VIRY.CZ

Dobrý!
Prosím o kontrolu PC.V poslednom čase sa neako spomalil....
Log RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ja at 2016-10-29 16:39:01
Microsoft Windows 8.1 Pro
System drive C: has 198 GB (65%) free of 305 GB
Total RAM: 2047 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:39:30, on 29.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\WINDOWS\SysWOW64\RunDll32.exe
C:\Program Files\trend micro\Ja.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe
O4 - HKLM\..\Run: [tsnp2uvc] C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [B1556967E83E09CF3A6FA6F58E80E6737E409C39._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: ALFA plus - rýchle spustenie.lnk = C:\Program Files (x86)\KROS\ALFA plus\!System\ALFAplus.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Odoslať obrázok do &Zariadenia s rozhraním Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odoslať stránku do &Zariadenia s rozhraním Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Send to SideSync 3.0 - res://C:\Program Files (x86)\Samsung\SideSync3\SideSyncContextMenu.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @oem67.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - KROS_20400 (FirebirdServerKROS_20400) - Firebird Project - C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10669 bytes

======Listing Processes======





wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {90dd397e-13be-4590-bef370179c17188b}
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe" -s KROS_20400
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8cd2a520-45a8-4501-98d3-31312e57b9fa -SystemEventPortName:HostProcess-1f523c94-9373-4561-9f9d-6b6b528b3436 -IoCancelEventPortName:HostProcess-02fd08c6-5927-423b-bccc-2aaf2d129055 -NonStateChangingEventPortName:HostProcess-db6f5020-046f-4813-a860-32cd78f3f398 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:354aa3f2-df98-4d10-950a-c090d0944570 -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\WINDOWS\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" Run
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" /autoupdate /silent /autoclose /background
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
C:\WINDOWS\System32\mobsync.exe -Embedding
C:\WINDOWS\system32\srtasks.exe ExecuteScopeRestorePoint /WaitForRestorePoint:91
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\WINDOWS\system32\wuauclt.exe" /RunHandlerComServer
C:\WINDOWS\system32\WSqmCons.exe -u
C:\WINDOWS\system32\msiexec.exe /V

C:\WINDOWS\system32\svchost.exe -k defragsvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
rundll32.exe aeinv.dll,UpdateSoftwareInventory
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
rundll32.exe aeinv.dll,UpdateSoftwareInventory
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=54.0.2840.71 --handshake-handle=0x10c
C:\Windows\System32\MsiExec.exe -Embedding A0C47D4319731F5476A86A44AFF6E203 E Global\MSI0000
C:\Windows\syswow64\MsiExec.exe -Embedding E823FD52EFC119909073BB20933333AB E Global\MSI0000
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/" --primordial-pipe-token=C020F1BA8B4EFE3E78E82845B13040D4 --lang=sk --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --mojo-application-channel-token=C020F1BA8B4EFE3E78E82845B13040D4 --channel="220.2.656256798\55417965" --mojo-platform-channel-handle=3128 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials="*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/Override YouTube Flash emed/YouTubeFlashRewrite/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/BiMonthlyPrompt/SSLCommonNameMismatchHandling/Control/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_01/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/" --primordial-pipe-token=3B5F84613224F840A54AAFE580B4527E --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --mojo-application-channel-token=3B5F84613224F840A54AAFE580B4527E --channel="220.3.156848596\1145492557" --mojo-platform-channel-handle=3064 /prefetch:1
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXwpax1fjbh7ygaqg660efz6r7xtg8kh7m.mca
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXc4d7fm60wepvjgswtvcs9gmjbq7p28x1.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup

"C:\Users\Ja\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01 205416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 877720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 2322576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01 139368]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-05 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2012-10-01 704664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-05 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-07-29 7982112]
"snp2uvc"=C:\WINDOWS\vsnp2uvc.exe [2009-08-12 662016]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-11-06 4035152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-09-28 8944344]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
"B1556967E83E09CF3A6FA6F58E80E6737E409C39._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-10-20 1083496]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2016-01-08 1572648]
"KiesPDLR.exe"=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2016-01-08 1021736]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []
"snp2uvc"=C:\Windows\vsnp2uvc.exe [2009-08-12 662016]
"NPSStartup"= []
"tsnp2uvc"=C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe [2012-02-23 322560]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ALFA plus - rýchle spustenie.lnk - C:\Program Files (x86)\KROS\ALFA plus\!System\ALFAplus.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-24 19:07:51 ----D---- C:\Program Files\Common Files\DESIGNER
2016-10-24 19:06:57 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2016-10-24 19:06:56 ----D---- C:\Program Files\Microsoft.NET
2016-10-24 19:05:08 ----D---- C:\WINDOWS\PCHEALTH
2016-10-24 19:05:08 ----D---- C:\Program Files\Microsoft SQL Server
2016-10-24 19:02:23 ----D---- C:\Program Files\Microsoft Analysis Services
2016-10-24 19:02:23 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2016-10-24 19:02:09 ----D---- C:\Program Files\Microsoft Office
2016-10-24 19:01:55 ----RHD---- C:\MSOCache
2016-10-21 17:49:02 ----D---- C:\WINDOWS\LastGood.Tmp
2016-10-21 15:52:17 ----D---- C:\Program Files\VideoLAN
2016-10-14 19:46:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-14 18:36:42 ----A---- C:\WINDOWS\system32\win32k.sys
2016-10-14 18:36:40 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-14 18:36:35 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-14 18:36:33 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-14 18:36:30 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-14 18:36:27 ----A---- C:\WINDOWS\system32\esent.dll
2016-10-14 18:36:26 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-10-14 18:36:25 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-14 18:36:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-14 18:36:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-14 18:36:21 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-14 18:36:21 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-14 18:36:20 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-14 18:36:19 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-10-14 18:36:19 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-14 18:36:18 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-14 18:36:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-10-14 18:36:16 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-14 18:36:16 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-14 18:36:15 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-14 18:36:15 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-14 18:36:15 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-14 18:36:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-14 18:36:14 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-14 18:36:14 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-14 18:36:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-14 18:36:13 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-10-14 18:36:13 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-10-14 18:36:13 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-14 18:36:13 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-14 18:36:12 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-14 18:36:12 ----A---- C:\WINDOWS\system32\wbengine.exe
2016-10-14 18:36:12 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-14 18:36:11 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-10-14 18:36:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-14 18:36:11 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-14 18:36:10 ----AC---- C:\WINDOWS\system32\drivers\parport.sys
2016-10-14 18:36:10 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-10-14 18:36:10 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-14 18:36:10 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-10-14 18:36:10 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-14 18:36:10 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-14 18:36:09 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2016-10-14 18:36:09 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-14 18:36:09 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-10-14 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-10-14 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-14 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-14 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-14 18:36:08 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-14 18:36:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-14 18:36:07 ----A---- C:\WINDOWS\system32\rastapi.dll
2016-10-14 18:36:07 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-14 18:36:07 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-14 18:36:06 ----AC---- C:\WINDOWS\system32\drivers\serial.sys
2016-10-14 18:36:06 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-14 18:36:06 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-10-14 18:36:06 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2016-10-14 18:36:01 ----AC---- C:\WINDOWS\system32\drivers\serenum.sys
2016-10-14 18:36:01 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-14 18:36:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-10-14 18:36:01 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-14 18:36:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-10-14 18:36:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-10-14 18:36:01 ----A---- C:\WINDOWS\system32\drivers\vwifibus.sys
2016-10-14 18:36:00 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-10-14 18:36:00 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-10-14 18:36:00 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-10-14 18:36:00 ----A---- C:\WINDOWS\system32\jscript.dll
2016-10-14 18:36:00 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-10-14 18:36:00 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2016-10-14 18:36:00 ----A---- C:\WINDOWS\system32\certcli.dll
2016-10-14 18:31:52 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-14 18:31:52 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-14 18:31:52 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-14 18:31:52 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-14 18:31:52 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-14 18:31:52 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-14 18:31:51 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-14 18:31:51 ----A---- C:\WINDOWS\system32\centel.dll
2016-10-14 18:31:51 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-14 18:31:15 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-14 18:31:12 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-14 18:31:11 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-14 18:31:08 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-14 18:31:06 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-10-14 18:31:06 ----A---- C:\WINDOWS\system32\authui.dll
2016-10-14 18:31:06 ----A---- C:\WINDOWS\explorer.exe
2016-10-14 18:31:05 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2016-10-14 18:31:05 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-10-14 18:31:05 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2016-10-14 18:31:04 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-10-14 18:31:04 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-10-14 18:30:59 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-10-14 18:30:59 ----A---- C:\WINDOWS\system32\user32.dll

