Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

prosim o kontrolu dekuji

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
macurbanek
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 15 zář 2015 11:21

prosim o kontrolu dekuji

#1 Příspěvek od macurbanek »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2015-09-15 12:16:40
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 3 GB (3%) free of 114 GB
Total RAM: 16349 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:16:49, on 15.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
C:\Program Files (x86)\Gyazo\GyStation.exe
C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Martin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={6E1E2886 ... 2015-09-13 09:05:38&v=4.1.6.294&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Web TuneUp\4.1.6.294\AVG Web TuneUp.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKCU\..\Run: [f.lux] "C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Martin\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify] "C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [iCloud] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe" (User '?')
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Dropbox Update] "C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Spotify] "C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-18\..\RunOnce: [iCloud] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [iCloud] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe" (User 'Default user')
O4 - S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 Startup: Dropbox.lnk = C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe (User '?')
O4 - S-1-5-21-2300270703-1979334120-1330746314-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 Startup: Facebook Messenger.lnk = C:\Users\Martin\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (User '?')
O4 - Startup: Dropbox.lnk = C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Facebook Messenger.lnk = C:\Users\Martin\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: PokerStars.fr - {90EAE591-7E7E-434a-8E28-ECFD00071806} - C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: postgresql-8.4 - PostgreSQL Server 8.4 (postgresql-8.4) - PostgreSQL Global Development Group - c:\postgreSQL\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater40.1.6 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe

