Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zasekaný PC

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
pafculka
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 96
Registrován: 07 bře 2007 19:04
Bydliště: Brno
Kontaktovat uživatele:
Kontaktovat uživatele pafculka

Zasekaný PC

#1 Příspěvek od pafculka »

Dobrý den, prosím o kontrolo logu. Počítač je pomalý (vím že musím promazat C:) :)

Děkuju moc!!


Logfile of random's system information tool 1.09 (written by random/random)
Run by Irculka at 2016-02-02 13:45:06
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 46 GB (10%) free of 462 GB
Total RAM: 3957 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:45:44, on 2.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Windows\System32\TiltWheelMouse.exe
C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Irculka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_4208F9A32D13E9514C35C2E8E2D3571F] "C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Irculka\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Sledovat výstrahy inkoustu - HP Photosmart 7510 series (Síť).lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13772 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 36080832
\??\C:\Windows\system32\conhost.exe "-6115529101275725544200128561921193255116624061231117517718177034674-583018527
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
"C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
WLIDSvcM.exe 2096
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe"
"C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE" C:\Users\Irculka
"C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000674
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Dell\QuickSet\quickset.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Windows\System32\TiltWheelMouse.exe"
"C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler.exe"
"C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe"
"C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler64.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Photosmart 7510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN18V154JP05PX;CONNECTION=NW;MONITOR=1;
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe" PanProcess
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --profile-directory="Profile 1"
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6912 --on-initialized-event-handle=336 --parent-handle=340
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="5684.2.2122580607\247628790" --font-cache-shared-handle=2600 /prefetch:673131151
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="5684.8.579326376\2107261315" --font-cache-shared-handle=5660 /prefetch:673131151
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="5684.21.1371854926\158781797" --font-cache-shared-handle=5996 /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5684.22.1873184017\939864840" --use-gl=swiftshader --supports-dual-gpus=false --swiftshader-path="C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159" --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x1002 --gpu-device-id=0x68e0 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.301.1001.0 --ignored=" --type=renderer " /prefetch:822062411
taskeng.exe {E305A141-219B-40E4-B3D7-83E120E763E5}
C:\Windows\system32\svchost.exe -k defragsvc
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
taskeng.exe {37E5FB28-5960-41E3-BAF5-F8F71745D2D7}
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/*SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="5684.23.2019372141\947127434" --font-cache-shared-handle=2960 /prefetch:673131151
"C:\Users\Irculka\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000Core.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000UA.job
C:\Windows\tasks\HP Photo Creations Messager.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-22 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-12 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
!{8dcb7100-df86-4384-8842-8fa844297b3f}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
{8dcb7100-df86-4384-8842-8fa844297b3f}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-22 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-08 2122536]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2010-04-06 3203440]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-30 36352]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-13 10144288]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-01-27 169768]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
"GoogleChromeAutoLaunch_4208F9A32D13E9514C35C2E8E2D3571F"=C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe [2016-01-27 748872]
"Spotify Web Helper"=C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2015-08-11 1676344]
"Dropbox Update"=C:\Users\Irculka\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16 134512]
"DellSystemDetect"=C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe [2015-01-25 276776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2015-01-20 60712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dellsupportcenter]
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe /P dellsupportcenter []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop Disc Tool]
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2009-10-15 498160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31 144200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-01-15 23499656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Photosmart 7510 series (NET)]
C:\Program Files\HP\HP Photosmart 7510 series\Bin\ScanToPCActivationApp.exe [2011-06-08 2676584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2014-10-02 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\Irculka\AppData\Roaming\Spotify\Spotify.exe [2015-08-11 6737976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2015-08-11 1676344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Irculka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~2\MICROS~1\Office14\ONENOTEM.EXE [2015-10-13 228552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"=C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2009-06-24 409744]
""= []
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-01-28 98304]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2015-12-01 803200]
"HTC Sync Loader"=C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2010-08-18 249856]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-10-02 421888]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2015-12-08 66320]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\Irculka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
Sledovat výstrahy inkoustu - HP Photosmart 7510 series (Síť).lnk - C:\Windows\system32\RunDll32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-02 13:45:06 ----D---- C:\rsit
2016-01-12 20:47:54 ----A---- C:\Windows\system32\appraiser.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\invagent.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\generaltel.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\devinv.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-01-12 20:47:53 ----A---- C:\Windows\system32\aepic.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\acmigration.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2016-01-12 20:47:51 ----A---- C:\Windows\system32\mapistub.dll
2016-01-12 20:47:51 ----A---- C:\Windows\system32\mapi32.dll
2016-01-12 20:47:51 ----A---- C:\Windows\system32\fixmapi.exe
2016-01-12 20:47:43 ----A---- C:\Windows\system32\WMVDECOD.DLL
2016-01-12 20:47:43 ----A---- C:\Windows\system32\WMADMOD.DLL
2016-01-12 20:47:43 ----A---- C:\Windows\system32\msmpeg2adec.dll
2016-01-12 20:47:42 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2016-01-12 20:47:42 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2016-01-12 20:47:42 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2016-01-12 20:47:42 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\mf.dll
2016-01-12 20:47:41 ----A---- C:\Windows\system32\WMVSDECD.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\system32\mf.dll
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\system32\WMADMOE.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\system32\mcmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2016-01-12 20:47:39 ----A---- C:\Windows\system32\WMVENCOD.DLL
2016-01-12 20:47:39 ----A---- C:\Windows\system32\wmpmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\quartz.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\evr.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\COLORCNV.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\evr.dll
2016-01-12 20:47:38 ----A---- C:\Windows\system32\WMVXENCD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\quartz.dll
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\devenum.dll
2016-01-12 20:47:37 ----A---- C:\Windows\system32\WMVSENCD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\VIDRESZR.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MPG4DECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MP4SDECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MP43DECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\mfplat.dll
2016-01-12 20:47:37 ----A---- C:\Windows\system32\devenum.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\qasf.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\SysFxUI.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\system32\qdvd.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\qasf.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\MP3DMOD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\system32\mfvdsp.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfps.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mferror.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\rrinstaller.exe
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mfps.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mfpmp.exe
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mferror.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\ksuser.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\portcls.sys
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\drmk.sys
2016-01-12 20:47:34 ----A---- C:\Windows\SYSWOW64\qedit.dll
2016-01-12 20:47:34 ----A---- C:\Windows\system32\qedit.dll
2016-01-12 20:47:33 ----A---- C:\Windows\system32\aeinv.dll
2016-01-12 20:47:32 ----A---- C:\Windows\system32\win32k.sys
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\iertutil.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\iernonce.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\ie4uinit.exe
2016-01-12 20:47:20 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-01-12 20:47:20 ----A---- C:\Windows\system32\occache.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\urlmon.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-12 20:47:19 ----A---- C:\Windows\system32\msfeeds.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\iedkcs32.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\dxtrans.dll
2016-01-12 20:47:18 ----A---- C:\Windows\system32\iesetup.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-01-12 20:47:17 ----A---- C:\Windows\system32\vbscript.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-01-12 20:47:16 ----A---- C:\Windows\system32\jsproxy.dll
2016-01-12 20:47:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\ieui.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\ieframe.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\dxtmsft.dll
2016-01-12 20:47:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-01-12 20:47:14 ----A---- C:\Windows\system32\mshtmled.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\webcheck.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\jscript9diag.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\jscript.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\ieUnatt.exe
2016-01-12 20:47:12 ----A---- C:\Windows\system32\jscript9.dll
2016-01-12 20:47:11 ----A---- C:\Windows\system32\wininet.dll
2016-01-12 20:47:11 ----A---- C:\Windows\system32\ieapfltr.dll
2016-01-12 20:47:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-01-12 20:47:08 ----A---- C:\Windows\system32\msrating.dll
2016-01-12 20:47:08 ----A---- C:\Windows\system32\mshtml.dll
2016-01-12 20:46:13 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-01-12 20:46:13 ----A---- C:\Windows\system32\advapi32.dll
2016-01-12 20:46:11 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-01-12 20:46:11 ----A---- C:\Windows\system32\gdi32.dll
2016-01-12 20:45:39 ----A---- C:\Windows\system32\rpcrt4.dll
2016-01-12 20:45:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-01-12 20:45:37 ----A---- C:\Windows\system32\kerberos.dll
2016-01-12 20:45:36 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-01-12 20:45:36 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-01-12 20:45:36 ----A---- C:\Windows\system32\schannel.dll
2016-01-12 20:45:36 ----A---- C:\Windows\system32\lsasrv.dll
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-01-12 20:45:35 ----A---- C:\Windows\system32\ncrypt.dll
2016-01-12 20:45:35 ----A---- C:\Windows\system32\kernel32.dll
2016-01-12 20:45:34 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-01-12 20:45:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\wdigest.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\TSpkg.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\msv1_0.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-01-12 20:45:33 ----A---- C:\Windows\system32\ntdll.dll
2016-01-12 20:45:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-01-12 20:45:31 ----A---- C:\Windows\system32\winsrv.dll
2016-01-12 20:45:31 ----A---- C:\Windows\system32\secur32.dll
2016-01-12 20:45:31 ----A---- C:\Windows\system32\cryptbase.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\sspisrv.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\sspicli.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\smss.exe
2016-01-12 20:45:30 ----A---- C:\Windows\system32\ntvdm64.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\lsass.exe
2016-01-12 20:45:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-01-12 20:45:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-01-12 20:45:30 ----A---- C:\Windows\system32\credssp.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64win.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64cpu.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\srcore.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\srclient.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\rstrui.exe
2016-01-12 20:45:29 ----A---- C:\Windows\system32\KernelBase.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-01-12 20:45:29 ----A---- C:\Windows\system32\csrsrv.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\conhost.exe
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-01-12 20:45:28 ----A---- C:\Windows\system32\auditpol.exe
2016-01-12 20:45:28 ----A---- C:\Windows\system32\apisetschema.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-12 20:45:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\user.exe
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\msobjs.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\msaudite.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\adtschema.dll
2016-01-12 20:45:23 ----A---- C:\Windows\SYSWOW64\msobjs.dll

