VIRY.CZ

Dobrý den.
asi týden mi Avast chvilku po startu hlásí:
URL: hxxp://alwaysisobar.com/3333/TrimEdit_142268494703871.dll
Infekce: URL:Mal
Proces: C:\Windows\System32\svchost.exe

jen se mění různé stránky v (někdy 3 někdy 4, je to různé)URL:

Při skenování po startu avast nic nenajde, Adwarcleaner také čisté.
Nevíte co s tím?
Díky.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Marek Mysliveček at 2015-06-05 11:02:01
Microsoft Windows 8.1
System drive C: has 161 GB (73%) free of 219 GB
Total RAM: 8137 MB (75% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:02:10, on 5. 6. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Users\MAREKM~1\AppData\Local\Temp\RarSFX0\SpyHunter4.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\MSI\Live Update\Live Update.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
D:\Users\Marek Mysliveček\Downloads\adwcleaner_4.206.exe
C:\Program Files\trend micro\Marek Mysliveček.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKLM\..\Run: [Command Center] C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Global Startup: Killer Network Manager.lnk = C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Killer Service V2 - Rivet Networks - C:\Program Files\Killer Networking\Network Manager\KillerService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSIClock_CC - MSI - C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe
O23 - Service: MSICTL_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
O23 - Service: MSIDDR_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
O23 - Service: MSI_LiveUpdate_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SuperRAIDSvc - Micro-Star International - C:\MSI\Smart Utilities\SuperRAIDSvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) - Intel(R) Corporation - C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe

--
End of file - 11171 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe"
dashost.exe {75fc88c9-40ff-4603-921637e66296b72f}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe"
C:\Windows\SysWOW64\irstrtsv.exe
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files\Killer Networking\Network Manager\KillerService.exe"
"C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe"
"C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe"
"C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\MSI\Smart Utilities\SuperRAIDSvc.exe"
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
ngservice.exe pipeserver
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" b3f83e9e-e9e4-4b8a-a209-e2292cc63bee 1
"C:\Windows\TEMP\irstrtsv\scrncap.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
C:\Users\MAREKM~1\AppData\Local\Temp\RarSFX0\SpyHunter4.exe
taskhostex.exe
\??\C:\Windows\system32\conhost.exe 0x4
ClassicStartMenu.exe -startup
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe" -minimize
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\MSI\Live Update\Live Update.exe" /REMINDER
"C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\Killer Networking\Network Manager\KillerService.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5864.0.1259723865\1675178559" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,43,52 --gpu-vendor-id=0x10de --gpu-device-id=0x1401 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.5306 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A6_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_89/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5864 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5864.2.544015699\2130049555" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/PP_Ethersuggest_A6_Stable_R8/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_89/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5864 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5864.4.21662573\1013672815" /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe"