--
End of file - 16790 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-38ca-22743d80a21b /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgemca.exe"
"c:\postgreSQL\bin\pg_ctl.exe" runservice -N "postgresql-8.4" -D "c:/postgreSQL/data" -w
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe"
"c:\postgreSQL\bin\postgres.exe" -D "c:/postgreSQL/data"
\??\C:\Windows\system32\conhost.exe "-210829459-408987508-4076689031715900868042965697300197501993180723-2056660031
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
"C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe"
"c:/postgreSQL/bin/postgres.exe" "--forkboot" "864" "-x3"
"c:/postgreSQL/bin/postgres.exe" "--forkboot" "848" "-x4"
"c:/postgreSQL/bin/postgres.exe" "--forkavlauncher" "872"
"c:/postgreSQL/bin/postgres.exe" "--forkcol" "864"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\loggingserver.exe" 72648 "C:\ProgramData\AVG Secure Search\Logger\logger.properties"
\??\C:\Windows\system32\conhost.exe "889821561-804378007-2084259631942058914-1147773853-17497982161438853194-414517460
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:3376
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\Gyazo\GyStation.exe"
"C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Windows\System32\StikyNot.exe"
szndesktop.exe default start
"C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe" -nogui
"C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "754806775-758411261-1583529694-1161254200229627130-1723608897-1813388378138994309
"C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
C:\Windows\system32\sppsvc.exe
ctfmon.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe" --type=renderer --no-sandbox --user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko" --lang=en-US --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --lang=en-US --uncaught-exception-stack-size=1024 --disable-pepper-3d --disable-accelerated-compositing --disable-accelerated-video-decode --disable-webrtc-hw-encoding --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="5532.1.1365457293\1533140422" /prefetch:673131151
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
taskmgr.exe /3
"C:\Program Files\Windows Sidebar\sidebar.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "http://www.avg.com/cz-cs/privacy-new?A= ... y%20Update"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --on-initialized-event-handle=348 --parent-handle=352
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6284.0.773245411\591514826" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.1.58998972\57656049" --font-cache-shared-handle=1732 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.2.1001957543\1484198081" --font-cache-shared-handle=2020 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.3.1473891007\59961091" --font-cache-shared-handle=2196 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.4.102408982\202523238" --font-cache-shared-handle=2232 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.5.233912539\1903061184" --font-cache-shared-handle=2360 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.6.1398877120\1057160448" --font-cache-shared-handle=2444 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.7.653562391\331795439" --font-cache-shared-handle=5304 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.8.1372231442\308948938" --font-cache-shared-handle=5696 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="6284.9.944883856\567332443" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.11.1752119609\1730661983" --font-cache-shared-handle=6668 /prefetch:673131151
"C:\Windows\system32\mmc.exe" C:\Windows\system32\devmgmt.msc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.13.524508609\1221725548" --font-cache-shared-handle=7248 /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="6284.16.945331559\1317808519" --font-cache-shared-handle=4596 /prefetch:673131151
"C:\Users\Martin\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000Core.job - C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000UA.job - C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000Core.job - C:\Users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000UA.job - C:\Users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-07-21 545192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01 2133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-07-21 193456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files (x86)\AVG Web TuneUp\4.1.6.294\AVG Web TuneUp.dll [2015-09-13 2426256]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-10-26 13213840]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"VIAxHCUtl"=C:\Program Files\VIA XHCI UASP Utility\usb3Monitor []
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2014-04-29 39408]
"uTorrent"=C:\Users\Martin\AppData\Roaming\uTorrent\uTorrent.exe [2015-08-28 1696096]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2015-08-19 3098424]
"f.lux"=C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2015-04-26 43816]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Facebook Update"=C:\Users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-12-20 138096]
"Spotify Web Helper"=C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-09-13 2025016]
"cz.seznam.software.autoupdate"=C:\Users\Martin\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"Dropbox Update"=C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-23 134512]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-07 53735968]
"Spotify"=C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe [2015-09-13 7590968]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]
"GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-08-28 815944]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2015-07-09 55568]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-08-24 3775912]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2015-08-11 593216]
"vProt"=C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2015-09-13 3175312]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
Facebook Messenger.lnk - C:\Users\Martin\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\facebookmessenger.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-15 12:16:41 ----D---- C:\Program Files\trend micro
2015-09-15 12:16:40 ----D---- C:\rsit
2015-09-15 11:22:07 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-09-15 11:21:34 ----D---- C:\ProgramData\Malwarebytes
2015-09-15 11:21:34 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-15 11:21:34 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-09-15 11:21:34 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-09-15 11:21:34 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-09-13 09:05:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-09-13 09:05:36 ----D---- C:\ProgramData\AVG Secure Search
2015-09-13 09:05:35 ----D---- C:\ProgramData\AVG Web TuneUp
2015-09-13 09:05:31 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2015-09-12 09:45:10 ----A---- C:\Windows\system32\drivers\rzpnk.sys
2015-09-12 09:45:00 ----A---- C:\Windows\system32\drivers\rzpmgrk.sys
2015-09-12 09:36:50 ----D---- C:\ProgramData\Razer
2015-09-12 09:36:43 ----D---- C:\Program Files (x86)\Razer
2015-09-09 09:16:01 ----D---- C:\Program Files\iTunes
2015-09-09 09:16:01 ----D---- C:\Program Files\iPod
2015-09-09 09:16:01 ----D---- C:\Program Files (x86)\iTunes
2015-09-05 16:29:11 ----D---- C:\Users\Martin\AppData\Roaming\AVG2015
2015-09-05 16:28:49 ----D---- C:\Program Files\Common Files\AV
2015-09-05 16:28:37 ----HD---- C:\$AVG
2015-09-05 16:28:37 ----D---- C:\ProgramData\AVG2015
2015-08-24 14:12:24 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-24 14:12:24 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-24 14:00:39 ----A---- C:\Windows\system32\basesrv.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\schannel.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\rpcrt4.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-24 14:00:35 ----A---- C:\Windows\system32\ntdll.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\msv1_0.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\kernel32.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\kerberos.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\wow64.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\winsrv.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\wdigest.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\TSpkg.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\sysmain.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\sspisrv.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\sspicli.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\srcore.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\srclient.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\smss.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\secur32.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\rstrui.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\ncrypt.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\msaudite.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\lsass.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\KernelBase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\cryptbase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\credssp.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\conhost.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\auditpol.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\adtschema.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-08-24 14:00:33 ----A---- C:\Windows\system32\wow64win.dll
2015-08-24 14:00:33 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-24 14:00:33 ----A---- C:\Windows\system32\msobjs.dll
2015-08-24 14:00:33 ----A---- C:\Windows\system32\apisetschema.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-24 14:00:31 ----A---- C:\Windows\system32\iertutil.dll
2015-08-24 14:00:31 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-24 14:00:31 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-24 14:00:30 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-24 14:00:30 ----A---- C:\Windows\system32\iernonce.dll
2015-08-24 14:00:30 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-24 14:00:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-24 14:00:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-24 14:00:29 ----A---- C:\Windows\system32\urlmon.dll
2015-08-24 14:00:29 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-24 14:00:28 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-24 14:00:28 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-24 14:00:28 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-24 14:00:28 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-24 14:00:27 ----A---- C:\Windows\system32\iesetup.dll
2015-08-24 14:00:27 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-24 14:00:26 ----A---- C:\Windows\system32\vbscript.dll
2015-08-24 14:00:26 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-24 14:00:26 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-24 14:00:26 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\jscript.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\ieui.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\ieframe.dll
2015-08-24 14:00:24 ----A---- C:\Windows\system32\wininet.dll
2015-08-24 14:00:24 ----A---- C:\Windows\system32\msrating.dll
2015-08-24 14:00:24 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-24 14:00:24 ----A---- C:\Windows\system32\jscript9.dll
2015-08-24 14:00:23 ----A---- C:\Windows\system32\mshtml.dll
2015-08-24 14:00:22 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-08-24 14:00:22 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-08-24 14:00:22 ----A---- C:\Windows\system32\msiexec.exe
2015-08-24 14:00:22 ----A---- C:\Windows\system32\msi.dll
2015-08-24 14:00:22 ----A---- C:\Windows\system32\consent.exe
2015-08-24 14:00:22 ----A---- C:\Windows\system32\authui.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-08-24 14:00:21 ----A---- C:\Windows\system32\msimsg.dll
2015-08-24 14:00:21 ----A---- C:\Windows\system32\msihnd.dll
2015-08-24 14:00:21 ----A---- C:\Windows\system32\appinfo.dll
2015-08-24 14:00:18 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-08-24 14:00:18 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-24 14:00:18 ----A---- C:\Windows\system32\gdi32.dll
2015-08-24 14:00:18 ----A---- C:\Windows\system32\FntCache.dll
2015-08-24 14:00:18 ----A---- C:\Windows\system32\DWrite.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\win32k.sys
2015-08-24 14:00:17 ----A---- C:\Windows\system32\lpk.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\fontsub.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\dciman32.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\d3d10warp.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\atmlib.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\atmfd.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-08-24 14:00:16 ----A---- C:\Windows\system32\shell32.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-24 14:00:15 ----A---- C:\Windows\system32\msxml6r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\system32\msxml6.dll
2015-08-24 14:00:15 ----A---- C:\Windows\system32\msxml3r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\system32\msxml3.dll
2015-08-24 13:59:13 ----A---- C:\Windows\system32\mstscax.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-08-24 13:59:12 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-24 13:59:12 ----A---- C:\Windows\system32\aaclient.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-24 13:59:11 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-24 13:59:11 ----A---- C:\Windows\system32\ole32.dll
2015-08-24 13:59:11 ----A---- C:\Windows\system32\davclnt.dll
2015-08-24 13:58:02 ----A---- C:\Windows\system32\notepad.exe
2015-08-24 13:58:02 ----A---- C:\Windows\notepad.exe
2015-08-24 13:58:01 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-24 13:58:01 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-08-24 13:58:01 ----A---- C:\Windows\system32\cewmdm.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wucltux.dll
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wuapp.exe
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wuapi.dll
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-24 13:57:14 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wups2.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wups.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wudriver.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-23 21:38:41 ----D---- C:\Program Files (x86)\Safari
2015-08-19 20:26:01 ----D---- C:\Users\Martin\AppData\Roaming\TP-LINK
2015-08-19 20:25:47 ----D---- C:\Program Files (x86)\TP-LINK
2015-08-19 11:53:56 ----A---- C:\Windows\system32\drivers\avgidsha.sys
2015-08-19 11:52:30 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys

======List of files/folders modified in the last 1 month======

2015-09-15 12:16:41 ----RD---- C:\Program Files
2015-09-15 12:16:28 ----D---- C:\Windows\Temp
2015-09-15 12:16:27 ----D---- C:\ProgramData\MFAData
2015-09-15 11:56:14 ----SHD---- C:\System Volume Information
2015-09-15 11:54:58 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2015-09-15 11:52:11 ----D---- C:\Windows\system32\config
2015-09-15 11:44:11 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2015-09-15 11:44:01 ----D---- C:\Users\Martin\AppData\Roaming\Seznam.cz
2015-09-15 11:43:10 ----D---- C:\Windows\System32
2015-09-15 11:43:10 ----D---- C:\Windows\inf
2015-09-15 11:43:10 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-15 11:40:04 ----D---- C:\Users\Martin\AppData\Roaming\Raptr
2015-09-15 11:39:41 ----D---- C:\Users\Martin\AppData\Roaming\Dropbox
2015-09-15 11:39:17 ----D---- C:\Users\Martin\AppData\Roaming\Spotify
2015-09-15 11:38:05 ----D---- C:\Windows\system32\catroot
2015-09-15 11:22:07 ----D---- C:\Windows\system32\drivers
2015-09-15 11:21:34 ----RD---- C:\Program Files (x86)
2015-09-15 11:21:34 ----HD---- C:\ProgramData
2015-09-15 11:15:23 ----D---- C:\Users\Martin\AppData\Roaming\HoldemManager
2015-09-15 09:43:19 ----SHD---- C:\Windows\Installer
2015-09-13 18:31:30 ----AD---- C:\Windows
2015-09-13 15:33:28 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2015-09-13 09:06:37 ----D---- C:\Windows\Tasks
2015-09-13 09:06:37 ----D---- C:\Windows\system32\Tasks
2015-09-13 09:05:50 ----D---- C:\ProgramData\AVG Security Toolbar
2015-09-13 09:05:35 ----D---- C:\Program Files (x86)\Common Files
2015-09-12 09:45:12 ----D---- C:\Windows\SysWOW64
2015-09-12 09:44:38 ----D---- C:\Windows\system32\DriverStore
2015-09-10 00:19:30 ----D---- C:\Windows\system32\catroot2
2015-09-09 09:16:01 ----D---- C:\Program Files\Common Files\Apple
2015-09-05 16:58:04 ----D---- C:\ProgramData\AVG
2015-09-05 16:34:47 ----D---- C:\Program Files (x86)\Holdem Manager 2
2015-09-05 16:28:49 ----D---- C:\Program Files\Common Files
2015-09-05 16:28:13 ----D---- C:\Program Files (x86)\AVG
2015-09-01 22:40:53 ----D---- C:\Program Files (x86)\PokerStars.FR
2015-09-01 22:40:53 ----D---- C:\Program Files (x86)\PokerStars
2015-08-31 23:30:58 ----D---- C:\Program Files (x86)\Full Tilt Poker.Eu
2015-08-25 08:36:19 ----D---- C:\Windows\SoftwareDistribution
2015-08-24 22:23:26 ----D---- C:\Program Files (x86)\TeamViewer
2015-08-24 14:46:16 ----D---- C:\Windows\rescache
2015-08-24 14:28:33 ----D---- C:\Windows\Microsoft.NET
2015-08-24 14:28:02 ----RSD---- C:\Windows\assembly
2015-08-24 14:16:04 ----D---- C:\Windows\winsxs
2015-08-24 14:15:52 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-24 14:15:52 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-24 14:15:16 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-24 14:15:16 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-08-24 14:15:16 ----D---- C:\Windows\system32\en-US
2015-08-24 14:15:16 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-24 14:15:16 ----D---- C:\Windows\system32\cs-CZ
2015-08-24 14:15:16 ----D---- C:\Windows\AppPatch
2015-08-24 14:15:16 ----D---- C:\Program Files\Internet Explorer
2015-08-24 14:15:16 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-24 14:15:15 ----D---- C:\Windows\PolicyDefinitions
2015-08-24 14:07:37 ----D---- C:\Windows\system32\MRT
2015-08-23 21:40:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-23 21:38:49 ----D---- C:\Users\Martin\AppData\Roaming\Apple Computer
2015-08-21 17:53:17 ----D---- C:\Program Files (x86)\Full Tilt Poker
2015-08-20 15:24:10 ----D---- C:\Program Files (x86)\Gyazo
2015-08-19 20:27:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-18 11:31:27 ----D---- C:\Program Files (x86)\Sharkystrator
2015-08-17 11:51:02 ----RD---- C:\Program Files (x86)\Skype
2015-08-17 11:50:53 ----D---- C:\ProgramData\Skype

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2013-11-06 83176]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2013-11-06 43240]
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2015-08-19 297904]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-05-07 378336]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-08-04 250800]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2015-03-20 40928]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2012-10-25 22680]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2015-03-11 162784]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2015-07-09 77760]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-08-19 313264]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2015-06-16 259040]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2015-08-04 300464]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-07-31 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 rzpmgrk;rzpmgrk; \??\C:\Windows\system32\drivers\rzpmgrk.sys [2015-06-12 37184]
R2 rzpnk;rzpnk; \??\C:\Windows\system32\drivers\rzpnk.sys [2015-06-27 129472]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-11-21 18959360]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-11-21 589312]
R3 athr;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athrx.sys [2011-08-17 1579520]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-10-30 4201104]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-09-15 113880]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 63704]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
R3 rzendpt;rzendpt; C:\Windows\system32\DRIVERS\rzendpt.sys [2015-08-13 50392]
R3 rzudd;Razer Mouse Driver; C:\Windows\system32\DRIVERS\rzudd.sys [2015-08-13 201432]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2015-06-25 31144]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-03-30 56448]
R3 VUSB3HUB;VIA USB 3 Root Hub Service; C:\Windows\system32\DRIVERS\ViaHub3.sys [2013-08-12 225792]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 26440]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2010-04-27 77512]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athurx.sys [2010-01-05 1847296]
S3 cpuz134;cpuz134; \??\C:\Program Files (x86)\CPUID\PC Wizard 2010\pcwiz_x64.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2013-08-06 23040]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-10 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2010-04-27 16200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-11-21 244736]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2014-11-20 344064]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2015\avgfws.exe [2015-08-24 1560592]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-08-24 3637160]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-08-24 335656]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 postgresql-8.4;postgresql-8.4 - PostgreSQL Server 8.4; c:\postgreSQL\bin\pg_ctl.exe [2014-02-18 66048]
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2015-06-23 187048]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2015-08-04 2973400]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 vToolbarUpdater40.1.6;vToolbarUpdater40.1.6; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe [2015-09-13 1874320]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [2015-09-13 1205136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-23 269000]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-04-29 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-08-13 644880]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-03 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-08-07 5611280]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119674
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o kontrolu dekuji

#2 Příspěvek od Rudy »

Zdravím!
První, co v logu vidím, je nedostatek volného místa na disku. Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
macurbanek
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 15 zář 2015 11:21

Re: prosim o kontrolu dekuji

#3 Příspěvek od macurbanek »

Dobry den, druhy HDD musim přikoupit jinak jsem to stahnul a projel a hodilo me to tuto zpravu:
# AdwCleaner v5.007 - Logfile created 16/09/2015 at 12:10:36
# Updated 08/09/2015 by Xplode
# Database : 2015-09-15.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Martin - MARTIN-PC
# Running from : C:\Users\Martin\Downloads\adwcleaner_5.007.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : vToolbarUpdater40.1.6