======List of files/folders modified in the last 1 month======

2016-02-02 13:45:39 ----D---- C:\Windows\Temp
2016-02-02 13:45:27 ----D---- C:\Windows\Prefetch
2016-02-02 13:45:26 ----D---- C:\Program Files\trend micro
2016-02-02 13:44:02 ----SHD---- C:\System Volume Information
2016-02-02 13:40:20 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-02-02 13:32:05 ----D---- C:\Windows\system32\config
2016-02-02 13:29:24 ----D---- C:\Users\Irculka\AppData\Roaming\Dropbox
2016-02-02 13:28:58 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-02 13:25:47 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2016-02-02 13:24:49 ----SHD---- C:\Config.Msi
2016-02-01 20:27:10 ----SHD---- C:\Windows\Installer
2016-02-01 20:02:59 ----D---- C:\Windows\Tasks
2016-01-31 12:53:45 ----D---- C:\Windows
2016-01-30 16:17:56 ----D---- C:\Windows\rescache
2016-01-30 13:00:54 ----D---- C:\Windows\Minidump
2016-01-30 13:00:54 ----D---- C:\Windows\debug
2016-01-24 17:08:17 ----D---- C:\Windows\SysWOW64
2016-01-24 17:08:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-01-16 14:40:31 ----D---- C:\Windows\System32
2016-01-16 14:40:31 ----D---- C:\Windows\inf
2016-01-16 14:40:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-15 20:03:50 ----D---- C:\ProgramData\Package Cache
2016-01-14 21:51:41 ----D---- C:\Windows\winsxs
2016-01-14 21:45:43 ----D---- C:\Program Files\Internet Explorer
2016-01-14 21:45:38 ----D---- C:\Windows\SYSWOW64\en-US
2016-01-14 21:45:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-01-14 21:45:33 ----D---- C:\Windows\system32\cs-CZ
2016-01-14 21:45:32 ----D---- C:\Windows\system32\en-US
2016-01-14 21:45:20 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-14 21:45:17 ----SD---- C:\Windows\system32\CompatTel
2016-01-14 21:45:16 ----D---- C:\Windows\system32\appraiser
2016-01-14 21:45:15 ----D---- C:\Windows\AppPatch
2016-01-14 21:44:59 ----D---- C:\Windows\system32\drivers
2016-01-14 21:44:56 ----D---- C:\Windows\system32\DriverStore
2016-01-14 21:41:46 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-14 21:41:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-12 23:42:57 ----D---- C:\ProgramData\Microsoft Help
2016-01-12 23:39:19 ----D---- C:\Windows\system32\MRT
2016-01-12 23:20:31 ----A---- C:\Windows\system32\MRT.exe
2016-01-12 23:15:30 ----A---- C:\Windows\win.ini
2016-01-12 20:42:53 ----D---- C:\Windows\system32\catroot2
2016-01-11 22:51:05 ----D---- C:\Users\Irculka\AppData\Roaming\uTorrent
2016-01-11 21:44:51 ----D---- C:\Users\Irculka\AppData\Roaming\vlc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-30 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-30 28008]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-12-01 140448]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-09-24 28600]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-09-15 270912]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-12-01 162072]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-12-01 75472]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-09-15 16750080]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-09-15 576000]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl664.sys [2010-02-03 3058168]
R3 BcmVWL;Broadcom Virtual Wireless; C:\Windows\system32\DRIVERS\bcmvwl64.sys [2010-02-02 20984]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-12-22 74280]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\drivers\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-07 321584]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-04-08 124944]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2010-03-31 53800]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2010-03-31 98344]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-03-31 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2010-03-31 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-03-31 21160]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-13 2345760]
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\dell support center\pcdsrvc_x64.pkms [2012-08-17 25584]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-05-07 245792]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2015-01-15 16152]
S3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-07-28 54784]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2006-11-01 151656]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]
S3 xnacc;Služba ovladače pro řadič XBOX 360 pro systém Windows; C:\Windows\system32\DRIVERS\xnacc.sys [2009-07-14 679936]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-09-15 239616]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2015-12-01 466408]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2015-12-01 466408]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-19 77128]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2015-12-08 251160]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-30 15720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-07-01 325656]
R2 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-07-01 2533400]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-01-27 643880]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2015-12-01 948392]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2015-12-01 1418560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-24 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-26 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-14 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zasekaný PC

