VIRY.CZ

Ahoj , už delší dobu mi něco nadměrně vytěžuje RAM, jen nedokážu určit, který proces si bere víc, než by měl. V podstatě po zapnutí Pc mi zátěž RAM vyskočí na cca 50 procent, Windows je 8.1, RAM je 8GB. Díky

Log z RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondřej at 2018-01-08 19:19:18
Microsoft Windows 8.1
System drive C: has 66 GB (20%) free of 328 GB
Total RAM: 8112 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:19:28, on 8. 1. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Ondřej.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [vmware-tray] "D:\Vmware\vmware-tray.exe"
O4 - HKLM\..\Run: [VMware hqtray] "D:\Vmware\hqtray.exe"
O4 - HKLM\..\Run: [DFX] C:\Program Files (x86)\DFX\DFX.exe -startup
O4 - HKLM\..\Run: [YouCam Service7] "C:\Program Files (x86)\CyberLink\YouCam7\YouCamService7.exe" /s
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [HP DeskJet 4530 series (NET)] "C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH65O3C2170661:NW" -scfn "HP DeskJet 4530 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [Spotify Web Helper] C:\Users\Ondřej\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart
O4 - Startup: cleantemp.bat
O4 - Startup: Logitech . Registrace produktu.lnk = C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: CyberLink Product - 2013/09/13 19:34:24 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) - arvato digital services llc - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WD Boost - Western Digital - C:\Program Files\Western Digital\WD Boost\WDBoost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10943 bytes

======Listing Processes======





wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS

"C:\Program Files\Western Digital\WD Boost\WDBoost.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {5679b795-cc3c-4ec5-98fcba213f3ca671}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\SCM\MSIService.exe"
"C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
"C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\Explorer.EXE
taskhostex.exe
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\SCM\Radio Manager.exe"
"C:\Program Files (x86)\SCM\SCM.exe"
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\WINDOWS\system32\taskmgr.exe" /4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=63.0.3239.84 --initial-client-data=0x134,0x138,0x13c,0x130,0x140,0x7ffbd2cf5720,0x7ffbd2cf5760,0x7ffbd2cf5738
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2416 --on-initialized-event-handle=464 --parent-handle=472 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1276,7154854667629017213,10103321381124456975,131072 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.14.4264 --gpu-driver-date=8-4-2015 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1292 --service-request-channel-token=6C7786733BAB66520D3E90DB11F0C011 --mojo-platform-channel-handle=1284 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1276,7154854667629017213,10103321381124456975,131072 --service-pipe-token=E4C73390C05862A5E7BE89E4CCF66851 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=E4C73390C05862A5E7BE89E4CCF66851 --renderer-client-id=4 --mojo-platform-channel-handle=2936 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1276,7154854667629017213,10103321381124456975,131072 --service-pipe-token=0906F72D362066C22817EE5A9A53DE68 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=0906F72D362066C22817EE5A9A53DE68 --renderer-client-id=7 --mojo-platform-channel-handle=4456 /prefetch:1

