Prosim o kontrolu, pomale PC

[pafculka]

Prosím o kontrolu logu tatovyho PC. Pri otevreni skypu se objevi jen bily okno misto prihlasovaciho - pry problem Javy. Taky je PC celkem pomaly.

Logfile of random's system information tool 1.10 (written by random/random)
Run by milanslezak at 2016-09-05 17:17:59
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 317 GB (69%) free of 457 GB
Total RAM: 4002 MB (47% free)

HijackThis download failed

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"

C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\system32\WLANExt.exe 3458496
\??\C:\windows\system32\conhost.exe "-1263673249-1282099169-3390306191725168870-645317130173763013316925097041645627890
C:\windows\System32\spoolsv.exe
taskeng.exe {355C53E5-3B6B-4CC7-A416-AA91C1BBD2B0}
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\windows\system32\Dwm.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\windows\system32\mfevtps.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\Explorer.EXE
"taskhost.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
WLIDSvcM.exe 1580
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\svchost.exe -k swprv
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
"C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\windows\system32\conhost.exe "-487772794322577751578527363-73910632116624119821625259413-13785198821295541796
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Opera\launcher.exe" --scheduledautoupdate $(Arg0)
"C:\Program Files (x86)\Opera\39.0.2256.48\opera_autoupdate.exe" --host --pipeid=oauc_task_pipee59e7323ed1cebd78082538c8b9cbe70 --version=39.0.2256.48 --lang=cs --producttype --requesttype=automatic --downloaddir="C:\windows\TEMP\opera autoupdate" --operadir="C:\Program Files (x86)\Opera\39.0.2256.48" --installdir="C:\Program Files (x86)\Opera" --profile="C:\windows\TEMP\opera autoupdate" --nometrics --scheduledtask
taskeng.exe {3E1D954A-53EE-43C7-9D47-AD41983284DD}
C:\windows\system32\GWX\GWXConfigManager.exe /RefreshConfig
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\milanslezak\Desktop\RSITx64.exe"
C:\windows\System32\svchost.exe -k WerSvcGroup
I run