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
pafculka
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 96
Registrován: 07 bře 2007 19:04
Bydliště: Brno
Kontaktovat uživatele:
Kontaktovat uživatele pafculka

Re: Zasekaný PC

#3 Příspěvek od pafculka »

# AdwCleaner v5.032 - Logfile created 02/02/2016 at 18:05:26
# Updated 31/01/2016 by Xplode
# Database : 2016-01-31.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Irculka - IRCULKA-PC
# Running from : C:\Users\Irculka\Desktop\adwcleaner_5.032.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : PanService
[-] Service Deleted : swdumon

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\Burn4Free
[-] Folder Deleted : C:\Program Files (x86)\DriverToolkit
[-] Folder Deleted : C:\Program Files (x86)\EZDownloader
[-] Folder Deleted : C:\Program Files (x86)\GoSave
[-] Folder Deleted : C:\Program Files (x86)\LiveSupport
[-] Folder Deleted : C:\Program Files (x86)\PANDORA.TV
[-] Folder Deleted : C:\Program Files (x86)\Zrychleni Pocitace
[!] Folder Not Deleted : C:\Program Files (x86)\GoSave
[!] Folder Not Deleted : C:\Program Files (x86)\GoSave
[-] Folder Deleted : C:\ProgramData\GoSave
[-] Folder Deleted : C:\ProgramData\Trusted Publisher
[!] Folder Not Deleted : C:\ProgramData\GoSave
[!] Folder Not Deleted : C:\ProgramData\GoSave
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Burn4Free
[-] Folder Deleted : C:\Users\Irculka\AppData\Local\Chromatic Browser
[-] Folder Deleted : C:\Users\Irculka\AppData\Local\DriverToolkit
[-] Folder Deleted : C:\Users\Irculka\AppData\Local\globalUpdate
[-] Folder Deleted : C:\Users\Irculka\AppData\Local\onlysearch
[-] Folder Deleted : C:\Users\Irculka\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\Irculka\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ljefoakgfhcoeobgicjgejglnpfpemgb

***** [ Files ] *****

[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml
[-] File Deleted : C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_ask.com_0.localstorage-journal
[-] File Deleted : C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
[-] File Deleted : C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.dalesearch.com_0.localstorage-journal
[-] File Deleted : C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.only-search.com_0.localstorage-journal
[-] File Deleted : C:\Users\Irculka\AppData\Roaming\LiveSupport.exe_log.txt
[-] File Deleted : C:\Users\Irculka\AppData\Roaming\regsvr32.exe_log.txt
[-] File Deleted : C:\Users\Irculka\Desktop\Burn4Free.lnk
[-] File Deleted : C:\Windows\SysNative\drivers\swdumon.sys

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Burn4Free
[-] Key Deleted : HKCU\Software\Check Point Software Technologies LTD
[-] Key Deleted : HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : [x64] HKLM\SOFTWARE\CheckPoint\ISW
[!] Key Not Deleted : HKU\S-1-5-21-3744572969-564736872-3402888203-1000\Software\Burn4Free
[!] Key Not Deleted : HKU\S-1-5-21-3744572969-564736872-3402888203-1000\Software\Check Point Software Technologies LTD
[!] Key Not Deleted : HKU\S-1-5-21-3744572969-564736872-3402888203-1000\Software\SlimWare Utilities Inc
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3744572969-564736872-3402888203-1000\Software\ICQ\ICQToolbar
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3744572969-564736872-3402888203-1000\Software\Somoto Toolbar
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D282819-8B07-41ED-AB9A-5768B0E1F618}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2415}
[!] Key Not Deleted : HKU\S-1-5-21-3744572969-564736872-3402888203-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0D282819-8B07-41ED-AB9A-5768B0E1F618}

***** [ Web browsers ] *****

[-] [C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : check point software technologies ltd
[-] [C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : www.only-search.com
[-] [C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.dalesearch.com/?babsrc=HP_ss&mntrId ... 0&tsp=5010
[-] [C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://istart.webssearches.com/?type=hp&ts=1414580357&from=wpc&uid=ST9500325AS_6VED15L0XXXX6VED15L0
[-] [C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jcdgjdiieiljkfkdcloehkohchhpekkn
[-] [C:\Users\Irculka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : ogccgbmabaphcakpiclgcnmcnimhokcj

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

*************************

C:\AdwCleaner[R1].txt - [14697 bytes] - [30/05/2013 18:08:12]
C:\AdwCleaner[S1].txt - [14649 bytes] - [30/05/2013 19:17:32]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5390 bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zasekaný PC

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
pafculka
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 96
Registrován: 07 bře 2007 19:04
Bydliště: Brno
Kontaktovat uživatele:
Kontaktovat uživatele pafculka

Re: Zasekaný PC

#5 Příspěvek od pafculka »