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1276,7154854667629017213,10103321381124456975,131072 --service-pipe-token=115563F47E3D0B79BFD883F56C46D28C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=115563F47E3D0B79BFD883F56C46D28C --renderer-client-id=13 --mojo-platform-channel-handle=6268 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1276,7154854667629017213,10103321381124456975,131072 --service-pipe-token=1DCBD17E74DD2F2716938D454D6D9058 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=1DCBD17E74DD2F2716938D454D6D9058 --renderer-client-id=15 --mojo-platform-channel-handle=3324 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1276,7154854667629017213,10103321381124456975,131072 --service-pipe-token=EF7AD38F867BAA3779CA64B1396A0B64 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=EF7AD38F867BAA3779CA64B1396A0B64 --renderer-client-id=31 --mojo-platform-channel-handle=8144 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1276,7154854667629017213,10103321381124456975,131072 --service-pipe-token=5E2C9F4E2D05E1B3E43E3A0CF846ECDD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=5E2C9F4E2D05E1B3E43E3A0CF846ECDD --renderer-client-id=35 --mojo-platform-channel-handle=932 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1276,7154854667629017213,10103321381124456975,131072 --service-pipe-token=BFCC9CEA44CF1AFC476EE1AE4B9CE506 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=BFCC9CEA44CF1AFC476EE1AE4B9CE506 --renderer-client-id=36 --mojo-platform-channel-handle=5536 /prefetch:1
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Ondřej\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\AutoKMS.job - C:\Windows\AutoKMS\AutoKMS.exe /Application
C:\WINDOWS\tasks\DriverToolkit Autorun.job - D:\DriverToolkit\DriverToolkit.exe --autorun
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0932538ed1c5f.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0bfef94a202c3.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0e4de720c2476.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0f3c42710d2a9.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d1303d7f8e78b8.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d15ea2bfed3895.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d1aba5553bc3e.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-09-12 13538376]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-08-09 404376]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-09-12 2875728]
"BtServer"=C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [2013-01-28 452608]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-03-22 36352]
"MBCfg64"=C:\Windows\system32\MBCfg64.dll [2013-04-23 34432]
"Radio Manager"=C:\Program Files (x86)\SCM\Radio Manager.exe [2013-04-18 406920]
"SCM"=C:\Program Files (x86)\SCM\SCM.exe [2013-04-18 407968]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2014-05-30 383992]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-12-16 2404800]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2017-10-27 324216]
"LogiOptions"=C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2017-12-18 2142328]
"TNOD UP"=D:\TNod\TNODUP.exe [2017-12-22 5101056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"HP DeskJet 4530 series (NET)"=C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [2015-03-09 3651080]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2014-10-29 479744]
"Spotify Web Helper"=C:\Users\Ondřej\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-12-20 780688]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema"=C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [2012-11-29 711680]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"Super-Charger"=C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [2013-02-07 490480]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-03-08 95192]
"BDRegion"=C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [2013-04-02 181208]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"vmware-tray"=D:\Vmware\vmware-tray.exe [2008-03-03 72240]
"VMware hqtray"=D:\Vmware\hqtray.exe [2008-03-03 55856]
"DFX"=C:\Program Files (x86)\DFX\DFX.exe [2016-05-19 1328632]
"YouCam Service7"=C:\Program Files (x86)\CyberLink\YouCam7\YouCamService7.exe [2016-03-15 458168]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []

C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
cleantemp.bat
Logitech . Registrace produktu.lnk - C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-01-08 19:19:18 ----D---- C:\rsit
2018-01-08 19:19:18 ----D---- C:\Program Files\trend micro
2017-12-26 20:13:42 ----D---- C:\AdwCleaner
2017-12-22 18:20:54 ----D---- C:\WINDOWS\SYSWOW64\NV
2017-12-22 18:20:54 ----D---- C:\WINDOWS\system32\NV
2017-12-22 18:20:27 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-12-22 18:20:26 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2017-12-22 18:20:26 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2017-12-22 18:19:46 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2017-12-22 18:19:45 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-12-22 18:19:42 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-12-22 18:19:41 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2017-12-22 18:19:40 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2017-12-22 18:19:40 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2017-12-22 18:19:40 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2017-12-22 18:19:38 ----D---- C:\Program Files (x86)\VulkanRT
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-12-22 18:19:14 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvinitx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvdispgenco6438871.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvdispco6438871.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2017-12-22 18:11:49 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\system32\nvapi64.dll
2017-12-19 17:12:32 ----D---- C:\Program Files\Common Files\Adobe
2017-12-19 17:11:47 ----D---- C:\Program Files\Logitech
2017-12-16 22:11:57 ----D---- C:\Users\Ondřej\AppData\Roaming\GTA_5_CZ_Instalator
2017-12-14 20:28:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-12-14 20:04:16 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2017-12-14 20:04:14 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-12-14 20:03:54 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2017-12-14 20:03:48 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-12-14 20:03:48 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-12-14 20:00:20 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\tquery.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\jscript.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\wininet.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\win32k.sys
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\gdi32.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-12-14 19:59:07 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-12-14 19:59:07 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2017-12-14 19:59:06 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\srvsvc.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\shell32.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-12-14 19:59:04 ----A---- C:\WINDOWS\system32\wmp.dll
2017-12-14 19:59:04 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-12-14 19:59:03 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\system32\twinui.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2017-12-14 19:59:00 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\system32\authui.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\msctf.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\certcli.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\SYSWOW64\PCPTpm12.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\PCPTpm12.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-12-14 19:58:55 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\system32\uxtheme.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-12-14 19:58:54 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wevtapi.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wer.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\tpmvsc.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\localspl.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\advapi32.dll
2017-12-14 19:58:53 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\Wldap32.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\scksp.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\basecsp.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-12-14 19:58:51 ----A---- C:\WINDOWS\system32\TabSvc.dll
2017-12-14 19:58:51 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-12-14 19:58:50 ----AC---- C:\WINDOWS\system32\drivers\disk.sys
2017-12-14 19:58:50 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\UXInit.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2017-12-14 19:58:49 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\t2embed.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\rastls.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-12-14 19:58:48 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\shdocvw.dll
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\regsvc.dll
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2017-12-14 19:58:46 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-12-14 19:58:46 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-12-14 19:58:45 ----A---- C:\WINDOWS\SYSWOW64\mswstr10.dll
2017-12-14 19:58:44 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-12-14 19:58:43 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2017-12-14 19:58:40 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2017-12-14 19:58:40 ----A---- C:\WINDOWS\system32\wermgr.exe
2017-12-14 19:58:39 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2017-12-14 19:58:37 ----A---- C:\WINDOWS\system32\itss.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\SYSWOW64\mgmtapi.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\system32\iscsium.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\msjint40.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\iscsium.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\system32\authz.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-12-14 19:58:32 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\invagent.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\devinv.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aitstatic.exe
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aepic.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-12-14 19:57:56 ----A---- C:\WINDOWS\system32\pcasvc.dll
2017-12-14 19:57:56 ----A---- C:\WINDOWS\system32\centel.dll

