﻿Logfile of random's system information tool 1.10 (written by random/random)
Run by v-krejsa at 2016-01-19 13:06:26
Microsoft Windows 7 Professional  Service Pack 1
System drive C: has 55 GB (36%) free of 154 GB
Total RAM: 8083 MB (39% free)

HijackThis download failed

======Listing Processes======



\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=97057322-cd77-4127-9a17-1d36c739030b /coreSdkOptions=4382 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\1512a669-8424-4136-8602-ad51d9a2dc01-1fc-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DELLGRM
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c5f6917a-6648-4792-ac67-02f82c0856a3 -SystemEventPortName:HostProcess-a8088fb2-6f9f-40a0-a662-61423bb8503d -IoCancelEventPortName:HostProcess-99c2eab6-766e-4fe9-b185-e9806ac0badf -NonStateChangingEventPortName:HostProcess-c170077e-0828-400e-b782-f750a95620a2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1e7ad139-5c41-420f-a073-d0ec1c2e0f17 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-384800f0-c9db-4b78-950b-9062d3b0e0ca -SystemEventPortName:HostProcess-50efd3e8-7370-446b-8f24-ffff84171385 -IoCancelEventPortName:HostProcess-b3146c52-398e-4899-ac4c-906e0ac5c9b5 -NonStateChangingEventPortName:HostProcess-71acf65b-9f75-4048-8c02-1a422e577575 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d7994d19-c338-4263-a3d7-b1c22b665ef1 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-92dd60e1-9d54-4827-a2ad-baac62da1f8d -SystemEventPortName:HostProcess-39b3ea9d-77b0-4dd9-b245-b59db1afb2e9 -IoCancelEventPortName:HostProcess-7b4f5c8f-6074-4e0d-a330-4d4fdbd3e915 -NonStateChangingEventPortName:HostProcess-98519b1b-853c-419a-9e37-8626affdafcb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0500014c-d1fd-47df-8d38-71dc7abb3b16 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0774c1ba-e4da-4075-a1ee-04874ae6a5a3 -SystemEventPortName:HostProcess-6da2b4f0-9fc2-42a6-bd25-60e47e253558 -IoCancelEventPortName:HostProcess-b0088dd4-d211-4577-9075-45789f5afa73 -NonStateChangingEventPortName:HostProcess-a2e24253-b665-4cdb-8df1-27cd0f81fbfb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1d65a229-6cd6-46fd-a2d9-5e25e38f2f78 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b693d12a-1f77-4dab-908c-e0d7b20c236b -SystemEventPortName:HostProcess-c4f9adbd-090e-4473-a02f-c3fb643b540a -IoCancelEventPortName:HostProcess-163cc10f-e6fd-4cec-9e79-373349f01c4a -NonStateChangingEventPortName:HostProcess-c691fd0e-0d19-4671-b843-446d9ecc40d2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0b31098a-6f02-4c23-ab2a-6edda44c19ba -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 28630816
\??\C:\Windows\system32\conhost.exe "10293740121306994042403949182-126263478-11641591021345766992-737947923-433887347
C:\Windows\System32\spoolsv.exe
"c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe"
"c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\M-Files\11.0.4300.31\Bin\x64\mfclient.exe" /SCM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\DellTPad\HidMonitorSvc.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe"
"C:\Program Files\BrAutomation\AsTools\BrAuthorization\BrAuthorizationSvc.exe"
"C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\esif_uf.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\system32\hasplms.exe -run
C:\Windows\system32\IProsetMonitor.exe
"C:\Program Files\M-Files\11.0.4300.31\Bin\x64\mfsetup.exe" /SCM
"C:\Program Files (x86)\GEOVAP\LicenseService\LicenseService.Server.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2013\avgemca.exe"
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=bd7be623-aa5e-4f4f-85f2-5e2b22f2f76e /coreSdkOptions=4114 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\90f9b937-be00-4111-a23b-6c3e47f1eb50-eb8-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\"
C:\Windows\system32\svchost.exe -k regsvc
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"
"C:\Program Files\DellTPad\Apoint.exe"
"taskhost.exe"
"C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe" 
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\TEMP\DPTF\esif_assist.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
C:\Windows\Explorer.EXE
"C:\Program Files\DellTPad\HidFind.exe" 
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "-634445705-11303313752028479631-73962880-1506325784-271550707726844719-1997596003
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" /s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX6
"C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe" 
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files\m-files\11.0.4300.31\bin\x64\MFAUClient.exe" 
"C:\Program Files\m-files\11.0.4300.31\bin\x64\MFStatus.exe" 
"C:\Users\v-krejsa\AppData\Local\Microsoft\BingSvc\BingSvc.exe" 
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe" 
"C:\Windows\System32\StikyNot.exe" 
"C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" 
szndesktop.exe default start
"C:\Users\v-krejsa\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "-212859730111357539111784076087-2141734312-265864683-20661444841954233143833176188
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
"C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup
"C:\Program Files (x86)\GEOVAP\RelianceOPCServer\OPC.Systray.exe" -autorun
"C:\Program Files (x86)\Common Files\Hilscher\ODMV3\ODMTray.exe" 
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe" 
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 
taskeng.exe {ED6694B3-992D-4260-9985-76BF320F2069}
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
"C:\Program Files (x86)\Citrix\Receiver\Receiver.exe" -autoupdate -startplugins
C:\Windows\system32\SearchIndexer.exe /Embedding
igfxEM.exe 
igfxHK.exe 
igfxTray.exe 
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe" 
"C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe" -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\BrAutomation\AS42\Bin-en\BR.AS.UpgradeService.exe"
"C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\system32\DRIVERS\o2flash.exe
"C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe" 
"C:\Windows\SYSTEM32\WISPTIS.EXE" /ManualLaunch;
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" 
"C:\Program Files\totalcmd\TOTALCMD64.EXE" 
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=62d2c95a-d1ec-4b2f-aca8-1d11b555de42 /coreSdkOptions=4096 /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\" /dataPath="C:\ProgramData\AVG2013\" /userDataPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\"
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=54d8705a-8fb5-4a43-a53c-75024e612972 /coreSdkOptions=4096 /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Users\v-krejsa\AppData\Local\Avg2013\temp" /dataPath="C:\ProgramData\AVG2013\" /userDataPath="C:\Users\v-krejsa\AppData\Local\Avg2013" /logPath="C:\Users\v-krejsa\AppData\Local\Avg2013\log"
"C:\Program Files\Internet Explorer\iexplore.exe" 
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4116 CREDAT:275457 /prefetch:2
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-270207346-1464484900-1734353810-947328_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-270207346-1464484900-1734353810-947328 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"  "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536 
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe29_ Global\UsGthrCtrlFltPipeMssGthrPipe29 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Users\v-krejsa\Desktop\RSITx64.exe" 
taskhost.exe $(Arg0)
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /c 
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  /ua /installsource scheduler 

=========Mozilla firefox=========

ProfilePath - C:\Users\v-krejsa\AppData\Roaming\Mozilla\Firefox\Profiles\k5pqdtdu.default

prefs.js - "browser.startup.homepage" -  "http://www.seznam.cz/|http://portal/default.aspx"
prefs.js - "keyword.URL" -  "http://www.bing.com/search?FORM=SK2MDF&PC=SK2M&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Citrix.com/npican]
"Description"=Citrix ICA Client Plugin
"Path"=C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.66.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Web Components]
"Description"=
"Path"=C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.CZE
nppdf32.dll

C:\Users\v-krejsa\AppData\Roaming\Mozilla\Firefox\Profiles\k5pqdtdu.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\v-krejsa\AppData\Roaming\Mozilla\Firefox\Profiles\k5pqdtdu.default\searchplugins\
bingp.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18 219304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-09-30 171704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2014-01-21 881880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2015-11-10 2339032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-09-30 171704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18 153768]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-18 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30 141496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2014-01-23 707800]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2015-11-10 1731800]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-18 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30 141496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-09-30 171704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30 141496]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2014-12-09 729432]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-12-09 7666392]
"RtHDVBg_MAXX6"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-12-04 1391472]
"WavesSvc"=C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [2014-10-02 606296]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2014-10-29 4876496]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-10-28 7822648]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-06-25 36352]
"M-Files Automatic Updates 2015 (11.0.4300.31)"=C:\Program Files\M-Files\11.0.4300.31\Bin\x64\MFAUClient.exe [2015-04-14 502624]
"M-Files Status 2015 (11.0.4300.31)"=C:\Program Files\M-Files\11.0.4300.31\Bin\x64\MFStatus.exe [2015-04-14 6557536]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-10-30 508104]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BingSvc"=C:\Users\v-krejsa\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-11-15 144008]