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3056366746-2369516362-3897802031-1000Core.job - C:\Users\milanslezak\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3056366746-2369516362-3897802031-1000UA.job - C:\Users\milanslezak\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-29 901600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24 462400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-29 678656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24 173120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2011-04-13 609144]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2011-03-24 3668336]
"IntelPAN"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2011-09-16 1935120]
"BLEServicesCtrl"=C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-03-15 178960]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-03-27 11407120]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Badoo Desktop"=C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe []
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-08-17 29538432]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\24x7HELP]
C:\Program Files (x86)\24x7Help\App24x7Help.exe /STARTUP []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25 1110232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Badoo Desktop]
C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\milanslezak\AppData\Roaming\Seznam.cz\szninstall.exe [2013-03-21 1061960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\milanslezak\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-03-19 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell Registration]
C:\Program Files (x86)\System Registration\prodreg.exe [2011-08-04 4165440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell Webcam Central]
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2012-03-07 577024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellStage]
C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2012-02-01 2195824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop Disc Tool]
c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [2010-11-17 514544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2010-03-12 49208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe]
C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroLauncher]
C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [2012-08-21 67496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RebateInformer]
C:\PROGRA~2\REBATE~1\REBATE~1.EXE [2013-02-20 1428616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-03-21 1061960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam.chromeUpdatePref]
C:\Users\milanslezak\AppData\Roaming\Seznam.cz\bin\chromeUpdatePref.exe [2013-02-13 942080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiteRanker]
C:\Program Files (x86)\SiteRanker\SiteRankTray.exe [2012-12-06 320000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorShield]
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2013-02-12 2777736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdater]
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-02-12 3674248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Stage Remote]
C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe [2011-08-08 2034752]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
""= []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-03-25 7139256]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-04-01 596504]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"20160527"=C:\Program Files\AVAST Software\Avast\aswRunDll.exe [2016-02-29 785176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-04-10 385024]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-09-05 17:18:03 ----D---- C:\Program Files\trend micro
2016-09-05 17:17:59 ----D---- C:\rsit
2016-09-05 17:09:58 ----A---- C:\windows\system32\drivers\asw699B.tmp
2016-09-05 17:09:57 ----A---- C:\windows\system32\drivers\asw6778.tmp
2016-09-05 17:09:57 ----A---- C:\windows\system32\drivers\asw66FA.tmp
2016-09-05 17:09:57 ----A---- C:\windows\system32\drivers\asw66BB.tmp
2016-09-05 17:09:57 ----A---- C:\windows\system32\drivers\asw6515.tmp
2016-09-05 17:09:57 ----A---- C:\windows\system32\drivers\asw64A7.tmp
2016-09-05 17:09:56 ----A---- C:\windows\system32\drivers\asw6458.tmp
2016-09-05 17:09:56 ----A---- C:\windows\system32\drivers\asw6409.tmp
2016-09-05 17:09:56 ----A---- C:\windows\system32\drivers\asw630E.tmp
2016-09-05 17:09:56 ----A---- C:\windows\system32\drivers\asw61D5.tmp
2016-09-05 17:08:25 ----A---- C:\windows\system32\aswBoot.exe
2016-09-04 13:54:08 ----D---- C:\Users\milanslezak\AppData\Roaming\WinRAR
2016-09-04 13:53:11 ----D---- C:\Program Files (x86)\WinRAR
2016-09-04 10:30:50 ----D---- C:\ProgramData\Package Cache
2016-09-04 10:29:05 ----D---- C:\Program Files (x86)\CDex
2016-09-04 10:28:31 ----D---- C:\Users\milanslezak\AppData\Roaming\Spotify
2016-08-17 09:40:16 ----A---- C:\windows\SYSWOW64\tzres.dll
2016-08-17 09:40:16 ----A---- C:\windows\system32\tzres.dll