C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --log-file="C:\Users\Marek Mysliveček\AppData\Roaming\AVAST Software\Avast\log\avastium.log" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 Avastium (10.2.2218)" --proxy-auto-detect --disable-gpu --disable-software-rasterizer --no-sandbox --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="5396.2.675479710\377775246" /prefetch:673131151
"D:\Users\Marek Mysliveček\Downloads\adwcleaner_4.206.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 560 564 572 65536 568
"D:\Users\Marek Mysliveček\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09 810176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-03 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-04-09 487616]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09 688320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-03 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-04-09 444096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09 810176]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09 688320]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-26 5583120]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-05-08 8322328]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-11 5515496]
"Live Update"=C:\Program Files (x86)\MSI\Live Update\Live Update.exe [2015-05-04 3450536]
"Command Center"=C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [2015-03-27 797648]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Killer Network Manager.lnk - C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-06-05 11:02:01 ----D---- C:\rsit
2015-06-05 11:02:01 ----D---- C:\Program Files\trend micro
2015-06-05 10:33:00 ----D---- C:\FRST
2015-06-05 10:22:18 ----ASH---- C:\hiberfil.sys
2015-06-05 10:20:46 ----A---- C:\Windows\SYSWOW64\sh4native.exe
2015-06-05 08:18:44 ----A---- C:\autoexec.bat
2015-06-05 08:18:32 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\Enigma Software Group
2015-06-05 08:17:50 ----D---- C:\Program Files\Enigma Software Group
2015-06-05 06:45:04 ----A---- C:\adwcleaner_4.206.exe
2015-06-05 06:34:18 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-06-05 06:34:12 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-05 06:34:12 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-06-05 06:34:12 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-06-05 06:34:12 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-06-05 06:29:58 ----D---- C:\AdwCleaner
2015-06-04 22:13:05 ----D---- C:\Windows\Minidump
2015-06-04 17:26:09 ----D---- C:\Windows\ERUNT
2015-06-04 17:26:09 ----A---- C:\DelFix.txt
2015-06-04 17:23:13 ----SHD---- C:\$RECYCLE.BIN
2015-06-04 17:22:34 ----D---- C:\Windows\Temp
2015-06-04 17:22:34 ----A---- C:\Windows\zoek-delete.exe
2015-06-04 16:15:13 ----D---- C:\Windows\system32\log
2015-06-04 12:30:04 ----D---- C:\ProgramData\Malwarebytes
2015-06-03 20:45:50 ----D---- C:\ProgramData\Freemake
2015-06-03 20:45:42 ----D---- C:\Program Files (x86)\Freemake
2015-06-02 15:33:43 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-06-02 15:33:32 ----D---- C:\temp
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-06-02 15:32:40 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvopencl.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvoglv64.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvmcumd.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvinitx.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\NvIFR64.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\NvFBC64.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvdispgenco6435306.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvdispco6435306.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvcuvid.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvcuda.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvcompiler.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\nvaudcaparm.dll
2015-06-02 15:32:40 ----A---- C:\Windows\system32\drivers\nvvadarm.sys
2015-06-02 15:32:40 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-06-02 06:56:37 ----N---- C:\Windows\system32\HPDiscoPMa111.dll
2015-06-02 06:56:37 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\HpUpdate
2015-06-02 06:55:34 ----D---- C:\Program Files\HP
2015-06-02 06:55:32 ----A---- C:\ProgramData\Ament.ini
2015-06-02 06:49:26 ----D---- C:\Program Files (x86)\Hp
2015-06-02 06:49:26 ----D---- C:\Program Files (x86)\Hewlett-Packard
2015-05-27 15:28:51 ----D---- C:\ProgramData\boost_interprocess
2015-05-27 15:28:50 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-05-27 15:28:49 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-05-20 19:21:45 ----D---- C:\Windows\Migration
2015-05-18 18:39:36 ----A---- C:\Windows\system32\nvhdap64.dll
2015-05-18 18:39:36 ----A---- C:\Windows\system32\nvdispgenco6435286.dll
2015-05-18 18:39:36 ----A---- C:\Windows\system32\nvdispco6435286.dll
2015-05-18 18:39:36 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2015-05-16 15:35:05 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\A
2015-05-13 16:32:54 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 16:32:54 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 16:18:32 ----AC---- C:\Windows\system32\drivers\USBHUB3.SYS
2015-05-13 16:18:31 ----AC---- C:\Windows\system32\drivers\bthhfenum.sys
2015-05-13 16:18:28 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-05-13 16:18:28 ----A---- C:\Windows\system32\dwmcore.dll
2015-05-13 16:18:06 ----A---- C:\Windows\SYSWOW64\Windows.UI.Input.Inking.dll
2015-05-13 16:18:06 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-05-13 16:18:06 ----A---- C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-13 16:18:06 ----A---- C:\Windows\system32\SystemSettingsDatabase.dll
2015-05-13 16:18:06 ----A---- C:\Windows\system32\schannel.dll
2015-05-13 16:18:06 ----A---- C:\Windows\system32\SettingsHandlers.dll
2015-05-13 16:18:06 ----A---- C:\Windows\system32\drivers\ahcache.sys
2015-05-13 16:18:01 ----A---- C:\Windows\system32\dbgeng.dll
2015-05-13 16:18:00 ----A---- C:\Windows\SYSWOW64\SRH.dll
2015-05-13 16:18:00 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-05-13 16:18:00 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2015-05-13 16:18:00 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2015-05-13 16:18:00 ----A---- C:\Windows\system32\win32k.sys
2015-05-13 16:18:00 ----A---- C:\Windows\system32\SRH.dll
2015-05-13 16:18:00 ----A---- C:\Windows\system32\FntCache.dll
2015-05-13 16:18:00 ----A---- C:\Windows\system32\DWrite.dll
2015-05-13 16:18:00 ----A---- C:\Windows\system32\dbghelp.dll
2015-05-13 16:17:59 ----A---- C:\Windows\SYSWOW64\PhotoMetadataHandler.dll
2015-05-13 16:17:59 ----A---- C:\Windows\system32\wevtsvc.dll
2015-05-13 16:17:59 ----A---- C:\Windows\system32\UtcResources.dll
2015-05-13 16:17:59 ----A---- C:\Windows\system32\services.exe
2015-05-13 16:17:59 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-13 16:17:59 ----A---- C:\Windows\system32\drivers\udfs.sys
2015-05-13 16:17:59 ----A---- C:\Windows\system32\dpapisrv.dll
2015-05-13 16:17:59 ----A---- C:\Windows\system32\diagtrack.dll
2015-05-13 16:17:58 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-05-13 16:17:58 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-05-13 16:17:58 ----A---- C:\Windows\system32\sdbinst.exe
2015-05-13 16:17:58 ----A---- C:\Windows\system32\lsasrv.dll
2015-05-13 16:17:58 ----A---- C:\Windows\system32\drivers\cng.sys
2015-05-13 16:17:58 ----A---- C:\Windows\system32\certcli.dll
2015-05-13 16:17:57 ----AC---- C:\Windows\system32\drivers\sdbus.sys
2015-05-13 16:17:57 ----AC---- C:\Windows\system32\drivers\dumpsd.sys
2015-05-13 16:17:57 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-05-13 16:17:57 ----A---- C:\Windows\system32\wpdshext.dll
2015-05-13 16:17:57 ----A---- C:\Windows\system32\mshtml.dll
2015-05-13 16:17:56 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-13 16:17:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-13 16:17:56 ----A---- C:\Windows\system32\jscript9.dll
2015-05-13 16:17:56 ----A---- C:\Windows\system32\ieframe.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-13 16:17:55 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\wininet.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\webcheck.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\vbscript.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\urlmon.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\jscript.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\inseng.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\inetcomm.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\ieui.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\iertutil.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\iepeers.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-13 16:17:55 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-13 16:17:55 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-13 04:04:59 ----D---- C:\Program Files (x86)\Rockstar Games
2015-05-13 04:04:54 ----D---- C:\Program Files\Rockstar Games
2015-05-11 18:01:38 ----D---- C:\Program Files (x86)\Adobe
2015-05-11 18:01:32 ----D---- C:\ProgramData\Adobe
2015-05-09 14:52:06 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\BitTorrent
2015-05-09 13:39:24 ----D---- C:\ProgramData\FLEXnet
2015-05-09 13:24:40 ----A---- C:\Windows\system32\tmffbdrv.dll
2015-05-09 13:24:40 ----A---- C:\Windows\system32\tmffbcpl.dll
2015-05-09 13:24:40 ----A---- C:\Windows\system32\isrt.dll
2015-05-09 13:24:40 ----A---- C:\Windows\system32\_IsRes.dll
2015-05-09 13:24:34 ----D---- C:\Program Files (x86)\Thrustmaster
2015-05-09 13:24:34 ----A---- C:\Windows\SYSWOW64\tmffbdrv.dll
2015-05-09 13:24:34 ----A---- C:\Windows\SYSWOW64\tmffbcpl.dll
2015-05-09 13:24:24 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\InstallShield
2015-05-09 13:01:44 ----D---- C:\Windows\PCHEALTH
2015-05-09 12:56:00 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\DAEMON Tools Lite
2015-05-09 12:56:00 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2015-05-09 12:55:58 ----D---- C:\Program Files\DAEMON Tools Lite
2015-05-09 12:55:27 ----D---- C:\ProgramData\DAEMON Tools Lite