"cz.seznam.software.autoupdate"=C:\Users\v-krejsa\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\v-krejsa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"WindowexeAllkiller"=C:\Users\v-krejsa\Downloads\WindowexeAllkiller\WindowexeAllkiller.exe []
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-17 50378880]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2014-03-13 779776]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-11-04 296208]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2015-10-30 4431848]
"ConnectionCenter"=C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [2013-10-01 395656]
"Redirector"=C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [2013-10-01 153992]
"Reliance OPC Server Systray"=C:\Program Files (x86)\GEOVAP\RelianceOPCServer\OPC.Systray.exe [2015-10-20 110592]
"ODMV3Tray"=C:\Program Files (x86)\Common Files\Hilscher\ODMV3\ODMTray.exe [2011-09-28 73728]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [2015-12-18 1867448]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09 596528]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
""= []

C:\Users\v-krejsa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Odeslat do OneNote.lnk - C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"="C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe:*:Enabled:CodeMeter Runtime Server"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"="C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe:*:Enabled:CodeMeter Runtime Server"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install - 
.scr - config - 

======List of files/folders created in the last 3 months======

2016-01-19 13:06:26 ----D---- C:\rsit
2016-01-19 13:06:26 ----D---- C:\Program Files\trend micro
2016-01-19 13:01:28 ----D---- C:\FRST
2016-01-14 10:38:59 ----D---- C:\Steb_Opat
2016-01-12 13:47:14 ----D---- C:\Zdenda
2016-01-12 10:53:17 ----D---- C:\Projekt_read
2016-01-12 08:55:32 ----D---- C:\Castolovice_read
2016-01-11 16:28:37 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-01-11 16:28:37 ----A---- C:\Windows\system32\tzres.dll
2016-01-11 16:28:18 ----A---- C:\Windows\system32\usp10.dll
2016-01-11 16:28:17 ----A---- C:\Windows\SYSWOW64\usp10.dll
2016-01-11 16:25:45 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-01-11 16:25:45 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2016-01-11 16:25:45 ----A---- C:\Windows\system32\win32k.sys
2016-01-11 16:25:45 ----A---- C:\Windows\system32\user32.dll
2016-01-11 16:25:45 ----A---- C:\Windows\system32\FntCache.dll
2016-01-11 16:25:45 ----A---- C:\Windows\system32\DWrite.dll
2016-01-11 16:24:59 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2016-01-11 16:24:59 ----A---- C:\Windows\system32\wshrm.dll
2016-01-11 16:24:59 ----A---- C:\Windows\system32\drivers\rmcast.sys
2016-01-11 16:24:18 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2016-01-11 16:24:18 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2016-01-11 16:24:18 ----A---- C:\Windows\system32\comsvcs.dll
2016-01-11 16:24:18 ----A---- C:\Windows\system32\catsrvut.dll
2016-01-11 16:15:19 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-01-11 16:15:19 ----A---- C:\Windows\system32\occache.dll
2016-01-11 16:15:18 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-01-11 16:15:18 ----A---- C:\Windows\system32\ieui.dll
2016-01-11 16:15:16 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-11 16:15:14 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-01-11 16:15:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-01-11 16:15:14 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-01-11 16:15:14 ----A---- C:\Windows\system32\jsproxy.dll
2016-01-11 16:15:13 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-11 16:15:13 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-01-11 16:15:12 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-01-11 16:15:12 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-01-11 16:15:12 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-01-11 16:15:12 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-01-11 16:15:12 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-01-11 16:15:12 ----A---- C:\Windows\system32\msrating.dll
2016-01-11 16:15:12 ----A---- C:\Windows\system32\mshtmled.dll
2016-01-11 16:15:12 ----A---- C:\Windows\system32\jscript9diag.dll
2016-01-11 16:15:12 ----A---- C:\Windows\system32\ieUnatt.exe
2016-01-11 16:15:12 ----A---- C:\Windows\system32\ieapfltr.dll
2016-01-11 16:15:12 ----A---- C:\Windows\system32\dxtrans.dll
2016-01-11 16:15:12 ----A---- C:\Windows\system32\dxtmsft.dll
2016-01-11 16:15:11 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-01-11 16:15:11 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-01-11 16:15:11 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-01-11 16:15:11 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-01-11 16:15:11 ----A---- C:\Windows\system32\webcheck.dll
2016-01-11 16:15:11 ----A---- C:\Windows\system32\msfeeds.dll
2016-01-11 16:15:11 ----A---- C:\Windows\system32\iesetup.dll
