Problém s virem nebo něčím podobným

[diego44]

Dobrý večer, na mém počítači se nedá nic dělat, asi jsem si počítač totálně zahnojil, omluvte mě, je mi jen 13 let.
Log RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Zdenka at 2015-10-07 20:29:21
Microsoft Windows 10 Home
System drive C: has 20 GB (19%) free of 103 GB
Total RAM: 2037 MB (25% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:29:52, on 7.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files\Elantech\ETDCtrl.exe
C:\WINDOWS\system32\taskeng.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Users\Zdenka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Samsung\SamsungFastStart\SmartRestarter.exe
C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
C:\Program Files\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe
C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
C:\Program Files\ShopperPro\ShopperPro.exe
C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\WINDOWS\Explorer.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\system32\wwahost.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.25.0_x86__8wekyb3d8bbwe\WinStore.Mobile.exe
C:\Windows\helppane.exe
C:\WINDOWS\system32\taskhostw.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\12\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\7\plugin.exe
C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugins\3\plugin.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Zdenka\Downloads\RSIT.exe
C:\Program Files\trend micro\Zdenka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://searchinterneat-a.akamaihd.net/h ... oCZ1xNJA==
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://searchinterneat-a.akamaihd.net/h ... oCZ1xNJA==
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: ShopperProBHO - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro.dll
O2 - BHO: W2PBrowser Browser Helper - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Express Find - {d39539bb-f65e-4088-a9d1-6e5f01a42a3e} - C:\Program Files\Express Find\Extensions\d39539bb-f65e-4088-a9d1-6e5f01a42a3e.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Zdenka\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Zdenka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.8.0_60\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.8.0_60\bin\jp2iexp.dll
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Samsung AnyWeb Print - {328ECD19-C167-40eb-A0C7-16FE7634105E} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files\globalUpdate\Update\globalupdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files\globalUpdate\Update\globalupdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
O23 - Service: Samsung UPD Service - Samsung Electronics CO., LTD. - C:\WINDOWS\System32\SUPDSvc.exe
O23 - Service: Service Mgr ExpressFind - Unknown owner - C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugincontainer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: ShopperPro Update (SPBIUpd) - ShopperPro - C:\Program Files\Common Files\ShopperPro\spbiu.exe
O23 - Service: Update Mgr ExpressFind - Unknown owner - C:\Program Files\Common Files\77790361-426c-4fa2-8cf3-5994543d685d\updater.exe

--
End of file - 9284 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\05914eb0-bc9c-40dc-a3af-15020999188a-1-6.job - C:\Program Files\SensePlus\05914eb0-bc9c-40dc-a3af-15020999188a-1-6.exe /rawdata=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
C:\WINDOWS\tasks\05914eb0-bc9c-40dc-a3af-15020999188a-1-7.job - C:\Program Files\SensePlus\05914eb0-bc9c-40dc-a3af-15020999188a-1-7.exe /rawdata=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
C:\WINDOWS\tasks\05914eb0-bc9c-40dc-a3af-15020999188a-11.job - C:\Program Files\SensePlus\05914eb0-bc9c-40dc-a3af-15020999188a-11.exe /rawdata=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
C:\WINDOWS\tasks\05914eb0-bc9c-40dc-a3af-15020999188a-4.job - C:\Program Files\SensePlus\05914eb0-bc9c-40dc-a3af-15020999188a-4.exe /rawdata=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
C:\WINDOWS\tasks\05914eb0-bc9c-40dc-a3af-15020999188a-5.job - C:\Program Files\SensePlus\05914eb0-bc9c-40dc-a3af-15020999188a-5.exe /rawdata=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
C:\WINDOWS\tasks\05914eb0-bc9c-40dc-a3af-15020999188a-5_user.job - C:\Program Files\SensePlus\05914eb0-bc9c-40dc-a3af-15020999188a-5.exe /rawdata=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
C:\WINDOWS\tasks\05914eb0-bc9c-40dc-a3af-15020999188a-6.job - C:\Program Files\SensePlus\05914eb0-bc9c-40dc-a3af-15020999188a-6.exe /rawdata=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
C:\WINDOWS\tasks\05914eb0-bc9c-40dc-a3af-15020999188a-7.job - C:\Program Files\SensePlus\05914eb0-bc9c-40dc-a3af-15020999188a-7.exe /rawdata=s3JgCxvvpFNn7Xzqv/JZ6th4OdOIBp2Ndx/ML2GyvJmWccwcLb68peuLjGiHOf1PjgCLmuc3Ov9ExrEDTvnQ3TiCM74sW7btb6H8vBveSCGKKA5JBzWibAOJ2shM8gK+85lILFx3WDJXk8kKEYiiZAbag01PeDdE2ubztJJMaZVrQ4AoX3KeZlWKSJNGqtzkWune5hlM9bKB19jD2c8gE2X3q3MwsNSdaruToAIeVxcTT1iny9KPDd+bPTw8/yiD8tl4QRBEjQtyd+62b+6jOZRzDARxCOIFWzRacKipmWTUEEvo3cWNJmpK2TbD9FykKIwPpiJazrZzDwi7aIM8noqhvHr/69AciVLpvw1/oWssgxJTuBGBvsI80yp6hEJ/AZ0LpXrtfIjJCDxwpLWnI5kh5mYaPgZPFgSz3j+TEVIcfizw4meAEodffWL6Qk2TSrnwVfilTNCzsecY/ZaQy8SrSDNWKdz1sVqsXDz42Lf3ZfEQo/XxFOnmGZWzSSeNkXYEQZi/olp7K2/3YHDsi/YpMZgEfcUJ/eRpRM2nPJ6XQTX5Rqiwba77tUvezSY0WQ9xFJUSWwRfrUFNyY6OK73ktK6Zt9u9CkXgYcAlPhi4FM1NGETVQ/B4yrgijQujd92u2w7gxkl9N0wscGJoD8rOrte9b80WQvv45vAb2lkAjPTzAvhCqLAD1TChJoiI4x9l68hcZkHhtF9yjBJdFiUr17YVOb9PdpivzLBEEej6p1k/KcRmQQc7RQ8oZ/QNCGxfIKt7zVWQrpXhuzsPzWSmYPIHAziygkALUdThidXvWbNMLQXtRYNND5aAHJF+4QdFUsUTdAKFHfYN5zG7cTNq7AecTv2mywy87veOf72iapqRW4e6zmNUr6/cx0yJpRmDxemB3eYeOrl2+sOjMHKpAh10wENqCnstkH8z3PJEPZow8pb8pBARktY5doUVWb9Ma/M7JKCEGWiwqJdFkwsAsi+yRAxeolw06r6FwMJjgkEU2HfP5TIqVkqErjJ7VdLOrJX6iHwr1WCMwUDyL7wdDMSHtsRmlCj/Fw1CjHupW8gc7IKKdOPkY1J89sV7QE6PpWKMXqKELq8c/QYYQ0saNaQqP3js9b/kVNmy8acXDliYHCbUX+QNMYVQi6h9r6BxtcXHIUhpDAynRnZXQBL0lT6YZtDBlb+JX4z8p8Aoqv1nglcq+EOJIxp/v0WVyZTGwE9jXiGroGGoyi2Mv5qNe1YmUXRBYWie2gRkTvqwL3/VbWYf7LT6xCq1NN+L8Pl47AVaD1iB2wN1X0ogeK2lLQSaBj0uPhrwWFeOOIDHuHGGcWvUuba/9bq7YaZSt0OReGVTjk0V6Acr+fBzHHPhc2tgxBaoPb9gpHNZc3Yb5abBWzyscF3ZkcvxLGIMb+8EVj65nJ1Rh9Mm2Jywa4BqpjosjsBl06AIoDByVFRLz4Wan+YMqWw+zKiM4c6QsMP5ZLmK+4SsfxzRsjlBbcqxcdh7P7TaEQnZEmd5oqHLUloOdGlA8dFGJEptUFIvNLJa5K5I3Bi/04KSRC+uGhFi0uDCmiahtbILP6d0OJF5o3yctML5e4GmEzVE1Hb4ceeJoDoHhLmJLPHwnrEWuNkFct/fDdAe3YPI5CjK2XExznJGrLes4/19TzIqObnZM9fmyPCGvmHY/Q4txHRppsUIPgCARD72GUN1sVyQR6O4ac1bGmNjwVPOkQivikD9kBSGUke8l9ttEUh0749JPxIY5wQZ5aL7ZW5r3tK1lvJU4W6Fk4SN7QXL0hCijzX39mDfXywdlbLcthVG1K2XG4GGbTDIoa+UB+CBVMnmbMMHlE7ee16fV1V3uvHgo9/58k1xppvaj1y2u47vJTPlSnf/sMeI443jfhVsseUWyrrBn6mFsICjCllBXPUBae2U6iNfvmCcks2Y5VSZ2IhArcdclWS09rF2qOyXauWsVwnEkEo0UqWYKUGCQVRNxdJ1DTrjqq8KwtSn5Duxn0Tsmb1JyaVN/j/D5htV/QTb4xtKgiRELaLbSMj4XG8btU2lY+DS8DU5EbJJut1Y0cHNry/vwaM/PgNr5zgG7CRo88A6uimxPWsM1uX/2BQ7+4/ivQtBYxAqAqkw5iqtDsYzXpsMfy8cnMH9tkdpgONy0e+QZsEhPfhE4GHtAsv5Ar0rY202vERtZzZt6FyWbOdmgr4c+zMwsLkQudO7hVaqVySLCWp7nRJDuYBOnwDem/6EXs8NLVUTLM9fj/LvDg3NQB9jzB/jHnB6m17qkye+bLK6+MFwAr9VgoMZpbpRg5bGDmH15qZQc7XNMZDiDZpcGuZjc4Bd/1qF0NixGa/SmQgKrfrIJcJ/ZaA3f3x+pq50qbUIDh7UrnumC79sGzH/h2dmehJaShJl+sVWsD12zYnQAbl4jUdy7Cg/mpDIcg5g8wYBUA6nfmrf2QX3gWC8ZGytsUO5rdIdHnIvwDkrmwaeMdbFzX8Huq6ZgYFE+r+CORnyEyx9cCDoViLnxH7Ra+7Q4zY06UurqU+i5r2TH9Q3bZCG6RuVLUB4eTO9/Eg6
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files\globalUpdate\Update\globalupdate.exe /c
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files\globalUpdate\Update\globalupdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\PC-Mechanic Maintenance.job - C:\Program Files\Uniblue\PC-Mechanic\pc-mechanic.exe -m
C:\WINDOWS\tasks\PC-Mechanic Startup.job - C:\Program Files\Uniblue\PC-Mechanic\pc-mechanic.exe
C:\WINDOWS\tasks\PC-Mechanic Subscription.job - C:\Program Files\Uniblue\PC-Mechanic\pc-mechanic.exe -l
C:\WINDOWS\tasks\SPBIW_UpdateTask_Time_343030323533353035332d415b343437414545785a5a6c.job - C:\WINDOWS\system32\wscript.exe //B "C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe /invoke /f:check_services /l:0