======List of files/folders modified in the last 1 month======

2015-06-05 11:02:01 ----RD---- C:\Program Files
2015-06-05 10:57:18 ----RD---- C:\Windows\System32
2015-06-05 10:57:18 ----D---- C:\Windows\Inf
2015-06-05 10:57:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-06-05 10:51:29 ----D---- C:\Windows\system32\Tasks
2015-06-05 10:41:33 ----D---- C:\Windows\Prefetch
2015-06-05 10:41:22 ----D---- C:\Windows
2015-06-05 10:20:46 ----D---- C:\Windows\SysWOW64
2015-06-05 10:06:39 ----D---- C:\Windows\Microsoft.NET
2015-06-05 08:38:28 ----D---- C:\Program Files\Bandizip
2015-06-05 08:17:54 ----D---- C:\Windows\system32\drivers
2015-06-05 08:15:00 ----SHD---- C:\Windows\Installer
2015-06-05 08:10:07 ----RD---- C:\Program Files (x86)
2015-06-05 08:10:06 ----D---- C:\Windows\Tasks
2015-06-05 08:05:43 ----D---- C:\Program Files (x86)\Google
2015-06-05 06:58:47 ----D---- C:\Program Files\CCleaner
2015-06-04 22:46:39 ----D---- C:\Windows\debug
2015-06-04 22:09:43 ----D---- C:\Windows\system32\sru
2015-06-04 21:58:22 ----SHD---- C:\System Volume Information
2015-06-04 21:58:22 ----D---- C:\Windows\Logs
2015-06-04 18:15:11 ----D---- C:\MSI
2015-06-04 16:58:27 ----HD---- C:\ProgramData
2015-06-04 16:48:17 ----D---- C:\Windows\system32\drivers\etc
2015-06-04 16:29:01 ----D---- C:\Windows\SoftwareDistribution
2015-06-04 16:20:28 ----D---- C:\Program Files (x86)\Steam
2015-06-04 16:10:16 ----D---- C:\ProgramData\NVIDIA
2015-06-04 12:13:51 ----D---- C:\Program Files (x86)\Setup Files
2015-06-04 12:12:55 ----HD---- C:\Program Files\WindowsApps
2015-06-04 12:12:55 ----D---- C:\Windows\AppReadiness
2015-06-04 11:59:10 ----D---- C:\Windows\LiveKernelReports
2015-06-03 20:58:20 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\vlc
2015-06-03 06:21:13 ----D---- C:\Windows\system32\config
2015-06-03 06:20:11 ----SD---- C:\Users\Marek Mysliveček\AppData\Roaming\Microsoft
2015-06-03 06:20:11 ----SD---- C:\ProgramData\Microsoft
2015-06-02 15:34:15 ----D---- C:\ProgramData\NVIDIA Corporation
2015-06-02 15:33:42 ----D---- C:\Windows\system32\DriverStore
2015-06-02 06:56:36 ----D---- C:\Windows\system32\catroot
2015-06-02 06:55:34 ----D---- C:\Windows\twain_32
2015-06-02 06:55:34 ----D---- C:\ProgramData\HP
2015-06-02 06:49:29 ----RSD---- C:\Windows\assembly
2015-06-02 06:49:26 ----RSD---- C:\Windows\Fonts
2015-05-28 09:04:11 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-05-28 09:04:11 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-05-28 09:04:11 ----A---- C:\Windows\system32\OpenCL.dll
2015-05-28 09:04:11 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-05-28 09:04:11 ----A---- C:\Windows\system32\nvmcvadgenco64.dll
2015-05-28 09:04:11 ----A---- C:\Windows\system32\nvapi64.dll
2015-05-28 06:15:30 ----A---- C:\Windows\system32\nvvsvc.exe
2015-05-28 06:15:29 ----A---- C:\Windows\system32\nvsvcr.dll
2015-05-28 06:15:29 ----A---- C:\Windows\system32\nvsvc64.dll
2015-05-28 06:15:29 ----A---- C:\Windows\system32\nvshext.dll
2015-05-28 06:15:29 ----A---- C:\Windows\system32\nvmctray.dll
2015-05-28 06:15:28 ----A---- C:\Windows\system32\nvcpl.dll
2015-05-26 08:09:51 ----D---- C:\Windows\system32\NDF
2015-05-25 11:19:59 ----D---- C:\Windows\WinSxS
2015-05-20 19:21:52 ----D---- C:\Windows\CbsTemp
2015-05-20 19:21:45 ----SD---- C:\Windows\SYSWOW64\GWX
2015-05-20 19:21:45 ----SD---- C:\Windows\system32\GWX
2015-05-17 08:35:12 ----D---- C:\Windows\rescache
2015-05-17 07:10:22 ----RD---- C:\Windows\ImmersiveControlPanel
2015-05-17 07:10:22 ----D---- C:\Windows\system32\AdvancedInstallers
2015-05-17 07:10:22 ----D---- C:\Program Files\Internet Explorer
2015-05-17 07:10:22 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-13 16:32:51 ----D---- C:\Windows\system32\MRT
2015-05-13 16:30:53 ----A---- C:\Windows\system32\MRT.exe
2015-05-13 16:30:42 ----D---- C:\Windows\apppatch
2015-05-13 16:30:26 ----D---- C:\Program Files\Windows Journal
2015-05-13 16:17:44 ----D---- C:\Windows\system32\catroot2
2015-05-13 08:52:35 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2015-05-12 19:31:16 ----SD---- C:\Windows\Downloaded Program Files
2015-05-12 17:03:55 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\Adobe
2015-05-11 18:01:38 ----D---- C:\Program Files (x86)\Common Files
2015-05-10 08:17:05 ----D---- C:\Program Files (x86)\MSI
2015-05-09 21:40:37 ----D---- C:\Windows\system32\drivers\UMDF
2015-05-09 15:51:32 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-05-09 15:08:44 ----D---- C:\Users\Marek Mysliveček\AppData\Roaming\NVIDIA
2015-05-09 13:28:38 ----D---- C:\Windows\SYSWOW64\directx