Logfile of random's system information tool 1.09 (written by random/random)
Run by Irculka at 2016-02-02 18:20:34
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 46 GB (10%) free of 462 GB
Total RAM: 3957 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:20:38, on 2.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Irculka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_4208F9A32D13E9514C35C2E8E2D3571F] "C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Irculka\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Sledovat výstrahy inkoustu - HP Photosmart 7510 series (Síť).lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13497 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 33651232
\??\C:\Windows\system32\conhost.exe "-741985861-111132109-662909808-2053201502-199708391015993508941975118592-704579451
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1568
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE" C:\Users\Irculka
"C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE"
"C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000660
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Dell\QuickSet\quickset.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Windows\System32\TiltWheelMouse.exe"
"C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe"
"C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
"C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler64.exe"
"C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Photosmart 7510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN18V154JP05PX;CONNECTION=NW;MONITOR=1;
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --profile-directory="Profile 1"
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6056 --on-initialized-event-handle=336 --parent-handle=340
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4192.0.352331516\1159111692" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x1002 --gpu-device-id=0x68e0 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.301.1001.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="4192.2.339020345\173383814" --font-cache-shared-handle=2200 /prefetch:673131151
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="4192.5.1102887040\988081202" --font-cache-shared-handle=4828 /prefetch:673131151
C:\Windows\servicing\TrustedInstaller.exe
"C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/EnabledFull/AutofillProfileOrderByFrecency/Enabled/AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="4192.6.576351505\521272015" --font-cache-shared-handle=5300 /prefetch:673131151
"C:\Users\Irculka\Desktop\RSITx64.exe"
"C:\Program Files\HP\HP Photosmart 7510 series\bin\HPNetworkCommunicator.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000Core.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000UA.job
C:\Windows\tasks\HP Photo Creations Messager.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-22 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-12 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
!{8dcb7100-df86-4384-8842-8fa844297b3f}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
{8dcb7100-df86-4384-8842-8fa844297b3f}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-22 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-08 2122536]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2010-04-06 3203440]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-30 36352]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-13 10144288]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-01-27 169768]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
"GoogleChromeAutoLaunch_4208F9A32D13E9514C35C2E8E2D3571F"=C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe [2016-01-27 748872]
"Spotify Web Helper"=C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2015-08-11 1676344]
"Dropbox Update"=C:\Users\Irculka\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16 134512]
"DellSystemDetect"=C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe [2015-01-25 276776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2015-01-20 60712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dellsupportcenter]
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe /P dellsupportcenter []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop Disc Tool]
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2009-10-15 498160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31 144200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-01-15 23499656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Photosmart 7510 series (NET)]
C:\Program Files\HP\HP Photosmart 7510 series\Bin\ScanToPCActivationApp.exe [2011-06-08 2676584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2014-10-02 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\Irculka\AppData\Roaming\Spotify\Spotify.exe [2015-08-11 6737976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2015-08-11 1676344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Irculka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~2\MICROS~1\Office14\ONENOTEM.EXE [2015-10-13 228552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"=C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2009-06-24 409744]
""= []
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-01-28 98304]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2015-12-01 803200]
"HTC Sync Loader"=C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2010-08-18 249856]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-10-02 421888]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2015-12-08 66320]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\Irculka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
Sledovat výstrahy inkoustu - HP Photosmart 7510 series (Síť).lnk - C:\Windows\system32\RunDll32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-02 13:45:06 ----D---- C:\rsit
2016-01-12 20:47:54 ----A---- C:\Windows\system32\appraiser.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\invagent.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\generaltel.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\devinv.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-01-12 20:47:53 ----A---- C:\Windows\system32\aepic.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\acmigration.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2016-01-12 20:47:51 ----A---- C:\Windows\system32\mapistub.dll
2016-01-12 20:47:51 ----A---- C:\Windows\system32\mapi32.dll
2016-01-12 20:47:51 ----A---- C:\Windows\system32\fixmapi.exe
2016-01-12 20:47:43 ----A---- C:\Windows\system32\WMVDECOD.DLL
2016-01-12 20:47:43 ----A---- C:\Windows\system32\WMADMOD.DLL
2016-01-12 20:47:43 ----A---- C:\Windows\system32\msmpeg2adec.dll
2016-01-12 20:47:42 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2016-01-12 20:47:42 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2016-01-12 20:47:42 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2016-01-12 20:47:42 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\mf.dll
2016-01-12 20:47:41 ----A---- C:\Windows\system32\WMVSDECD.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\system32\mf.dll
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\system32\WMADMOE.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\system32\mcmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2016-01-12 20:47:39 ----A---- C:\Windows\system32\WMVENCOD.DLL
2016-01-12 20:47:39 ----A---- C:\Windows\system32\wmpmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\quartz.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\evr.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\COLORCNV.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\evr.dll
2016-01-12 20:47:38 ----A---- C:\Windows\system32\WMVXENCD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\quartz.dll
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\devenum.dll
2016-01-12 20:47:37 ----A---- C:\Windows\system32\WMVSENCD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\VIDRESZR.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MPG4DECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MP4SDECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MP43DECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\mfplat.dll
2016-01-12 20:47:37 ----A---- C:\Windows\system32\devenum.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\qasf.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\SysFxUI.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\system32\qdvd.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\qasf.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\MP3DMOD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\system32\mfvdsp.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfps.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mferror.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\rrinstaller.exe
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mfps.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mfpmp.exe
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mferror.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\ksuser.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\portcls.sys
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\drmk.sys
2016-01-12 20:47:34 ----A---- C:\Windows\SYSWOW64\qedit.dll
2016-01-12 20:47:34 ----A---- C:\Windows\system32\qedit.dll
2016-01-12 20:47:33 ----A---- C:\Windows\system32\aeinv.dll
2016-01-12 20:47:32 ----A---- C:\Windows\system32\win32k.sys
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\iertutil.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\iernonce.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\ie4uinit.exe
2016-01-12 20:47:20 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-01-12 20:47:20 ----A---- C:\Windows\system32\occache.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\urlmon.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-12 20:47:19 ----A---- C:\Windows\system32\msfeeds.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\iedkcs32.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\dxtrans.dll
2016-01-12 20:47:18 ----A---- C:\Windows\system32\iesetup.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-01-12 20:47:17 ----A---- C:\Windows\system32\vbscript.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-01-12 20:47:16 ----A---- C:\Windows\system32\jsproxy.dll
2016-01-12 20:47:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\ieui.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\ieframe.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\dxtmsft.dll
2016-01-12 20:47:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-01-12 20:47:14 ----A---- C:\Windows\system32\mshtmled.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\webcheck.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\jscript9diag.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\jscript.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\ieUnatt.exe
2016-01-12 20:47:12 ----A---- C:\Windows\system32\jscript9.dll
2016-01-12 20:47:11 ----A---- C:\Windows\system32\wininet.dll
2016-01-12 20:47:11 ----A---- C:\Windows\system32\ieapfltr.dll
2016-01-12 20:47:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-01-12 20:47:08 ----A---- C:\Windows\system32\msrating.dll
2016-01-12 20:47:08 ----A---- C:\Windows\system32\mshtml.dll
2016-01-12 20:46:13 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-01-12 20:46:13 ----A---- C:\Windows\system32\advapi32.dll
2016-01-12 20:46:11 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-01-12 20:46:11 ----A---- C:\Windows\system32\gdi32.dll
2016-01-12 20:45:39 ----A---- C:\Windows\system32\rpcrt4.dll
2016-01-12 20:45:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-01-12 20:45:37 ----A---- C:\Windows\system32\kerberos.dll
2016-01-12 20:45:36 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-01-12 20:45:36 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-01-12 20:45:36 ----A---- C:\Windows\system32\schannel.dll
2016-01-12 20:45:36 ----A---- C:\Windows\system32\lsasrv.dll
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-01-12 20:45:35 ----A---- C:\Windows\system32\ncrypt.dll
2016-01-12 20:45:35 ----A---- C:\Windows\system32\kernel32.dll
2016-01-12 20:45:34 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-01-12 20:45:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\wdigest.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\TSpkg.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\msv1_0.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-01-12 20:45:33 ----A---- C:\Windows\system32\ntdll.dll
2016-01-12 20:45:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-01-12 20:45:31 ----A---- C:\Windows\system32\winsrv.dll
2016-01-12 20:45:31 ----A---- C:\Windows\system32\secur32.dll
2016-01-12 20:45:31 ----A---- C:\Windows\system32\cryptbase.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\sspisrv.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\sspicli.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\smss.exe
2016-01-12 20:45:30 ----A---- C:\Windows\system32\ntvdm64.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\lsass.exe
2016-01-12 20:45:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-01-12 20:45:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-01-12 20:45:30 ----A---- C:\Windows\system32\credssp.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64win.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64cpu.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\srcore.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\srclient.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\rstrui.exe
2016-01-12 20:45:29 ----A---- C:\Windows\system32\KernelBase.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-01-12 20:45:29 ----A---- C:\Windows\system32\csrsrv.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\conhost.exe
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-01-12 20:45:28 ----A---- C:\Windows\system32\auditpol.exe
2016-01-12 20:45:28 ----A---- C:\Windows\system32\apisetschema.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-12 20:45:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\user.exe
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\msobjs.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\msaudite.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\adtschema.dll
2016-01-12 20:45:23 ----A---- C:\Windows\SYSWOW64\msobjs.dll

