (x86)\Atlassian\SourceTree\tools\putty\pageant.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
C:\Program Files\trend micro\Michal.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
R3 - URLSearchHook: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Michal\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: BS Player ControlBar B - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Michal\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll
O3 - Toolbar: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Michal\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Michal\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O4 - Startup: Dropbox.lnk = Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe
O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Sleep memory optimizer (FFSOpzSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: McAfee Application Statistics Service (MfeASUM) - McAfee, Inc. - C:\Program Files\McAfee\AppStats\MfeASUM.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: Corel License Validation Service V2, Powered by arvato (PSI_SVC_2) - arvato digital services llc - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Toolbar Service (TBSrv) - ClientConnect Ltd. - C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Acer Theft Shield Service (USecuAppSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16858 bytes

======Listing Processes======





wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Classic Shell\ClassicShellService.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
dashost.exe {4eb35a48-6d82-4980-a38deaed26f72dcd}
"C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe"
"C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe"
"C:\Program Files\McAfee\AppStats\MfeASUM.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe"
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"

"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\WINDOWS\SysWOW64\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\WINDOWS\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
"C:\Program Files\Classic Shell\ClassicStartMenu.exe" -startup
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
taskhostex.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\TortoiseSVN\bin\TSVNCache.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe"
"C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe"
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files (x86)\Atlassian\SourceTree\tools\putty\pageant.exe"
"C:\Program Files\Java\jdk1.7.0_21\jre\bin\java.exe" -Dderby.system.home=C:\Users\Michal\.netbeans-derby -classpath "C:\Program Files\Java\jdk1.7.0_21\db\lib\derby.jar;C:\Program Files\Java\jdk1.7.0_21\db\lib\derbytools.jar;C:\Program Files\Java\jdk1.7.0_21\db\lib\derbynet.jar" org.apache.derby.drda.NetworkServerControl start
\??\C:\WINDOWS\system32\conhost.exe 0x4

"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5856.19994820.310886935 "C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 5856 "\\.\pipe\gecko-crash-server-pipe.5856" plugin
"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe" --proxy-stub-channel=Flash7580.6742AAA0.8453 --host-broker-channel=Flash7580.6742AAA0.3724 --host-pid=7580 --host-npapi-version=27 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_15_0_0_189.dll"
"C:\WINDOWS\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe" --channel=3996.0079F2C0.1515887861 --proxy-stub-channel=Flash7580.6742AAA0.8453 --plugin-path="C:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_15_0_0_189.dll" --host-npapi-version=27 --type=renderer
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe149_ Global\UsGthrCtrlFltPipeMssGthrPipe149 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Users\Michal\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey EE10B66E-DE90-FCB5-3F62-34CF49777C03 -Reinvoke
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default

prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... 60&UM=1&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
NPOFF12.DLL
nppdf32.dll
npPDFXCviewNPPlugin.dll

C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\fene08pi.default\extensions\
{31264a33-a653-46c4-af49-1232c59a7da5}
{58e3c1c9-2dc1-4762-bd45-1df9da9d0820}
{ea614400-e918-4741-9a97-7a972ff7c30b}
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12 742400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-07 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28 66688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-09-17 294400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2014-09-16 2334416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-07 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll [2013-04-12 454656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}]
BS Player ControlBar B Toolbar - C:\Users\Michal\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll [2014-04-10 423744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12 611840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-09-17 241352]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIE9BHO Class - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll [2013-04-12 385024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-09-17 294400]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-04-12 742400]
{31264A33-A653-46C4-AF49-1232C59A7DA5} - BS Player ControlBar B Toolbar - C:\Users\Michal\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll [2014-04-10 423744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-09-17 241352]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-04-12 611840]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-04-08 654384]
{31264a33-a653-46c4-af49-1232c59a7da5} - BS Player ControlBar B Toolbar - C:\Users\Michal\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll [2014-04-10 423744]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-10-03 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-10-03 771032]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-10-03 769496]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-07-27 12937872]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-07-10 1214608]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2014-05-28 1563440]
"KiesPDLR"=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2014-05-28 843568]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"cz.seznam.software.autoupdate"=C:\Users\Michal\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Michal\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"BitTorrent"=C:\Users\Michal\AppData\Roaming\BitTorrent\BitTorrent.exe [2014-10-26 1388376]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-29 6501656]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Home Theater v4"=C:\Dolby PCEE4\pcee4.exe [2012-07-26 508656]
"LManager"= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-05-28 310064]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2013-01-28 132736]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe

C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-10-03 623616]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-06 18:24:00 ----D---- C:\Program Files\trend micro
2014-11-06 18:23:59 ----D---- C:\rsit
2014-11-02 17:19:14 ----D---- C:\Users\Michal\AppData\Roaming\WebExtend
2014-10-31 08:36:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-28 14:04:30 ----D---- C:\Program Files (x86)\Atlassian
2014-10-17 19:19:21 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-17 14:54:35 ----SHD---- C:\Config.Msi
2014-10-17 09:18:27 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-10-17 09:18:26 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-10-17 09:18:25 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-10-17 09:18:24 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-10-17 09:18:24 ----A---- C:\WINDOWS\system32\msi.dll
2014-10-17 09:18:23 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-10-17 09:18:23 ----A---- C:\WINDOWS\system32\authui.dll
2014-10-17 09:18:23 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-10-17 09:18:19 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-10-17 09:18:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-10-17 09:18:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-10-17 09:18:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-10-17 09:18:10 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-10-17 09:18:09 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-10-17 09:18:07 ----A---- C:\WINDOWS\system32\wininet.dll
2014-10-17 09:18:07 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-10-17 09:18:06 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-10-17 09:18:06 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-10-17 09:18:06 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-10-17 09:18:06 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-10-17 09:18:06 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-10-17 09:18:05 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-10-17 09:18:05 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-10-17 09:18:05 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-10-17 09:18:05 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-10-17 09:18:04 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-10-17 09:18:04 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-10-17 09:18:04 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-10-17 09:18:04 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-10-17 09:18:04 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-10-17 09:18:04 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-10-17 09:18:04 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-10-17 09:18:04 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-10-17 09:18:03 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-10-17 09:18:03 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-10-17 09:18:03 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-10-17 09:17:36 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2014-10-17 09:17:36 ----A---- C:\WINDOWS\system32\rastls.dll
2014-10-17 09:17:32 ----A---- C:\WINDOWS\system32\shell32.dll
2014-10-17 09:17:31 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-10-17 09:17:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-10-17 09:17:30 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-10-17 09:17:29 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-10-17 09:17:29 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-10-17 09:17:29 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-10-17 09:17:28 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-10-17 09:17:27 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-10-17 09:17:26 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-10-17 09:17:26 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-10-17 09:17:26 ----A---- C:\WINDOWS\system32\propsys.dll
2014-10-17 09:17:26 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-10-17 09:17:26 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-10-17 09:17:25 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-10-17 09:17:25 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2014-10-17 09:17:25 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-10-17 09:17:25 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-10-17 09:17:25 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-10-17 09:17:25 ----A---- C:\WINDOWS\system32\Wldap32.dll
2014-10-17 09:17:25 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-10-17 09:17:25 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-10-17 09:17:24 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-10-17 09:17:24 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-10-17 09:17:24 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-10-17 09:17:24 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-10-17 09:17:24 ----A---- C:\WINDOWS\system32\pcsvDevice.dll
2014-10-17 09:17:24 ----A---- C:\WINDOWS\system32\httpprxm.dll
2014-10-17 09:17:24 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-10-17 09:17:24 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-10-17 09:17:24 ----A---- C:\WINDOWS\system32\adhsvc.dll
2014-10-17 09:17:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-17 09:17:23 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-17 09:17:23 ----A---- C:\WINDOWS\system32\ProximityService.dll
2014-10-17 09:17:23 ----A---- C:\WINDOWS\system32\PJLMON.DLL
2014-10-17 09:16:31 ----A---- C:\WINDOWS\system32\win32k.sys
2014-10-17 09:16:26 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-10-17 09:16:26 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-10-17 09:16:25 ----A---- C:\WINDOWS\system32\winbici.dll
2014-10-17 09:16:20 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-10-17 09:16:20 ----A---- C:\WINDOWS\system32\packager.dll
2014-10-17 09:16:16 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-10-17 09:16:15 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-10-17 09:16:15 ----A---- C:\WINDOWS\system32\wups.dll
2014-10-17 09:16:15 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-10-17 09:16:15 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-10-17 09:16:14 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-10-17 09:16:14 ----A---- C:\WINDOWS\system32\wups2.dll
2014-10-17 09:16:14 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-10-17 09:16:13 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-10-17 09:16:13 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-10-17 09:16:12 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-10-17 09:16:12 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-10-17 09:16:12 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-10-17 09:16:06 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-10-09 18:34:33 ----RD---- C:\Program Files (x86)\Skype