======List of files/folders modified in the last 1 month======

2016-10-29 16:39:20 ----D---- C:\Program Files\trend micro
2016-10-29 16:39:07 ----D---- C:\WINDOWS\Prefetch
2016-10-29 16:38:36 ----SHD---- C:\WINDOWS\Installer
2016-10-29 16:38:20 ----D---- C:\WINDOWS\Temp
2016-10-29 16:35:31 ----SHD---- C:\Config.Msi
2016-10-29 16:30:42 ----D---- C:\WINDOWS\system32\config
2016-10-29 16:27:45 ----D---- C:\ProgramData\Microsoft Help
2016-10-29 16:27:12 ----D---- C:\WINDOWS\Microsoft.NET
2016-10-29 16:25:25 ----RD---- C:\WINDOWS\assembly
2016-10-29 16:23:03 ----SHD---- C:\System Volume Information
2016-10-29 16:18:10 ----D---- C:\WINDOWS\Inf
2016-10-29 16:02:05 ----D---- C:\WINDOWS\system32\sru
2016-10-29 15:59:35 ----D---- C:\WINDOWS\system32\Tasks
2016-10-29 15:59:35 ----D---- C:\Program Files (x86)\Opera
2016-10-27 10:03:35 ----D---- C:\WINDOWS\SysWOW64
2016-10-27 10:03:18 ----D---- C:\WINDOWS\system32\Macromed
2016-10-27 10:03:08 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-10-24 19:26:22 ----D---- C:\WINDOWS\ModemLogs
2016-10-24 19:26:21 ----D---- C:\WINDOWS\debug
2016-10-24 19:26:21 ----D---- C:\Windows
2016-10-24 19:14:08 ----SD---- C:\Users\Ja\AppData\Roaming\Microsoft
2016-10-24 19:09:35 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-24 19:08:27 ----RSD---- C:\WINDOWS\Fonts
2016-10-24 19:08:12 ----D---- C:\WINDOWS\ShellNew
2016-10-24 19:08:06 ----D---- C:\Program Files\Common Files\microsoft shared
2016-10-24 19:07:51 ----D---- C:\Program Files\Common Files
2016-10-24 19:06:57 ----RD---- C:\Program Files (x86)
2016-10-24 19:06:56 ----RD---- C:\Program Files
2016-10-24 19:06:56 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-10-24 19:06:21 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-10-24 19:06:13 ----RD---- C:\WINDOWS\System32
2016-10-24 19:05:29 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-10-24 19:03:11 ----A---- C:\WINDOWS\win.ini
2016-10-24 19:03:10 ----D---- C:\Program Files\Common Files\System
2016-10-24 19:02:18 ----D---- C:\Program Files (x86)\Microsoft Office
2016-10-24 18:57:14 ----D---- C:\WINDOWS\system32\catroot
2016-10-24 18:54:39 ----SD---- C:\ProgramData\Microsoft
2016-10-24 18:54:00 ----D---- C:\Program Files (x86)\MSBuild
2016-10-24 18:53:52 ----D---- C:\Program Files (x86)\Common Files
2016-10-24 18:50:45 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-21 17:50:56 ----D---- C:\WINDOWS\system32\drivers
2016-10-21 16:06:30 ----D---- C:\Users\Ja\AppData\Roaming\vlc
2016-10-21 12:33:13 ----D---- C:\WINDOWS\SoftwareDistribution
2016-10-20 12:15:53 ----D---- C:\Program Files\CCleaner
2016-10-20 08:05:39 ----D---- C:\CENKROSplusData
2016-10-19 11:28:31 ----D---- C:\WINDOWS\rescache
2016-10-17 13:50:41 ----D---- C:\WINDOWS\WinSxS
2016-10-17 13:47:17 ----D---- C:\WINDOWS\system32\catroot2
2016-10-14 19:44:15 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-14 19:44:14 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-14 19:37:37 ----SD---- C:\WINDOWS\system32\CompatTel
2016-10-14 19:37:37 ----D---- C:\WINDOWS\system32\appraiser
2016-10-14 19:37:36 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-10-14 19:37:36 ----D---- C:\Program Files\Internet Explorer
2016-10-14 19:37:36 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-14 19:37:35 ----D---- C:\WINDOWS\system32\sk-SK
2016-10-14 19:37:35 ----D---- C:\WINDOWS\system32\Boot
2016-10-14 19:37:34 ----D---- C:\WINDOWS\apppatch
2016-10-14 19:37:29 ----RD---- C:\WINDOWS\ToastData
2016-10-14 19:33:57 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-14 19:33:12 ----D---- C:\WINDOWS\system32\MRT
2016-10-14 19:23:57 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-14 19:23:20 ----D---- C:\WINDOWS\CbsTemp
2016-10-14 19:14:35 ----D---- C:\WINDOWS\Logs
2016-10-14 18:23:09 ----D---- C:\WINDOWS\AppReadiness
2016-10-11 14:56:17 ----D---- C:\ProgramData\firebird

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2011-08-04 62496]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 31400]
R1 EpfwLWF;@oem74.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2011-08-04 38288]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2011-08-04 187632]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-06-19 11926016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-06-19 360448]
R3 bcbtums;@oem67.inf,%BCBTUMS.SvcDesc%;Bluetooth USB LD Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-10-28 170712]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-06-10 53248]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-06-10 81920]
R3 btwampfl;@oem67.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-10-28 166104]
R3 btwaudio;@oem76.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2014-11-15 186584]
R3 btwavdt;@oem75.inf,%btwavdt.SVCDESC%;Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btwavdt.sys [2014-11-15 228568]
R3 btwl2cap;@oem64.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-12-08 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2014-11-15 38616]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 40648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-07-29 1966624]
R3 MTsensor;@oem60.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 NVNET;@netnvm64.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\system32\DRIVERS\nvmf6264.sys [2013-06-18 344192]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2012-12-07 82816]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 ROCKEYNT;@oem119.inf,%Rockey.SVCDESC%;Feitian ROCKEY4 Device Service; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [2016-04-13 36904]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-06-10 1201664]
S3 dg_ssudbus;@oem134.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-05-13 46136]
S3 SNP2UVC;@oem35.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2011-09-09 3567232]
S3 ssudmdm;@oem131.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-06-14 16448]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-09-24 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\System32\drivers\usbscan.sys [2014-10-29 44544]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-16 82128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-04 361984]
R2 BcmBtRSupport;@oem67.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-10-28 2255064]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-11-15 959256]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-09-22 974944]
R2 FirebirdServerKROS_20400;Firebird Server - KROS_20400; C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe [2011-10-11 3764224]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2016-01-08 754784]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-27 270016]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02 144200]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]

-----------------EOF-----------------

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

AdwCleaner log:

# AdwCleaner v6.030 - Logfile created 30/10/2016 at 19:55:00
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-10-30.1 [Server]
# Operating System : Windows 8.1 Pro (X64)
# Username : Ja - IZOPLAST
# Running from : C:\Users\Ja\Desktop\adwcleaner_6.030.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****

[-] Folder deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] Folder deleted: C:\Program Files (x86)\myfree codec


***** [ Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Key deleted: HKU\S-1-5-21-3371812843-952179103-500597468-1001\Software\Myfree Codec
[-] Key deleted: HKU\S-1-5-21-3371812843-952179103-500597468-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[#] Key deleted on reboot: HKCU\Software\Myfree Codec
[-] Key deleted: HKLM\SOFTWARE\Myfree Codec
[#] Key deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[#] Key deleted on reboot: [x64] HKCU\Software\Myfree Codec
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec


***** [ Web browsers ] *****

[-] [C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: mystartsearch.com
[-] [C:\Users\Ja\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Deleted: mystartsearch