2016-01-11 16:15:10 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-01-11 16:15:10 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-01-11 16:15:10 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-01-11 16:15:10 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-01-11 16:15:10 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-01-11 16:15:10 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-01-11 16:15:10 ----A---- C:\Windows\system32\vbscript.dll
2016-01-11 16:15:10 ----A---- C:\Windows\system32\mshtml.dll
2016-01-11 16:15:10 ----A---- C:\Windows\system32\jscript.dll
2016-01-11 16:15:10 ----A---- C:\Windows\system32\iernonce.dll
2016-01-11 16:15:10 ----A---- C:\Windows\system32\iedkcs32.dll
2016-01-11 16:15:10 ----A---- C:\Windows\system32\ie4uinit.exe
2016-01-11 16:15:08 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-01-11 16:15:08 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-11 16:15:08 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-01-11 16:15:08 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-01-11 16:15:08 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-01-11 16:15:07 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-01-11 16:15:07 ----A---- C:\Windows\system32\wininet.dll
2016-01-11 16:15:07 ----A---- C:\Windows\system32\iertutil.dll
2016-01-11 16:15:06 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-01-11 16:15:06 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-01-11 16:15:06 ----A---- C:\Windows\system32\urlmon.dll
2016-01-11 16:15:06 ----A---- C:\Windows\system32\ieframe.dll
2016-01-11 16:15:05 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-01-11 16:15:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-01-11 16:15:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-01-11 16:15:04 ----A---- C:\Windows\system32\jscript9.dll
2016-01-11 16:14:20 ----A---- C:\Windows\SYSWOW64\els.dll
2016-01-11 16:14:20 ----A---- C:\Windows\system32\els.dll
2016-01-03 17:33:49 ----D---- C:\Users\v-krejsa\AppData\Roaming\BANDISOFT
2016-01-03 17:29:24 ----D---- C:\Program Files (x86)\Bandicam
2016-01-03 17:29:20 ----D---- C:\Program Files (x86)\BandiMPEG1
2016-01-03 15:37:35 ----A---- C:\Windows\EasyManager.ini
2015-12-14 16:18:26 ----D---- C:\ProgramData\GeoVision
2015-12-14 16:16:45 ----A---- C:\Windows\GeoDebug61.ini
2015-12-14 16:16:42 ----D---- C:\Windows\AVIFiles
2015-12-14 16:15:57 ----A---- C:\Windows\ocx_temp.ini
2015-12-14 16:15:48 ----D---- C:\Windows\SYSWOW64\v8570
2015-12-14 16:15:48 ----D---- C:\Windows\SYSWOW64\v8560
2015-12-14 16:15:48 ----D---- C:\Windows\SYSWOW64\v8530
2015-12-14 16:15:48 ----D---- C:\Windows\SYSWOW64\v8500
2015-12-14 16:15:48 ----A---- C:\Windows\SYSWOW64\GXJPG.dll
2015-12-14 16:15:48 ----A---- C:\Windows\SYSWOW64\GXAVCD.dll
2015-12-14 16:15:48 ----A---- C:\Windows\SYSWOW64\GXAVC.dll
2015-12-14 16:15:48 ----A---- C:\Windows\IntelHWCodec.dll
2015-12-14 16:15:48 ----A---- C:\Windows\HWCodecLoader.dll
2015-12-14 16:15:48 ----A---- C:\Windows\GeoImageEnhance.dll
2015-12-14 16:15:38 ----D---- C:\Windows\GeoOCX
2015-12-08 14:14:17 ----D---- C:\Users\v-krejsa\AppData\Roaming\Loader
2015-12-05 18:10:32 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-12-05 18:10:32 ----A---- C:\Windows\system32\TSpkg.dll
2015-12-05 18:10:32 ----A---- C:\Windows\system32\sspisrv.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-12-05 18:10:31 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-12-05 18:10:31 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-12-05 18:10:31 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-12-05 18:10:31 ----A---- C:\Windows\system32\msaudite.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-12-05 18:10:30 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-12-05 18:10:30 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-12-05 18:10:30 ----A---- C:\Windows\system32\cryptbase.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-12-05 18:10:29 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-12-05 18:10:29 ----A---- C:\Windows\SYSWOW64\user.exe
2015-12-05 18:10:29 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-12-05 18:10:29 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-12-05 18:10:29 ----A---- C:\Windows\system32\msobjs.dll
2015-12-05 18:10:29 ----A---- C:\Windows\system32\csrsrv.dll
2015-12-05 18:10:29 ----A---- C:\Windows\system32\adtschema.dll
2015-12-05 18:10:28 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-12-05 18:10:28 ----A---- C:\Windows\system32\wdigest.dll
2015-12-05 18:10:28 ----A---- C:\Windows\system32\schannel.dll
2015-12-05 18:10:28 ----A---- C:\Windows\system32\apisetschema.dll
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-12-05 18:10:27 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-12-05 18:10:27 ----A---- C:\Windows\system32\winsrv.dll
2015-12-05 18:10:27 ----A---- C:\Windows\system32\srcore.dll
2015-12-05 18:10:27 ----A---- C:\Windows\system32\srclient.dll
2015-12-05 18:10:27 ----A---- C:\Windows\system32\rstrui.exe
2015-12-05 18:10:27 ----A---- C:\Windows\system32\ntvdm64.dll
2015-12-05 18:10:27 ----A---- C:\Windows\system32\ncrypt.dll
2015-12-05 18:10:27 ----A---- C:\Windows\system32\msv1_0.dll
2015-12-05 18:10:27 ----A---- C:\Windows\system32\lsass.exe
2015-12-05 18:10:27 ----A---- C:\Windows\system32\KernelBase.dll