======List of files/folders modified in the last 1 month======

2018-01-08 19:19:26 ----D---- C:\WINDOWS\Temp
2018-01-08 19:19:18 ----D---- C:\Program Files
2018-01-08 19:00:00 ----D---- C:\WINDOWS\system32\sru
2018-01-08 18:30:10 ----D---- C:\WINDOWS\Tasks
2018-01-08 18:30:01 ----D---- C:\Windows
2018-01-08 18:30:01 ----A---- C:\WINDOWS\KMSEmulator.exe
2018-01-08 17:34:22 ----D---- C:\ProgramData\NVIDIA
2018-01-08 17:33:43 ----RD---- C:\WINDOWS\System32
2018-01-08 17:33:43 ----D---- C:\WINDOWS\Inf
2018-01-08 17:33:43 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-08 17:31:51 ----D---- C:\WINDOWS\Prefetch
2018-01-07 21:20:12 ----D---- C:\Users\Ondřej\AppData\Roaming\Spotify
2018-01-07 18:48:37 ----D---- C:\WINDOWS\Microsoft.NET
2018-01-07 18:31:23 ----D---- C:\WINDOWS\system32\Tasks
2018-01-07 18:30:04 ----D---- C:\WINDOWS\system32\drivers
2018-01-07 17:50:15 ----D---- C:\WINDOWS\system32\DriverStore
2018-01-07 17:49:36 ----D---- C:\WINDOWS\system32\config
2018-01-06 19:30:15 ----D---- C:\Users\Ondřej\AppData\Roaming\uTorrent
2018-01-06 18:17:04 ----SHD---- C:\System Volume Information
2017-12-28 17:25:10 ----D---- C:\Program Files\Windows Sidebar
2017-12-28 17:25:09 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-12-28 17:25:04 ----SHD---- C:\WINDOWS\Installer
2017-12-27 17:09:13 ----D---- C:\WINDOWS\rescache
2017-12-26 20:16:38 ----HD---- C:\ProgramData
2017-12-26 20:16:38 ----D---- C:\Program Files (x86)
2017-12-26 19:53:19 ----D---- C:\WINDOWS\WinSxS
2017-12-26 19:50:58 ----D---- C:\WINDOWS\CbsTemp
2017-12-26 19:50:11 ----D---- C:\WINDOWS\system32\catroot2
2017-12-26 19:35:00 ----D---- C:\WINDOWS\Minidump
2017-12-25 16:44:21 ----D---- C:\Users\Ondřej\AppData\Roaming\vlc
2017-12-22 18:20:59 ----D---- C:\ProgramData\NVIDIA Corporation
2017-12-22 18:20:54 ----D---- C:\WINDOWS\SysWOW64
2017-12-22 18:20:27 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-12-22 18:19:55 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-22 18:19:37 ----D---- C:\Temp
2017-12-22 18:19:26 ----D---- C:\WINDOWS\Help
2017-12-19 17:12:32 ----D---- C:\Program Files\Common Files
2017-12-18 18:10:11 ----RSD---- C:\WINDOWS\assembly
2017-12-14 20:19:20 ----RD---- C:\WINDOWS\ToastData
2017-12-14 20:19:14 ----D---- C:\Program Files\Internet Explorer
2017-12-14 20:19:14 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\wbem
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\en-US
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\cs-CZ
2017-12-14 20:19:09 ----D---- C:\WINDOWS\system32\appraiser
2017-12-14 20:19:09 ----D---- C:\WINDOWS\apppatch
2017-12-14 20:03:43 ----D---- C:\WINDOWS\system32\MRT
2017-12-14 20:00:13 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-12-14 19:40:39 ----D---- C:\ProgramData\Realtek
2017-12-14 19:35:29 ----D---- C:\WINDOWS\AppReadiness
2017-12-12 22:28:15 ----D---- C:\WINDOWS\system32\Macromed
2017-12-12 22:28:11 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-12-09 17:00:16 ----D---- C:\ProgramData\VMware