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 asstor64;asstor64; C:\Windows\System32\drivers\asstor64.sys [2014-01-27 84816]
R0 aswNdisFlt;@oem31.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [2015-05-04 449896]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-05-03 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-05-03 272248]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2015-05-04 28144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-05-03 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-05-03 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-05-03 442264]
R1 BfLwf;@oem3.inf,%BfLwf_Desc%;KIller Bandwidth Control; C:\Windows\system32\DRIVERS\bwcW8x64.sys [2015-01-29 100912]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-05-03 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-05-03 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-05-03 137288]
R2 iocbios2;iocbios2; \??\C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [2014-06-17 28912]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-05-03 273824]
R3 AcpiCtlDrv;AcpiCtlDrv; C:\Windows\System32\drivers\AcpiCtlDrv.sys [2012-07-17 25880]
R3 asmthub3;@oem15.inf,%asmthub3_ServiceDescription%;ASMedia USB3 Hub Service; C:\Windows\System32\drivers\asmthub3.sys [2015-01-05 139480]
R3 asmtxhci;@oem14.inf,%asmtxhci_ServiceDescription%;ASMEDIA XHCI Service; C:\Windows\System32\drivers\asmtxhci.sys [2015-01-05 430808]
R3 dtlitescsibus;@oem35.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2015-05-09 30352]
R3 ICCWDT;@oem16.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\System32\drivers\ICCWDT.sys [2013-08-13 27608]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2014-05-27 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2014-05-27 22728]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2014-05-27 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-03-10 4430808]
R3 irstrtdv;@oem33.inf,%Irstrt.DispName%;Intel(R) Rapid Start Technology Driver; C:\Windows\System32\drivers\irstrtdv.sys [2013-11-25 20192]
R3 ISCT;@oem13.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\Windows\System32\drivers\ISCTD.sys [2014-05-27 44744]
R3 Ke2200;@oem2.inf,%BFTN.Service.DispName%;NDIS Miniport Driver for Killer e2201/e2202 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\e22w8x64.sys [2014-03-27 130224]
R3 LVRS64;@oem30.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-04-14 25816]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;@oem6.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-09-30 129312]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [2012-10-25 13368]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [2010-10-22 14136]
R3 NTIOLib_MSI_RAID;NTIOLib_MSI_RAID; \??\C:\MSI\Smart Utilities\NTIOLib_X64.sys [2014-03-17 13808]
R3 NVHDA;@oem9.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-05-13 195912]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-05-28 10995528]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-05-23 19600]
R3 nvvad_WaveExtensible;@oem42.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 NVVADARM;@oem7.inf,%NVVADARM.SvcDesc%;NVIDIA Miracast Audio; C:\Windows\system32\drivers\nvvadarm.sys [2015-05-28 39056]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2014-03-18 121088]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-06-05 136408]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-04-14 64216]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 NTIOLib_ECO;NTIOLib_ECO; \??\C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys []
S3 NTIOLib_MB;NTIOLib_MB; \??\C:\Program Files (x86)\MSI\MSI Gaming APP\Lib\NTIOLib_X64.sys [2014-03-13 13808]
S3 NTIOLib_MSIClock_CC;NTIOLib_MSIClock_CC; \??\C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSICOMM_CC;NTIOLib_MSICOMM_CC; \??\C:\Program Files (x86)\MSI\Command Center\NTIOLib_X64.sys [2012-11-19 13368]
S3 NTIOLib_MSICPU_CC;NTIOLib_MSICPU_CC; \??\C:\Program Files (x86)\MSI\Command Center\CPU\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSIDDR_CC;NTIOLib_MSIDDR_CC; \??\C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [2012-11-26 13368]
S3 NTIOLib_MSIFrequency_CC;NTIOLib_MSIFrequency_CC; \??\C:\Program Files (x86)\MSI\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSIRatio_CC;NTIOLib_MSIRatio_CC; \??\C:\Program Files (x86)\MSI\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC; \??\C:\Program Files (x86)\MSI\Command Center\SMBus\NTIOLib_X64.sys [2012-11-19 13368]
S3 NTIOLib_MSISuperIO_CC;NTIOLib_MSISuperIO_CC; \??\C:\Program Files (x86)\MSI\Command Center\SuperIO\NTIOLib_X64.sys [2012-11-19 13368]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2014-10-29 44544]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-03-07 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-05-03 343336]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2015-05-04 107448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [2014-12-25 23504]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-05-08 1152656]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2015-03-28 89840]
R2 irstrtsv;Intel(R) Rapid Start Technology Service; C:\Windows\SysWOW64\irstrtsv.exe [2013-11-25 784288]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-08-25 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-11-10 158496]
R2 Killer Service V2;Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [2015-02-05 386560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-11-10 409376]
R2 MSI_LiveUpdate_Service;MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2015-04-29 1736872]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [2014-03-17 162800]
R2 MSICTL_CC;MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2015-01-29 1992704]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-05-23 1893008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-05-23 23006864]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-05-28 937288]
R2 SuperRAIDSvc;SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [2014-08-13 29648]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-05-03 4034896]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-26 1272592]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-01-02 171632]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-05 107848]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-04-14 1080120]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2015-05-11 967040]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-05-09 1044816]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-05 107848]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 MSIClock_CC;MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [2015-03-10 4035024]
S3 MSIDDR_CC;MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2015-03-10 2249168]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
S3 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-05-28 410768]
S4 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-04-14 1871160]

Roli píše:Znefunkčněn link

Zdravím, krom AdwCleaneru našel něco Mbam který tam máš ?