======List of files/folders modified in the last 1 month======

2016-02-02 18:20:37 ----D---- C:\Windows\Temp
2016-02-02 18:20:36 ----D---- C:\Program Files\trend micro
2016-02-02 18:13:04 ----D---- C:\Windows\system32\config
2016-02-02 18:11:09 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-02 18:10:58 ----D---- C:\Users\Irculka\AppData\Roaming\Dropbox
2016-02-02 18:08:15 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2016-02-02 18:06:18 ----D---- C:\Windows\Prefetch
2016-02-02 18:06:08 ----D---- C:\Windows\system32\drivers
2016-02-02 18:05:34 ----HD---- C:\ProgramData
2016-02-02 18:05:33 ----RD---- C:\Program Files (x86)
2016-02-02 18:05:27 ----D---- C:\AdwCleaner
2016-02-02 17:59:32 ----SHD---- C:\Windows\Installer
2016-02-02 17:59:30 ----SHD---- C:\Config.Msi
2016-02-02 14:27:11 ----D---- C:\Windows\Tasks
2016-02-02 13:44:02 ----SHD---- C:\System Volume Information
2016-02-02 13:40:20 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-01-31 12:53:45 ----D---- C:\Windows
2016-01-30 16:17:56 ----D---- C:\Windows\rescache
2016-01-30 13:00:54 ----D---- C:\Windows\Minidump
2016-01-30 13:00:54 ----D---- C:\Windows\debug
2016-01-24 17:08:17 ----D---- C:\Windows\SysWOW64
2016-01-24 17:08:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-01-16 14:40:31 ----D---- C:\Windows\System32
2016-01-16 14:40:31 ----D---- C:\Windows\inf
2016-01-16 14:40:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-15 20:03:50 ----D---- C:\ProgramData\Package Cache
2016-01-14 21:51:41 ----D---- C:\Windows\winsxs
2016-01-14 21:45:43 ----D---- C:\Program Files\Internet Explorer
2016-01-14 21:45:38 ----D---- C:\Windows\SYSWOW64\en-US
2016-01-14 21:45:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-01-14 21:45:33 ----D---- C:\Windows\system32\cs-CZ
2016-01-14 21:45:32 ----D---- C:\Windows\system32\en-US
2016-01-14 21:45:20 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-14 21:45:17 ----SD---- C:\Windows\system32\CompatTel
2016-01-14 21:45:16 ----D---- C:\Windows\system32\appraiser
2016-01-14 21:45:15 ----D---- C:\Windows\AppPatch
2016-01-14 21:44:56 ----D---- C:\Windows\system32\DriverStore
2016-01-14 21:41:46 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-14 21:41:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-12 23:42:57 ----D---- C:\ProgramData\Microsoft Help
2016-01-12 23:39:19 ----D---- C:\Windows\system32\MRT
2016-01-12 23:20:31 ----A---- C:\Windows\system32\MRT.exe
2016-01-12 23:15:30 ----A---- C:\Windows\win.ini
2016-01-12 20:42:53 ----D---- C:\Windows\system32\catroot2
2016-01-11 22:51:05 ----D---- C:\Users\Irculka\AppData\Roaming\uTorrent
2016-01-11 21:44:51 ----D---- C:\Users\Irculka\AppData\Roaming\vlc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-30 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-30 28008]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-12-01 140448]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-09-24 28600]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-09-15 270912]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-12-01 162072]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-12-01 75472]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-09-15 16750080]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-09-15 576000]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl664.sys [2010-02-03 3058168]
R3 BcmVWL;Broadcom Virtual Wireless; C:\Windows\system32\DRIVERS\bcmvwl64.sys [2010-02-02 20984]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-12-22 74280]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\drivers\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-07 321584]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-04-08 124944]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2010-03-31 53800]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2010-03-31 98344]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-03-31 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2010-03-31 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-03-31 21160]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-13 2345760]
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\dell support center\pcdsrvc_x64.pkms [2012-08-17 25584]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-05-07 245792]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-07-28 54784]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2006-11-01 151656]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]
S3 xnacc;Služba ovladače pro řadič XBOX 360 pro systém Windows; C:\Windows\system32\DRIVERS\xnacc.sys [2009-07-14 679936]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-21 79976]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-09-15 239616]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2015-12-01 466408]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2015-12-01 466408]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-19 77128]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-30 15720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-07-01 325656]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-07-01 2533400]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-01-27 643880]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2015-12-01 948392]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2015-12-01 1418560]
S2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2015-12-08 251160]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-24 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-26 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-14 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zasekaný PC