=========Mozilla firefox=========

ProfilePath - C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default

prefs.js - "browser.startup.homepage" - "http://searchinterneat-a.akamaihd.net/h ... oCZ1xNJA=="
prefs.js - "keyword.URL" - "http://searchinterneat-a.akamaihd.net/s ... earchTerms}"

"{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}"=C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll


C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\extensions\
{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\searchplugins\
yahoo.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-20 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-27 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
Shopper Pro - C:\ProgramData\ShopperPro\ShopperPro.dll [2015-06-25 444336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA609D72-8482-4076-8991-8CDAE5B93BCB}]
W2PBrowser Class - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll [2010-08-23 1236992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d39539bb-f65e-4088-a9d1-6e5f01a42a3e}]
Express Find - C:\Program Files\Express Find\Extensions\d39539bb-f65e-4088-a9d1-6e5f01a42a3e.dll [2015-04-08 145648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-20 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-09-29 12355816]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-27 6109776]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-08-18 2483608]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-09-26 4811032]
"cz.seznam.software.autoupdate"=C:\Users\Zdenka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Zdenka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTAgent.exe [2014-02-24 3129560]
"OneDrive"=C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-18 405584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDCtrl]
C:\Program Files\Elantech\ETDCtrl.exe [2015-08-18 2483608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"VIDC.FPS1"=frapsvid.dll
"VIDC.XFR1"=xfcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-10-07 20:29:21 ----D---- C:\rsit
2015-09-29 20:04:39 ----D---- C:\Program Files\EA GAMES
2015-09-29 13:56:44 ----D---- C:\WINDOWS\LastGood
2015-09-29 13:53:49 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-09-29 13:53:47 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-09-29 13:53:47 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-09-29 13:53:46 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-09-29 13:53:46 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-09-29 13:53:45 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-09-29 13:53:44 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-09-29 13:53:40 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-09-29 13:53:40 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-09-29 13:53:39 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-09-29 13:53:35 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-29 13:53:31 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-09-29 13:53:24 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-09-29 13:53:24 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-09-29 13:53:20 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-09-29 13:53:20 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-29 13:53:19 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-09-29 13:53:19 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-09-21 17:30:27 ----D---- C:\ProgramData\CyberLink
2015-09-20 23:21:49 ----D---- C:\b37fd842ca99e9719014f935
2015-09-11 17:30:25 ----D---- C:\WINDOWS\Minidump