2015-12-05 18:10:27 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-12-05 18:10:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-12-05 18:10:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-12-05 18:10:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-12-05 18:10:27 ----A---- C:\Windows\system32\conhost.exe
2015-12-05 18:10:27 ----A---- C:\Windows\system32\auditpol.exe
2015-12-05 18:10:26 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-12-05 18:10:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-12-05 18:10:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-12-05 18:10:26 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-12-05 18:10:26 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-12-05 18:10:26 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-12-05 18:10:26 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\wow64win.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\wow64cpu.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\wow64.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\sspicli.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\smss.exe
2015-12-05 18:10:26 ----A---- C:\Windows\system32\secur32.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\rpcrt4.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\ntdll.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\lsasrv.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\kernel32.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\kerberos.dll
2015-12-05 18:10:26 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-12-05 18:10:26 ----A---- C:\Windows\system32\credssp.dll
2015-12-05 18:10:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-12-05 18:10:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-12-05 18:10:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-12-05 12:39:36 ----D---- C:\Program Files (x86)\EmbeddedIntelligence
2015-12-04 16:05:52 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-12-04 16:05:52 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-12-04 16:05:52 ----A---- C:\Windows\system32\wups2.dll
2015-12-04 16:05:52 ----A---- C:\Windows\system32\wups.dll
2015-12-04 16:05:52 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-04 16:05:52 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-04 16:05:51 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-12-04 16:05:51 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-12-04 16:05:51 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-12-04 16:05:51 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-04 16:05:51 ----A---- C:\Windows\system32\wudriver.dll
2015-12-04 16:05:51 ----A---- C:\Windows\system32\wucltux.dll
2015-12-04 16:05:51 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-04 16:05:51 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-04 16:05:51 ----A---- C:\Windows\system32\wuapp.exe
2015-12-04 16:05:51 ----A---- C:\Windows\system32\wuapi.dll
2015-12-04 16:04:40 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-12-04 16:04:40 ----A---- C:\Windows\system32\drivers\cng.sys
2015-12-04 16:04:40 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-12-04 16:04:05 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2015-12-04 16:04:05 ----A---- C:\Windows\system32\nlsbres.dll
2015-12-04 16:04:04 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2015-12-04 16:04:04 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2015-12-04 16:04:04 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2015-12-04 16:04:04 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-04 16:04:04 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-04 16:04:04 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-04 16:03:39 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-12-04 16:03:39 ----A---- C:\Windows\system32\drivers\afd.sys
2015-12-04 16:03:16 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-12-04 16:03:16 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-12-04 16:03:16 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-12-04 16:03:16 ----A---- C:\Windows\system32\shimeng.dll
2015-12-04 16:03:16 ----A---- C:\Windows\system32\sdbinst.exe
2015-12-04 16:03:16 ----A---- C:\Windows\system32\apphelp.dll
2015-12-04 16:03:16 ----A---- C:\Windows\system32\aelupsvc.dll
2015-12-04 16:00:05 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-12-04 15:59:41 ----A---- C:\Windows\system32\jnwmon.dll
2015-12-04 15:59:40 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-12-04 15:59:40 ----A---- C:\Windows\system32\InkEd.dll
2015-12-04 10:29:25 ----D---- C:\BR_config
2015-12-03 14:58:14 ----D---- C:\Program Files (x86)\Web Components
2015-11-30 14:42:21 ----D---- C:\ProgramData\SafeNet Sentinel
2015-11-25 20:49:07 ----D---- C:\Program Files (x86)\ESET
2015-11-24 08:16:19 ----D---- C:\Users\v-krejsa\AppData\Roaming\AIMP3
2015-11-24 08:16:16 ----D---- C:\Program Files (x86)\AIMP3
2015-11-24 08:11:05 ----D---- C:\Program Files (x86)\Kodek CZ
2015-11-21 15:31:54 ----D---- C:\Users\v-krejsa\AppData\Roaming\Wireshark
2015-11-21 15:21:40 ----D---- C:\Program Files\USBPcap
2015-11-21 15:21:26 ----D---- C:\Program Files (x86)\WinPcap
2015-11-21 15:21:12 ----D---- C:\Program Files\Wireshark
2015-11-21 08:10:11 ----A---- C:\ComboFix.txt
2015-11-21 08:06:16 ----SHD---- C:\$RECYCLE.BIN
2015-11-21 07:53:45 ----A---- C:\Windows\zip.exe