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\AVG Security Toolbar
[-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar
[#] Folder Deleted : C:\ProgramData\mntemp
[-] Folder Deleted : C:\ProgramData\Avg_Update_0215tb
[-] Folder Deleted : C:\ProgramData\Avg_Update_1114tb
[-] Folder Deleted : C:\ProgramData\Avg_Update_1214tb
[-] Folder Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn

***** [ Files ] *****

[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffjcmnpnoopgilmnfhloocdcbnimmmea_0.localstorage
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ffjcmnpnoopgilmnfhloocdcbnimmmea_0.localstorage-journal
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage-journal
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.superfish.com_0.localstorage-journal
[-] File Deleted : C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxps_www.superfish.com_0.localstorage-journal

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : 1214tbUpdateInfo

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKU\.DEFAULT\Software\AVG SafeGuard toolbar
[-] Key Deleted : HKU\.DEFAULT\Software\Avg Secure Update
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\Avg Secure Update
[-] Key Deleted : HKLM\SOFTWARE\SafetyNut
[!] Key Not Deleted : [x64] HKCU\Software\Conduit
[!] Key Not Deleted : [x64] HKCU\Software\Avg Secure Update
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[!] Key Not Deleted : HKU\S-1-5-21-2300270703-1979334120-1330746314-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

***** [ Web browsers ] *****

[-] [C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5327 bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119674
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o kontrolu dekuji

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
macurbanek
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 15 zář 2015 11:21

Re: prosim o kontrolu dekuji

#5 Příspěvek od macurbanek »

Dobrý den, muj cely problem zacal virem ktery me na socialni siti pridaval do skupin a pridval na zed porno odkazy... Dalsi muj problem je ze kdyz pisu v nekterem aktivnim okne tak zniceho nic uz aktivni neni jako by kliknul na plochu mysi...
Nahoru
macurbanek
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 15 zář 2015 11:21

Re: prosim o kontrolu dekuji

#6 Příspěvek od macurbanek »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2015-09-18 12:15:09
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 10 GB (9%) free of 114 GB
Total RAM: 16349 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:15:10, on 18.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
C:\Program Files (x86)\Gyazo\GyStation.exe
C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Martin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={6E1E2886 ... 2015-09-13 09:05:38&v=4.1.6.294&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKCU\..\Run: [f.lux] "C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Martin\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify] "C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-2300270703-1979334120-1330746314-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - HKUS\S-1-5-18\..\RunOnce: [iCloud] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [iCloud] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe" (User 'Default user')
O4 - Startup: Dropbox.lnk = C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Facebook Messenger.lnk = C:\Users\Martin\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: PokerStars.fr - {90EAE591-7E7E-434a-8E28-ECFD00071806} - C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: postgresql-8.4 - PostgreSQL Server 8.4 (postgresql-8.4) - PostgreSQL Global Development Group - c:\postgreSQL\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe

--
End of file - 13267 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-20ad-f6114ae2e206 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgemca.exe"
"c:\postgreSQL\bin\pg_ctl.exe" runservice -N "postgresql-8.4" -D "c:/postgreSQL/data" -w
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
"c:\postgreSQL\bin\postgres.exe" -D "c:/postgreSQL/data"
\??\C:\Windows\system32\conhost.exe "-6047618805741879981966208402-17571852901306011058879843220-555174348-1121675924
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
"c:/postgreSQL/bin/postgres.exe" "--forkboot" "864" "-x3"
"c:/postgreSQL/bin/postgres.exe" "--forkboot" "848" "-x4"
"c:/postgreSQL/bin/postgres.exe" "--forkavlauncher" "872"
"c:/postgreSQL/bin/postgres.exe" "--forkcol" "864"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files (x86)\Gyazo\GyStation.exe"