======List of files/folders modified in the last 1 month======

2015-10-07 20:29:52 ----D---- C:\Program Files\trend micro
2015-10-07 20:22:03 ----D---- C:\WINDOWS\system32\sru
2015-10-07 20:19:03 ----D---- C:\WINDOWS\Temp
2015-10-07 20:11:20 ----D---- C:\WINDOWS\System32
2015-10-07 19:41:45 ----D---- C:\WINDOWS\Prefetch
2015-10-07 19:05:24 ----D---- C:\Program Files\Common Files\77790361-426c-4fa2-8cf3-5994543d685d
2015-10-07 18:04:06 ----D---- C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d
2015-10-07 14:53:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-07 14:53:06 ----D---- C:\WINDOWS\INF
2015-10-05 09:58:33 ----D---- C:\WINDOWS\system32\NDF
2015-10-04 13:46:36 ----D---- C:\Users\Zdenka\AppData\Roaming\vlc
2015-10-03 19:33:12 ----D---- C:\Users\Zdenka\AppData\Roaming\Skype
2015-10-03 11:28:51 ----HD---- C:\Program Files\WindowsApps
2015-10-01 20:12:37 ----D---- C:\WINDOWS\system32\Tasks
2015-10-01 20:12:37 ----D---- C:\Program Files\Opera
2015-09-30 13:38:51 ----D---- C:\Users\Zdenka\AppData\Roaming\DAEMON Tools Pro
2015-09-30 13:38:49 ----D---- C:\Users\Zdenka\AppData\Roaming\uTorrent
2015-09-30 13:37:26 ----DC---- C:\WINDOWS\Panther
2015-09-30 13:36:45 ----D---- C:\WINDOWS\debug
2015-09-30 13:36:45 ----D---- C:\Windows
2015-09-29 20:04:39 ----RD---- C:\Program Files
2015-09-29 16:56:41 ----D---- C:\Users\Zdenka\AppData\Roaming\Seznam.cz
2015-09-29 16:48:41 ----D---- C:\WINDOWS\system32\config
2015-09-29 16:45:55 ----D---- C:\WINDOWS\WinSxS
2015-09-29 16:32:04 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-29 13:56:47 ----D---- C:\WINDOWS\system32\RTCOM
2015-09-29 13:56:46 ----D---- C:\WINDOWS\system32\drivers
2015-09-29 13:56:08 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-29 13:53:44 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-09-29 13:53:43 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-09-29 13:53:39 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-09-29 13:37:34 ----D---- C:\WINDOWS\AppReadiness
2015-09-25 19:36:36 ----SD---- C:\Users\Zdenka\AppData\Roaming\Microsoft
2015-09-21 17:30:27 ----HD---- C:\ProgramData
2015-09-20 23:22:18 ----D---- C:\WINDOWS\system32\MRT
2015-09-18 22:00:28 ----D---- C:\Counter-Strike 1.6
2015-09-18 20:19:08 ----SHD---- C:\WINDOWS\Installer
2015-09-18 20:14:47 ----D---- C:\WINDOWS\Tasks
2015-09-09 14:49:26 ----D---- C:\WINDOWS\system32\catroot2
2015-09-09 14:43:30 ----D---- C:\WINDOWS\CbsTemp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-07-27 49776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-07-27 208664]
R0 iaStor;@oem8.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2009-06-04 330264]
R0 ngvss;ngvss; C:\WINDOWS\system32\drivers\ngvss.sys [2015-07-27 95112]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-07-27 81728]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-07-27 788784]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-07-27 433264]
R1 dtsoftbus01;@oem2.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2015-06-25 243128]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 papycpu2;papycpu2; C:\WINDOWS\System32\DRIVERS\papycpu2.sys [2003-01-17 1984]
R1 papyjoy;papyjoy; C:\WINDOWS\System32\DRIVERS\papyjoy.sys [2003-01-17 1856]
R1 SABI;SAMSUNG Kernel Driver For Windows 7; \??\C:\windows\system32\Drivers\SABI.sys [2009-05-28 10752]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-07-27 24016]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-07-27 76000]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-07-27 113592]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 SPDRIVER_1.42.1.2030;SPDRIVER_1.42.1.2030; \??\C:\Program Files\ShopperPro\JSDriver\1.42.1.2030\jsdrv.sys [2015-06-25 41120]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 athr;@oem13.inf,%ATHR.Service.DispName%;Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athr.sys [2011-12-13 2228224]
R3 ETD;@oem21.inf,%SamsungDeviceDesc%;Samsung TouchPad Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-08-18 388184]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 4815872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2015-09-29 3544808]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-18 130048]
R3 Sftfs;Sftfs; C:\WINDOWS\system32\DRIVERS\Sftfslh.sys [2013-06-26 583848]
R3 Sftplay;Sftplay; C:\WINDOWS\system32\DRIVERS\Sftplaylh.sys [2013-06-26 197800]
R3 Sftredir;Sftredir; C:\WINDOWS\system32\DRIVERS\Sftredirlh.sys [2013-06-26 24232]
R3 Sftvol;Sftvol; C:\WINDOWS\system32\DRIVERS\Sftvollh.sys [2013-06-26 20136]
R3 SPBIUpdd;ShopperPro UpdateD; \??\C:\Program Files\Common Files\ShopperPro\spbiw.sys [2015-06-25 26112]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2015-07-10 9216]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 23552]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-04-28 54632]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-18 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 42848]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 21856]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-27 146600]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-08-18 115616]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-18 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [2015-09-29 274152]
R2 Service Mgr ExpressFind;Service Mgr ExpressFind; C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d\plugincontainer.exe [2015-10-07 1047312]
R2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 SPBIUpd;ShopperPro Update; C:\Program Files\Common Files\ShopperPro\spbiu.exe [2015-06-25 1813504]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 Update Mgr ExpressFind;Update Mgr ExpressFind; C:\Program Files\Common Files\77790361-426c-4fa2-8cf3-5994543d685d\updater.exe [2015-10-07 611088]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files\globalUpdate\Update\globalupdate.exe [2015-06-25 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-07-27 3218624]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files\globalUpdate\Update\globalupdate.exe [2015-06-25 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-16 148080]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 npggsvc;nProtect GameGuard Service; C:\windows\system32\GameMon.des [2015-07-22 3611808]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Samsung UPD Service;Samsung UPD Service; C:\WINDOWS\System32\SUPDSvc.exe [2010-08-09 131888]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-18 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[diego44]

adw se zasekne v půlce a neodpovídá. Co mam dělat?

[Rudy]

Zkuste ho spustit v nouz. režimu.