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files (x86)\Google\Google Toolbar
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000UA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64

:services
Bonjour Service

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
pafculka
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 96
Registrován: 07 bře 2007 19:04
Bydliště: Brno
Kontaktovat uživatele:
Kontaktovat uživatele pafculka

Re: Zasekaný PC

#7 Příspěvek od pafculka »

All processes killed
========== FILES ==========
C:\Program Files (x86)\Google\Google Toolbar\Component folder moved successfully.
C:\Program Files (x86)\Google\Google Toolbar folder moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000Core.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000UA.job moved successfully.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service Bonjour Service stopped successfully!
Service Bonjour Service deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Guest

User: HomeGroupUser$

User: Irculka
->Temp folder emptied: 1678099 bytes
->Temporary Internet Files folder emptied: 2621914 bytes
->Java cache emptied: 2958989 bytes
->FireFox cache emptied: 100495504 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 65655 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6472 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 8741313 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 753 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 112135 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 743 bytes
RecycleBin emptied: 768625102 bytes

Total Files Cleaned = 844,00 mb


[EMPTYFLASH]

User: Administrator

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Guest

User: HomeGroupUser$

User: Irculka
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 02022016_191831

Files moved on Reboot...
File C:\Users\Irculka\AppData\Local\Temp\OICE_A30E690C-EFD8-48FA-BA2B-D76A8E88DA9C.0\9C8E3D10. not found!
File C:\Users\Irculka\AppData\Local\Temp\OICE_A0E86BD7-A8CF-4EF0-8C1F-E61EBCBC5042.0\9D30D1F8. not found!
File C:\Users\Irculka\AppData\Local\Temp\OICE_27912256-0645-40FC-9D8A-95DE0CD92BCA.0\4AB52F1C. not found!
C:\Users\Irculka\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll moved successfully.
C:\Users\Irculka\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Irculka\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

Registry entries deleted on Reboot...
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zasekaný PC

#8 Příspěvek od Rudy »

Pioprosím ještě o 1 RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
pafculka
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 96
Registrován: 07 bře 2007 19:04
Bydliště: Brno
Kontaktovat uživatele:
Kontaktovat uživatele pafculka

Re: Zasekaný PC

#9 Příspěvek od pafculka »