"C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
szndesktop.exe default start
"C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe" -nogui
"C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "-119370358915810947901419243767-2635330521392597696-1341136900-849043297136163466
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2184
"C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --channel="5052.0.1305334089\894310819" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 /prefetch:822062411
"C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.14.124 --disable-spell-checking --device-scale-factor=1 --font-cache-shared-mem-suffix=5052 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="5052.1.539220194\334504995" /prefetch:673131151
ctfmon.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window --flag-switches-begin --flag-switches-end
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --on-initialized-event-handle=340 --parent-handle=344
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="7636.0.717614861\2057584977" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.1.2075678837\798246285" --font-cache-shared-handle=1744 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.2.2116966601\1909102896" --font-cache-shared-handle=1636 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.3.903381646\1730301574" --font-cache-shared-handle=2116 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.4.1869593914\882549969" --font-cache-shared-handle=2224 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.5.243569891\1129346936" --font-cache-shared-handle=2332 /prefetch:673131151
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.17.682850091\1671784869" --font-cache-shared-handle=804 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.18.1902122535\735400561" --font-cache-shared-handle=6220 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="7636.19.391800658\177382625" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.20.1592556910\475720370" --font-cache-shared-handle=4708 /prefetch:673131151
taskeng.exe {678AA286-E752-4AFA-BA8C-DEFBDC358100}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group9 pct:10i stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoId/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_53/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7636.23.1083451604\203774326" --font-cache-shared-handle=7724 /prefetch:673131151
"C:\Users\Martin\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000Core.job - C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000UA.job - C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000Core.job - C:\Users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000UA.job - C:\Users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-07-21 545192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01 2133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-07-21 193456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-10-26 13213840]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"VIAxHCUtl"=C:\Program Files\VIA XHCI UASP Utility\usb3Monitor []
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2014-04-29 39408]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2015-08-19 3098424]
"f.lux"=C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2015-04-26 43816]
"Facebook Update"=C:\Users\Martin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-12-20 138096]
"Spotify Web Helper"=C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-09-16 2025016]
"cz.seznam.software.autoupdate"=C:\Users\Martin\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"Dropbox Update"=C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-23 134512]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-07 53735968]
"Spotify"=C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe [2015-09-16 7571000]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-09-12 815944]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2015-07-09 55568]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-08-24 3775912]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2015-08-11 593216]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
Facebook Messenger.lnk - C:\Users\Martin\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\facebookmessenger.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-16 11:59:05 ----D---- C:\AdwCleaner
2015-09-15 17:20:09 ----D---- C:\Program Files\CPUID
2015-09-15 17:17:44 ----D---- C:\Program Files (x86)\ESET
2015-09-15 12:16:41 ----D---- C:\Program Files\trend micro
2015-09-15 12:16:40 ----D---- C:\rsit
2015-09-15 11:22:07 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-09-15 11:21:34 ----D---- C:\ProgramData\Malwarebytes
2015-09-15 11:21:34 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-15 11:21:34 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-09-15 11:21:34 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-09-15 11:21:34 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-09-13 09:05:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-09-13 09:05:35 ----D---- C:\ProgramData\AVG Web TuneUp
2015-09-13 09:05:31 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2015-09-12 09:45:10 ----A---- C:\Windows\system32\drivers\rzpnk.sys
2015-09-12 09:45:00 ----A---- C:\Windows\system32\drivers\rzpmgrk.sys
2015-09-12 09:36:50 ----D---- C:\ProgramData\Razer
2015-09-12 09:36:43 ----D---- C:\Program Files (x86)\Razer
2015-09-09 09:16:01 ----D---- C:\Program Files\iTunes
2015-09-09 09:16:01 ----D---- C:\Program Files\iPod
2015-09-09 09:16:01 ----D---- C:\Program Files (x86)\iTunes
2015-09-05 16:29:11 ----D---- C:\Users\Martin\AppData\Roaming\AVG2015
2015-09-05 16:28:49 ----D---- C:\Program Files\Common Files\AV
2015-09-05 16:28:37 ----HD---- C:\$AVG
2015-09-05 16:28:37 ----D---- C:\ProgramData\AVG2015
2015-08-24 14:12:24 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-24 14:12:24 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-24 14:00:39 ----A---- C:\Windows\system32\basesrv.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\schannel.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\rpcrt4.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-24 14:00:35 ----A---- C:\Windows\system32\ntdll.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\msv1_0.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\kernel32.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\kerberos.dll
2015-08-24 14:00:35 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\wow64.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\winsrv.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\wdigest.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\TSpkg.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\sysmain.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\sspisrv.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\sspicli.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\srcore.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\srclient.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\smss.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\secur32.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\rstrui.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\ncrypt.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\msaudite.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\lsass.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\KernelBase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-08-24 14:00:34 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\cryptbase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\credssp.dll
2015-08-24 14:00:34 ----A---- C:\Windows\system32\conhost.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\auditpol.exe
2015-08-24 14:00:34 ----A---- C:\Windows\system32\adtschema.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-24 14:00:33 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-08-24 14:00:33 ----A---- C:\Windows\system32\wow64win.dll
2015-08-24 14:00:33 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-24 14:00:33 ----A---- C:\Windows\system32\msobjs.dll
2015-08-24 14:00:33 ----A---- C:\Windows\system32\apisetschema.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-24 14:00:31 ----A---- C:\Windows\system32\iertutil.dll
2015-08-24 14:00:31 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-24 14:00:31 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-24 14:00:30 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-24 14:00:30 ----A---- C:\Windows\system32\iernonce.dll
2015-08-24 14:00:30 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-24 14:00:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-24 14:00:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-24 14:00:29 ----A---- C:\Windows\system32\urlmon.dll
2015-08-24 14:00:29 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-24 14:00:28 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-24 14:00:28 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-24 14:00:28 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-24 14:00:28 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-24 14:00:27 ----A---- C:\Windows\system32\iesetup.dll
2015-08-24 14:00:27 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-24 14:00:26 ----A---- C:\Windows\system32\vbscript.dll
2015-08-24 14:00:26 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-24 14:00:26 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-24 14:00:26 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\jscript.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\ieui.dll
2015-08-24 14:00:25 ----A---- C:\Windows\system32\ieframe.dll
2015-08-24 14:00:24 ----A---- C:\Windows\system32\wininet.dll
2015-08-24 14:00:24 ----A---- C:\Windows\system32\msrating.dll
2015-08-24 14:00:24 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-24 14:00:24 ----A---- C:\Windows\system32\jscript9.dll
2015-08-24 14:00:23 ----A---- C:\Windows\system32\mshtml.dll
2015-08-24 14:00:22 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-08-24 14:00:22 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-08-24 14:00:22 ----A---- C:\Windows\system32\msiexec.exe
2015-08-24 14:00:22 ----A---- C:\Windows\system32\msi.dll
2015-08-24 14:00:22 ----A---- C:\Windows\system32\consent.exe
2015-08-24 14:00:22 ----A---- C:\Windows\system32\authui.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-08-24 14:00:21 ----A---- C:\Windows\system32\msimsg.dll
2015-08-24 14:00:21 ----A---- C:\Windows\system32\msihnd.dll
2015-08-24 14:00:21 ----A---- C:\Windows\system32\appinfo.dll
2015-08-24 14:00:18 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-08-24 14:00:18 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-24 14:00:18 ----A---- C:\Windows\system32\gdi32.dll
2015-08-24 14:00:18 ----A---- C:\Windows\system32\FntCache.dll
2015-08-24 14:00:18 ----A---- C:\Windows\system32\DWrite.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\win32k.sys
2015-08-24 14:00:17 ----A---- C:\Windows\system32\lpk.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\fontsub.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\dciman32.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\d3d10warp.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\atmlib.dll
2015-08-24 14:00:17 ----A---- C:\Windows\system32\atmfd.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-08-24 14:00:16 ----A---- C:\Windows\system32\shell32.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-24 14:00:15 ----A---- C:\Windows\system32\msxml6r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\system32\msxml6.dll
2015-08-24 14:00:15 ----A---- C:\Windows\system32\msxml3r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\system32\msxml3.dll
2015-08-24 13:59:13 ----A---- C:\Windows\system32\mstscax.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-08-24 13:59:12 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-24 13:59:12 ----A---- C:\Windows\system32\aaclient.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-24 13:59:11 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-24 13:59:11 ----A---- C:\Windows\system32\ole32.dll
2015-08-24 13:59:11 ----A---- C:\Windows\system32\davclnt.dll
2015-08-24 13:58:02 ----A---- C:\Windows\system32\notepad.exe
2015-08-24 13:58:02 ----A---- C:\Windows\notepad.exe
2015-08-24 13:58:01 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-24 13:58:01 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-08-24 13:58:01 ----A---- C:\Windows\system32\cewmdm.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-24 13:57:14 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wucltux.dll
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wuapp.exe
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wuapi.dll
2015-08-24 13:57:14 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-24 13:57:14 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wups2.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wups.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wudriver.dll
2015-08-24 13:57:13 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-23 21:38:41 ----D---- C:\Program Files (x86)\Safari
2015-08-19 20:26:01 ----D---- C:\Users\Martin\AppData\Roaming\TP-LINK
2015-08-19 20:25:47 ----D---- C:\Program Files (x86)\TP-LINK
2015-08-19 11:53:56 ----A---- C:\Windows\system32\drivers\avgidsha.sys
2015-08-19 11:52:30 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys

======List of files/folders modified in the last 1 month======

2015-09-18 12:12:45 ----D---- C:\Windows\Temp
2015-09-18 12:12:42 ----D---- C:\ProgramData\MFAData
2015-09-18 12:10:04 ----D---- C:\Windows\system32\config
2015-09-18 12:06:05 ----D---- C:\Windows\system32\drivers
2015-09-18 12:05:23 ----D---- C:\Users\Martin\AppData\Roaming\Seznam.cz
2015-09-18 12:04:44 ----RD---- C:\Program Files (x86)
2015-09-18 12:04:42 ----D---- C:\Windows\system32\DriverStore
2015-09-18 12:04:42 ----D---- C:\Windows\system32\catroot
2015-09-18 12:04:42 ----D---- C:\Windows\inf
2015-09-18 12:04:13 ----D---- C:\Users\Martin\AppData\Roaming\Raptr
2015-09-18 12:03:43 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2015-09-18 12:02:53 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2015-09-18 12:00:51 ----D---- C:\Users\Martin\AppData\Roaming\Dropbox
2015-09-18 12:00:44 ----D---- C:\Users\Martin\AppData\Roaming\Spotify
2015-09-18 11:56:07 ----D---- C:\Windows\System32
2015-09-18 11:56:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-18 11:51:31 ----D---- C:\Windows\system32\wdi
2015-09-18 03:15:05 ----D---- C:\Users\Martin\AppData\Roaming\HoldemManager
2015-09-16 12:11:26 ----HD---- C:\ProgramData
2015-09-16 12:10:37 ----D---- C:\Windows\system32\Tasks
2015-09-16 12:10:36 ----D---- C:\Program Files (x86)\Common Files
2015-09-15 19:19:14 ----D---- C:\Program Files (x86)\Sharkystrator
2015-09-15 17:20:09 ----RD---- C:\Program Files
2015-09-15 14:25:00 ----SHD---- C:\Windows\Installer
2015-09-15 14:20:16 ----D---- C:\Windows\Tasks
2015-09-15 12:54:12 ----D---- C:\Program Files (x86)\Holdem Manager 2
2015-09-15 11:56:14 ----SHD---- C:\System Volume Information
2015-09-13 18:31:30 ----AD---- C:\Windows
2015-09-13 15:33:28 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2015-09-12 09:45:12 ----D---- C:\Windows\SysWOW64
2015-09-10 00:19:30 ----D---- C:\Windows\system32\catroot2
2015-09-09 09:16:01 ----D---- C:\Program Files\Common Files\Apple
2015-09-05 16:58:04 ----D---- C:\ProgramData\AVG
2015-09-05 16:28:49 ----D---- C:\Program Files\Common Files
2015-09-05 16:28:13 ----D---- C:\Program Files (x86)\AVG
2015-09-01 22:40:53 ----D---- C:\Program Files (x86)\PokerStars.FR
2015-09-01 22:40:53 ----D---- C:\Program Files (x86)\PokerStars
2015-08-31 23:30:58 ----D---- C:\Program Files (x86)\Full Tilt Poker.Eu
2015-08-25 08:36:19 ----D---- C:\Windows\SoftwareDistribution
2015-08-24 22:23:26 ----D---- C:\Program Files (x86)\TeamViewer
2015-08-24 14:46:16 ----D---- C:\Windows\rescache
2015-08-24 14:28:33 ----D---- C:\Windows\Microsoft.NET
2015-08-24 14:28:02 ----RSD---- C:\Windows\assembly
2015-08-24 14:16:04 ----D---- C:\Windows\winsxs
2015-08-24 14:15:52 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-24 14:15:52 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-24 14:15:16 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-24 14:15:16 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-08-24 14:15:16 ----D---- C:\Windows\system32\en-US
2015-08-24 14:15:16 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-24 14:15:16 ----D---- C:\Windows\system32\cs-CZ
2015-08-24 14:15:16 ----D---- C:\Windows\AppPatch
2015-08-24 14:15:16 ----D---- C:\Program Files\Internet Explorer
2015-08-24 14:15:16 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-24 14:15:15 ----D---- C:\Windows\PolicyDefinitions
2015-08-24 14:07:37 ----D---- C:\Windows\system32\MRT
2015-08-23 21:40:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-23 21:38:49 ----D---- C:\Users\Martin\AppData\Roaming\Apple Computer
2015-08-21 17:53:17 ----D---- C:\Program Files (x86)\Full Tilt Poker
2015-08-20 15:24:10 ----D---- C:\Program Files (x86)\Gyazo
2015-08-19 20:27:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2013-11-06 83176]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2013-11-06 43240]
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2015-08-19 297904]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-05-07 378336]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-08-04 250800]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2015-03-20 40928]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2012-10-25 22680]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2015-03-11 162784]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys [2015-07-09 77760]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-08-19 313264]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2015-06-16 259040]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2015-08-04 300464]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 rzpmgrk;rzpmgrk; \??\C:\Windows\system32\drivers\rzpmgrk.sys [2015-06-12 37184]
R2 rzpnk;rzpnk; \??\C:\Windows\system32\drivers\rzpnk.sys [2015-06-27 129472]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-11-21 18959360]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-11-21 589312]
R3 athr;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athrx.sys [2011-08-17 1579520]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-10-30 4201104]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-09-18 113880]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 63704]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
R3 rzendpt;rzendpt; C:\Windows\system32\DRIVERS\rzendpt.sys [2015-08-13 50392]
R3 rzudd;Razer Mouse Driver; C:\Windows\system32\DRIVERS\rzudd.sys [2015-08-13 201432]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2015-06-25 31144]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-03-30 56448]
R3 VUSB3HUB;VIA USB 3 Root Hub Service; C:\Windows\system32\DRIVERS\ViaHub3.sys [2013-08-12 225792]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 26440]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2010-04-27 77512]
R3 xhcdrv;VIA USB eXtensible Host Controller Service; C:\Windows\system32\DRIVERS\xhcdrv.sys [2013-08-12 295424]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athurx.sys [2010-01-05 1847296]
S3 cpuz134;cpuz134; \??\C:\Program Files (x86)\CPUID\PC Wizard 2010\pcwiz_x64.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2013-08-06 23040]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-10 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2010-04-27 16200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-11-21 244736]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2014-11-20 344064]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2015\avgfws.exe [2015-08-24 1560592]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-08-24 3637160]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-08-24 335656]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 postgresql-8.4;postgresql-8.4 - PostgreSQL Server 8.4; c:\postgreSQL\bin\pg_ctl.exe [2014-02-18 66048]
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2015-06-23 187048]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2015-08-04 2973400]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [2015-09-13 1205136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-23 269000]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-04-29 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-08-13 644880]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-03 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-08-07 5611280]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119674
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o kontrolu dekuji