[diego44]

# AdwCleaner v5.011 - Logfile created 08/10/2015 at 09:52:40
# Updated 07/10/2015 by Xplode
# Database : 2015-10-04.3 [Local]
# Operating system : Windows 10 Home (x86)
# Username : Zdenka - ZDENĚK-PC
# Running from : C:\Users\Zdenka\Desktop\adwcleaner_5.011.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : globalUpdate
[-] Service Deleted : globalUpdatem
[-] Service Deleted : SPBIUpd
[-] Service Deleted : SPBIUpdd
[-] Service Deleted : Service Mgr ExpressFind
[!] Service Not Deleted : Service Mgr ExpressFind
[-] Service Deleted : Update Mgr ExpressFind
[-] Service Deleted : SPDRIVER_1.42.1.2030

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\globalUpdate
[-] Folder Deleted : C:\Program Files\ShopperPro
[-] Folder Deleted : C:\Program Files\SensePlus
[-] Folder Deleted : C:\Program Files\Express Find
[-] Folder Deleted : C:\Program Files\GUPlayer
[!] Folder Not Deleted : C:\Program Files\Express Find
[-] Folder Deleted : C:\Program Files\MixSense
[!] Folder Not Deleted : C:\Program Files\SensePlus
[-] Folder Deleted : C:\Program Files\Common Files\ShopperPro
[-] Folder Deleted : C:\Program Files\Common Files\77790361-426c-4fa2-8cf3-5994543d685d
[!] Folder Not Deleted : C:\Program Files\Common Files\77790361-426c-4fa2-8cf3-5994543d685d
[-] Folder Deleted : C:\ProgramData\apn
[-] Folder Deleted : C:\ProgramData\Goobzo
[-] Folder Deleted : C:\ProgramData\ShopperPro
[-] Folder Deleted : C:\ProgramData\Trymedia
[-] Folder Deleted : C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d
[!] Folder Not Deleted : C:\ProgramData\77790361-426c-4fa2-8cf3-5994543d685d
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixSense
[-] Folder Deleted : C:\Users\Public\Documents\Goobzo
[-] Folder Deleted : C:\Users\Public\Documents\ShopperPro
[-] Folder Deleted : C:\Users\Zdenka\AppData\Local\globalUpdate
[-] Folder Deleted : C:\Users\Zdenka\AppData\LocalLow\BS_Player_ControlBar_B
[-] Folder Deleted : C:\Users\Zdenka\AppData\Roaming\Uniblue
[-] Folder Deleted : C:\Users\Zdenka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer
[-] Folder Deleted : C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
[-] Folder Deleted : C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[!] Folder Not Deleted : C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}

***** [ Files ] *****

[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.kingtopdeals.com_0.localstorage
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.kingtopdeals.com_0.localstorage-journal
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_mixsense-dj-studio.en.softonic.com_0.localstorage
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_mixsense-dj-studio.en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_virtual-dj-studio.en.softonic.com_0.localstorage
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_virtual-dj-studio.en.softonic.com_0.localstorage-journal
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
[-] File Deleted : C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
[-] File Deleted : C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\searchplugins\yahoo.xml

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : globalUpdateUpdateTaskMachineCore
[-] Task Deleted : globalUpdateUpdateTaskMachineUA
[-] Task Deleted : PC-Mechanic Maintenance
[-] Task Deleted : PC-Mechanic Startup
[-] Task Deleted : ShopperPro
[-] Task Deleted : ShopperProJSUpd
[-] Task Deleted : PC-Mechanic Subscription
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-1-6
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-1-7
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-11
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-4
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-5
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-5_user
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-6
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-7
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-1-6
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-1-7
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-11
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-4
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-5
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-6
[-] Task Deleted : 05914eb0-bc9c-40dc-a3af-15020999188a-7
[-] Task Deleted : SPBIW_UpdateTask_Time_343030323533353035332d415b343437414545785a5a6c
[-] Task Deleted : SPBIW_UpdateTask_Time_343030323533353035332d415b343437414545785a5a6c
[-] Task Deleted : globalUpdateUpdateTaskMachineCore
[-] Task Deleted : globalUpdateUpdateTaskMachineUA

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
[-] Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ShopperPro.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\Class\{0014298C-A9BA-440D-AAA8-AD12C7010EE5}
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\Class\{181A06EA-B82C-47DE-B851-E20FD0E1CC7D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\pc-mechanic
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D39539BB-F65E-4088-A9D1-6E5F01A42A3E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B853E835-9F24-4F4B-B55C-E554D15CCCD2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
[!] Key Not Deleted : HKLM\SOFTWARE\Classes\CLSID\{d39539bb-f65e-4088-a9d1-6e5f01a42a3e}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{82351433-9094-11D1-A24B-00A0C932C7DF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B002FFEB-D622-4EC8-A061-549681AAA56E}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D39539BB-F65E-4088-A9D1-6E5F01A42A3E}
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d39539bb-f65e-4088-a9d1-6e5f01a42a3e}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D39539BB-F65E-4088-A9D1-6E5F01A42A3E}
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d39539bb-f65e-4088-a9d1-6e5f01a42a3e}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D39539BB-F65E-4088-A9D1-6E5F01A42A3E}
[!] Key Not Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d39539bb-f65e-4088-a9d1-6e5f01a42a3e}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
[-] Key Deleted : HKU\.DEFAULT\Software\Goobzo
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\GlobalUpdate
[-] Key Deleted : HKCU\Software\Goobzo
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\ShopperPro
[-] Key Deleted : HKCU\Software\SensePlus-nv
[-] Key Deleted : HKCU\Software\SensePlus-nv-ie
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\Goobzo
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\ShopperPro
[-] Key Deleted : HKLM\SOFTWARE\Trymedia Systems
[-] Key Deleted : HKLM\SOFTWARE\Uniblue
[-] Key Deleted : HKLM\SOFTWARE\SensePlus
[-] Key Deleted : HKLM\SOFTWARE\ExpressFind
[!] Key Not Deleted : HKLM\SOFTWARE\SensePlus
[-] Key Deleted : HKLM\SOFTWARE\SensePlus-nv
[-] Key Deleted : HKLM\SOFTWARE\SensePlus-nv-ie
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShopperPro
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SensePlus
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1F88FC5D-4D46-448A-AF59-7061FFC6ABBF}_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Express Find
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GUPlayer
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Express Find
[!] Key Not Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SensePlus
[!] Key Not Deleted : HKU\S-1-5-21-459703492-136551128-3912174221-1000\Software\AppDataLow\Software\Crossrider
[!] Key Not Deleted : HKU\S-1-5-21-459703492-136551128-3912174221-1000\Software\AppDataLow\Software\BS_Player_ControlBar_B
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-459703492-136551128-3912174221-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-459703492-136551128-3912174221-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Data Restored : HKU\S-1-5-21-459703492-136551128-3912174221-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]

***** [ Web browsers ] *****

[-] [C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggTcA9cVApIQhhGJltaTA1IGFQOIV0MVhRAF1YVIQpdVlpAGAIFIk0FA18DB0VXfV9eFElXTwhmOElKBEoCZ1xNJA==");
[-] [C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\prefs.js] [Preference] Deleted : user_pref("browser.newtab.url", "hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAUTdl0NUgASDFBFIlsVVQBIQBhCJA0PTAhHQgNCc1wPAghIFhNBNARaB0tXUUEeJl9NER8fHHBbMEtdEko3SFtH");
[-] [C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\prefs.js] [Preference] Deleted : user_pref("keyword.URL", "hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQkIV11EEgxAbVxeA1tcFQwaIRRZBQ1GDAQVIw9ZUlxGQgQadx9aFQQTR0cFME0FB18EURNNfXxAEUsUUkZlKVdc&q={searchTerms}");
[-] [C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : searchinterneat-a.akamaihd.net
[-] [C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggTcA9cVApIQhhGJltaTA1IGFQOIV0MVhRAF1YVIQpdVlpAGAIFIk0FA1oDB0VXfV5bFElXTwhmOElKBEoCZ1xNJA==
[-] [C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider_Data] Deleted : hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQkIV11EEgxAbVxeA1tcFQwaIRRZBQ1GDAQVIw9ZUlxGQgQadx9aFQQTQkcFME0FBloEURNNfXxAEUsUUkZlKVdc&q={searchTerms}

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [20598 bytes] ##########

[Rudy]

Dejte nový log RSIT.