Dej mi sem ještě log z FRST který tam také máš.


Spusť skener Cure It podle TOHOTO návodu

po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.

(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)

Mbam nic nenašel

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:03-06-2015
Ran by Marek Mysliveček (administrator) on MAREK on 05-06-2015 10:41:06
Running from D:\Users\Marek Mysliveček\Desktop
Loaded Profiles: Marek Mysliveček (Available Profiles: Marek Mysliveček)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
() C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Micro-Star International) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\Temp\irstrtsv\scrncap.exe
(Enigma Software Group USA, LLC.) C:\Users\Marek Mysliveček\AppData\Local\Temp\RarSFX0\SpyHunter4.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Intel) C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-11] (Avast Software s.r.o.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [3450536 2015-05-04] (Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [797648 2015-03-27] (MSI)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-118584188-3412210371-1390025912-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-26] (Disc Soft Ltd)
HKU\S-1-5-21-118584188-3412210371-1390025912-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8322328 2015-05-08] (Piriform Ltd)
HKU\S-1-5-21-118584188-3412210371-1390025912-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-118584188-3412210371-1390025912-1001\...\MountPoints2: {8755aa52-f119-11e4-8250-f655291e0956} - "E:\DVDSetup.exe"
HKU\S-1-5-21-118584188-3412210371-1390025912-1001\...\MountPoints2: {e7ea6e6b-f638-11e4-8260-d8cb8a34c7c4} - "G:\dvdcheck.exe"
HKU\S-1-5-21-118584188-3412210371-1390025912-1001\...\MountPoints2: {e7ea6e79-f638-11e4-8260-d8cb8a34c7c4} - "H:\setup.exe"
HKU\S-1-5-18\...\Policies\system: [DisableLockWorkstation] 0
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-05-03]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-03] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
BootExecute: autocheck autochk * sh4native Sh4Removal

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-118584188-3412210371-1390025912-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-03] (Avast Software s.r.o.)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-04-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-03] (Avast Software s.r.o.)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-04-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-28] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-28] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-05-03]