2016-08-10 17:17:40 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-08-10 17:17:40 ----A---- C:\windows\system32\schannel.dll
2016-08-10 17:17:40 ----A---- C:\windows\system32\lsasrv.dll
2016-08-10 17:17:40 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-08-10 17:17:40 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-08-10 17:17:40 ----A---- C:\windows\system32\certcli.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\wdigest.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\TSpkg.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\sspisrv.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\sspicli.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\secur32.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\rpchttp.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\rpcrt4.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\ncrypt.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\msv1_0.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\lsass.exe
2016-08-10 17:17:39 ----A---- C:\windows\system32\kerberos.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-08-10 17:17:39 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-08-10 17:17:39 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-08-10 17:17:39 ----A---- C:\windows\system32\cryptbase.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-08-10 17:17:38 ----A---- C:\windows\system32\msobjs.dll
2016-08-10 17:17:38 ----A---- C:\windows\system32\msaudite.dll
2016-08-10 17:17:38 ----A---- C:\windows\system32\credssp.dll
2016-08-10 17:17:38 ----A---- C:\windows\system32\auditpol.exe
2016-08-10 17:17:38 ----A---- C:\windows\system32\adtschema.dll
2016-08-10 17:17:30 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-08-10 17:17:30 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-08-10 17:17:30 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-08-10 17:17:30 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-08-10 17:17:30 ----A---- C:\windows\system32\iernonce.dll
2016-08-10 17:17:30 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-08-10 17:17:30 ----A---- C:\windows\system32\ieetwcollector.exe
2016-08-10 17:17:29 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-08-10 17:17:29 ----A---- C:\windows\SYSWOW64\occache.dll
2016-08-10 17:17:29 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-08-10 17:17:29 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-08-10 17:17:29 ----A---- C:\windows\system32\inseng.dll
2016-08-10 17:17:29 ----A---- C:\windows\system32\ie4uinit.exe
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-08-10 17:17:28 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-08-10 17:17:26 ----A---- C:\windows\system32\urlmon.dll
2016-08-10 17:17:26 ----A---- C:\windows\system32\occache.dll
2016-08-10 17:17:26 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-08-10 17:17:26 ----A---- C:\windows\system32\iedkcs32.dll
2016-08-10 17:17:25 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-08-10 17:17:25 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-08-10 17:17:25 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-08-10 17:17:25 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-08-10 17:17:25 ----A---- C:\windows\system32\msfeeds.dll
2016-08-10 17:17:25 ----A---- C:\windows\system32\dxtrans.dll
2016-08-10 17:17:24 ----A---- C:\windows\system32\iesetup.dll
2016-08-10 17:17:24 ----A---- C:\windows\system32\ieapfltr.dll
2016-08-10 17:17:23 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-08-10 17:17:23 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-08-10 17:17:23 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-08-10 17:17:23 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-08-10 17:17:23 ----A---- C:\windows\system32\vbscript.dll
2016-08-10 17:17:23 ----A---- C:\windows\system32\iertutil.dll
2016-08-10 17:17:22 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-08-10 17:17:22 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-08-10 17:17:22 ----A---- C:\windows\system32\jsproxy.dll
2016-08-10 17:17:21 ----A---- C:\windows\system32\ieui.dll
2016-08-10 17:17:21 ----A---- C:\windows\system32\ieframe.dll
2016-08-10 17:17:21 ----A---- C:\windows\system32\dxtmsft.dll
2016-08-10 17:17:20 ----A---- C:\windows\system32\webcheck.dll
2016-08-10 17:17:20 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-08-10 17:17:20 ----A---- C:\windows\system32\mshtmled.dll
2016-08-10 17:17:20 ----A---- C:\windows\system32\ieUnatt.exe
2016-08-10 17:17:19 ----A---- C:\windows\system32\jscript9diag.dll
2016-08-10 17:17:19 ----A---- C:\windows\system32\jscript.dll
2016-08-10 17:17:18 ----A---- C:\windows\system32\wininet.dll
2016-08-10 17:17:18 ----A---- C:\windows\system32\jscript9.dll
2016-08-10 17:17:17 ----A---- C:\windows\system32\msrating.dll
2016-08-10 17:17:17 ----A---- C:\windows\system32\MshtmlDac.dll
2016-08-10 17:17:16 ----A---- C:\windows\system32\mshtml.dll
2016-08-10 17:15:08 ----A---- C:\windows\system32\win32k.sys