[diego44]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Zdenka at 2015-10-08 21:31:22
Microsoft Windows 10 Home
System drive C: has 21 GB (20%) free of 103 GB
Total RAM: 2037 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:32:05, on 8.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files\Elantech\ETDCtrl.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Zdenka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
C:\Program Files\Samsung\SamsungFastStart\SmartRestarter.exe
C:\Program Files\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe
C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\taskeng.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wwahost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.10.5.0_x86__8wekyb3d8bbwe\WinStore.Mobile.exe
C:\Users\Zdenka\Downloads\RSIT (1).exe
C:\Program Files\trend micro\Zdenka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: W2PBrowser Browser Helper - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Zdenka\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Zdenka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Samsung AnyWeb Print - {328ECD19-C167-40eb-A0C7-16FE7634105E} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
O23 - Service: Samsung UPD Service - Samsung Electronics CO., LTD. - C:\WINDOWS\System32\SUPDSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 7479 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default

prefs.js - "keyword.URL" - "https://www.google.com/search/?trackid=sp-006"
prefs.js - "browser.startup.homepage" - "https://www.google.com/?trackid=sp-006"

"{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}"=C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll


C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\searchplugins\
google-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-20 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-27 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA609D72-8482-4076-8991-8CDAE5B93BCB}]
W2PBrowser Class - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll [2010-08-23 1236992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-20 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-09-29 12355816]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-27 6109776]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-08-18 2483608]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-09-26 4811032]
"cz.seznam.software.autoupdate"=C:\Users\Zdenka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Zdenka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"OneDrive"=C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-18 405584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDCtrl]
C:\Program Files\Elantech\ETDCtrl.exe [2015-08-18 2483608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"VIDC.FPS1"=frapsvid.dll
"VIDC.XFR1"=xfcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-10-08 09:47:27 ----A---- C:\WINDOWS\ntbtlog.txt
2015-10-07 20:29:21 ----D---- C:\rsit
2015-09-29 20:04:39 ----D---- C:\Program Files\EA GAMES
2015-09-29 13:53:49 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-09-29 13:53:47 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-09-29 13:53:47 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-09-29 13:53:46 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-09-29 13:53:46 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-09-29 13:53:45 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-09-29 13:53:44 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-09-29 13:53:40 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-09-29 13:53:40 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-09-29 13:53:39 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-09-29 13:53:35 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-29 13:53:31 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-09-29 13:53:24 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-09-29 13:53:24 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-09-29 13:53:20 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-09-29 13:53:20 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-29 13:53:19 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-09-29 13:53:19 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-09-21 17:30:27 ----D---- C:\ProgramData\CyberLink
2015-09-20 23:21:49 ----D---- C:\b37fd842ca99e9719014f935
2015-09-11 17:30:25 ----D---- C:\WINDOWS\Minidump

======List of files/folders modified in the last 1 month======

2015-10-08 21:31:28 ----D---- C:\Program Files\trend micro
2015-10-08 21:23:20 ----D---- C:\WINDOWS\system32\sru
2015-10-08 21:23:15 ----D---- C:\WINDOWS\Temp
2015-10-08 21:23:15 ----D---- C:\WINDOWS\System32
2015-10-08 17:08:19 ----D---- C:\WINDOWS\system32\config
2015-10-08 14:49:22 ----D---- C:\WINDOWS\Prefetch
2015-10-08 12:03:46 ----HD---- C:\Program Files\WindowsApps
2015-10-08 11:56:20 ----D---- C:\WINDOWS\AppReadiness
2015-10-08 10:17:26 ----D---- C:\Users\Zdenka\AppData\Roaming\Seznam.cz
2015-10-08 10:15:59 ----RD---- C:\Program Files
2015-10-08 10:15:55 ----D---- C:\WINDOWS\system32\drivers
2015-10-08 10:15:54 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-08 10:15:54 ----D---- C:\WINDOWS\INF
2015-10-08 10:12:52 ----D---- C:\Windows
2015-10-08 10:12:24 ----D---- C:\WINDOWS\system32\catroot2
2015-10-08 10:11:00 ----D---- C:\WINDOWS\WinSxS
2015-10-08 10:04:15 ----D---- C:\WINDOWS\CbsTemp
2015-10-08 09:52:52 ----D---- C:\WINDOWS\Tasks
2015-10-08 09:52:45 ----HD---- C:\ProgramData
2015-10-08 09:52:43 ----D---- C:\Program Files\Common Files
2015-10-08 09:52:40 ----D---- C:\AdwCleaner
2015-10-07 14:53:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-05 09:58:51 ----D---- C:\WINDOWS\system32\NDF
2015-10-04 13:46:36 ----D---- C:\Users\Zdenka\AppData\Roaming\vlc
2015-10-03 19:33:12 ----D---- C:\Users\Zdenka\AppData\Roaming\Skype
2015-10-01 20:12:37 ----D---- C:\WINDOWS\system32\Tasks
2015-10-01 20:12:37 ----D---- C:\Program Files\Opera
2015-09-30 13:38:51 ----D---- C:\Users\Zdenka\AppData\Roaming\DAEMON Tools Pro
2015-09-30 13:38:49 ----D---- C:\Users\Zdenka\AppData\Roaming\uTorrent
2015-09-30 13:37:26 ----DC---- C:\WINDOWS\Panther
2015-09-30 13:36:45 ----D---- C:\WINDOWS\debug
2015-09-29 16:32:04 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-29 13:56:47 ----D---- C:\WINDOWS\system32\RTCOM
2015-09-29 13:53:44 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-09-29 13:53:43 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-09-29 13:53:39 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-09-25 19:36:36 ----SD---- C:\Users\Zdenka\AppData\Roaming\Microsoft
2015-09-20 23:22:18 ----D---- C:\WINDOWS\system32\MRT
2015-09-18 22:00:28 ----D---- C:\Counter-Strike 1.6
2015-09-18 20:19:08 ----SHD---- C:\WINDOWS\Installer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-07-27 49776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-07-27 208664]
R0 iaStor;@oem8.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2009-06-04 330264]
R0 ngvss;ngvss; C:\WINDOWS\system32\drivers\ngvss.sys [2015-07-27 95112]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-07-27 81728]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-07-27 788784]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-07-27 433264]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 papycpu2;papycpu2; C:\WINDOWS\System32\DRIVERS\papycpu2.sys [2003-01-17 1984]
R1 papyjoy;papyjoy; C:\WINDOWS\System32\DRIVERS\papyjoy.sys [2003-01-17 1856]
R1 SABI;SAMSUNG Kernel Driver For Windows 7; \??\C:\windows\system32\Drivers\SABI.sys [2009-05-28 10752]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-07-27 24016]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-07-27 76000]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-07-27 113592]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 athr;@oem13.inf,%ATHR.Service.DispName%;Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athr.sys [2011-12-13 2228224]
R3 ETD;@oem21.inf,%SamsungDeviceDesc%;Samsung TouchPad Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-08-18 388184]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 4815872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2015-09-29 3544808]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-18 130048]
R3 Sftfs;Sftfs; C:\WINDOWS\system32\DRIVERS\Sftfslh.sys [2013-06-26 583848]
R3 Sftplay;Sftplay; C:\WINDOWS\system32\DRIVERS\Sftplaylh.sys [2013-06-26 197800]
R3 Sftredir;Sftredir; C:\WINDOWS\system32\DRIVERS\Sftredirlh.sys [2013-06-26 24232]
R3 Sftvol;Sftvol; C:\WINDOWS\system32\DRIVERS\Sftvollh.sys [2013-06-26 20136]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2015-07-10 9216]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2015-07-10 184832]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 23552]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-04-28 54632]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-18 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 42848]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-08-18 48128]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-27 146600]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-08-18 115616]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-18 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [2015-09-29 274152]
R2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-07-27 3218624]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-16 148080]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 npggsvc;nProtect GameGuard Service; C:\windows\system32\GameMon.des [2015-07-22 3611808]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Samsung UPD Service;Samsung UPD Service; C:\WINDOWS\System32\SUPDSvc.exe [2010-08-09 131888]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-18 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]