2015-11-21 07:53:45 ----A---- C:\Windows\SWSC.exe
2015-11-21 07:53:45 ----A---- C:\Windows\SWREG.exe
2015-11-21 07:53:45 ----A---- C:\Windows\sed.exe
2015-11-21 07:53:45 ----A---- C:\Windows\PEV.exe
2015-11-21 07:53:45 ----A---- C:\Windows\NIRCMD.exe
2015-11-21 07:53:45 ----A---- C:\Windows\MBR.exe
2015-11-21 07:53:45 ----A---- C:\Windows\grep.exe
2015-11-21 07:53:11 ----D---- C:\Qoobox
2015-11-21 07:52:43 ----D---- C:\Windows\erdnt
2015-11-18 13:05:53 ----D---- C:\Users\v-krejsa\AppData\Roaming\Opera Software
2015-11-18 13:05:12 ----D---- C:\Program Files (x86)\Opera
2015-11-18 13:05:06 ----D---- C:\Program Files (x86)\Seznam.cz
2015-11-18 13:04:52 ----D---- C:\Users\v-krejsa\AppData\Roaming\Seznam.cz
2015-11-18 13:03:46 ----D---- C:\Users\v-krejsa\AppData\Roaming\Software Tool
2015-11-18 13:02:31 ----D---- C:\Users\v-krejsa\AppData\Roaming\WinRAR
2015-11-18 13:02:23 ----D---- C:\Program Files\WinRAR
2015-11-18 13:02:03 ----D---- C:\Program Files\7-Zip
2015-11-17 11:34:28 ----D---- C:\Program Files (x86)\ireasoning
2015-10-29 11:02:05 ----D---- C:\Users\v-krejsa\AppData\Roaming\VP
2015-10-29 10:28:38 ----D---- C:\ProgramData\{60F12E02-11F5-47af-9978-7F8D4948ED89}}
2015-10-29 10:28:38 ----D---- C:\Program Files (x86)\Elsaco
2015-10-29 10:17:41 ----D---- C:\Windows\Minidump

======List of files/folders modified in the last 3 months======

2016-01-19 13:06:26 ----RD---- C:\Program Files
2016-01-19 13:02:41 ----D---- C:\Users\v-krejsa\AppData\Roaming\Skype
2016-01-19 13:02:40 ----D---- C:\Windows
2016-01-19 13:01:09 ----D---- C:\Temp
2016-01-19 13:00:07 ----D---- C:\Windows\system32\config
2016-01-19 12:59:44 ----D---- C:\Windows\Temp
2016-01-19 12:43:37 ----D---- C:\ProgramData\MFAData
2016-01-19 11:06:05 ----D---- C:\Windows\System32
2016-01-19 11:06:05 ----D---- C:\Windows\inf
2016-01-19 11:06:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-19 11:00:42 ----D---- C:\Windows\SYSWOW64\drivers
2016-01-19 11:00:19 ----D---- C:\ProgramData
2016-01-15 17:26:37 ----D---- C:\Windows\Prefetch
2016-01-15 15:38:01 ----RD---- C:\Users
2016-01-14 07:02:16 ----SHD---- C:\Windows\Installer
2016-01-14 07:02:11 ----D---- C:\Windows\system32\Tasks
2016-01-14 07:00:16 ----D---- C:\Windows\SysWOW64
2016-01-13 11:29:20 ----D---- C:\Windows\rescache
2016-01-12 08:02:48 ----D---- C:\Windows\Microsoft.NET
2016-01-12 08:02:21 ----RSD---- C:\Windows\assembly
2016-01-12 05:59:29 ----D---- C:\Windows\winsxs
2016-01-12 05:56:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-01-12 05:56:36 ----D---- C:\Windows\system32\cs-CZ
2016-01-12 05:56:36 ----D---- C:\Windows\ehome
2016-01-12 05:56:35 ----D---- C:\Windows\system32\drivers
2016-01-12 05:56:31 ----D---- C:\Program Files\Internet Explorer
2016-01-12 05:56:30 ----D---- C:\Windows\SYSWOW64\sk-SK
2016-01-12 05:56:30 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-12 05:56:29 ----D---- C:\Windows\SYSWOW64\pl-PL
2016-01-12 05:56:29 ----D---- C:\Windows\SYSWOW64\hu-HU
2016-01-12 05:56:29 ----D---- C:\Windows\SYSWOW64\en-US
2016-01-12 05:56:28 ----D---- C:\Windows\system32\sk-SK
2016-01-12 05:56:28 ----D---- C:\Windows\system32\pl-PL
2016-01-12 05:56:28 ----D---- C:\Windows\system32\hu-HU
2016-01-12 05:56:28 ----D---- C:\Windows\system32\en-US
2016-01-11 16:27:52 ----D---- C:\ProgramData\Microsoft Help
2016-01-11 16:24:17 ----D---- C:\Windows\system32\MRT
2016-01-11 16:17:54 ----A---- C:\Windows\system32\MRT.exe
2016-01-11 16:16:41 ----A---- C:\Windows\win.ini
2016-01-11 16:15:58 ----D---- C:\Windows\system32\catroot2
2016-01-11 16:13:11 ----SHD---- C:\System Volume Information
2016-01-11 06:11:43 ----D---- C:\ProgramData\Skype
2016-01-03 17:29:24 ----RD---- C:\Program Files (x86)
2016-01-03 15:43:35 ----D---- C:\Users\v-krejsa\AppData\Roaming\Weintek
2016-01-03 11:40:17 ----D---- C:\Windows\system32\appmgmt
2016-01-03 11:40:17 ----D---- C:\Program Files (x86)\LonWorks
2016-01-03 10:49:27 ----D---- C:\Program Files\Dell
2015-12-14 16:15:39 ----D---- C:\Windows\Downloaded Program Files
2015-12-10 06:27:51 ----RD---- C:\Program Files (x86)\Skype
2015-12-10 06:27:51 ----D---- C:\Program Files (x86)\Common Files
2015-12-08 11:11:32 ----D---- C:\Program Files (x86)\Pertinax6
2015-12-08 11:11:19 ----D---- C:\Windows\Registration
2015-12-07 05:55:53 ----D---- C:\Windows\AppPatch
2015-12-05 14:59:00 ----D---- C:\Program Files\Modbus Tools
2015-12-05 08:37:40 ----RSD---- C:\Windows\Fonts
2015-12-05 08:37:37 ----D---- C:\Windows\system32\migration
2015-12-04 16:02:43 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-12-04 15:59:53 ----D---- C:\Program Files\Windows Journal
2015-12-02 17:11:26 ----D---- C:\Windows\Tasks
2015-11-29 13:13:32 ----D---- C:\Windows\system32\DriverStore
2015-11-24 11:46:31 ----D---- C:\Users\v-krejsa\AppData\Roaming\BR
2015-11-24 11:46:05 ----D---- C:\Program Files (x86)\BrAutomation
2015-11-24 08:19:50 ----D---- C:\Users\v-krejsa\AppData\Roaming\vlc
2015-11-21 15:28:27 ----D---- C:\Windows\system32\wdi
2015-11-21 09:26:30 ----SD---- C:\ProgramData\Microsoft
2015-11-21 08:11:26 ----D---- C:\Program Files\totalcmd
2015-11-21 08:06:08 ----A---- C:\Windows\system.ini
2015-11-21 08:05:59 ----D---- C:\Windows\system32\drivers\etc
2015-11-21 06:02:18 ----D---- C:\Program Files (x86)\Dell Backup and Recovery