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [12821 Bytes] - [11/01/2016 18:50:07]
C:\AdwCleaner\AdwCleaner[C2].txt - [3037 Bytes] - [11/01/2016 20:31:47]
C:\AdwCleaner\AdwCleaner[C3].txt - [1364 Bytes] - [12/01/2016 19:07:33]
C:\AdwCleaner\AdwCleaner[C4].txt - [2004 Bytes] - [30/10/2016 19:55:00]
C:\AdwCleaner\AdwCleaner[S1].txt - [13427 Bytes] - [11/01/2016 18:44:00]
C:\AdwCleaner\AdwCleaner[S2].txt - [2848 Bytes] - [11/01/2016 20:29:55]
C:\AdwCleaner\AdwCleaner[S3].txt - [1011 Bytes] - [12/01/2016 19:03:16]
C:\AdwCleaner\AdwCleaner[S4].txt - [1236 Bytes] - [12/01/2016 19:06:25]
C:\AdwCleaner\AdwCleaner[S5].txt - [2472 Bytes] - [30/10/2016 19:54:25]

########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [2443 Bytes] ##########

Dejte nový log RSIT.

Ooooo-díky !!! Tuším sa to zrýchlilo....hotová raketa!
Díky ešte raz RUDY !

Log RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ja at 2016-10-31 09:11:23
Microsoft Windows 8.1 Pro
System drive C: has 196 GB (64%) free of 305 GB
Total RAM: 2047 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:11:29, on 31.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\trend micro\Ja.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe
O4 - HKLM\..\Run: [tsnp2uvc] C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [B1556967E83E09CF3A6FA6F58E80E6737E409C39._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: ALFA plus - rýchle spustenie.lnk = C:\Program Files (x86)\KROS\ALFA plus\!System\ALFAplus.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Odoslať obrázok do &Zariadenia s rozhraním Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odoslať stránku do &Zariadenia s rozhraním Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Send to SideSync 3.0 - res://C:\Program Files (x86)\Samsung\SideSync3\SideSyncContextMenu.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @oem67.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - KROS_20400 (FirebirdServerKROS_20400) - Firebird Project - C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10634 bytes

======Listing Processes======





wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
dashost.exe {554a754e-97dd-4c89-9b19f09ae022c4e4}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe" -s KROS_20400
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1a044e77-ad81-4099-b517-3365a40484a6 -SystemEventPortName:HostProcess-42e0b092-9d9b-4d28-9df7-6aaccab3b0f3 -IoCancelEventPortName:HostProcess-4ff3d268-7d5d-4e19-8fc0-9ac2d70f9cd3 -NonStateChangingEventPortName:HostProcess-48155e83-d868-44a7-b687-3e588d55bee2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:17c4b609-ab94-43cd-9e5e-e63881a0866b -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskeng.exe {BEEEB93D-0011-4012-9FC2-52994A4C831E}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
taskeng.exe {A66D7A62-A62F-4E63-A5CE-FC28765BDC70}
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" Run
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
C:\WINDOWS\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe -Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource scheduler

"C:\Users\Ja\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 877720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2015-01-21 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-02-10 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-05 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2012-10-01 704664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2015-01-21 1729744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-05 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-07-29 7982112]
"snp2uvc"=C:\WINDOWS\vsnp2uvc.exe [2009-08-12 662016]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-11-06 4035152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-09-28 8944344]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
"B1556967E83E09CF3A6FA6F58E80E6737E409C39._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-10-20 1083496]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2016-01-08 1572648]
"KiesPDLR.exe"=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2016-01-08 1021736]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []
"snp2uvc"=C:\Windows\vsnp2uvc.exe [2009-08-12 662016]
"NPSStartup"= []
"tsnp2uvc"=C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe [2012-02-23 322560]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ALFA plus - rýchle spustenie.lnk - C:\Program Files (x86)\KROS\ALFA plus\!System\ALFAplus.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-24 18:07:51 ----D---- C:\Program Files\Common Files\DESIGNER
2016-10-24 18:06:57 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2016-10-24 18:06:56 ----D---- C:\Program Files\Microsoft.NET
2016-10-24 18:05:08 ----D---- C:\WINDOWS\PCHEALTH
2016-10-24 18:05:08 ----D---- C:\Program Files\Microsoft SQL Server
2016-10-24 18:02:23 ----D---- C:\Program Files\Microsoft Analysis Services
2016-10-24 18:02:23 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2016-10-24 18:02:09 ----D---- C:\Program Files\Microsoft Office
2016-10-24 18:01:55 ----RHD---- C:\MSOCache
2016-10-21 14:52:17 ----D---- C:\Program Files\VideoLAN
2016-10-14 18:46:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-14 17:36:42 ----A---- C:\WINDOWS\system32\win32k.sys
2016-10-14 17:36:40 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-14 17:36:35 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-14 17:36:33 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-14 17:36:30 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-14 17:36:27 ----A---- C:\WINDOWS\system32\esent.dll
2016-10-14 17:36:26 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-10-14 17:36:25 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-14 17:36:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-14 17:36:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-14 17:36:21 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-14 17:36:21 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-14 17:36:20 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-14 17:36:19 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-10-14 17:36:19 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-14 17:36:18 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-14 17:36:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-10-14 17:36:16 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-14 17:36:16 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-14 17:36:15 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-14 17:36:15 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-14 17:36:15 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-14 17:36:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-14 17:36:14 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-14 17:36:14 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-14 17:36:12 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-14 17:36:12 ----A---- C:\WINDOWS\system32\wbengine.exe
2016-10-14 17:36:12 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-14 17:36:11 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-10-14 17:36:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-14 17:36:11 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-14 17:36:10 ----AC---- C:\WINDOWS\system32\drivers\parport.sys
2016-10-14 17:36:10 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-10-14 17:36:10 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-14 17:36:10 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-10-14 17:36:10 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-14 17:36:10 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-14 17:36:09 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2016-10-14 17:36:09 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-14 17:36:09 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-14 17:36:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-14 17:36:07 ----A---- C:\WINDOWS\system32\rastapi.dll
2016-10-14 17:36:07 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-14 17:36:07 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-14 17:36:06 ----AC---- C:\WINDOWS\system32\drivers\serial.sys
2016-10-14 17:36:06 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-14 17:36:06 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-10-14 17:36:06 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2016-10-14 17:36:01 ----AC---- C:\WINDOWS\system32\drivers\serenum.sys
2016-10-14 17:36:01 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-14 17:36:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-10-14 17:36:01 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-14 17:36:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-10-14 17:36:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-10-14 17:36:01 ----A---- C:\WINDOWS\system32\drivers\vwifibus.sys
2016-10-14 17:36:00 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\system32\jscript.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2016-10-14 17:36:00 ----A---- C:\WINDOWS\system32\certcli.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-14 17:31:51 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-14 17:31:51 ----A---- C:\WINDOWS\system32\centel.dll
2016-10-14 17:31:51 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-14 17:31:15 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-14 17:31:12 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-14 17:31:11 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-14 17:31:08 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-14 17:31:06 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-10-14 17:31:06 ----A---- C:\WINDOWS\system32\authui.dll
2016-10-14 17:31:06 ----A---- C:\WINDOWS\explorer.exe
2016-10-14 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2016-10-14 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-10-14 17:31:05 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2016-10-14 17:31:04 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-10-14 17:31:04 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-10-14 17:30:59 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-10-14 17:30:59 ----A---- C:\WINDOWS\system32\user32.dll