-----------------EOF-----------------

[Rudy]

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files\Skype\Toolbars

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:services
c2cautoupdatesvc
c2cpnrsvc

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

[diego44]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Zdenka at 2015-10-08 23:14:42
Microsoft Windows 10 Home
System drive C: has 28 GB (28%) free of 103 GB
Total RAM: 2037 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:15:02, on 8.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files\Elantech\ETDCtrl.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\taskeng.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\WINDOWS\notepad.exe
C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Samsung\SamsungFastStart\SmartRestarter.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\Zdenka\Desktop\RSIT (1).exe
C:\Program Files\trend micro\Zdenka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: W2PBrowser Browser Helper - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Zdenka\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Zdenka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Samsung AnyWeb Print - {328ECD19-C167-40eb-A0C7-16FE7634105E} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
O23 - Service: Samsung UPD Service - Samsung Electronics CO., LTD. - C:\WINDOWS\System32\SUPDSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 6975 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default

prefs.js - "keyword.URL" - "https://www.google.com/search/?trackid=sp-006"
prefs.js - "browser.startup.homepage" - "https://www.google.com/?trackid=sp-006"

"{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}"=C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll


C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\laprdr4s.default\searchplugins\
google-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-20 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-27 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA609D72-8482-4076-8991-8CDAE5B93BCB}]
W2PBrowser Class - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll [2010-08-23 1236992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-20 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-09-29 12355816]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-27 6109776]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-08-18 2483608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-09-26 4811032]
"cz.seznam.software.autoupdate"=C:\Users\Zdenka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Zdenka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"OneDrive"=C:\Users\Zdenka\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-18 405584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDCtrl]
C:\Program Files\Elantech\ETDCtrl.exe [2015-08-18 2483608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"VIDC.FPS1"=frapsvid.dll
"VIDC.XFR1"=xfcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-10-08 23:01:16 ----D---- C:\_OTM
2015-10-08 09:47:27 ----A---- C:\WINDOWS\ntbtlog.txt
2015-10-07 20:29:21 ----D---- C:\rsit
2015-09-29 20:04:39 ----D---- C:\Program Files\EA GAMES
2015-09-29 13:53:49 ----A---- C:\WINDOWS\system32\WavesLib.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSWOW.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSTSXT.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSTSHD.dll
2015-09-29 13:53:48 ----A---- C:\WINDOWS\system32\SRSHP360.dll
2015-09-29 13:53:47 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2015-09-29 13:53:47 ----A---- C:\WINDOWS\system32\SFNHK.dll
2015-09-29 13:53:46 ----A---- C:\WINDOWS\system32\SFCOM.dll
2015-09-29 13:53:46 ----A---- C:\WINDOWS\system32\SFAPO.dll
2015-09-29 13:53:45 ----A---- C:\WINDOWS\system32\RtkPgExt.dll
2015-09-29 13:53:44 ----A---- C:\WINDOWS\system32\RtkCoInstII.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEP32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEL32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEEG32A.dll
2015-09-29 13:53:41 ----A---- C:\WINDOWS\system32\RTEED32A.dll
2015-09-29 13:53:40 ----A---- C:\WINDOWS\system32\RP3DHT32.dll
2015-09-29 13:53:40 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-09-29 13:53:39 ----A---- C:\WINDOWS\system32\RP3DAA32.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\RCoRes.dat
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEP32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEL32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEG32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EED32A.dll
2015-09-29 13:53:37 ----A---- C:\WINDOWS\system32\R4EEA32A.dll
2015-09-29 13:53:35 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-29 13:53:31 ----A---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\MaxxAudioAPO.dll
2015-09-29 13:53:30 ----A---- C:\WINDOWS\system32\KAAPORT.dll
2015-09-29 13:53:24 ----A---- C:\WINDOWS\system32\FMAPO.dll
2015-09-29 13:53:24 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll
2015-09-29 13:53:23 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSLimiterDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSLFXAPO.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGFXAPONS.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGFXAPO.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSBoostDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPP32A.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPO32A.dll
2015-09-29 13:53:21 ----A---- C:\WINDOWS\system32\DDPD32A.dll
2015-09-29 13:53:20 ----A---- C:\WINDOWS\system32\DDPA32.dll
2015-09-29 13:53:20 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-29 13:53:19 ----A---- C:\WINDOWS\system32\AERTARen.dll
2015-09-29 13:53:19 ----A---- C:\WINDOWS\system32\AERTACap.dll
2015-09-21 17:30:27 ----D---- C:\ProgramData\CyberLink
2015-09-20 23:21:49 ----D---- C:\b37fd842ca99e9719014f935
2015-09-11 17:30:25 ----D---- C:\WINDOWS\Minidump