======List of files/folders modified in the last 1 month======

2016-09-05 17:18:03 ----D---- C:\Program Files
2016-09-05 17:17:03 ----AD---- C:\windows\Temp
2016-09-05 17:13:37 ----D---- C:\windows\system32\Tasks
2016-09-05 17:13:01 ----D---- C:\windows\system32\DriverStore
2016-09-05 17:13:00 ----D---- C:\windows\inf
2016-09-05 17:12:50 ----SHD---- C:\System Volume Information
2016-09-05 17:12:44 ----D---- C:\Users\milanslezak\AppData\Roaming\Skype
2016-09-05 17:09:58 ----D---- C:\windows\system32\drivers
2016-09-05 17:08:47 ----D---- C:\windows\system32\config
2016-09-05 17:08:25 ----AD---- C:\windows\System32
2016-09-05 17:07:40 ----AD---- C:\Windows
2016-09-05 17:06:27 ----D---- C:\windows\system32\wbem
2016-09-05 17:05:36 ----D---- C:\windows\Tasks
2016-09-05 17:05:36 ----D---- C:\Program Files\Internet Explorer
2016-09-05 17:05:35 ----D---- C:\windows\system32\wfp
2016-09-05 17:05:35 ----D---- C:\windows\system32\catroot2
2016-09-05 17:05:31 ----SHD---- C:\windows\Installer
2016-09-05 17:05:31 ----D---- C:\Users\milanslezak\AppData\Roaming\vlc
2016-09-05 17:05:15 ----RD---- C:\Program Files (x86)\Skype
2016-09-05 17:05:07 ----D---- C:\windows\registration
2016-09-05 17:05:04 ----D---- C:\windows\SysWOW64
2016-09-05 17:04:14 ----HD---- C:\ProgramData
2016-09-05 17:04:14 ----D---- C:\ProgramData\Skype
2016-09-05 17:03:39 ----RD---- C:\Program Files (x86)
2016-09-05 17:03:39 ----D---- C:\Program Files (x86)\Common Files
2016-09-04 10:36:15 ----D---- C:\windows\debug
2016-09-04 10:30:35 ----D---- C:\windows\Prefetch
2016-09-02 16:16:00 ----D---- C:\Program Files (x86)\Opera
2016-09-01 15:03:05 ----D---- C:\Users\milanslezak\AppData\Roaming\dvdcss
2016-09-01 09:33:09 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-08-25 18:29:16 ----D---- C:\windows\rescache
2016-08-17 20:28:55 ----D---- C:\windows\winsxs
2016-08-17 20:28:41 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-08-17 20:28:41 ----D---- C:\windows\system32\cs-CZ
2016-08-11 09:16:16 ----D---- C:\windows\SYSWOW64\en-US
2016-08-11 09:16:14 ----D---- C:\windows\system32\en-US
2016-08-11 09:16:09 ----D---- C:\Program Files (x86)\Internet Explorer
2016-08-11 00:43:00 ----D---- C:\windows\system32\MRT
2016-08-11 00:34:46 ----AC---- C:\windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2016-02-29 74544]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2016-08-08 292704]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-11-07 438808]
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2012-11-09 771096]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys [2012-11-09 339776]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2016-02-29 37144]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2016-02-29 103064]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-03-14 1070904]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-02-29 463744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2016-02-29 37656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2016-03-14 107792]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2016-02-29 165344]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\windows\system32\DRIVERS\stflt.sys [2013-02-20 51496]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter; C:\windows\system32\DRIVERS\AMPPAL.sys [2011-09-15 299008]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\windows\system32\DRIVERS\Apfiltr.sys [2011-05-13 363856]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\windows\system32\DRIVERS\btmaux.sys [2012-02-13 95232]
R3 btmhsf;btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [2012-02-13 747008]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\windows\system32\DRIVERS\CtClsFlt.sys [2011-06-16 176000]
R3 ibtfltcoex;ibtfltcoex; C:\windows\system32\DRIVERS\iBtFltCoex.sys [2012-03-21 60928]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2011-04-10 12223936]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys [2012-11-09 178840]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys [2012-11-09 309400]
R3 mfefirek;McAfee Inc. mfefirek; C:\windows\system32\drivers\mfefirek.sys [2012-11-09 515528]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2011-09-18 8604672]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-09-08 535040]
R3 tihub3;TI USB3 Hub Service; C:\windows\system32\DRIVERS\tihub3.sys [2011-07-21 136000]
R3 tixhci;TI XHCI Service; C:\windows\system32\DRIVERS\tixhci.sys [2011-07-21 406336]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 aswNetSec;aswNetSec; C:\windows\system32\drivers\aswNetSec.sys [2016-02-29 552880]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol; C:\windows\system32\DRIVERS\amppal.sys [2011-09-15 299008]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\windows\system32\DRIVERS\aswTap.sys [2014-07-07 44640]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 cfwids;McAfee Inc. cfwids; C:\windows\system32\drivers\cfwids.sys [2012-11-09 69672]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\windows\system32\drivers\HipShieldK.sys [2012-04-20 196440]
S3 mfeavfk01;McAfee Inc.; C:\windows\system32\drivers\mfeavfk01.sys []
S3 mfehidk01;McAfee Inc.; \Device\mfehidk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\windows\system32\drivers\mferkdet.sys [2012-11-09 106112]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-10-30 250984]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2006-11-01 151656]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-09-15 1166848]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-02-29 237096]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-02-29 119128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-03-27 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-03-27 1104208]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-06-03 134928]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-09-16 1518352]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2012-11-09 241016]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-11-09 218320]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2012-11-09 177680]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-09-16 844560]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-09-08 305152]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-03-27 1304912]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2012-10-09 173568]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-07-25 324224]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-08-02 114688]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-09-16 340240]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-12 269504]
S4 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
S4 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe []
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
S4 RoxMediaDB12OEM;RoxMediaDB12OEM; c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
S4 RoxWatch12;Roxio Hard Drive Watcher 12; c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
S4 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2012-02-16 1695040]
S4 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2013-02-12 1149104]
S4 stllssvr;stllssvr; c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2010-11-09 74392]