Chrome:
=======
CHR Profile: C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-04]
CHR Extension: (Google Docs) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-04]
CHR Extension: (Google Drive) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-04]
CHR Extension: (YouTube) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-04]
CHR Extension: (Google Search) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-04]
CHR Extension: (Google Sheets) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-04]
CHR Extension: (Bookmark Manager) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-06-05]
CHR Extension: (Google Wallet) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-05]
CHR Extension: (Gmail) - C:\Users\Marek Mysliveček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-04]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-03] (Avast Software s.r.o.)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [107448 2015-05-04] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896 2015-05-03] (Avast Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [967040 2015-05-11] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272592 2015-02-26] (Disc Soft Ltd)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [23504 2014-12-25] (Micro-Star Int'l Co., Ltd.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-08] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [784288 2013-11-25] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [386560 2015-02-05] (Rivet Networks) [File not signed]
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4035024 2015-03-10] (MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [1992704 2015-01-29] () [File not signed]
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2249168 2015-03-10] ()
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1736872 2015-04-29] (Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-05-23] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23006864 2015-05-23] (NVIDIA Corporation)
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2014-08-13] (Micro-Star International)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [18384 2014-08-07] (Intel(R) Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcpiCtlDrv; C:\Windows\System32\drivers\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R0 asstor64; C:\Windows\System32\drivers\asstor64.sys [84816 2014-01-27] (Asmedia Technology)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-03] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-05-04] (Avast Software s.r.o.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-03] (Avast Software s.r.o.)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449896 2015-05-04] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-03] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-03] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-03] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-05-03] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-03] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-03] ()
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [100912 2015-01-29] (Rivet Networks, LLC.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30352 2015-05-09] (Disc Soft Ltd)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [28912 2014-06-17] (Intel Corporation)
R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [20192 2013-11-25] (Intel Corporation)
R3 ISCT; C:\Windows\System32\drivers\ISCTD.sys [44744 2014-05-27] ()
R3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [130224 2014-03-27] (Qualcomm Atheros, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-06-05] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
S3 NTIOLib_MB; C:\Program Files (x86)\MSI\MSI Gaming APP\Lib\NTIOLib_X64.sys [13808 2014-03-13] (MSI)
S3 NTIOLib_MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
S3 NTIOLib_MSIFrequency_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIRatio_CC; C:\Program Files (x86)\MSI\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-23] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-05-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-04-03] (NVIDIA Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-05-03] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]
S3 NTIOLib_ECO; \??\C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-05 10:37 - 2015-06-05 10:40 - 00029696 _____ C:\Users\Marek Mysliveček\AppData\Local\MSGBOX.EXE
2015-06-05 10:33 - 2015-06-05 10:41 - 00000000 ____D C:\FRST
2015-06-05 10:20 - 2015-06-05 10:20 - 00003290 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2015-06-05 10:20 - 2015-06-05 10:20 - 00000447 _____ C:\spyhunter.fix
2015-06-05 10:20 - 2010-05-13 18:34 - 00014232 _____ C:\Windows\SysWOW64\sh4native.exe
2015-06-05 08:33 - 2015-06-05 09:20 - 00001098 _____ C:\Users\Marek Mysliveček\Desktop\RegHunter.lnk
2015-06-05 08:18 - 2015-06-05 08:35 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\Enigma Software Group
2015-06-05 08:18 - 2015-06-05 08:18 - 00000000 _____ C:\autoexec.bat
2015-06-05 08:17 - 2015-06-05 09:20 - 00000000 ____D C:\Program Files\Enigma Software Group
2015-06-05 08:05 - 2015-06-05 10:22 - 00000968 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-05 08:05 - 2015-06-05 10:15 - 00000972 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-05 08:05 - 2015-06-05 08:10 - 00003708 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-06-05 08:05 - 2015-06-05 08:05 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\Deployment
2015-06-05 08:05 - 2015-06-05 08:05 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\Apps\2.0
2015-06-05 08:05 - 2015-06-05 08:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-06-05 07:51 - 2015-06-05 10:22 - 00001467 _____ C:\Windows\setupact.log
2015-06-05 07:51 - 2015-06-05 08:37 - 00000944 _____ C:\Windows\PFRO.log
2015-06-05 07:51 - 2015-06-05 07:51 - 00000000 _____ C:\Windows\setuperr.log
2015-06-05 06:58 - 2015-06-05 06:58 - 00002806 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-06-05 06:58 - 2015-06-05 06:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-06-05 06:45 - 2015-06-05 06:29 - 02231296 _____ C:\adwcleaner_4.206.exe
2015-06-05 06:34 - 2015-06-05 07:02 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-05 06:34 - 2015-06-05 06:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-05 06:34 - 2015-06-05 06:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-05 06:34 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-05 06:34 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-05 06:34 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-05 06:29 - 2015-06-05 06:49 - 00000000 ____D C:\AdwCleaner
2015-06-04 22:13 - 2015-06-04 22:46 - 00000000 ____D C:\Windows\Minidump
2015-06-04 20:31 - 2015-06-04 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2015-06-04 17:26 - 2015-06-04 17:26 - 00000980 _____ C:\DelFix.txt
2015-06-04 17:26 - 2015-06-04 17:26 - 00000000 ____D C:\Windows\ERUNT
2015-06-04 17:22 - 2015-06-04 17:19 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-06-04 17:00 - 2015-06-04 17:00 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\VirtualStore
2015-06-04 16:29 - 2015-06-05 10:33 - 00647576 _____ C:\Windows\WindowsUpdate.log
2015-06-04 16:15 - 2015-06-04 16:27 - 00000000 ____D C:\Windows\system32\log
2015-06-04 12:30 - 2015-06-04 12:30 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-03 20:45 - 2015-06-03 20:45 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-06-03 20:45 - 2015-06-03 20:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-06-03 20:45 - 2015-06-03 20:45 - 00000000 ____D C:\ProgramData\Freemake
2015-06-03 20:45 - 2015-06-03 20:45 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-06-03 05:14 - 2015-06-03 05:14 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\GWX
2015-06-02 15:33 - 2015-06-02 15:33 - 00000000 ____D C:\temp
2015-06-02 15:33 - 2015-05-28 05:52 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-06-02 15:32 - 2015-05-28 09:04 - 42719888 _____ C:\Windows\system32\nvcompiler.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 37741712 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 30480528 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 22946960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 16185352 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 15864064 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 14987528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 14495448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 13304280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 11830512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 10995528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-06-02 15:32 - 2015-05-28 09:04 - 02986392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435306.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435306.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 01050440 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00982856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00878816 _____ C:\Windows\system32\nvmcumd.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00407112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00117576 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-06-02 15:32 - 2015-05-28 09:04 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-06-02 06:56 - 2015-06-02 06:56 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\HpUpdate
2015-06-02 06:56 - 2015-06-02 06:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-06-02 06:56 - 2012-10-17 04:31 - 00741480 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPMa111.dll
2015-06-02 06:55 - 2015-06-02 06:55 - 00000057 _____ C:\ProgramData\Ament.ini
2015-06-02 06:55 - 2015-06-02 06:55 - 00000000 ____D C:\Program Files\HP
2015-06-02 06:53 - 2015-06-02 06:57 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\HP
2015-06-02 06:49 - 2015-06-02 06:56 - 00000000 ____D C:\Program Files (x86)\Hp
2015-06-02 06:49 - 2015-06-02 06:49 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-05-27 15:28 - 2015-06-02 15:32 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-05-27 15:28 - 2015-04-03 15:21 - 00048784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-05-27 15:28 - 2015-04-03 15:21 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-05-18 18:39 - 2015-05-13 08:52 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-05-18 18:39 - 2015-05-13 08:52 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-05-18 18:39 - 2015-05-12 08:27 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll
2015-05-18 18:39 - 2015-05-12 08:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll
2015-05-16 16:37 - 2015-05-16 16:37 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\A
2015-05-16 15:35 - 2015-05-16 15:35 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\A