======List of files/folders modified in the last 1 month======

2014-11-06 18:24:08 ----D---- C:\WINDOWS\Temp
2014-11-06 18:24:07 ----D---- C:\Windows
2014-11-06 18:24:00 ----RD---- C:\Program Files
2014-11-06 18:23:58 ----D---- C:\WINDOWS\Prefetch
2014-11-06 18:21:26 ----D---- C:\Users\Michal\AppData\Roaming\BitTorrent
2014-11-06 18:04:29 ----D---- C:\Users\Michal\AppData\Roaming\TeamViewer
2014-11-06 18:04:22 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-06 18:04:22 ----D---- C:\WINDOWS\Logs
2014-11-06 18:04:22 ----D---- C:\WINDOWS\Inf
2014-11-06 18:04:22 ----D---- C:\WINDOWS\debug
2014-11-06 18:03:29 ----D---- C:\Program Files\CCleaner
2014-11-06 18:00:00 ----D---- C:\WINDOWS\system32\sru
2014-11-06 11:03:15 ----HD---- C:\Program Files\WindowsApps
2014-11-06 11:03:14 ----D---- C:\WINDOWS\AppReadiness
2014-11-04 17:37:06 ----SHD---- C:\System Volume Information
2014-11-04 13:01:36 ----D---- C:\Michal
2014-11-04 09:30:20 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-03 18:27:41 ----D---- C:\WINDOWS\system32\NDF
2014-11-03 10:45:33 ----RD---- C:\WINDOWS\System32
2014-11-03 10:45:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-03 10:41:20 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-02 12:04:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-31 08:58:43 ----RD---- C:\Program Files (x86)
2014-10-30 12:25:26 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 11:30:50 ----SD---- C:\Users\Michal\AppData\Roaming\Microsoft
2014-10-28 14:04:33 ----SHD---- C:\WINDOWS\Installer
2014-10-28 14:01:45 ----D---- C:\ProgramData\Atlassian
2014-10-28 00:48:16 ----D---- C:\WINDOWS\Tasks
2014-10-26 16:52:23 ----D---- C:\Users\Michal\AppData\Roaming\vlc
2014-10-20 11:44:38 ----RSD---- C:\WINDOWS\assembly
2014-10-20 11:44:06 ----D---- C:\ProgramData\Microsoft Help
2014-10-19 10:18:37 ----D---- C:\Users\Michal\AppData\Roaming\Audacity
2014-10-19 09:54:24 ----D---- C:\WINDOWS\rescache
2014-10-18 00:51:12 ----D---- C:\WINDOWS\system32\config
2014-10-18 00:17:50 ----D---- C:\WINDOWS\system32\DriverStore
2014-10-17 23:08:05 ----D---- C:\WINDOWS\system32\catroot
2014-10-17 19:19:34 ----D---- C:\WINDOWS\WinSxS
2014-10-17 19:19:21 ----D---- C:\WINDOWS\SysWOW64
2014-10-17 19:18:20 ----D---- C:\Program Files (x86)\McAfee
2014-10-17 18:09:48 ----D---- C:\WINDOWS\MediaViewer
2014-10-17 18:09:48 ----D---- C:\WINDOWS\FileManager
2014-10-17 18:09:48 ----D---- C:\WINDOWS\Camera
2014-10-17 18:09:47 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2014-10-17 18:09:47 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-10-17 18:09:47 ----D---- C:\WINDOWS\system32\en-GB
2014-10-17 18:09:47 ----D---- C:\WINDOWS\system32\cs-CZ
2014-10-17 18:09:47 ----D---- C:\Program Files\Internet Explorer
2014-10-17 18:09:47 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-17 18:09:46 ----RD---- C:\WINDOWS\ToastData
2014-10-17 18:09:43 ----D---- C:\WINDOWS\WinStore
2014-10-17 18:09:42 ----SD---- C:\WINDOWS\system32\CompatTel
2014-10-17 18:09:42 ----D---- C:\WINDOWS\system32\drivers
2014-10-17 16:02:51 ----D---- C:\WINDOWS\CbsTemp
2014-10-17 15:54:53 ----D---- C:\WINDOWS\system32\MRT
2014-10-17 14:57:21 ----A---- C:\WINDOWS\system32\MRT.exe
2014-10-17 09:10:53 ----D---- C:\WINDOWS\system32\catroot2
2014-10-15 14:03:23 ----D---- C:\Skola
2014-10-09 20:10:37 ----D---- C:\Users\Michal\AppData\Roaming\Skype
2014-10-09 18:34:39 ----D---- C:\ProgramData\Skype
2014-10-09 18:34:35 ----D---- C:\Program Files (x86)\Common Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 excsd;ExpressCache Storage Filter Driver; C:\WINDOWS\system32\DRIVERS\excsd.sys [2012-03-30 95024]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 dtsoftbus01;@oem36.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-03-05 283064]
R1 excfs;ExpressCache File System Filter Driver; C:\WINDOWS\system32\DRIVERS\excfs.sys [2012-03-30 23344]
R1 MfeASKM;McAfee Application Statistics Device Driver; \??\C:\Program Files\McAfee\AppStats\MfeASKM.sys [2013-08-22 31408]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2012-09-01 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2012-09-01 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2012-09-01 62776]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2013-04-12 237840]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2013-04-12 120080]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2013-03-01 36600]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-28 179432]
R3 BTATH_RCP;@oem33.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-28 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 ETD;@oem40.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-08-30 318864]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-10-03 4185600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-07-31 4102928]
R3 IntcDAud;@oem32.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 irstrtdv;@oem4.inf,%Irstrt.DispName%;Intel(R) Rapid Start Technology Driver; C:\WINDOWS\System32\drivers\irstrtdv.sys [2012-07-20 43800]