-----------------EOF-----------------

[pafculka]

přikládám log z Adw Cleaneru

# AdwCleaner v6.010 - Log soubor vytvořen 05/09/2016 na 17:35:29
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-09-05.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : milanslezak - MILANSLEZAK-PC
# Beží od : C:\Users\milanslezak\Desktop\adwcleaner_6.010.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum



***** [ Služby ] *****

[-] Služby smazány:PanService
[-] Služby smazány:sp_rsdrv2


***** [ Adresáře ] *****

[-] Adresář smazán:C:\Users\milanslezak\AppData\Local\AskPartnerNetwork
[-] Adresář smazán:C:\Users\milanslezak\AppData\LocalLow\RebateInformer
[-] Adresář smazán:C:\Users\milanslezak\AppData\LocalLow\SiteRanker
[-] Adresář smazán:C:\Users\milanslezak\AppData\Roaming\DriverCure
[-] Adresář smazán:C:\Users\milanslezak\AppData\Roaming\ParetoLogic
[-] Adresář smazán:C:\ProgramData\apn
[-] Adresář smazán:C:\ProgramData\AskPartnerNetwork
[-] Adresář smazán:C:\ProgramData\ParetoLogic
[#] Adresář nelze smazat:C:\ProgramData\Application Data\apn
[#] Adresář nelze smazat:C:\ProgramData\Application Data\AskPartnerNetwork
[#] Adresář nelze smazat:C:\ProgramData\Application Data\ParetoLogic
[-] Adresář smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RebateInformer
[-] Adresář smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiteRanker
[-] Adresář smazán:C:\Program Files (x86)\AskPartnerNetwork
[-] Adresář smazán:C:\Program Files (x86)\Inbox Toolbar
[-] Adresář smazán:C:\Program Files (x86)\Inbox.com
[-] Adresář smazán:C:\Program Files (x86)\PANDORA.TV
[-] Adresář smazán:C:\Program Files (x86)\RebateInformer
[-] Adresář smazán:C:\Program Files (x86)\SiteRanker


***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\24x7HelpSvc
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services\PanService
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CShared.TB4Client
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CShared.TB4Script
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CShared.TB4Server
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CShared.TB4Server2
[-] Klíč smazán:HKLM\SOFTWARE\Classes\RebateI.Rebate Informer BHO
[-] Klíč smazán:HKLM\SOFTWARE\Classes\RebateI.RebateInformImageGen
[-] Klíč smazán:HKLM\SOFTWARE\Classes\RebateInf.RebateInfObj
[-] Klíč smazán:HKLM\SOFTWARE\Classes\uus3url-pl
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{80703783-E415-4EE3-AB60-D36981C5A6F1}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{AF808758-C780-404C-A4EE-4526323FD9B6}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{D8278076-BC68-4484-9233-6E7F1628B56C}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{DB35C569-5624-4CFC-8043-E5139F55A073}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{884189CF-7C10-41E8-A014-F7B2BE40AADB}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{BD125908-5F10-409F-9C01-F2207CA18887}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{438B047C-C041-4D15-98CF-A97C6B366C28}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{EEA63863-87BC-4DCA-A5B5-EB97E3B04806}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8736C681-37A0-40C6-A0F0-4C083409151C}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CC99A798-FD3D-4AB4-969E-6071612524F9}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
[-] Klíč smazán:[x64] HKLM\SOFTWARE\AskPartnerNetwork
[-] Klíč smazán:HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Klíč smazán:HKU\S-1-5-21-3056366746-2369516362-3897802031-1000\Software\APN PIP
[-] Klíč smazán:HKU\S-1-5-21-3056366746-2369516362-3897802031-1000\Software\AskPartnerNetwork
[-] Klíč smazán:HKU\S-1-5-21-3056366746-2369516362-3897802031-1000\Software\CToolbar
[-] Klíč smazán:HKU\S-1-5-21-3056366746-2369516362-3897802031-1000\Software\IM
[-] Klíč smazán:HKU\S-1-5-21-3056366746-2369516362-3897802031-1000\Software\ImInstaller
[-] Klíč smazán:HKU\S-1-5-21-3056366746-2369516362-3897802031-1000\Software\ParetoLogic
[-] Klíč smazán:HKU\S-1-5-21-3056366746-2369516362-3897802031-1000\Software\SiteRanker
[#] Klíč smazán po restartování:HKU\S-1-5-18\Software\AskPartnerNetwork
[#] Klíč smazán po restartování:HKCU\Software\APN PIP
[#] Klíč smazán po restartování:HKCU\Software\AskPartnerNetwork
[#] Klíč smazán po restartování:HKCU\Software\CToolbar
[#] Klíč smazán po restartování:HKCU\Software\IM
[#] Klíč smazán po restartování:HKCU\Software\ImInstaller
[#] Klíč smazán po restartování:HKCU\Software\ParetoLogic
[#] Klíč smazán po restartování:HKCU\Software\SiteRanker
[-] Klíč smazán:HKLM\SOFTWARE\AskPartnerNetwork
[-] Klíč smazán:HKLM\SOFTWARE\CToolbar
[-] Klíč smazán:HKLM\SOFTWARE\ParetoLogic
[-] Klíč smazán:HKLM\SOFTWARE\PIP
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}_is1
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}_is1
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C1C01}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89EA4F1B8FBCDEF47AE328E455E28AA0
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97ECFF59EE08D4F47BB1464DEC37DA87
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A8CB937199A57E748B6AC433DA453EE2
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4E78E12704AFCE408C7FBE501F1AA0A
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C6A54B56C58C82a4688AFB93F42EA17B
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F0390A76D28822743A68D7F1AB22E6D0
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0A5AC497E6BBC8D45BE8AD6619DA8217
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Klíč smazán:HKU\S-1-5-21-3056366746-2369516362-3897802031-1000\Software\Microsoft\Internet Explorer\SearchScopes\{586AC23E-DBB0-465E-B2B9-40BE6A57E6CC}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{586AC23E-DBB0-465E-B2B9-40BE6A57E6CC}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\24x7HELP
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\RebateInformer
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\SiteRanker
[-] Klíč smazán:HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\rebinfo
[-] Klíč smazán:HKLM\SOFTWARE\Google\Chrome\Extensions\angobeimajilfhlcpeiccndaifchnppl
[-] Klíč smazán:HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd


***** [ Prohlížeče ] *****

[-] [C:\Users\milanslezak\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazání:fcfenmboojpjinhpgggodefccipikbpd


*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [13756 Bajtů] - [05/09/2016 17:35:29]
C:\AdwCleaner\AdwCleaner[S0].txt - [13722 Bajtů] - [05/09/2016 17:29:55]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [13906 Bajtů] ##########

[Rudy]

Zdravím!
Dejte nový log RSIT.

[pafculka]

Logfile of random's system information tool 1.10 (written by random/random)
Run by milanslezak at 2016-09-05 17:56:40
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 317 GB (69%) free of 457 GB
Total RAM: 4002 MB (57% free)


======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"

C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\system32\WLANExt.exe 4243392
\??\C:\windows\system32\conhost.exe "-482468478-11952441051635563798172322700-786281233-643162697-4353601911334640384
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\windows\system32\mfevtps.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
WLIDSvcM.exe 2280
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
"C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\windows\system32\conhost.exe "-19518646961376347886-1338329281-1430229261403220778176272484827222863519382224
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\milanslezak\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=52.0.2743.116 --handshake-handle=0xbc
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="21232.0.979991154\1843844075" --mojo-application-channel-token=BA0A3FB2EBE2E82AC4A8965C8AC93D29 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Aggressive/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Control/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PreconnectMore/Default/*QUIC/EnabledBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/ResourcePriorities/Launch25PermanentA_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_24/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UMA_CheckStates/Checks/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,10,12,13,27,47,55 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2361 --gpu-driver-date=4-10-2011 --mojo-platform-channel-handle=1100 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Aggressive/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Control/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PreconnectMore/Default/*QUIC/EnabledBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch25PermanentA_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_24/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UMA_CheckStates/Checks/ --primordial-pipe-token=20A41E66B0B16A859A665FD4C9817BDA --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=11E61F8C8CF6F27D1CE661C87C2D1FF6 --mojo-application-channel-token=00440007672E27E994009473681BDAAD --channel="21232.3.913297951\535581678" --mojo-platform-channel-handle=2836 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Aggressive/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Control/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PreconnectMore/Default/*QUIC/EnabledBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch25PermanentA_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_24/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UMA_CheckStates/Checks/ --primordial-pipe-token=2B1B53391C8E517583E4FC5895A8FC4A --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=9E32497615601814D1AD826EAFA946C7 --mojo-application-channel-token=F0D2B5F91B9DCE34E8E47728E618A582 --channel="21232.4.116233630\334868578" --mojo-platform-channel-handle=3448 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Aggressive/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Control/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PreconnectMore/Default/*QUIC/EnabledBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch25PermanentA_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_24/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UMA_CheckStates/Checks/ --primordial-pipe-token=2C757DBCE38E2B362AE4493B2996F502 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=06F58232E8B91331B5E96CB8C421AD1A --mojo-application-channel-token=E8BEC057257AEE9A0AF3AC1541ABAAC7 --channel="21232.5.462989107\1496134184" --mojo-platform-channel-handle=2292 /prefetch:1
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Aggressive/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/DirectWriteFontProxy/UseDirectWriteFontProxy/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Control/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PreconnectMore/Default/*QUIC/EnabledBandwidthResumption/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch25PermanentA_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPromptExpt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_24/*UMA-Uniformity-Trial-10-Percent/group_03/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UMA_CheckStates/Checks/ --disable-databases --primordial-pipe-token=143B6170AA932A686A0A39EA3DFC5512 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=35A172CFC7471D1DD49D426D8BB8450A --mojo-application-channel-token=20D62BCD9A09760E6CAE128E65D7D3B4 --channel="21232.7.1531320090\1068708048" --mojo-platform-channel-handle=3092 /prefetch:1
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\windows\system32\msiexec.exe /V
taskeng.exe {5CE3DF99-8D15-4913-B8E6-432F0197A20F}
taskeng.exe {B3E58532-DEE3-4D50-8870-1BFF3D1C3B10}
"C:\Users\milanslezak\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3056366746-2369516362-3897802031-1000Core.job - C:\Users\milanslezak\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3056366746-2369516362-3897802031-1000UA.job - C:\Users\milanslezak\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-29 901600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24 462400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-29 678656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24 173120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2011-04-13 609144]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2011-03-24 3668336]
"IntelPAN"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2011-09-16 1935120]
"BLEServicesCtrl"=C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-03-15 178960]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-03-27 11407120]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-04-19 18678376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25 1110232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Badoo Desktop]
C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\milanslezak\AppData\Roaming\Seznam.cz\szninstall.exe [2013-03-21 1061960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\milanslezak\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-03-19 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell Registration]
C:\Program Files (x86)\System Registration\prodreg.exe [2011-08-04 4165440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell Webcam Central]
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2012-03-07 577024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellStage]