2015-05-13 16:32 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 16:32 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 16:18 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 16:18 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 16:18 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 16:18 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 16:18 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 16:18 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-13 16:18 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 16:18 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-13 16:18 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-13 16:18 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-13 16:18 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-13 16:18 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-13 16:18 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-13 16:18 - 2015-03-17 19:26 - 00467776 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-05-13 16:18 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-13 16:18 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-13 16:18 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-05-13 16:18 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-13 16:18 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-13 16:18 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-13 16:18 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-05-13 16:17 - 2015-04-24 23:32 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-13 16:17 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 16:17 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 16:17 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 16:17 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 16:17 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 16:17 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 16:17 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 16:17 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 16:17 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-13 16:17 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 16:17 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 16:17 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 16:17 - 2015-04-21 18:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-05-13 16:17 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 16:17 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 16:17 - 2015-04-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-05-13 16:17 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 16:17 - 2015-04-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-05-13 16:17 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 16:17 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 16:17 - 2015-04-21 17:49 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 16:17 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 16:17 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 16:17 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 16:17 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-05-13 16:17 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 16:17 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-05-13 16:17 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 16:17 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-13 16:17 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 16:17 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 16:17 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 16:17 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 16:17 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 16:17 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 16:17 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 16:17 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 16:17 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 16:17 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 16:17 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 16:17 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-13 16:17 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-13 16:17 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-13 16:17 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 16:17 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 16:17 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 16:17 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-13 16:17 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-13 16:17 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-13 16:17 - 2015-03-13 02:29 - 00410017 _____ C:\Windows\system32\ApnDatabase.xml
2015-05-13 16:17 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 16:17 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-13 16:17 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 16:17 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-13 16:17 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-13 16:17 - 2015-03-05 01:09 - 01429504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-13 16:17 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-13 04:05 - 2015-05-13 04:05 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\Rockstar Games
2015-05-13 04:04 - 2015-05-13 04:04 - 00000000 ____D C:\Program Files\Rockstar Games
2015-05-13 04:04 - 2015-05-13 04:04 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-05-11 18:01 - 2015-05-11 18:04 - 00000000 ____D C:\ProgramData\Adobe
2015-05-11 18:01 - 2015-05-11 18:01 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-05-11 18:01 - 2015-05-11 18:01 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-05-11 18:01 - 2015-05-11 18:01 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-05-11 17:58 - 2015-05-11 18:03 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\Adobe
2015-05-09 21:40 - 2015-05-09 21:40 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-05-09 16:10 - 2015-05-10 06:07 - 00000015 _____ C:\Users\Marek Mysliveček\AppData\Local\X-Plane_drm.prf
2015-05-09 16:10 - 2015-05-09 16:10 - 00000080 _____ C:\Users\Marek Mysliveček\AppData\Local\X-Plane Installer.prf
2015-05-09 15:51 - 2015-05-09 15:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations
2015-05-09 15:09 - 2015-05-09 15:09 - 00000025 _____ C:\Users\Marek Mysliveček\AppData\Local\x-plane_install_10.txt
2015-05-09 14:52 - 2015-06-04 21:50 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\BitTorrent
2015-05-09 13:39 - 2015-05-09 13:39 - 00000000 ____D C:\ProgramData\FLEXnet
2015-05-09 13:24 - 2015-05-09 13:24 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\InstallShield
2015-05-09 13:24 - 2015-05-09 13:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thrustmaster
2015-05-09 13:24 - 2015-05-09 13:24 - 00000000 ____D C:\Program Files (x86)\Thrustmaster
2015-05-09 13:24 - 2012-09-27 12:00 - 00264192 _____ (Thrustmaster) C:\Windows\system32\tmffbcpl.dll
2015-05-09 13:24 - 2012-09-27 11:59 - 00238592 _____ (Thrustmaster) C:\Windows\SysWOW64\tmffbcpl.dll
2015-05-09 13:24 - 2012-09-27 11:57 - 00041472 _____ (Thrustmaster) C:\Windows\system32\tmffbdrv.dll
2015-05-09 13:24 - 2012-09-27 11:57 - 00035840 _____ (Thrustmaster) C:\Windows\SysWOW64\tmffbdrv.dll
2015-05-09 13:24 - 2007-04-05 15:37 - 00208304 _____ (Macrovision Corporation) C:\Windows\system32\isrt.dll
2015-05-09 13:24 - 2006-05-17 12:19 - 00102832 _____ (Macrovision Corporation) C:\Windows\system32\_IsRes.dll
2015-05-09 13:09 - 2015-05-09 13:09 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\Microsoft Game Studios
2015-05-09 13:01 - 2015-05-09 13:01 - 00000000 ____D C:\Windows\PCHEALTH
2015-05-09 12:56 - 2015-05-29 18:12 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\DAEMON Tools Lite
2015-05-09 12:56 - 2015-05-09 12:56 - 00030352 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2015-05-09 12:56 - 2015-05-09 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-05-09 12:55 - 2015-05-09 12:56 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2015-05-09 12:55 - 2015-05-09 12:55 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-05 10:29 - 2014-03-18 17:33 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-05 10:29 - 2014-03-18 16:54 - 00738682 _____ C:\Windows\system32\perfh005.dat
2015-06-05 10:29 - 2014-03-18 16:54 - 00151404 _____ C:\Windows\system32\perfc005.dat
2015-06-05 10:26 - 2015-05-04 13:46 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\ClassicShell
2015-06-05 10:24 - 2015-05-03 15:06 - 00006469 _____ C:\Windows\SysWOW64\Gms.log
2015-06-05 10:23 - 2015-05-03 20:19 - 00029943 _____ C:\Windows\system32\lvcoinst.log
2015-06-05 10:22 - 2015-05-04 16:05 - 00003294 _____ C:\Windows\System32\Tasks\Intel(R) Rapid Start Technology Manager
2015-06-05 10:22 - 2015-05-03 15:23 - 00000000 ____D C:\Users\Marek Mysliveček\OneDrive
2015-06-05 10:22 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-05 10:06 - 2015-05-02 18:32 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-118584188-3412210371-1390025912-1001
2015-06-05 08:38 - 2015-05-03 18:44 - 00000000 ____D C:\Program Files\Bandizip
2015-06-05 08:18 - 2015-05-03 00:24 - 00000000 ____D C:\Users\Marek Mysliveček
2015-06-05 08:10 - 2015-05-02 18:39 - 00003944 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-06-05 08:05 - 2015-05-02 18:39 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-05 06:58 - 2015-05-04 15:12 - 00000000 ____D C:\Program Files\CCleaner
2015-06-05 06:30 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-06-04 22:09 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-04 18:15 - 2015-05-02 19:47 - 00000000 ____D C:\MSI
2015-06-04 16:20 - 2015-05-03 20:26 - 00000000 ____D C:\Program Files (x86)\Steam
2015-06-04 16:16 - 2015-05-03 14:45 - 00004184 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-06-04 16:10 - 2015-05-02 18:36 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-04 12:13 - 2015-05-02 20:33 - 00000000 ____D C:\Program Files (x86)\Setup Files
2015-06-04 12:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-06-04 11:59 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports
2015-06-03 20:58 - 2015-05-03 18:40 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\vlc
2015-06-03 06:18 - 2013-08-22 16:44 - 00371256 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-02 15:34 - 2015-05-02 18:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-06-02 15:34 - 2015-05-02 18:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-06-02 06:55 - 2015-05-04 16:50 - 00000000 ____D C:\ProgramData\HP
2015-05-28 09:04 - 2015-05-02 18:36 - 00112968 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-05-28 09:04 - 2015-05-02 18:36 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-05-28 09:04 - 2015-02-20 01:18 - 17486856 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-05-28 09:04 - 2015-02-20 01:18 - 12852152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-05-28 09:04 - 2015-02-20 01:18 - 03379680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-05-28 09:04 - 2015-02-20 01:18 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-05-28 09:04 - 2015-02-20 01:18 - 00030966 _____ C:\Windows\system32\nvinfo.pb
2015-05-28 06:15 - 2015-05-02 18:36 - 06872904 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-28 06:15 - 2015-05-02 18:36 - 03491984 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-28 06:15 - 2015-05-02 18:36 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-28 06:15 - 2015-05-02 18:36 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-28 06:15 - 2015-05-02 18:36 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-28 06:15 - 2015-05-02 18:36 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-27 12:48 - 2015-05-02 18:36 - 04408727 _____ C:\Windows\system32\nvcoproc.bin
2015-05-26 08:09 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-05-22 21:05 - 2015-05-03 15:15 - 00003112 _____ C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-118584188-3412210371-1390025912-1001
2015-05-20 19:21 - 2015-05-03 15:02 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-05-20 19:21 - 2015-05-03 15:02 - 00000000 ___SD C:\Windows\system32\GWX
2015-05-20 19:21 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-05-17 08:35 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-05-17 07:10 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-05-17 07:10 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-13 16:32 - 2015-05-03 09:22 - 00000000 ____D C:\Windows\system32\MRT
2015-05-13 16:30 - 2015-05-03 09:22 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-13 16:30 - 2014-03-18 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-13 08:52 - 2015-02-20 01:18 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-05-12 19:34 - 2015-05-02 20:13 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Local\NVIDIA Corporation
2015-05-12 17:03 - 2015-05-03 00:24 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\Adobe
2015-05-11 20:12 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-05-10 08:17 - 2015-05-02 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2015-05-10 08:17 - 2015-05-02 18:40 - 00000000 ____D C:\Program Files (x86)\MSI
2015-05-09 15:51 - 2015-05-02 18:31 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-05-09 15:08 - 2015-05-03 21:08 - 00000000 ____D C:\Users\Marek Mysliveček\AppData\Roaming\NVIDIA
2015-05-09 13:28 - 2015-05-02 20:20 - 00000000 ____D C:\Windows\SysWOW64\directx