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2017-03-09 107344]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2014-10-21 118560]
R0 hiosd;WD Boost Storage Filter Driver; C:\WINDOWS\system32\DRIVERS\hiosd.sys [2013-04-13 173840]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-03-22 678384]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2017-12-16 38472]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2014-10-21 276256]
R1 dtsoftbus01;@oem15.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-08-07 283064]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2017-10-27 132848]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2017-10-27 180088]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2017-03-09 78192]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2017-10-27 102160]
R1 hiofs;WD Boost File System Filter Driver; C:\WINDOWS\system32\DRIVERS\hiofs.sys [2013-04-13 28944]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2016-12-20 959720]
R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [2016-12-20 131144]
R1 VBoxNetLwf;@oem122.inf,%VBoxNetLwfService_Desc%;VirtualBox NDIS6 Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [2016-12-20 205440]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2016-12-20 149304]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2017-03-09 50752]
R2 hcmon;VMware hcmon; \??\C:\WINDOWS\system32\drivers\hcmon.sys [2008-03-03 43568]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 clwvd;@oem33.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys [2012-08-03 40944]
R3 clwvd7;@oem151.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 7.0 Service; C:\WINDOWS\system32\DRIVERS\clwvd7.sys [2015-03-24 42968]
R3 DFX12;@oem147.inf,%DFX_Device.SvcDesc%;DFX Audio Enhancer; C:\WINDOWS\system32\drivers\dfx12x64.sys [2015-10-13 28344]
R3 ETD;@oem11.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2013-09-12 357200]
R3 ICCWDT;@oem199.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\WINDOWS\System32\drivers\ICCWDT.sys [2016-11-02 38680]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-08-09 4928256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-09-12 3425608]
R3 iwdbus;@oem31.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-05-26 30512]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MBfilt;MBfilt; C:\WINDOWS\system32\drivers\MBfilt64.sys [2013-09-12 32344]
R3 MEIx64;@oem212.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-12-02 204920]
R3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2013-03-01 36600]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [2012-10-26 13368]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2017-12-16 16854840]
R3 nvvad_WaveExtensible;@oem160.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-12-16 50624]
R3 nvvhci;@oem214.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-12-16 57792]
R3 RtkBtFilter;@oem5.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2013-09-12 524360]
R3 RTWlanE;@netrtwlane.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E – síťový adaptér; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-07-31 1936088]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2014-10-29 11776]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2017-10-27 15392]
S3 BCMH43XX;@oem215.inf,%BCMH43XX_Service_DispName%;N+ Wireless USB Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwlhigh664.sys [2011-04-19 1254464]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-06-09 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 clwvd6;@oem149.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 6.0 Service; C:\WINDOWS\system32\DRIVERS\clwvd6.sys []
S3 DFX11_1;@oem148.inf,%DFX_Device.SvcDesc%;DFX Audio Enhancer 11.1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [2015-08-31 28008]
S3 dg_ssudbus;@oem16.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 FTDIBUS;@oem211.inf,%SvcDesc%;USB Serial Converter Driver; C:\WINDOWS\system32\drivers\ftdibus.sys [2016-10-04 118160]
S3 FTSER2K;@oem210.inf,%SvcDesc%;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2016-10-04 88752]
S3 ggflt;@oem111.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\WINDOWS\System32\drivers\ggflt.sys [2015-05-10 16088]
S3 ggsomc;@oem111.inf,%SvcDesc%;SOMC USB Flash Driver; C:\WINDOWS\System32\drivers\ggsomc.sys [2015-05-10 30424]
S3 intaud_WaveExtensible;@oem30.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-05-26 42288]
S3 IntcDAud;@oem24.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-09-12 442368]
S3 LEqdUsb;@oem39.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF USB Filter; C:\WINDOWS\system32\DRIVERS\LEqdUsb.Sys [2013-05-23 77592]
S3 LHidEqd;@oem40.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF HID Filter; C:\WINDOWS\system32\DRIVERS\LHidEqd.Sys [2013-05-23 13080]
S3 LHidFilt;@oem43.inf,%LHidFilt.SvcDesc%;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2013-05-23 76568]
S3 LMouFilt;@oem45.inf,%LMouFilt.SvcDesc%;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2013-05-23 59160]
S3 LUsbFilt;@oem41.inf,%FltDisplayName%;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2013-05-23 40728]
S3 ManyCam;@oem149.inf,%ManyCam.DeviceDesc%;ManyCam Virtual Webcam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [2014-12-29 49272]
S3 massfilter;ZTE Mass Storage Filter Driver; C:\WINDOWS\system32\drivers\massfilter.sys [2009-09-04 11776]
S3 mcaudrv_simple;@oem150.inf,%mcaudrv_simple.SvcDesc%;ManyCam Virtual Microphone; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [2014-12-29 35960]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-12-16 30144]
S3 rccfg;AMD-RAID Config Device; C:\WINDOWS\System32\drivers\rccfg.sys [2013-03-28 21680]
S3 rcraid;rcraid; C:\WINDOWS\System32\drivers\rcraid.sys [2013-03-28 526000]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSUSBSTOR;@oem7.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2013-09-12 252048]
S3 ssudmdm;@oem25.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2015-04-25 20992]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2014-10-29 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 VBoxUSB;@oem120.inf,%VBoxUSB.SvcDesc%;VirtualBox USB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [2016-12-20 137920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2017-10-27 2648184]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-03-22 15344]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-08-09 355232]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-02-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-02-16 366552]
R2 Micro Star SCM;Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [2013-04-18 160768]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [2013-02-08 154112]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-16 519104]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-12-16 460736]
R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2013-09-13 337776]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 CLKMSVC10_38F51D56;CyberLink Product - 2013/09/13 19:34:24; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [2013-04-02 247768]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-12 272384]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-08-09 288688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S4 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2014-05-30 943136]
S4 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2012-12-07 39424]
S4 Mobile Broadband HL Service;Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [2016-03-24 242264]
S4 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
S4 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-16 519104]
S4 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-12-16 463856]
S4 ufad-ws60;VMware Agent Service; D:\Vmware\vmware-ufad.exe [2007-11-30 186928]