C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2012-02-01 2195824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop Disc Tool]
c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [2010-11-17 514544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2010-03-12 49208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe]
C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroLauncher]
C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [2012-08-21 67496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-03-21 1061960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam.chromeUpdatePref]
C:\Users\milanslezak\AppData\Roaming\Seznam.cz\bin\chromeUpdatePref.exe [2013-02-13 942080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorShield]
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2013-02-12 2777736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdater]
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-02-12 3674248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Stage Remote]
C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe [2011-08-08 2034752]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
""= []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-03-25 7139256]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-04-01 596504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-04-10 385024]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-09-05 17:26:40 ----D---- C:\AdwCleaner
2016-09-05 17:18:03 ----D---- C:\Program Files\trend micro
2016-09-05 17:17:59 ----D---- C:\rsit
2016-09-05 17:08:25 ----A---- C:\windows\system32\aswBoot.exe
2016-09-04 13:54:08 ----D---- C:\Users\milanslezak\AppData\Roaming\WinRAR
2016-09-04 13:53:11 ----D---- C:\Program Files (x86)\WinRAR
2016-09-04 10:30:50 ----D---- C:\ProgramData\Package Cache
2016-09-04 10:29:05 ----D---- C:\Program Files (x86)\CDex
2016-09-04 10:28:31 ----D---- C:\Users\milanslezak\AppData\Roaming\Spotify
2016-08-17 09:40:16 ----A---- C:\windows\SYSWOW64\tzres.dll
2016-08-17 09:40:16 ----A---- C:\windows\system32\tzres.dll
2016-08-10 17:17:40 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-08-10 17:17:40 ----A---- C:\windows\system32\schannel.dll
2016-08-10 17:17:40 ----A---- C:\windows\system32\lsasrv.dll
2016-08-10 17:17:40 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-08-10 17:17:40 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-08-10 17:17:40 ----A---- C:\windows\system32\certcli.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-08-10 17:17:39 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\wdigest.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\TSpkg.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\sspisrv.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\sspicli.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\secur32.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\rpchttp.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\rpcrt4.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\ncrypt.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\msv1_0.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\lsass.exe
2016-08-10 17:17:39 ----A---- C:\windows\system32\kerberos.dll
2016-08-10 17:17:39 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-08-10 17:17:39 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-08-10 17:17:39 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-08-10 17:17:39 ----A---- C:\windows\system32\cryptbase.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-08-10 17:17:38 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-08-10 17:17:38 ----A---- C:\windows\system32\msobjs.dll
2016-08-10 17:17:38 ----A---- C:\windows\system32\msaudite.dll
2016-08-10 17:17:38 ----A---- C:\windows\system32\credssp.dll
2016-08-10 17:17:38 ----A---- C:\windows\system32\auditpol.exe
2016-08-10 17:17:38 ----A---- C:\windows\system32\adtschema.dll
2016-08-10 17:17:30 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-08-10 17:17:30 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-08-10 17:17:30 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-08-10 17:17:30 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-08-10 17:17:30 ----A---- C:\windows\system32\iernonce.dll
2016-08-10 17:17:30 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-08-10 17:17:30 ----A---- C:\windows\system32\ieetwcollector.exe
2016-08-10 17:17:29 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-08-10 17:17:29 ----A---- C:\windows\SYSWOW64\occache.dll
2016-08-10 17:17:29 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-08-10 17:17:29 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-08-10 17:17:29 ----A---- C:\windows\system32\inseng.dll
2016-08-10 17:17:29 ----A---- C:\windows\system32\ie4uinit.exe
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-08-10 17:17:28 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-08-10 17:17:28 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-08-10 17:17:26 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-08-10 17:17:26 ----A---- C:\windows\system32\urlmon.dll
2016-08-10 17:17:26 ----A---- C:\windows\system32\occache.dll
2016-08-10 17:17:26 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-08-10 17:17:26 ----A---- C:\windows\system32\iedkcs32.dll
2016-08-10 17:17:25 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-08-10 17:17:25 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-08-10 17:17:25 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-08-10 17:17:25 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-08-10 17:17:25 ----A---- C:\windows\system32\msfeeds.dll
2016-08-10 17:17:25 ----A---- C:\windows\system32\dxtrans.dll
2016-08-10 17:17:24 ----A---- C:\windows\system32\iesetup.dll
2016-08-10 17:17:24 ----A---- C:\windows\system32\ieapfltr.dll
2016-08-10 17:17:23 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-08-10 17:17:23 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-08-10 17:17:23 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-08-10 17:17:23 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-08-10 17:17:23 ----A---- C:\windows\system32\vbscript.dll
2016-08-10 17:17:23 ----A---- C:\windows\system32\iertutil.dll
2016-08-10 17:17:22 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-08-10 17:17:22 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-08-10 17:17:22 ----A---- C:\windows\system32\jsproxy.dll
2016-08-10 17:17:21 ----A---- C:\windows\system32\ieui.dll
2016-08-10 17:17:21 ----A---- C:\windows\system32\ieframe.dll
2016-08-10 17:17:21 ----A---- C:\windows\system32\dxtmsft.dll
2016-08-10 17:17:20 ----A---- C:\windows\system32\webcheck.dll
2016-08-10 17:17:20 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-08-10 17:17:20 ----A---- C:\windows\system32\mshtmled.dll
2016-08-10 17:17:20 ----A---- C:\windows\system32\ieUnatt.exe
2016-08-10 17:17:19 ----A---- C:\windows\system32\jscript9diag.dll
2016-08-10 17:17:19 ----A---- C:\windows\system32\jscript.dll
2016-08-10 17:17:18 ----A---- C:\windows\system32\wininet.dll
2016-08-10 17:17:18 ----A---- C:\windows\system32\jscript9.dll
2016-08-10 17:17:17 ----A---- C:\windows\system32\msrating.dll
2016-08-10 17:17:17 ----A---- C:\windows\system32\MshtmlDac.dll
2016-08-10 17:17:16 ----A---- C:\windows\system32\mshtml.dll
2016-08-10 17:15:08 ----A---- C:\windows\system32\win32k.sys