#7 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files (x86)\Google\Google Toolbar
C:\Program Files (x86)\Google\GoogleToolbarNotifier
C:\Users\Martin\AppData\Local\Facebook\Update
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Program Files (x86)\Skype\Toolbars

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=-
"Facebook Update"=-

:services
c2cautoupdatesvc
c2cpnrsvc

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
macurbanek
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 15 zář 2015 11:21

Re: prosim o kontrolu dekuji

#8 Příspěvek od macurbanek »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2015-09-19 10:41:34
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 8 GB (7%) free of 114 GB
Total RAM: 16349 MB (73% free)

HijackThis download failed

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000Core.job - C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2300270703-1979334120-1330746314-1000UA.job - C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2015-07-09 55568]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-08-24 3775912]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2015-08-11 593216]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Gyazo"=C:\Program Files (x86)\Gyazo\GyStation.exe [2015-08-19 3098424]
"f.lux"=C:\Users\Martin\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2015-04-26 43816]
"Spotify Web Helper"=C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-09-16 2025016]
"cz.seznam.software.autoupdate"=C:\Users\Martin\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Martin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"Dropbox Update"=C:\Users\Martin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-23 134512]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-07 53735968]
"Spotify"=C:\Users\Martin\AppData\Roaming\Spotify\Spotify.exe [2015-09-16 7571000]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_B3FBEF5462B7ECF3CF8933E4FE9764B6"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-09-12 815944]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Martin\AppData\Roaming\Dropbox\bin\Dropbox.exe
Facebook Messenger.lnk - C:\Users\Martin\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\facebookmessenger.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.mjpg"=bdmjpeg.dll
"vidc.mpeg"=bdmpegv.dll
"msacm.bdmpeg"=bdmpega.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-19 10:41:34 ----D---- C:\Program Files (x86)\trend micro
2015-09-19 10:32:40 ----D---- C:\_OTM
2015-09-16 11:59:05 ----D---- C:\AdwCleaner
2015-09-15 17:17:44 ----D---- C:\Program Files (x86)\ESET
2015-09-15 12:16:40 ----D---- C:\rsit
2015-09-15 11:21:34 ----D---- C:\ProgramData\Malwarebytes
2015-09-15 11:21:34 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-13 09:05:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-09-13 09:05:35 ----D---- C:\ProgramData\AVG Web TuneUp
2015-09-13 09:05:31 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2015-09-12 09:36:50 ----D---- C:\ProgramData\Razer
2015-09-12 09:36:43 ----D---- C:\Program Files (x86)\Razer
2015-09-09 09:16:01 ----D---- C:\Program Files (x86)\iTunes
2015-09-05 16:29:11 ----D---- C:\Users\Martin\AppData\Roaming\AVG2015
2015-09-05 16:28:37 ----HD---- C:\$AVG
2015-09-05 16:28:37 ----D---- C:\ProgramData\AVG2015
2015-08-24 14:12:24 ----A---- C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SysWOW64\schannel.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SysWOW64\msv1_0.dll
2015-08-24 14:00:35 ----A---- C:\Windows\SysWOW64\kerberos.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\wdigest.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\TSpkg.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\srclient.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\setup16.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\secur32.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\rpcrt4.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\ntvdm64.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\ntoskrnl.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\ntkrnlpa.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\ntdll.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\ncrypt.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\msaudite.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\KernelBase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\kernel32.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\cryptbase.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\credssp.dll
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\auditpol.exe
2015-08-24 14:00:34 ----A---- C:\Windows\SysWOW64\adtschema.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-24 14:00:33 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SysWOW64\wow32.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SysWOW64\user.exe
2015-08-24 14:00:33 ----A---- C:\Windows\SysWOW64\sspicli.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SysWOW64\msobjs.dll
2015-08-24 14:00:33 ----A---- C:\Windows\SysWOW64\instnm.exe
2015-08-24 14:00:33 ----A---- C:\Windows\SysWOW64\apisetschema.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SysWOW64\iernonce.dll
2015-08-24 14:00:31 ----A---- C:\Windows\SysWOW64\ieetwproxystub.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SysWOW64\vbscript.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SysWOW64\urlmon.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SysWOW64\mshtml.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SysWOW64\iertutil.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2015-08-24 14:00:30 ----A---- C:\Windows\SysWOW64\dxtrans.dll
2015-08-24 14:00:29 ----A---- C:\Windows\SysWOW64\iesetup.dll
2015-08-24 14:00:29 ----A---- C:\Windows\SysWOW64\ieapfltr.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SysWOW64\jscript9diag.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SysWOW64\jscript.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2015-08-24 14:00:28 ----A---- C:\Windows\SysWOW64\ieui.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SysWOW64\ieframe.dll
2015-08-24 14:00:28 ----A---- C:\Windows\SysWOW64\dxtmsft.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SysWOW64\wininet.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SysWOW64\msrating.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SysWOW64\mshtmlmedia.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SysWOW64\MshtmlDac.dll
2015-08-24 14:00:26 ----A---- C:\Windows\SysWOW64\jscript9.dll
2015-08-24 14:00:22 ----A---- C:\Windows\SysWOW64\msi.dll
2015-08-24 14:00:22 ----A---- C:\Windows\SysWOW64\authui.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SysWOW64\msimsg.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SysWOW64\msihnd.dll
2015-08-24 14:00:21 ----A---- C:\Windows\SysWOW64\msiexec.exe
2015-08-24 14:00:18 ----A---- C:\Windows\SysWOW64\gdi32.dll
2015-08-24 14:00:18 ----A---- C:\Windows\SysWOW64\DWrite.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SysWOW64\dciman32.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SysWOW64\d3d10warp.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SysWOW64\atmlib.dll
2015-08-24 14:00:17 ----A---- C:\Windows\SysWOW64\atmfd.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SysWOW64\shell32.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SysWOW64\lpk.dll
2015-08-24 14:00:16 ----A---- C:\Windows\SysWOW64\fontsub.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SysWOW64\msxml6r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SysWOW64\msxml6.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SysWOW64\msxml3r.dll
2015-08-24 14:00:15 ----A---- C:\Windows\SysWOW64\msxml3.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SysWOW64\tsgqec.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SysWOW64\mstscax.dll
2015-08-24 13:59:12 ----A---- C:\Windows\SysWOW64\aaclient.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SysWOW64\WebClnt.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SysWOW64\ole32.dll
2015-08-24 13:59:11 ----A---- C:\Windows\SysWOW64\davclnt.dll
2015-08-24 13:58:02 ----A---- C:\Windows\notepad.exe
2015-08-24 13:58:01 ----A---- C:\Windows\SysWOW64\notepad.exe
2015-08-24 13:58:01 ----A---- C:\Windows\SysWOW64\cewmdm.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SysWOW64\wuwebv.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SysWOW64\wups.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SysWOW64\wudriver.dll
2015-08-24 13:57:14 ----A---- C:\Windows\SysWOW64\wuapp.exe
2015-08-24 13:57:14 ----A---- C:\Windows\SysWOW64\wuapi.dll
2015-08-23 21:38:41 ----D---- C:\Program Files (x86)\Safari