-----------------EOF-----------------

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Log z Adwcleaner

# AdwCleaner 7.0.6.0 - Logfile created on Mon Jan 08 19:26:32 2018
# Updated on 2017/21/12 by Malwarebytes
# Running on Windows 8.1 (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

No malicious registry entries deleted.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [3022 B] - [2017/12/26 19:16:41]
C:/AdwCleaner/AdwCleaner[C1].txt - [1314 B] - [2017/12/26 19:35:40]
C:/AdwCleaner/AdwCleaner[S0].txt - [3227 B] - [2017/12/26 19:15:48]
C:/AdwCleaner/AdwCleaner[S1].txt - [1140 B] - [2017/12/26 19:34:57]
C:/AdwCleaner/AdwCleaner[S2].txt - [1217 B] - [2017/12/28 16:44:28]
C:/AdwCleaner/AdwCleaner[S3].txt - [1286 B] - [2018/1/8 19:26:5]


########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt ##########

Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\tasks\AutoKMS.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0932538ed1c5f.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0bfef94a202c3.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0e4de720c2476.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d0f3c42710d2a9.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d1303d7f8e78b8.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d15ea2bfed3895.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1d1aba5553bc3e.job
D:\TNod
C:\WINDOWS\KMSEmulator.exe

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TNOD UP"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Nový log RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondřej at 2018-01-08 21:23:53
Microsoft Windows 8.1
System drive C: has 66 GB (20%) free of 328 GB
Total RAM: 8112 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:23:59, on 8. 1. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Program Files\trend micro\Ondřej.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [vmware-tray] "D:\Vmware\vmware-tray.exe"
O4 - HKLM\..\Run: [VMware hqtray] "D:\Vmware\hqtray.exe"
O4 - HKLM\..\Run: [DFX] C:\Program Files (x86)\DFX\DFX.exe -startup
O4 - HKLM\..\Run: [YouCam Service7] "C:\Program Files (x86)\CyberLink\YouCam7\YouCamService7.exe" /s
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [HP DeskJet 4530 series (NET)] "C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH65O3C2170661:NW" -scfn "HP DeskJet 4530 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [Spotify Web Helper] C:\Users\Ondřej\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart
O4 - Startup: cleantemp.bat
O4 - Startup: Logitech . Registrace produktu.lnk = C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: CyberLink Product - 2013/09/13 19:34:24 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) - arvato digital services llc - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WD Boost - Western Digital - C:\Program Files\Western Digital\WD Boost\WDBoost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10842 bytes

======Listing Processes======





wininit.exe

C:\WINDOWS\system32\lsass.exe

winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"

"C:\Program Files\Western Digital\WD Boost\WDBoost.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {b7abb997-bf0a-47c3-80e126a00106e697}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\SCM\MSIService.exe"
"C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
"C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-775f6248-9c07-4c5f-9f4a-294cd052d61d -SystemEventPortName:HostProcess-36799a4e-2f30-488d-bd78-723c0e1dbcb7 -IoCancelEventPortName:HostProcess-03b9e922-d10e-4c2a-8dfe-29cd3843082d -NonStateChangingEventPortName:HostProcess-31463cf2-90de-4655-839c-c1f549f0ce1b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1b946e43-96a5-4596-b20a-0cc6cb3e1987 -DeviceGroupId:WudfDefaultDevicePool
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
wmiadap.exe /F /T /R
C:\WINDOWS\system32\wbem\WmiApSrv.exe
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
"C:\Program Files (x86)\SCM\Radio Manager.exe"
"C:\Program Files (x86)\SCM\SCM.exe"
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding

"C:\Users\Ondřej\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\AutoKMS.job - C:\Windows\AutoKMS\AutoKMS.exe /Application
C:\WINDOWS\tasks\DriverToolkit Autorun.job - D:\DriverToolkit\DriverToolkit.exe --autorun

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-09-12 13538376]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-08-09 404376]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-09-12 2875728]
"BtServer"=C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [2013-01-28 452608]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-03-22 36352]
"MBCfg64"=C:\Windows\system32\MBCfg64.dll [2013-04-23 34432]
"Radio Manager"=C:\Program Files (x86)\SCM\Radio Manager.exe [2013-04-18 406920]
"SCM"=C:\Program Files (x86)\SCM\SCM.exe [2013-04-18 407968]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2014-05-30 383992]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-12-16 2404800]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2017-10-27 324216]
"LogiOptions"=C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2017-12-18 2142328]
"TNOD UP"=D:\TNod\TNODUP.exe /i []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"HP DeskJet 4530 series (NET)"=C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [2015-03-09 3651080]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2014-10-29 479744]
"Spotify Web Helper"=C:\Users\Ondřej\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-12-20 780688]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema"=C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [2012-11-29 711680]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"Super-Charger"=C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [2013-02-07 490480]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-03-08 95192]
"BDRegion"=C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [2013-04-02 181208]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"vmware-tray"=D:\Vmware\vmware-tray.exe [2008-03-03 72240]
"VMware hqtray"=D:\Vmware\hqtray.exe [2008-03-03 55856]
"DFX"=C:\Program Files (x86)\DFX\DFX.exe [2016-05-19 1328632]
"YouCam Service7"=C:\Program Files (x86)\CyberLink\YouCam7\YouCamService7.exe [2016-03-15 458168]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []

C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
cleantemp.bat
Logitech . Registrace produktu.lnk - C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-01-08 21:17:58 ----A---- C:\WINDOWS\KMSEmulator.exe
2018-01-08 21:12:47 ----D---- C:\_OTM
2018-01-08 19:19:18 ----D---- C:\rsit
2018-01-08 19:19:18 ----D---- C:\Program Files\trend micro
2017-12-26 20:13:42 ----D---- C:\AdwCleaner
2017-12-22 18:20:54 ----D---- C:\WINDOWS\SYSWOW64\NV
2017-12-22 18:20:54 ----D---- C:\WINDOWS\system32\NV
2017-12-22 18:20:27 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-12-22 18:20:26 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2017-12-22 18:20:26 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2017-12-22 18:19:46 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2017-12-22 18:19:45 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-12-22 18:19:42 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-12-22 18:19:41 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2017-12-22 18:19:40 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2017-12-22 18:19:40 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2017-12-22 18:19:40 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2017-12-22 18:19:38 ----D---- C:\Program Files (x86)\VulkanRT
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-12-22 18:19:14 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvinitx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvdispgenco6438871.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvdispco6438871.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2017-12-22 18:11:49 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\system32\nvapi64.dll
2017-12-19 17:12:32 ----D---- C:\Program Files\Common Files\Adobe
2017-12-19 17:11:47 ----D---- C:\Program Files\Logitech
2017-12-16 22:11:57 ----D---- C:\Users\Ondřej\AppData\Roaming\GTA_5_CZ_Instalator
2017-12-14 20:28:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-12-14 20:04:16 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2017-12-14 20:04:14 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-12-14 20:03:54 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2017-12-14 20:03:48 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-12-14 20:03:48 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-12-14 20:00:20 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\tquery.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\jscript.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\wininet.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\win32k.sys
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\gdi32.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-12-14 19:59:07 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-12-14 19:59:07 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2017-12-14 19:59:06 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\srvsvc.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\shell32.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-12-14 19:59:04 ----A---- C:\WINDOWS\system32\wmp.dll
2017-12-14 19:59:04 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-12-14 19:59:03 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\system32\twinui.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2017-12-14 19:59:00 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\system32\authui.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\msctf.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\certcli.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\SYSWOW64\PCPTpm12.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\PCPTpm12.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-12-14 19:58:55 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\system32\uxtheme.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-12-14 19:58:54 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wevtapi.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wer.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\tpmvsc.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\localspl.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\advapi32.dll
2017-12-14 19:58:53 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\Wldap32.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\scksp.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\basecsp.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-12-14 19:58:51 ----A---- C:\WINDOWS\system32\TabSvc.dll
2017-12-14 19:58:51 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-12-14 19:58:50 ----AC---- C:\WINDOWS\system32\drivers\disk.sys
2017-12-14 19:58:50 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\UXInit.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2017-12-14 19:58:49 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\t2embed.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\rastls.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-12-14 19:58:48 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\shdocvw.dll
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\regsvc.dll
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2017-12-14 19:58:46 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-12-14 19:58:46 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-12-14 19:58:45 ----A---- C:\WINDOWS\SYSWOW64\mswstr10.dll
2017-12-14 19:58:44 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-12-14 19:58:43 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2017-12-14 19:58:40 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2017-12-14 19:58:40 ----A---- C:\WINDOWS\system32\wermgr.exe
2017-12-14 19:58:39 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2017-12-14 19:58:37 ----A---- C:\WINDOWS\system32\itss.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\SYSWOW64\mgmtapi.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\system32\iscsium.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\msjint40.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\iscsium.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\system32\authz.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-12-14 19:58:32 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\invagent.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\devinv.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aitstatic.exe
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aepic.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-12-14 19:57:56 ----A---- C:\WINDOWS\system32\pcasvc.dll
2017-12-14 19:57:56 ----A---- C:\WINDOWS\system32\centel.dll