======List of files/folders modified in the last 1 month======

2015-10-08 23:14:47 ----D---- C:\Program Files\trend micro
2015-10-08 23:14:18 ----D---- C:\WINDOWS\Prefetch
2015-10-08 23:06:27 ----D---- C:\WINDOWS\Temp
2015-10-08 23:05:10 ----D---- C:\WINDOWS\System32
2015-10-08 23:03:35 ----D---- C:\Windows
2015-10-08 23:03:03 ----D---- C:\WINDOWS\system32\sru
2015-10-08 23:01:24 ----RD---- C:\Program Files\Skype
2015-10-08 17:08:19 ----D---- C:\WINDOWS\system32\config
2015-10-08 12:03:47 ----D---- C:\WINDOWS\AppReadiness
2015-10-08 12:03:46 ----HD---- C:\Program Files\WindowsApps
2015-10-08 10:17:26 ----D---- C:\Users\Zdenka\AppData\Roaming\Seznam.cz
2015-10-08 10:15:59 ----RD---- C:\Program Files
2015-10-08 10:15:55 ----D---- C:\WINDOWS\system32\drivers
2015-10-08 10:15:54 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-08 10:15:54 ----D---- C:\WINDOWS\INF
2015-10-08 10:12:55 ----D---- C:\WINDOWS\CbsTemp
2015-10-08 10:12:24 ----D---- C:\WINDOWS\system32\catroot2
2015-10-08 10:11:00 ----D---- C:\WINDOWS\WinSxS
2015-10-08 09:52:52 ----D---- C:\WINDOWS\Tasks
2015-10-08 09:52:45 ----HD---- C:\ProgramData
2015-10-08 09:52:43 ----D---- C:\Program Files\Common Files
2015-10-08 09:52:40 ----D---- C:\AdwCleaner
2015-10-07 14:53:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-05 09:58:51 ----D---- C:\WINDOWS\system32\NDF
2015-10-04 13:46:36 ----D---- C:\Users\Zdenka\AppData\Roaming\vlc
2015-10-03 19:33:12 ----D---- C:\Users\Zdenka\AppData\Roaming\Skype
2015-10-01 20:12:37 ----D---- C:\WINDOWS\system32\Tasks
2015-10-01 20:12:37 ----D---- C:\Program Files\Opera
2015-09-30 13:38:51 ----D---- C:\Users\Zdenka\AppData\Roaming\DAEMON Tools Pro
2015-09-30 13:38:49 ----D---- C:\Users\Zdenka\AppData\Roaming\uTorrent
2015-09-30 13:37:26 ----DC---- C:\WINDOWS\Panther
2015-09-30 13:36:45 ----D---- C:\WINDOWS\debug
2015-09-29 16:32:04 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-29 13:56:47 ----D---- C:\WINDOWS\system32\RTCOM
2015-09-29 13:53:44 ----A---- C:\WINDOWS\system32\RtkCoLDR.dll
2015-09-29 13:53:43 ----A---- C:\WINDOWS\system32\RtkApoApi.dll
2015-09-29 13:53:39 ----A---- C:\WINDOWS\system32\RltkAPO.dll
2015-09-25 19:36:36 ----SD---- C:\Users\Zdenka\AppData\Roaming\Microsoft
2015-09-20 23:22:18 ----D---- C:\WINDOWS\system32\MRT
2015-09-18 22:00:28 ----D---- C:\Counter-Strike 1.6
2015-09-18 20:19:08 ----SHD---- C:\WINDOWS\Installer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-07-27 49776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-07-27 208664]
R0 iaStor;@oem8.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2009-06-04 330264]
R0 ngvss;ngvss; C:\WINDOWS\system32\drivers\ngvss.sys [2015-07-27 95112]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-07-27 81728]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-07-27 788784]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-07-27 433264]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 74240]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 7680]
R1 papycpu2;papycpu2; C:\WINDOWS\System32\DRIVERS\papycpu2.sys [2003-01-17 1984]
R1 papyjoy;papyjoy; C:\WINDOWS\System32\DRIVERS\papyjoy.sys [2003-01-17 1856]
R1 SABI;SAMSUNG Kernel Driver For Windows 7; \??\C:\windows\system32\Drivers\SABI.sys [2009-05-28 10752]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-07-27 24016]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-07-27 76000]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-07-27 113592]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 37376]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 52736]
R3 athr;@oem13.inf,%ATHR.Service.DispName%;Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athr.sys [2011-12-13 2228224]
R3 ETD;@oem21.inf,%SamsungDeviceDesc%;Samsung TouchPad Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-08-18 388184]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2012-03-23 4815872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2015-09-29 3544808]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-18 130048]
R3 Sftfs;Sftfs; C:\WINDOWS\system32\DRIVERS\Sftfslh.sys [2013-06-26 583848]
R3 Sftplay;Sftplay; C:\WINDOWS\system32\DRIVERS\Sftplaylh.sys [2013-06-26 197800]
R3 Sftredir;Sftredir; C:\WINDOWS\system32\DRIVERS\Sftredirlh.sys [2013-06-26 24232]
R3 Sftvol;Sftvol; C:\WINDOWS\system32\DRIVERS\Sftvollh.sys [2013-06-26 20136]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2015-07-10 9216]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2015-07-10 184832]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 83296]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 33632]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 23552]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 96768]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 24064]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-04-28 54632]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-07-10 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 37728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-07-10 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 45056]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-18 32768]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 31744]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 190816]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 73568]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 100704]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 42848]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 21856]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-08-18 48128]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-27 146600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-08-18 115616]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-18 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [2015-09-29 274152]
R2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-07-27 3218624]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 23040]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-05-29 43696]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-04-28 704872]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-16 148080]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 41864]
S3 npggsvc;nProtect GameGuard Service; C:\windows\system32\GameMon.des [2015-07-22 3611808]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 Samsung UPD Service;Samsung UPD Service; C:\WINDOWS\System32\SUPDSvc.exe [2010-08-09 131888]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-18 669696]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 35176]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-07-10 35176]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-07-10 45240]

-----------------EOF-----------------

[Rudy]

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

[diego44]

je to stále stejné, vyskakují reklamy a nesmyslné stránky. Tuto zprávu jsem odesílal čtyřikrát.

[Rudy]

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

[diego44]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 9.10.2015
Čas skenování: 21:11
Protokol: logm.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.10.09.06
Databáze rootkitů: v2015.10.06.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x86
Souborový systém: NTFS
Uživatel: Zdenka

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 379625
Uplynulý čas: 44 min, 40 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 14
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\05914eb0-bc9c-40dc-a3af-15020999188a-1-6, , [b03a3024286345f19a9a8326cf35d42c],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\05914eb0-bc9c-40dc-a3af-15020999188a-1-7, , [9357ce86f497a294191b8e1bd92b9c64],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\05914eb0-bc9c-40dc-a3af-15020999188a-11, , [ecfe86ce2e5df44246ee2188e71dbc44],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\05914eb0-bc9c-40dc-a3af-15020999188a-4, , [a04a9bb9bccf96a03ff5baeff2120af6],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\05914eb0-bc9c-40dc-a3af-15020999188a-5, , [eefc0a4a3a5170c63400e7c2da2a30d0],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\05914eb0-bc9c-40dc-a3af-15020999188a-6, , [43a785cfa6e594a25bd93c6d17edd729],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\05914eb0-bc9c-40dc-a3af-15020999188a-7, , [2cbee56f602b85b156de505906fed52b],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\globalUpdateUpdateTaskMachineCore, , [a545421246450f272322842e9a6a36ca],
PUP.Optional.GlobalUpdate, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\globalUpdateUpdateTaskMachineUA, , [da101b399eed191d68de8a28d03427d9],
PUP.Optional.ShopperPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ShopperPro, , [2ebc2232cdbe95a136d1f84ffd063dc3],
PUP.Optional.ShopperPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ShopperProJSUpd, , [13d7da7a5f2c979f0ff90f3831d2f10f],
PUP.Optional.ShopperPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SPBIW_UpdateTask_Time_343030323533353035332d415b343437414545785a5a6c, , [48a20450d7b4b87e92c3c40bd0340bf5],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-459703492-136551128-3912174221-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C3120EA9-3893-478B-85A3-0955115A6607}, , [84667bd91576092db9a0216f0ef6e020],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-459703492-136551128-3912174221-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{DD78C598-2453-4DF7-BCDC-82472EE951C2}, , [24c6aaaa800bc76f4415a4ec71937888],