R3 iwdbus;@oem46.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-09-26 27032]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MarvinBus;@oem18.inf,%MarvinBus.SVCDESC%;Pinnacle Marvin Bus 64; C:\WINDOWS\System32\drivers\MarvinBus64.sys [2005-09-23 261120]
R3 MEIx64;@oem16.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-01-11 64624]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-20 18432]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2012-09-20 26736]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2010-07-09 17408]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 AthBTPort;@oem9.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-28 89168]
S3 BTATH_A2DP;@oem8.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-28 346192]
S3 btath_avdt;@oem8.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-28 115280]
S3 BTATH_LWFLT;@oem31.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-28 77464]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem22.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\SysWOW64\FsUsbExDisk.SYS [2014-01-23 37344]
S3 intaud_WaveExtensible;@oem45.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-09-26 39320]
S3 RSPCIESTOR;@oem38.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPStor.sys [2012-07-04 339600]
S3 ssudmdm;@oem1.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2013-04-12 131856]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2013-01-28 227456]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-08-24 2435728]
R2 ClassicShellService;Classic Shell Service; C:\Program Files\Classic Shell\ClassicShellService.exe [2013-04-12 68608]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-08-21 348784]
R2 ExpressCache;ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [2012-03-30 79664]
R2 FFSOpzSvc;Sleep memory optimizer; C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe [2012-03-12 161384]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-13 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-17 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 276864]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [2014-09-23 156904]
R2 MfeASUM;McAfee Application Statistics Service; C:\Program Files\McAfee\AppStats\MfeASUM.exe [2013-08-22 335216]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-08-23 259136]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-29 920864]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 PSI_SVC_2;Corel License Validation Service V2, Powered by arvato; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2013-09-13 277360]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2012-09-20 93296]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 TBSrv;Toolbar Service; C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe [2014-04-10 350528]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-25 5024576]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 364416]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-08-23 658576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-28 107912]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-23 267440]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-10-03 279000]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-08-23 468624]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-07-12 174160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-09-20 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-28 107912]
S3 irstrtsv;Intel(R) Rapid Start Technology Service; C:\Windows\SysWOW64\irstrtsv.exe [2012-07-19 193576]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-31 114288]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 150600]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 USecuAppSvc;Acer Theft Shield Service; C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [2012-11-12 345744]

-----------------EOF-----------------

Bohužel žádná změna.. Mozilla byla cca 1 minutu naprosto bez reklam, ale pak se opět začaly objevovat. Ale řekl by jsem, že je těch reklam míň..

Ještě spusťte toto:

Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe

Ulozte nejlepe na plochu
Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
Probehne vytvoreni zalohy a nasledne prohledavani
Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

Bohužel nic
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.6 (11.05.2014:1)
OS: Windows 7 Professional x86
Ran by Stenly on so 08.11.2014 at 9:18:12,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on so 08.11.2014 at 9:20:11,29
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Takže nic nenašel. Zkusíme ještě MBAM: http://www.malwarebytes.org/mbam.php . Dejte log, předem nic nemažte.

bohužel opět nic

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 9.11.2014
Scan Time: 9:07:39
Logfile:
Administrator: Yes

Version: 2.00.3.1025
Malware Database: v2014.11.09.02
Rootkit Database: v2014.11.08.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Stenly

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 301654
Time Elapsed: 14 min, 21 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)