==================== Files in the root of some directories =======

2015-06-05 10:37 - 2015-06-05 10:40 - 0029696 _____ () C:\Users\Marek Mysliveček\AppData\Local\MSGBOX.EXE
2015-05-09 16:10 - 2015-05-09 16:10 - 0000080 _____ () C:\Users\Marek Mysliveček\AppData\Local\X-Plane Installer.prf
2015-05-09 16:10 - 2015-05-10 06:07 - 0000015 _____ () C:\Users\Marek Mysliveček\AppData\Local\X-Plane_drm.prf
2015-05-09 15:09 - 2015-05-09 15:09 - 0000025 _____ () C:\Users\Marek Mysliveček\AppData\Local\x-plane_install_10.txt
2015-06-02 06:55 - 2015-06-02 06:55 - 0000057 _____ () C:\ProgramData\Ament.ini

Some files in TEMP:
====================
C:\Users\Marek Mysliveček\AppData\Local\Temp\BANDIZIP-SETUP.EXE
C:\Users\Marek Mysliveček\AppData\Local\Temp\TouchURL.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-31 11:19

CureIt

Total 14644535250 bytes in 28100 files scanned (33464 objects)
Total 28061 files (33419 objects) are clean
There are no infected objects detected
Total 45 files are raised error condition
Scan time is 00:03:23.662


Complet scan CureIt

Total 510366511401 bytes in 537329 files scanned (634491 objects)
Total 537230 files (634386 objects) are clean
Total 4 files are infected
Total 101 files are raised error condition
Scan time is 00:43:11.091

Stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:
klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem zkopíruj obsah logu uloženého na C:\_OTMoveIt\MovedFiles\


V mezičase tohle :

C:\Windows\zoek-delete.exe

otestuj na VIRUSTOTAL

(po načtení stránky klikni na tlačítko Procházet - Choose File, najdi cestu k výše zmíněnému souboru

nebo tam výše zmíněný text nakopíruj a klikni na tlačítko Odeslat soubor - Scan It!

trvá to okolo deseti minut pak mi sem zkopíruj link, to je ten řádek nahoře v prohlížeči)

Pokud ti to napíše že soubor již byl testován nech Otestovat znovu - Reanalyse.