======List of files/folders modified in the last 1 month======

2016-09-05 17:56:26 ----D---- C:\Users\milanslezak\AppData\Roaming\Skype
2016-09-05 17:53:49 ----SHD---- C:\windows\Installer
2016-09-05 17:53:49 ----D---- C:\ProgramData\Skype
2016-09-05 17:53:45 ----RD---- C:\Program Files (x86)\Skype
2016-09-05 17:53:45 ----D---- C:\Program Files (x86)\Common Files
2016-09-05 17:53:33 ----D---- C:\windows\system32\config
2016-09-05 17:42:09 ----AD---- C:\windows\Temp
2016-09-05 17:37:22 ----D---- C:\windows\system32\drivers
2016-09-05 17:36:50 ----D---- C:\windows\inf
2016-09-05 17:36:17 ----AD---- C:\Windows
2016-09-05 17:35:05 ----RD---- C:\Program Files (x86)
2016-09-05 17:35:03 ----HD---- C:\ProgramData
2016-09-05 17:32:37 ----SHD---- C:\System Volume Information
2016-09-05 17:18:03 ----D---- C:\Program Files
2016-09-05 17:13:37 ----D---- C:\windows\system32\Tasks
2016-09-05 17:13:01 ----D---- C:\windows\system32\DriverStore
2016-09-05 17:08:25 ----AD---- C:\windows\System32
2016-09-05 17:06:27 ----D---- C:\windows\system32\wbem
2016-09-05 17:05:36 ----D---- C:\windows\Tasks
2016-09-05 17:05:36 ----D---- C:\Program Files\Internet Explorer
2016-09-05 17:05:35 ----D---- C:\windows\system32\wfp
2016-09-05 17:05:35 ----D---- C:\windows\system32\catroot2
2016-09-05 17:05:31 ----D---- C:\Users\milanslezak\AppData\Roaming\vlc
2016-09-05 17:05:07 ----D---- C:\windows\registration
2016-09-05 17:05:04 ----D---- C:\windows\SysWOW64
2016-09-04 10:36:15 ----D---- C:\windows\debug
2016-09-04 10:30:35 ----D---- C:\windows\Prefetch
2016-09-02 16:16:00 ----D---- C:\Program Files (x86)\Opera
2016-09-01 15:03:05 ----D---- C:\Users\milanslezak\AppData\Roaming\dvdcss
2016-09-01 09:33:09 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-08-25 18:29:16 ----D---- C:\windows\rescache
2016-08-17 20:28:55 ----D---- C:\windows\winsxs
2016-08-17 20:28:41 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-08-17 20:28:41 ----D---- C:\windows\system32\cs-CZ
2016-08-11 09:16:16 ----D---- C:\windows\SYSWOW64\en-US
2016-08-11 09:16:14 ----D---- C:\windows\system32\en-US
2016-08-11 09:16:09 ----D---- C:\Program Files (x86)\Internet Explorer
2016-08-11 00:43:00 ----D---- C:\windows\system32\MRT
2016-08-11 00:34:46 ----AC---- C:\windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdisFlt;Avast! Firewall Driver; C:\windows\system32\DRIVERS\aswNdisFlt.sys [2016-02-29 478128]
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2016-02-29 74544]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2016-08-08 292704]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-11-07 438808]
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2012-11-09 771096]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys [2012-11-09 339776]
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2016-02-29 37144]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2016-02-29 103064]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-03-14 1070904]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-02-29 463744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2016-02-29 37656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2016-03-14 107792]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2016-02-29 165344]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter; C:\windows\system32\DRIVERS\AMPPAL.sys [2011-09-15 299008]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\windows\system32\DRIVERS\Apfiltr.sys [2011-05-13 363856]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\windows\system32\DRIVERS\btmaux.sys [2012-02-13 95232]
R3 btmhsf;btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [2012-02-13 747008]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\windows\system32\DRIVERS\CtClsFlt.sys [2011-06-16 176000]
R3 ibtfltcoex;ibtfltcoex; C:\windows\system32\DRIVERS\iBtFltCoex.sys [2012-03-21 60928]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2011-04-10 12223936]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys [2012-11-09 178840]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys [2012-11-09 309400]
R3 mfefirek;McAfee Inc. mfefirek; C:\windows\system32\drivers\mfefirek.sys [2012-11-09 515528]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2011-09-18 8604672]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-09-08 535040]
R3 tihub3;TI USB3 Hub Service; C:\windows\system32\DRIVERS\tihub3.sys [2011-07-21 136000]
R3 tixhci;TI XHCI Service; C:\windows\system32\DRIVERS\tixhci.sys [2011-07-21 406336]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 aswNetSec;aswNetSec; C:\windows\system32\drivers\aswNetSec.sys [2016-02-29 552880]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol; C:\windows\system32\DRIVERS\amppal.sys [2011-09-15 299008]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\windows\system32\DRIVERS\aswTap.sys [2014-07-07 44640]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 cfwids;McAfee Inc. cfwids; C:\windows\system32\drivers\cfwids.sys [2012-11-09 69672]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\windows\system32\drivers\HipShieldK.sys [2012-04-20 196440]
S3 mfeavfk01;McAfee Inc.; C:\windows\system32\drivers\mfeavfk01.sys []
S3 mfehidk01;McAfee Inc.; \Device\mfehidk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\windows\system32\drivers\mferkdet.sys [2012-11-09 106112]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-10-30 250984]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WimFltr;WimFltr; C:\windows\system32\DRIVERS\wimfltr.sys [2006-11-01 151656]
S3 WinUsb;WinUsb; C:\windows\system32\drivers\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-09-15 1166848]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-02-29 237096]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-02-29 119128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-03-27 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-03-27 1104208]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-06-03 134928]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-09-16 1518352]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2012-11-09 241016]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-11-09 218320]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2012-11-09 177680]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-09-16 844560]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-09-08 305152]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-03-27 1304912]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2012-10-09 173568]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-04-19 161384]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-08-02 114688]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-09-16 340240]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-12 269504]
S4 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-10-06 325656]
S4 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe []
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 RoxMediaDB12OEM;RoxMediaDB12OEM; c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
S4 RoxWatch12;Roxio Hard Drive Watcher 12; c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
S4 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2012-02-16 1695040]
S4 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2013-02-12 1149104]
S4 stllssvr;stllssvr; c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2010-11-09 74392]

-----------------EOF-----------------

[Rudy]

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3056366746-2369516362-3897802031-1000Core.job
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3056366746-2369516362-3897802031-1000UA.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroLauncher]/64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

V systému jsou 2 antiviry (Avast a McAfee). Jeden z nich odinstalujte.

[pafculka]

All processes killed
========== FILES ==========
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3056366746-2369516362-3897802031-1000Core.job moved successfully.
C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-3056366746-2369516362-3897802031-1000UA.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroLauncher\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 313840 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: milanslezak
->Temp folder emptied: 75029653 bytes
->Temporary Internet Files folder emptied: 59672128 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 356233893 bytes
->Opera cache emptied: 188 bytes
->Flash cache emptied: 61163 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 334558 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 16737099 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 95617 bytes
RecycleBin emptied: 138300788 bytes

Total Files Cleaned = 617,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: milanslezak
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 09052016_182751

Files moved on Reboot...
C:\Users\milanslezak\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\milanslezak\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\windows\temp\SafeZone Installer\opera_installer_20160905171305.log scheduled to be moved on reboot.
File move failed. C:\windows\temp\SafeZone Installer\opera_installer_20160905171306.log scheduled to be moved on reboot.
File move failed. C:\windows\temp\SafeZone Installer\opera_installer_20160905171326.log scheduled to be moved on reboot.
File move failed. C:\windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[Rudy]

Smazáno. Nastala nějaká změna?

[pafculka]

Všechno už šlape! Děkuju moc

[Rudy]

Rádo se stalo!