======List of files/folders modified in the last 1 month======

2016-10-31 09:11:26 ----D---- C:\Program Files\trend micro
2016-10-31 09:09:30 ----D---- C:\WINDOWS\Temp
2016-10-31 09:08:42 ----D---- C:\WINDOWS\system32\sru
2016-10-30 20:31:16 ----D---- C:\WINDOWS\Prefetch
2016-10-30 20:20:18 ----D---- C:\WINDOWS\system32\config
2016-10-30 20:04:49 ----RD---- C:\WINDOWS\System32
2016-10-30 20:04:49 ----D---- C:\WINDOWS\Inf
2016-10-30 20:04:49 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-30 19:55:40 ----D---- C:\WINDOWS\system32\catroot
2016-10-30 19:55:00 ----D---- C:\AdwCleaner
2016-10-30 19:54:56 ----RD---- C:\Program Files (x86)
2016-10-30 19:47:39 ----D---- C:\Windows
2016-10-30 19:46:55 ----SHD---- C:\Config.Msi
2016-10-29 19:29:35 ----SHD---- C:\WINDOWS\Installer
2016-10-29 19:27:50 ----D---- C:\ProgramData\Microsoft Help
2016-10-29 17:21:10 ----D---- C:\WINDOWS\CbsTemp
2016-10-29 17:20:51 ----D---- C:\WINDOWS\WinSxS
2016-10-29 17:20:50 ----D---- C:\WINDOWS\SysWOW64
2016-10-29 16:22:01 ----RD---- C:\WINDOWS\assembly
2016-10-29 16:09:13 ----A---- C:\WINDOWS\win.ini
2016-10-29 15:48:31 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-10-29 15:27:12 ----D---- C:\WINDOWS\Microsoft.NET
2016-10-29 15:23:03 ----SHD---- C:\System Volume Information
2016-10-29 14:59:35 ----D---- C:\WINDOWS\system32\Tasks
2016-10-29 14:59:35 ----D---- C:\Program Files (x86)\Opera
2016-10-27 09:03:18 ----D---- C:\WINDOWS\system32\Macromed
2016-10-27 09:03:08 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-10-24 18:26:22 ----D---- C:\WINDOWS\ModemLogs
2016-10-24 18:26:21 ----D---- C:\WINDOWS\debug
2016-10-24 18:14:08 ----SD---- C:\Users\Ja\AppData\Roaming\Microsoft
2016-10-24 18:09:35 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-24 18:08:27 ----RSD---- C:\WINDOWS\Fonts
2016-10-24 18:08:12 ----D---- C:\WINDOWS\ShellNew
2016-10-24 18:08:06 ----D---- C:\Program Files\Common Files\microsoft shared
2016-10-24 18:07:51 ----D---- C:\Program Files\Common Files
2016-10-24 18:06:56 ----RD---- C:\Program Files
2016-10-24 18:06:56 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-10-24 18:06:21 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-10-24 18:03:10 ----D---- C:\Program Files\Common Files\System
2016-10-24 18:02:18 ----D---- C:\Program Files (x86)\Microsoft Office
2016-10-24 17:54:39 ----SD---- C:\ProgramData\Microsoft
2016-10-24 17:54:00 ----D---- C:\Program Files (x86)\MSBuild
2016-10-24 17:53:52 ----D---- C:\Program Files (x86)\Common Files
2016-10-21 16:50:56 ----D---- C:\WINDOWS\system32\drivers
2016-10-21 15:06:30 ----D---- C:\Users\Ja\AppData\Roaming\vlc
2016-10-21 11:33:13 ----D---- C:\WINDOWS\SoftwareDistribution
2016-10-20 11:15:53 ----D---- C:\Program Files\CCleaner
2016-10-20 07:05:39 ----D---- C:\CENKROSplusData
2016-10-19 10:28:31 ----D---- C:\WINDOWS\rescache
2016-10-17 12:47:17 ----D---- C:\WINDOWS\system32\catroot2
2016-10-14 18:44:15 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-14 18:44:14 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-14 18:37:37 ----SD---- C:\WINDOWS\system32\CompatTel
2016-10-14 18:37:37 ----D---- C:\WINDOWS\system32\appraiser
2016-10-14 18:37:36 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-10-14 18:37:36 ----D---- C:\Program Files\Internet Explorer
2016-10-14 18:37:36 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-14 18:37:35 ----D---- C:\WINDOWS\system32\sk-SK
2016-10-14 18:37:35 ----D---- C:\WINDOWS\system32\Boot
2016-10-14 18:37:34 ----D---- C:\WINDOWS\apppatch
2016-10-14 18:37:29 ----RD---- C:\WINDOWS\ToastData
2016-10-14 18:33:57 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-14 18:33:12 ----D---- C:\WINDOWS\system32\MRT
2016-10-14 18:23:57 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-14 18:14:35 ----D---- C:\WINDOWS\Logs
2016-10-14 17:23:09 ----D---- C:\WINDOWS\AppReadiness
2016-10-11 13:56:17 ----D---- C:\ProgramData\firebird