Hodnoty registru: 2
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-459703492-136551128-3912174221-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C3120EA9-3893-478B-85A3-0955115A6607}|AppPath, C:\Users\Zdenka\AppData\Local\Tbccint\CT3329621, , [84667bd91576092db9a0216f0ef6e020]
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-459703492-136551128-3912174221-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{DD78C598-2453-4DF7-BCDC-82472EE951C2}|AppPath, C:\Users\Zdenka\AppData\Local\Tbccint\CT3329621, , [24c6aaaa800bc76f4415a4ec71937888]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 3
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5609.17391_0, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5708.19311_0, , [bc2e3b19c5c6a2941751cffab550eb15],

Soubory: 43
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\RecLib\B16F2E45550C48F0B65E8D174C02D9BE\setup0318.exe, , [b436c68e6427c4722e0f627f7e837d83],
PUP.Optional.PCMechanic, C:\Users\Zdenka\AppData\Roaming\RecLib\C9EB565AD4F946238E0544C9591F470F\pcmechanicpmROW_p1v2.exe, , [905ae96b3b50ca6c44219f0d17ea5fa1],
PUP.Optional.Bundle, C:\Users\Zdenka\Downloads\DJ Studio 5- Free Music Mixer for PC.exe, , [c228163ebecdfa3c689d5c38b9481ce4],
PUP.Optional.OpenCandy, C:\Users\Zdenka\Downloads\DTLite4491-0356.exe, , [0cde71e3266523137211bcf855b026da],
PUP.Optional.ClientConnect, C:\Users\Zdenka\Downloads\bs.exe, , [c7232034a0eb3ff7a78347e5f40d926e],
PUP.Optional.InstallCore, C:\Users\Zdenka\Downloads\Nepotvrzeno 507660.crdownload, , [ac3eb79d711a0b2b709a6b7c2ad735cb],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Setup (2).zip, , [5199cf853f4c6ec89eeac6ee2bd659a7],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Setup (1).zip, , [b832dd77a8e33bfbcabecfe5ed1424dc],
PUP.Optional.Seznam, C:\Users\Zdenka\Downloads\uTorrent-setup.exe, , [10da0054eba0cb6b15906c875ca4d62a],
PUP.Optional.OpenCandy, C:\Users\Zdenka\Downloads\teamspeak3-client-win32-3.0.16.exe, , [21c94c08aae1b284c8bb3282ef1619e7],
PUP.Optional.APNToolBar, C:\Users\Zdenka\Downloads\aTubeCatcher.exe, , [6a8097bdcbc0ad894b5512abef12728e],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Nepotvrzeno 69543.crdownload, , [58921b396a21979fdcac2f85ee13966a],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Nepotvrzeno 70440.crdownload, , [43a7f064fd8e4de9fa8efdb73dc48977],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Nepotvrzeno 786852.crdownload, , [9a50e074652683b3d3b5cfe5748d36ca],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Nepotvrzeno 867114.crdownload, , [30ba95bfbccf0036fa8ef3c1b15044bc],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Nepotvrzeno 17370.crdownload, , [8862f262543746f0b7d1f3c16f92837d],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Nepotvrzeno 322229.crdownload, , [e9012e262467e155fa8e9c18e21f2ed2],
PUP.Optional.DomaIQ, C:\Users\Zdenka\Downloads\Nepotvrzeno 437970.crdownload, , [6783c1935239af875137476d6a970000],
PUP.Optional.SoftPulse, C:\Users\Zdenka\Downloads\Setup.zip, , [7179dc786724b38390589b55ea1740c0],
PUP.Optional.SpeedBit, C:\Users\Zdenka\AppData\Local\Installer\Install_11085\DCytaiesmt_smtyc_setup.exe, , [64868bc91a719c9a4c6e304f05fc35cb],
PUP.Optional.SpeedBit, C:\Users\Zdenka\AppData\Local\Installer\Install_5566\DCytaiesmt_smtyc_setup.exe, , [09e191c3b9d246f07446d7a8847d7e82],
PUP.Optional.ShopperPro, C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_343030323533353035332d415b343437414545785a5a6c, , [4c9eb59f09821b1ba4c0a0b5877c837d],
PUP.Optional.ShopperPro, C:\Windows\System32\Tasks\ShopperPro, , [4e9c57fd2e5dcd698cdd52054bb8649c],
PUP.Optional.ShopperPro, C:\Windows\System32\Tasks\ShopperProJSUpd, , [d61404508a01cc6a343626319e6536ca],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\05914eb0-bc9c-40dc-a3af-15020999188a-1-6, , [bb2fa1b31d6e43f3f6fd9206d62e916f],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\05914eb0-bc9c-40dc-a3af-15020999188a-1-7, , [be2c163ebdced95d4ea5f6a22dd7a957],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\05914eb0-bc9c-40dc-a3af-15020999188a-11, , [49a12b29e9a266d0866d1088f90b3cc4],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\05914eb0-bc9c-40dc-a3af-15020999188a-4, , [b5356fe5abe0251128cb22760bf920e0],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\05914eb0-bc9c-40dc-a3af-15020999188a-5, , [c02a9db70784b77f38bb14841de7619f],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\05914eb0-bc9c-40dc-a3af-15020999188a-6, , [4b9f1d3777140c2a6b88336525dfa65a],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\05914eb0-bc9c-40dc-a3af-15020999188a-7, , [ab3fce868efd4bebca2972263fc5db25],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_expressfind-a.akamaihd.net_0.localstorage, , [b03a173d32596ec85569c8e5867e3ac6],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_expressfind-a.akamaihd.net_0.localstorage-journal, , [1cce282ccbc0d06614aacae306fec63a],
PUP.Optional.GlobalUpdate, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore, , [47a3aea61378f2446fcce3cfbd473fc1],
PUP.Optional.GlobalUpdate, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA, , [8466e56f1f6c83b3a6965c56ea1a40c0],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5609.17391_0\manifest.json, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5609.17391_0\background.js, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5609.17391_0\content.js, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5609.17391_0\icon.png, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5708.19311_0\background.js, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5708.19311_0\content.js, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5708.19311_0\icon.png, , [bc2e3b19c5c6a2941751cffab550eb15],
PUP.Optional.ExpressFind, C:\Users\Zdenka\AppData\Roaming\Opera Software\Opera Stable\Extensions\ncnadiaifiaoeoelaipabcacbkgjilmn\1.0.5708.19311_0\manifest.json, , [bc2e3b19c5c6a2941751cffab550eb15],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Rudy]

Všechny nálezy smažte.

[diego44]

je to stále stejné, jen mi ten program stále hlásí, že zablokoval škodlivé stránky i když jsem to smazal tím programem.