======List of files/folders modified in the last 1 month======

2015-09-19 10:41:34 ----RD---- C:\Program Files (x86)
2015-09-19 10:41:09 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2015-09-19 10:41:06 ----D---- C:\Users\Martin\AppData\Roaming\Raptr
2015-09-19 10:40:54 ----D---- C:\Windows\Temp
2015-09-19 10:40:44 ----D---- C:\Users\Martin\AppData\Roaming\Dropbox
2015-09-19 10:40:35 ----D---- C:\Users\Martin\AppData\Roaming\Spotify
2015-09-19 10:38:12 ----D---- C:\Windows\System32
2015-09-19 10:38:12 ----D---- C:\Windows\inf
2015-09-19 10:32:42 ----RD---- C:\Program Files (x86)\Skype
2015-09-19 10:32:42 ----D---- C:\Windows\Tasks
2015-09-19 10:32:42 ----D---- C:\Program Files (x86)\Google
2015-09-19 10:12:42 ----D---- C:\ProgramData\MFAData
2015-09-19 00:33:00 ----D---- C:\Windows\DigitalLocker
2015-09-18 12:05:23 ----D---- C:\Users\Martin\AppData\Roaming\Seznam.cz
2015-09-18 12:03:43 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2015-09-18 03:15:05 ----D---- C:\Users\Martin\AppData\Roaming\HoldemManager
2015-09-16 12:11:26 ----HD---- C:\ProgramData
2015-09-16 12:10:36 ----D---- C:\Program Files (x86)\Common Files
2015-09-15 19:19:14 ----D---- C:\Program Files (x86)\Sharkystrator
2015-09-15 17:20:09 ----RD---- C:\Program Files
2015-09-15 14:25:00 ----SHD---- C:\Windows\Installer
2015-09-15 12:54:12 ----D---- C:\Program Files (x86)\Holdem Manager 2
2015-09-15 11:56:14 ----SHD---- C:\System Volume Information
2015-09-13 18:31:30 ----AD---- C:\Windows
2015-09-13 15:33:28 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2015-09-12 09:45:12 ----D---- C:\Windows\SysWOW64
2015-09-05 16:58:04 ----D---- C:\ProgramData\AVG
2015-09-05 16:28:13 ----D---- C:\Program Files (x86)\AVG
2015-09-01 22:40:53 ----D---- C:\Program Files (x86)\PokerStars.FR
2015-09-01 22:40:53 ----D---- C:\Program Files (x86)\PokerStars
2015-08-31 23:30:58 ----D---- C:\Program Files (x86)\Full Tilt Poker.Eu
2015-08-25 08:36:19 ----D---- C:\Windows\SoftwareDistribution
2015-08-24 22:23:26 ----D---- C:\Program Files (x86)\TeamViewer
2015-08-24 14:46:16 ----D---- C:\Windows\rescache
2015-08-24 14:28:33 ----D---- C:\Windows\Microsoft.NET
2015-08-24 14:28:02 ----RSD---- C:\Windows\assembly
2015-08-24 14:16:04 ----D---- C:\Windows\winsxs
2015-08-24 14:15:52 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-24 14:15:16 ----D---- C:\Windows\SysWOW64\en-US
2015-08-24 14:15:16 ----D---- C:\Windows\SysWOW64\cs-CZ
2015-08-24 14:15:16 ----D---- C:\Windows\AppPatch
2015-08-24 14:15:16 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-24 14:15:15 ----D---- C:\Windows\PolicyDefinitions
2015-08-23 21:40:06 ----A---- C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-23 21:38:49 ----D---- C:\Users\Martin\AppData\Roaming\Apple Computer
2015-08-21 17:53:17 ----D---- C:\Program Files (x86)\Full Tilt Poker
2015-08-20 15:24:10 ----D---- C:\Program Files (x86)\Gyazo

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys []
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys []
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys []
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys []
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys []
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys []
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys []
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys []
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6a.sys []
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys []
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys []
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 rzpmgrk;rzpmgrk; \??\C:\Windows\system32\drivers\rzpmgrk.sys []
R2 rzpnk;rzpnk; \??\C:\Windows\system32\drivers\rzpnk.sys []
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys []
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 athr;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys []
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
R3 rzendpt;rzendpt; C:\Windows\system32\DRIVERS\rzendpt.sys []
R3 rzudd;Razer Mouse Driver; C:\Windows\system32\DRIVERS\rzudd.sys []
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2015-06-25 31144]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys []
R3 VUSB3HUB;VIA USB 3 Root Hub Service; C:\Windows\system32\DRIVERS\ViaHub3.sys []
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys []
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys []
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys []
R3 xhcdrv;VIA USB eXtensible Host Controller Service; C:\Windows\system32\DRIVERS\xhcdrv.sys []
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athurx.sys []
S3 cpuz134;cpuz134; \??\C:\Program Files (x86)\CPUID\PC Wizard 2010\pcwiz_x64.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys []
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys []
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys []
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2014-11-20 344064]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 avgfws;AVG Firewall; C:\Program Files (x86)\AVG\AVG2015\avgfws.exe [2015-08-24 1560592]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-08-24 335656]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 postgresql-8.4;postgresql-8.4 - PostgreSQL Server 8.4; c:\postgreSQL\bin\pg_ctl.exe [2014-02-18 66048]
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2015-06-23 187048]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2015-08-04 2973400]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [2015-09-13 1205136]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-08-24 3637160]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-23 269000]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe []
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-04-29 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe /V []
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-08-13 644880]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-08-07 5611280]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119674
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o kontrolu dekuji

#9 Příspěvek od Rudy »

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Vše v pořádku?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“