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2011-08-04 62496]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 31400]
R1 EpfwLWF;@oem74.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2011-08-04 38288]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2011-08-04 187632]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-06-19 11926016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-06-19 360448]
R3 bcbtums;@oem67.inf,%BCBTUMS.SvcDesc%;Bluetooth USB LD Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-10-28 170712]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-06-09 53248]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 btwampfl;@oem67.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-10-28 166104]
R3 btwaudio;@oem76.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2014-11-15 186584]
R3 btwavdt;@oem75.inf,%btwavdt.SVCDESC%;Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btwavdt.sys [2014-11-15 228568]
R3 btwl2cap;@oem64.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-12-08 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2014-11-15 38616]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 40648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-07-29 1966624]
R3 MTsensor;@oem60.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 NVNET;@netnvm64.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\system32\DRIVERS\nvmf6264.sys [2013-06-18 344192]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2012-12-07 82816]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 ROCKEYNT;@oem119.inf,%Rockey.SVCDESC%;Feitian ROCKEY4 Device Service; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [2016-04-13 36904]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 dg_ssudbus;@oem134.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-05-13 46136]
S3 SNP2UVC;@oem35.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2011-09-09 3567232]
S3 ssudmdm;@oem131.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-06-14 16448]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-09-24 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\System32\drivers\usbscan.sys [2014-10-29 44544]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-16 82128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-04 361984]
R2 BcmBtRSupport;@oem67.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-10-28 2255064]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-11-15 959256]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-09-22 974944]
R2 FirebirdServerKROS_20400;Firebird Server - KROS_20400; C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe [2011-10-11 3764224]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2016-01-08 754784]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-27 270016]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02 144200]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

RSIT log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ja at 2016-10-31 19:45:05
Microsoft Windows 8.1 Pro
System drive C: has 193 GB (63%) free of 305 GB
Total RAM: 2047 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:45:13, on 31.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\trend micro\Ja.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [snp2uvc] C:\Windows\vsnp2uvc.exe
O4 - HKLM\..\Run: [tsnp2uvc] C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [B1556967E83E09CF3A6FA6F58E80E6737E409C39._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O4 - Global Startup: ALFA plus - rýchle spustenie.lnk = C:\Program Files (x86)\KROS\ALFA plus\!System\ALFAplus.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Odoslať obrázok do &Zariadenia s rozhraním Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odoslať stránku do &Zariadenia s rozhraním Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Send to SideSync 3.0 - res://C:\Program Files (x86)\Samsung\SideSync3\SideSyncContextMenu.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @oem67.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - KROS_20400 (FirebirdServerKROS_20400) - Firebird Project - C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10520 bytes

======Listing Processes======





wininit.exe


C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskhostex.exe
C:\WINDOWS\Explorer.EXE
taskeng.exe {955814CD-14C8-4A56-84E4-EEC162494CC7}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskeng.exe {267F9B97-8E3A-4200-B419-85FB8FBE0AFD}
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {310f936f-3c45-47f0-b9a45e94c1a7d225}
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe" -s KROS_20400
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-badd7e5c-00d4-4927-9206-a1b63860c31d -SystemEventPortName:HostProcess-1cf2251d-8a7f-4a23-b1b3-1116ffdeb59a -IoCancelEventPortName:HostProcess-1883bf63-e64a-4e54-b53c-364505e1091d -NonStateChangingEventPortName:HostProcess-20daee5c-c407-49b8-8d28-bef21e5a0b7b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ee966705-96fe-4013-a030-8dee8a99b639 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\WINDOWS\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" Run
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
C:\WINDOWS\System32\mobsync.exe -Embedding
"C:\Users\Ja\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"