Logfile of random's system information tool 1.09 (written by random/random)
Run by Irculka at 2016-02-09 13:24:13
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (9%) free of 462 GB
Total RAM: 3957 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:24:18, on 9.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Irculka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_4208F9A32D13E9514C35C2E8E2D3571F] "C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Irculka\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Sledovat výstrahy inkoustu - HP Photosmart 7510 series (Síť).lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12775 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 30118464
\??\C:\Windows\system32\conhost.exe "-359349917-2146072476306180596163553184020217571994850291850770192170932938
atieclxx
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1288
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {35BE2356-EB96-4BD3-9937-FC2A7127A1E6}
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE" C:\Users\Irculka
"C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE"
"C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000006a4
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Dell\QuickSet\quickset.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Windows\System32\TiltWheelMouse.exe"
"C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe"
"C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Irculka\AppData\Local\Google\Update\1.3.29.5\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
"C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Photosmart 7510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN18V154JP05PX;CONNECTION=NW;MONITOR=1;
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
taskeng.exe {ADCC4090-74ED-41C4-BA76-5D0E9773154B}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Users\Irculka\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000Core.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-3744572969-564736872-3402888203-1000UA.job
C:\Windows\tasks\HP Photo Creations Messager.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-12 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-08 2122536]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2010-04-06 3203440]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-30 36352]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-13 10144288]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-01-27 169768]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
"GoogleChromeAutoLaunch_4208F9A32D13E9514C35C2E8E2D3571F"=C:\Users\Irculka\AppData\Local\Google\Chrome\Application\chrome.exe [2016-02-03 748872]
"Spotify Web Helper"=C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2015-08-11 1676344]
"Dropbox Update"=C:\Users\Irculka\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16 134512]
"DellSystemDetect"=C:\Users\Irculka\AppData\Local\Apps\2.0\6M2NEQX0.AVE\H42L4E81.WT1\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe [2015-01-25 276776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2015-01-20 60712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dellsupportcenter]
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe /P dellsupportcenter []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop Disc Tool]
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [2009-10-15 498160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Irculka\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31 144200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-01-15 23499656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Photosmart 7510 series (NET)]
C:\Program Files\HP\HP Photosmart 7510 series\Bin\ScanToPCActivationApp.exe [2011-06-08 2676584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2014-10-02 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\Irculka\AppData\Roaming\Spotify\Spotify.exe [2015-08-11 6737976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\Irculka\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2015-08-11 1676344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Irculka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~2\MICROS~1\Office14\ONENOTEM.EXE [2015-10-13 228552]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"=C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2009-06-24 409744]
""= []
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-01-28 98304]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2015-12-01 803200]
"HTC Sync Loader"=C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2010-08-18 249856]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-10-02 421888]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-01-05 66328]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\Irculka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Irculka\AppData\Roaming\Dropbox\bin\Dropbox.exe
Sledovat výstrahy inkoustu - HP Photosmart 7510 series (Síť).lnk - C:\Windows\system32\RunDll32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-02 19:18:31 ----D---- C:\_OTM
2016-02-02 13:45:06 ----D---- C:\rsit
2016-01-12 20:47:54 ----A---- C:\Windows\system32\appraiser.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\invagent.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\generaltel.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\devinv.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-01-12 20:47:53 ----A---- C:\Windows\system32\aepic.dll
2016-01-12 20:47:53 ----A---- C:\Windows\system32\acmigration.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\mapistub.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\mapi32.dll
2016-01-12 20:47:51 ----A---- C:\Windows\SYSWOW64\fixmapi.exe
2016-01-12 20:47:51 ----A---- C:\Windows\system32\mapistub.dll
2016-01-12 20:47:51 ----A---- C:\Windows\system32\mapi32.dll
2016-01-12 20:47:51 ----A---- C:\Windows\system32\fixmapi.exe
2016-01-12 20:47:43 ----A---- C:\Windows\system32\WMVDECOD.DLL
2016-01-12 20:47:43 ----A---- C:\Windows\system32\WMADMOD.DLL
2016-01-12 20:47:43 ----A---- C:\Windows\system32\msmpeg2adec.dll
2016-01-12 20:47:42 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2016-01-12 20:47:42 ----A---- C:\Windows\SYSWOW64\msmpeg2adec.dll
2016-01-12 20:47:42 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2016-01-12 20:47:42 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\SYSWOW64\mf.dll
2016-01-12 20:47:41 ----A---- C:\Windows\system32\WMVSDECD.DLL
2016-01-12 20:47:41 ----A---- C:\Windows\system32\mf.dll
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\system32\WMADMOE.DLL
2016-01-12 20:47:40 ----A---- C:\Windows\system32\mcmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\SYSWOW64\COLORCNV.DLL
2016-01-12 20:47:39 ----A---- C:\Windows\system32\WMVENCOD.DLL
2016-01-12 20:47:39 ----A---- C:\Windows\system32\wmpmde.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\quartz.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\evr.dll
2016-01-12 20:47:39 ----A---- C:\Windows\system32\COLORCNV.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\SYSWOW64\evr.dll
2016-01-12 20:47:38 ----A---- C:\Windows\system32\WMVXENCD.DLL
2016-01-12 20:47:38 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\quartz.dll
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2016-01-12 20:47:37 ----A---- C:\Windows\SYSWOW64\devenum.dll
2016-01-12 20:47:37 ----A---- C:\Windows\system32\WMVSENCD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\VIDRESZR.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MPG4DECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MP4SDECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MP43DECD.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2016-01-12 20:47:37 ----A---- C:\Windows\system32\mfplat.dll
2016-01-12 20:47:37 ----A---- C:\Windows\system32\devenum.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\VIDRESZR.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\qasf.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MPG4DECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MP43DECD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\SysFxUI.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\system32\qdvd.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\qasf.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2016-01-12 20:47:36 ----A---- C:\Windows\system32\MP3DMOD.DLL
2016-01-12 20:47:36 ----A---- C:\Windows\system32\mfvdsp.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\MP3DMOD.DLL
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfvdsp.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfps.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\mferror.dll
2016-01-12 20:47:35 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\rrinstaller.exe
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mfps.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mfpmp.exe
2016-01-12 20:47:35 ----A---- C:\Windows\system32\mferror.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\ksuser.dll
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\portcls.sys
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2016-01-12 20:47:35 ----A---- C:\Windows\system32\drivers\drmk.sys
2016-01-12 20:47:34 ----A---- C:\Windows\SYSWOW64\qedit.dll
2016-01-12 20:47:34 ----A---- C:\Windows\system32\qedit.dll
2016-01-12 20:47:33 ----A---- C:\Windows\system32\aeinv.dll
2016-01-12 20:47:32 ----A---- C:\Windows\system32\win32k.sys
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-01-12 20:47:22 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\iertutil.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-01-12 20:47:22 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-01-12 20:47:21 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\iernonce.dll
2016-01-12 20:47:21 ----A---- C:\Windows\system32\ie4uinit.exe
2016-01-12 20:47:20 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-01-12 20:47:20 ----A---- C:\Windows\system32\occache.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-01-12 20:47:19 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\urlmon.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-12 20:47:19 ----A---- C:\Windows\system32\msfeeds.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\iedkcs32.dll
2016-01-12 20:47:19 ----A---- C:\Windows\system32\dxtrans.dll
2016-01-12 20:47:18 ----A---- C:\Windows\system32\iesetup.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-01-12 20:47:17 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-01-12 20:47:17 ----A---- C:\Windows\system32\vbscript.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-01-12 20:47:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-01-12 20:47:16 ----A---- C:\Windows\system32\jsproxy.dll
2016-01-12 20:47:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\ieui.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\ieframe.dll
2016-01-12 20:47:15 ----A---- C:\Windows\system32\dxtmsft.dll
2016-01-12 20:47:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-01-12 20:47:14 ----A---- C:\Windows\system32\mshtmled.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\webcheck.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\jscript9diag.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\jscript.dll
2016-01-12 20:47:13 ----A---- C:\Windows\system32\ieUnatt.exe
2016-01-12 20:47:12 ----A---- C:\Windows\system32\jscript9.dll
2016-01-12 20:47:11 ----A---- C:\Windows\system32\wininet.dll
2016-01-12 20:47:11 ----A---- C:\Windows\system32\ieapfltr.dll
2016-01-12 20:47:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-01-12 20:47:08 ----A---- C:\Windows\system32\msrating.dll
2016-01-12 20:47:08 ----A---- C:\Windows\system32\mshtml.dll
2016-01-12 20:46:13 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-01-12 20:46:13 ----A---- C:\Windows\system32\advapi32.dll
2016-01-12 20:46:11 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-01-12 20:46:11 ----A---- C:\Windows\system32\gdi32.dll
2016-01-12 20:45:39 ----A---- C:\Windows\system32\rpcrt4.dll
2016-01-12 20:45:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-01-12 20:45:37 ----A---- C:\Windows\system32\kerberos.dll
2016-01-12 20:45:36 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-01-12 20:45:36 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-01-12 20:45:36 ----A---- C:\Windows\system32\schannel.dll
2016-01-12 20:45:36 ----A---- C:\Windows\system32\lsasrv.dll
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-01-12 20:45:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-01-12 20:45:35 ----A---- C:\Windows\system32\ncrypt.dll
2016-01-12 20:45:35 ----A---- C:\Windows\system32\kernel32.dll
2016-01-12 20:45:34 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-01-12 20:45:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\wdigest.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\TSpkg.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\msv1_0.dll
2016-01-12 20:45:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-01-12 20:45:33 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-01-12 20:45:33 ----A---- C:\Windows\system32\ntdll.dll
2016-01-12 20:45:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-01-12 20:45:31 ----A---- C:\Windows\system32\winsrv.dll
2016-01-12 20:45:31 ----A---- C:\Windows\system32\secur32.dll
2016-01-12 20:45:31 ----A---- C:\Windows\system32\cryptbase.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-01-12 20:45:30 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\sspisrv.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\sspicli.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\smss.exe
2016-01-12 20:45:30 ----A---- C:\Windows\system32\ntvdm64.dll
2016-01-12 20:45:30 ----A---- C:\Windows\system32\lsass.exe
2016-01-12 20:45:30 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-01-12 20:45:30 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-01-12 20:45:30 ----A---- C:\Windows\system32\credssp.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-01-12 20:45:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64win.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64cpu.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\wow64.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\srcore.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\srclient.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\rstrui.exe
2016-01-12 20:45:29 ----A---- C:\Windows\system32\KernelBase.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-01-12 20:45:29 ----A---- C:\Windows\system32\csrsrv.dll
2016-01-12 20:45:29 ----A---- C:\Windows\system32\conhost.exe
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-12 20:45:28 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-01-12 20:45:28 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-01-12 20:45:28 ----A---- C:\Windows\system32\auditpol.exe
2016-01-12 20:45:28 ----A---- C:\Windows\system32\apisetschema.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-12 20:45:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-12 20:45:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-12 20:45:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-12 20:45:25 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\user.exe
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-01-12 20:45:24 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\msobjs.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\msaudite.dll
2016-01-12 20:45:24 ----A---- C:\Windows\system32\adtschema.dll
2016-01-12 20:45:23 ----A---- C:\Windows\SYSWOW64\msobjs.dll