2015-11-20 16:27:46 ----HD---- C:\Windows\system32\WLANProfiles
2015-11-18 07:54:19 ----D---- C:\Program Files (x86)\Java
2015-11-18 07:53:11 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-10-20 05:55:12 ----SD---- C:\Windows\system32\CompatTel
2015-10-20 05:55:11 ----D---- C:\Windows\system32\appraiser
2015-10-20 05:55:10 ----D---- C:\Windows\system32\CodeIntegrity
2015-10-20 05:55:10 ----D---- C:\Windows\system32\Boot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2015-05-21 158160]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-05-21 360400]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-07-03 204704]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-10-23 45880]
R0 dlkmdldr;dlkmdldr; C:\Windows\system32\drivers\dlkmdldr.sys [2015-02-12 18664]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2014-06-07 670056]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2014-06-07 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-11-04 22800]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2011-07-16 22128]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-11-25 246072]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2014-11-03 209720]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2015-05-26 249296]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ctxusbm;Citrix USB Monitor Driver; C:\Windows\system32\DRIVERS\ctxusbm.sys [2013-09-24 97768]
R2 aksdf;aksdf; \??\C:\Windows\system32\drivers\aksdf.sys [2015-09-23 109200]
R2 aksfridge;Sentinel Fridge; C:\Windows\system32\DRIVERS\aksfridge.sys [2015-09-23 205528]
R2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2015-09-23 350552]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys [2014-11-11 564528]
R3 BCMNFCSCR;Broadcom NFC Smart Card Reader; C:\Windows\system32\DRIVERS\bcmnfcscr7.sys [2014-10-15 41728]
R3 bcmnfcusb;NFC USB Bus Driver; C:\Windows\system32\DRIVERS\bcmnfcusb7.sys [2014-10-15 44288]
R3 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\Windows\system32\Drivers\CVPNDRVA.sys [2011-03-04 306536]
R3 cvusbdrv;Dell ControlVault; C:\Windows\System32\Drivers\cvusbdrv.sys [2014-10-15 61664]
R3 dlkmd;dlkmd; C:\Windows\system32\drivers\dlkmd.sys [2015-02-12 437480]
R3 DNE;Deterministic Network Enhancer Miniport; C:\Windows\system32\DRIVERS\dne64x.sys [2008-11-16 157968]
R3 dptf_acpi;dptf_acpi; C:\Windows\system32\DRIVERS\dptf_acpi.sys [2014-06-10 41824]
R3 dptf_cpu;dptf_cpu; C:\Windows\system32\DRIVERS\dptf_cpu.sys [2014-06-10 35136]
R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2014-07-23 489752]
R3 esif_lf;esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [2014-06-10 192624]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-10-18 4850104]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTDVHD64.sys [2014-12-11 2640728]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-11-04 387344]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-11-04 797456]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2014-10-17 27000]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-11-10 129312]
R3 MFFSDA527B188-64E6-4FCE-8A0B-44F9E9B9F577;MFFSDA527B188-64E6-4FCE-8A0B-44F9E9B9F577; \??\C:\Program Files\M-Files\11.0.4300.31\Bin\x64\mffsd.sys [2015-04-14 105280]
R3 MFVDDBC86EE34-6525-4E72-94E5-D9AEEAC76C0A;MFVDDBC86EE34-6525-4E72-94E5-D9AEEAC76C0A; \??\C:\Program Files\M-Files\11.0.4300.31\Bin\x64\mfvdd.sys [2015-04-14 22336]
R3 NETwNs64;___ Intel(R) Wireless Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw02.sys [2014-11-17 3425768]
R3 O2FJ2RDR;O2FJ2RDR; C:\Windows\system32\DRIVERS\O2FJ2w7x64.sys [2014-05-14 210592]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2014-04-21 75952]
R3 usb3Hub;UoIP Hub; C:\Windows\system32\DRIVERS\usb3Hub.sys [2014-10-15 213296]
R3 USBPcap;USBPcap Capture Service; C:\Windows\system32\DRIVERS\USBPcap.sys [2015-10-07 48344]
S3 akshasp;SafeNet Inc. HASP Key; C:\Windows\system32\DRIVERS\akshasp.sys [2015-09-23 77912]
S3 akshhl;SafeNet Inc. Sentinel HL Key; C:\Windows\system32\DRIVERS\akshhl.sys [2015-09-23 81368]
S3 aksusb;SafeNet Inc. USB Key; C:\Windows\system32\DRIVERS\aksusb.sys [2015-09-23 322560]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2015-06-20 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2015-06-20 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-10-28 141624]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-11-27 1448248]
S3 BULKUSB;ZAT DV300 or compatible boards USB driver; C:\Windows\system32\drivers\bulkusb.sys [2014-10-01 32600]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CVirtA;Cisco Systems VPN Adapter for 64-bit Windows; C:\Windows\system32\DRIVERS\CVirtA64.sys [2010-02-08 14992]
S3 DisplayLinkUsbIo_x64;DisplayLinkUsbIo_x64; C:\Windows\system32\DRIVERS\DisplayLinkUsbIo_x64_7.7.60366.0.sys [2015-02-13 46312]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2014-01-31 94704]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2015-07-23 97416]
S3 ibtusb;Intel(R) Wireless Bluetooth(R); C:\Windows\system32\DRIVERS\ibtusb.sys [2014-12-17 243952]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-10-17 38264]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-10-18 454416]