"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2015-01-21 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-02-10 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-05 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2015-01-21 1729744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-05 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-07-29 7982112]
"snp2uvc"=C:\WINDOWS\vsnp2uvc.exe [2009-08-12 662016]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-11-06 4035152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-09-28 8944344]
"SpybotPostWindows10UpgradeReInstall"=C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [2015-07-28 1011200]
"B1556967E83E09CF3A6FA6F58E80E6737E409C39._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-10-20 1083496]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2016-01-08 1572648]
"KiesPDLR.exe"=C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2016-01-08 1021736]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []
"snp2uvc"=C:\Windows\vsnp2uvc.exe [2009-08-12 662016]
"NPSStartup"= []
"tsnp2uvc"=C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe [2012-02-23 322560]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ALFA plus - rýchle spustenie.lnk - C:\Program Files (x86)\KROS\ALFA plus\!System\ALFAplus.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-10-31 19:35:59 ----D---- C:\Program Files\Microsoft.NET
2016-10-24 18:07:51 ----D---- C:\Program Files\Common Files\DESIGNER
2016-10-24 18:06:57 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2016-10-24 18:05:08 ----D---- C:\WINDOWS\PCHEALTH
2016-10-24 18:05:08 ----D---- C:\Program Files\Microsoft SQL Server
2016-10-24 18:02:23 ----D---- C:\Program Files\Microsoft Analysis Services
2016-10-24 18:02:23 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2016-10-24 18:02:09 ----D---- C:\Program Files\Microsoft Office
2016-10-24 18:01:55 ----RHD---- C:\MSOCache
2016-10-21 14:52:17 ----D---- C:\Program Files\VideoLAN
2016-10-14 18:46:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-14 17:36:42 ----A---- C:\WINDOWS\system32\win32k.sys
2016-10-14 17:36:40 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-14 17:36:35 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-14 17:36:33 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-14 17:36:30 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-14 17:36:27 ----A---- C:\WINDOWS\system32\esent.dll
2016-10-14 17:36:26 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-10-14 17:36:25 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-14 17:36:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-14 17:36:22 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-14 17:36:21 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-14 17:36:21 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-14 17:36:20 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-14 17:36:19 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-10-14 17:36:19 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-14 17:36:18 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-14 17:36:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-10-14 17:36:16 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-14 17:36:16 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-14 17:36:15 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-14 17:36:15 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-14 17:36:15 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-14 17:36:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-14 17:36:14 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-14 17:36:14 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-14 17:36:13 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-14 17:36:12 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-14 17:36:12 ----A---- C:\WINDOWS\system32\wbengine.exe
2016-10-14 17:36:12 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-14 17:36:11 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-10-14 17:36:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-14 17:36:11 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-14 17:36:10 ----AC---- C:\WINDOWS\system32\drivers\parport.sys
2016-10-14 17:36:10 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-10-14 17:36:10 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-14 17:36:10 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-10-14 17:36:10 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-14 17:36:10 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-14 17:36:09 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2016-10-14 17:36:09 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-14 17:36:09 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-14 17:36:08 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-14 17:36:07 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-14 17:36:07 ----A---- C:\WINDOWS\system32\rastapi.dll
2016-10-14 17:36:07 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-14 17:36:07 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-14 17:36:06 ----AC---- C:\WINDOWS\system32\drivers\serial.sys
2016-10-14 17:36:06 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-14 17:36:06 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-10-14 17:36:06 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2016-10-14 17:36:01 ----AC---- C:\WINDOWS\system32\drivers\serenum.sys
2016-10-14 17:36:01 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-14 17:36:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-10-14 17:36:01 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-14 17:36:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-10-14 17:36:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-10-14 17:36:01 ----A---- C:\WINDOWS\system32\drivers\vwifibus.sys
2016-10-14 17:36:00 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\system32\jscript.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-10-14 17:36:00 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2016-10-14 17:36:00 ----A---- C:\WINDOWS\system32\certcli.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-14 17:31:52 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-14 17:31:51 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-14 17:31:51 ----A---- C:\WINDOWS\system32\centel.dll
2016-10-14 17:31:51 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-14 17:31:15 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-14 17:31:12 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-14 17:31:11 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-14 17:31:08 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-14 17:31:06 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-10-14 17:31:06 ----A---- C:\WINDOWS\system32\authui.dll
2016-10-14 17:31:06 ----A---- C:\WINDOWS\explorer.exe
2016-10-14 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2016-10-14 17:31:05 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-10-14 17:31:05 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2016-10-14 17:31:04 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-10-14 17:31:04 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-10-14 17:30:59 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-10-14 17:30:59 ----A---- C:\WINDOWS\system32\user32.dll