======List of files/folders modified in the last 1 month======

2016-02-09 13:24:18 ----D---- C:\Windows\Prefetch
2016-02-09 13:24:17 ----D---- C:\Windows\Temp
2016-02-09 13:24:15 ----D---- C:\Program Files\trend micro
2016-02-09 13:23:16 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-09 13:22:59 ----D---- C:\Users\Irculka\AppData\Roaming\Dropbox
2016-02-09 13:20:23 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2016-02-07 09:58:06 ----D---- C:\Windows\system32\config
2016-02-06 12:52:00 ----D---- C:\ProgramData\Package Cache
2016-02-06 12:51:58 ----SHD---- C:\Windows\Installer
2016-02-06 12:51:52 ----SHD---- C:\Config.Msi
2016-02-02 19:18:34 ----D---- C:\Windows\Tasks
2016-02-02 19:18:34 ----D---- C:\Program Files (x86)\Google
2016-02-02 18:06:08 ----D---- C:\Windows\system32\drivers
2016-02-02 18:05:34 ----HD---- C:\ProgramData
2016-02-02 18:05:33 ----RD---- C:\Program Files (x86)
2016-02-02 18:05:27 ----D---- C:\AdwCleaner
2016-02-02 13:44:02 ----SHD---- C:\System Volume Information
2016-02-02 13:40:20 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-01-31 12:53:45 ----D---- C:\Windows
2016-01-30 16:17:56 ----D---- C:\Windows\rescache
2016-01-30 13:00:54 ----D---- C:\Windows\Minidump
2016-01-30 13:00:54 ----D---- C:\Windows\debug
2016-01-24 17:08:17 ----D---- C:\Windows\SysWOW64
2016-01-24 17:08:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-01-16 14:40:31 ----D---- C:\Windows\System32
2016-01-16 14:40:31 ----D---- C:\Windows\inf
2016-01-16 14:40:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-14 21:51:41 ----D---- C:\Windows\winsxs
2016-01-14 21:45:43 ----D---- C:\Program Files\Internet Explorer
2016-01-14 21:45:38 ----D---- C:\Windows\SYSWOW64\en-US
2016-01-14 21:45:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-01-14 21:45:33 ----D---- C:\Windows\system32\cs-CZ
2016-01-14 21:45:32 ----D---- C:\Windows\system32\en-US
2016-01-14 21:45:20 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-14 21:45:17 ----SD---- C:\Windows\system32\CompatTel
2016-01-14 21:45:16 ----D---- C:\Windows\system32\appraiser
2016-01-14 21:45:15 ----D---- C:\Windows\AppPatch
2016-01-14 21:44:56 ----D---- C:\Windows\system32\DriverStore
2016-01-14 21:41:46 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-14 21:41:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-12 23:42:57 ----D---- C:\ProgramData\Microsoft Help
2016-01-12 23:39:19 ----D---- C:\Windows\system32\MRT
2016-01-12 23:20:31 ----A---- C:\Windows\system32\MRT.exe
2016-01-12 23:15:30 ----A---- C:\Windows\win.ini
2016-01-12 20:42:53 ----D---- C:\Windows\system32\catroot2
2016-01-11 22:51:05 ----D---- C:\Users\Irculka\AppData\Roaming\uTorrent
2016-01-11 21:44:51 ----D---- C:\Users\Irculka\AppData\Roaming\vlc

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-30 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-30 28008]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-12-01 140448]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-09-24 28600]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-09-15 270912]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-12-01 162072]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-12-01 75472]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-09-15 16750080]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-09-15 576000]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl664.sys [2010-02-03 3058168]
R3 BcmVWL;Broadcom Virtual Wireless; C:\Windows\system32\DRIVERS\bcmvwl64.sys [2010-02-02 20984]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-12-22 74280]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\drivers\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-07 321584]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-04-08 124944]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2010-03-31 53800]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2010-03-31 98344]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-03-31 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2010-03-31 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-03-31 21160]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-13 2345760]
S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\dell support center\pcdsrvc_x64.pkms [2012-08-17 25584]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-05-07 245792]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-07-28 54784]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2006-11-01 151656]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]
S3 xnacc;Služba ovladače pro řadič XBOX 360 pro systém Windows; C:\Windows\system32\DRIVERS\xnacc.sys [2009-07-14 679936]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-21 79976]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-09-15 239616]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2015-12-01 466408]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2015-12-01 466408]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-19 77128]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-01-05 249120]
R2 btwdins;Bluetooth Service; c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-30 15720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-07-01 325656]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-07-01 2533400]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-01-27 643880]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2015-12-01 948392]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2015-12-01 1418560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-24 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-26 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-14 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zasekaný PC

#10 Příspěvek od Rudy »

Log je OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“