S3 InvProtectDrv;InvProtectDrv; \??\C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [2014-07-30 50696]
S3 leusbser;Lenovo Inc. USB Device for Serial Communication; C:\Windows\system32\DRIVERS\leusbser.sys [2013-08-01 238080]
S3 netvsc;netvsc; C:\Windows\system32\DRIVERS\netvsc60.sys [2010-11-21 168448]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SboxDrv;SboxDrv; \??\C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [2014-07-30 183304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 SynthVid;SynthVid; C:\Windows\system32\DRIVERS\VMBusVideoM.sys [2010-11-21 22528]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2015-11-25 2016448]
R2 ApHidMonitorService;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2014-11-07 87384]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2015-10-05 4948456]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-12-04 1206648]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-10-28 1710456]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-10-28 1165688]
R2 BrAsUpgrSrv42;B&R Upgrade Service for AS 42; C:\Program Files\BrAutomation\AS42\Bin-en\BR.AS.UpgradeService.exe [2015-05-26 13312]
R2 BrAuthorizationSvcx;B&R Authorization; C:\Program Files\BrAutomation\AsTools\BrAuthorization\BrAuthorizationSvc.exe [2008-12-18 40960]
R2 CodeMeter.exe;CodeMeter Runtime Server; C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2015-01-21 3523448]
R2 Credential Vault Host Control Service;Credential Vault Host Control Service; c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [2014-10-15 1044872]
R2 Credential Vault Host Storage;Credential Vault Host Storage; c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [2014-10-15 38792]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe [2011-03-04 1529856]
R2 Dell Foundation Services;Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [2015-12-07 119656]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2015-02-12 10997992]
R2 esifsvc;ESIF Upper Framework Service; C:\Windows\SysWOW64\esif_uf.exe [2014-06-10 953352]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-10-29 636112]
R2 hasplms;Sentinel LDK License Manager; C:\Windows\system32\hasplms.exe [2015-09-23 4665168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-06-25 16232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-10-18 328296]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2014-04-22 260360]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-11-10 158496]
R2 MFClient 11.0.4300.31;M-Files Client 2015 (11.0.4300.31); C:\Program Files\M-Files\11.0.4300.31\Bin\x64\mfclient.exe [2015-04-14 8232800]
R2 MFSetup 11.0.4300.31;M-Files Common Services 2015 (11.0.4300.31); C:\Program Files\M-Files\11.0.4300.31\Bin\x64\mfsetup.exe [2015-04-14 629600]
R2 O2FLASH;O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [2014-03-07 65536]
R2 RelianceLicenseService;Reliance License Service; C:\Program Files (x86)\GEOVAP\LicenseService\LicenseService.Server.exe [2015-01-05 188416]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-08-19 291032]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2015-03-16 237448]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03 107848]
S2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2015-01-10 124520]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-20 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 BR.AS.VersionChangerService;BR.AS.VersionChangerService; C:\Windows\SysWOW64\BR.AS.VersionChangerService.exe [2013-10-16 1750528]
S3 BrDiskImageSvcx;B&R Disk Image; C:\Program Files\BrAutomation\PVI\V4.2\PVI\Tools\PviTransfer\BrDiskImageSvc.exe [2014-10-21 56320]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-10-18 279144]
S3 Dell.CommandPowerManager.Service;Dell.CommandPowerManager.Service; C:\Windows\SysWOW64\dllhost.exe [2009-07-14 7168]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03 107848]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-11-08 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 InvProtectSvc;Invincea FreeSpace Service; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [2014-07-30 2672328]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25 178312]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-12 114288]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-10-29 265936]
S3 ODMV3;ODMV3; C:\Program Files (x86)\Common Files\Hilscher\ODMV3\ODMV3.exe [2011-09-28 364544]
S3 OpcEnum;OpcEnum; C:\Windows\SysWOW64\OpcEnum.exe [2009-02-05 139488]
S3 ose;Office  Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-01-21 5132888]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [2014-10-10 1771560]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [2014-10-10 861736]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Reliance_4_Driver_Server;Reliance 4 Driver Server; C:\Program Files (x86)\GEOVAP\Reliance4\R_DrvSrv.exe [2015-11-17 852992]
S3 Reliance_4_Server;Reliance 4 Server; C:\Program Files (x86)\GEOVAP\Reliance4\R_Srv.exe [2015-11-17 2214912]
S3 RelianceOpcDaWrapper;Reliance OPC DA Server Wrapper; C:\Program Files (x86)\GEOVAP\RelianceOPCServer\OpcDaWrapper.exe [2015-10-20 208896]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]

-----------------EOF-----------------