======List of files/folders modified in the last 1 month======

2016-10-31 19:45:13 ----D---- C:\WINDOWS\Prefetch
2016-10-31 19:45:11 ----D---- C:\Program Files\trend micro
2016-10-31 19:43:09 ----D---- C:\WINDOWS\Temp
2016-10-31 19:42:31 ----D---- C:\Windows
2016-10-31 19:41:04 ----SHD---- C:\WINDOWS\Installer
2016-10-31 19:41:04 ----SHD---- C:\Config.Msi
2016-10-31 19:41:04 ----D---- C:\ProgramData\Microsoft Help
2016-10-31 19:41:03 ----RD---- C:\WINDOWS\assembly
2016-10-31 19:38:53 ----D---- C:\WINDOWS\Microsoft.NET
2016-10-31 19:37:30 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-31 19:37:30 ----D---- C:\WINDOWS\Inf
2016-10-31 19:35:59 ----RD---- C:\Program Files
2016-10-31 19:35:59 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-10-31 19:35:56 ----D---- C:\Program Files\Common Files\microsoft shared
2016-10-31 19:31:36 ----RD---- C:\WINDOWS\System32
2016-10-31 19:30:15 ----D---- C:\WINDOWS\Tasks
2016-10-31 19:26:10 ----D---- C:\WINDOWS\system32\sru
2016-10-31 10:23:47 ----D---- C:\WINDOWS\system32\config
2016-10-31 10:02:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-31 09:53:05 ----D---- C:\AdwCleaner
2016-10-31 09:49:48 ----A---- C:\WINDOWS\win.ini
2016-10-31 09:31:48 ----SHD---- C:\System Volume Information
2016-10-30 19:55:40 ----D---- C:\WINDOWS\system32\catroot
2016-10-30 19:54:56 ----RD---- C:\Program Files (x86)
2016-10-29 17:21:10 ----D---- C:\WINDOWS\CbsTemp
2016-10-29 17:20:51 ----D---- C:\WINDOWS\WinSxS
2016-10-29 17:20:50 ----D---- C:\WINDOWS\SysWOW64
2016-10-29 15:48:31 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-10-29 14:59:35 ----D---- C:\WINDOWS\system32\Tasks
2016-10-29 14:59:35 ----D---- C:\Program Files (x86)\Opera
2016-10-27 09:03:18 ----D---- C:\WINDOWS\system32\Macromed
2016-10-27 09:03:08 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-10-24 18:26:22 ----D---- C:\WINDOWS\ModemLogs
2016-10-24 18:26:21 ----D---- C:\WINDOWS\debug
2016-10-24 18:14:08 ----SD---- C:\Users\Ja\AppData\Roaming\Microsoft
2016-10-24 18:08:27 ----RSD---- C:\WINDOWS\Fonts
2016-10-24 18:08:12 ----D---- C:\WINDOWS\ShellNew
2016-10-24 18:07:51 ----D---- C:\Program Files\Common Files
2016-10-24 18:06:21 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-10-24 18:03:10 ----D---- C:\Program Files\Common Files\System
2016-10-24 18:02:18 ----D---- C:\Program Files (x86)\Microsoft Office
2016-10-24 17:54:39 ----SD---- C:\ProgramData\Microsoft
2016-10-24 17:54:00 ----D---- C:\Program Files (x86)\MSBuild
2016-10-24 17:53:52 ----D---- C:\Program Files (x86)\Common Files
2016-10-21 16:50:56 ----D---- C:\WINDOWS\system32\drivers
2016-10-21 15:06:30 ----D---- C:\Users\Ja\AppData\Roaming\vlc
2016-10-21 11:33:13 ----D---- C:\WINDOWS\SoftwareDistribution
2016-10-20 11:15:53 ----D---- C:\Program Files\CCleaner
2016-10-20 07:05:39 ----D---- C:\CENKROSplusData
2016-10-19 10:28:31 ----D---- C:\WINDOWS\rescache
2016-10-17 12:47:17 ----D---- C:\WINDOWS\system32\catroot2
2016-10-14 18:44:15 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-14 18:44:14 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-10-14 18:37:37 ----SD---- C:\WINDOWS\system32\CompatTel
2016-10-14 18:37:37 ----D---- C:\WINDOWS\system32\appraiser
2016-10-14 18:37:36 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-10-14 18:37:36 ----D---- C:\Program Files\Internet Explorer
2016-10-14 18:37:36 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-14 18:37:35 ----D---- C:\WINDOWS\system32\sk-SK
2016-10-14 18:37:35 ----D---- C:\WINDOWS\system32\Boot
2016-10-14 18:37:34 ----D---- C:\WINDOWS\apppatch
2016-10-14 18:37:29 ----RD---- C:\WINDOWS\ToastData
2016-10-14 18:33:57 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-14 18:33:12 ----D---- C:\WINDOWS\system32\MRT
2016-10-14 18:23:57 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-14 18:14:35 ----D---- C:\WINDOWS\Logs
2016-10-14 17:23:09 ----D---- C:\WINDOWS\AppReadiness
2016-10-11 13:56:17 ----D---- C:\ProgramData\firebird

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2011-08-04 62496]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 31400]
R1 EpfwLWF;@oem74.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2011-08-04 38288]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2011-08-04 187632]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-06-19 11926016]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-06-19 360448]
R3 bcbtums;@oem67.inf,%BCBTUMS.SvcDesc%;Bluetooth USB LD Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-10-28 170712]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-06-09 53248]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 btwampfl;@oem67.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-10-28 166104]
R3 btwaudio;@oem76.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2014-11-15 186584]
R3 btwavdt;@oem75.inf,%btwavdt.SVCDESC%;Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btwavdt.sys [2014-11-15 228568]
R3 btwl2cap;@oem64.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-12-08 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2014-11-15 38616]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 40648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-07-29 1966624]
R3 MTsensor;@oem60.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2013-05-17 17280]
R3 NVNET;@netnvm64.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\system32\DRIVERS\nvmf6264.sys [2013-06-18 344192]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2012-12-07 82816]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 ROCKEYNT;@oem119.inf,%Rockey.SVCDESC%;Feitian ROCKEY4 Device Service; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [2016-04-13 36904]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 dg_ssudbus;@oem134.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-05-13 46136]
S3 SNP2UVC;@oem35.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2011-09-09 3567232]
S3 ssudmdm;@oem131.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-06-14 16448]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-09-24 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\System32\drivers\usbscan.sys [2014-10-29 44544]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-16 82128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-07-04 361984]
R2 BcmBtRSupport;@oem67.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-10-28 2255064]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-11-15 959256]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-09-22 974944]
R2 FirebirdServerKROS_20400;Firebird Server - KROS_20400; C:\Program Files (x86)\KROS\KROS FBServer\Firebird001\bin\fbserver.exe [2011-10-11 3764224]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2016-01-08 754784]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-27 270016]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-02 144200]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]

-----------------EOF-----------------

Smazáno. Nastala nějaká změna?

Myslím že všetko šlape ako má!
Díky moc RUDY!

Nemáte zač!