======List of files/folders modified in the last 1 month======

2018-01-08 21:23:56 ----D---- C:\WINDOWS\Temp
2018-01-08 21:23:15 ----D---- C:\WINDOWS\Prefetch
2018-01-08 21:18:11 ----D---- C:\WINDOWS\Tasks
2018-01-08 21:17:58 ----D---- C:\Windows
2018-01-08 21:17:47 ----D---- C:\ProgramData\NVIDIA
2018-01-08 21:17:18 ----D---- C:\WINDOWS\system32\drivers
2018-01-08 21:00:00 ----D---- C:\WINDOWS\system32\sru
2018-01-08 20:45:25 ----D---- C:\WINDOWS\Microsoft.NET
2018-01-08 20:29:07 ----D---- C:\WINDOWS\system32\Tasks
2018-01-08 20:27:23 ----D---- C:\WINDOWS\Inf
2018-01-08 19:19:18 ----D---- C:\Program Files
2018-01-08 17:33:43 ----RD---- C:\WINDOWS\System32
2018-01-08 17:33:43 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-07 21:20:12 ----D---- C:\Users\Ondřej\AppData\Roaming\Spotify
2018-01-07 17:50:15 ----D---- C:\WINDOWS\system32\DriverStore
2018-01-07 17:49:36 ----D---- C:\WINDOWS\system32\config
2018-01-06 19:30:15 ----D---- C:\Users\Ondřej\AppData\Roaming\uTorrent
2018-01-06 18:17:04 ----SHD---- C:\System Volume Information
2017-12-28 17:25:10 ----D---- C:\Program Files\Windows Sidebar
2017-12-28 17:25:09 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-12-28 17:25:04 ----SHD---- C:\WINDOWS\Installer
2017-12-27 17:09:13 ----D---- C:\WINDOWS\rescache
2017-12-26 20:16:38 ----HD---- C:\ProgramData
2017-12-26 20:16:38 ----D---- C:\Program Files (x86)
2017-12-26 19:53:19 ----D---- C:\WINDOWS\WinSxS
2017-12-26 19:50:58 ----D---- C:\WINDOWS\CbsTemp
2017-12-26 19:50:11 ----D---- C:\WINDOWS\system32\catroot2
2017-12-26 19:35:00 ----D---- C:\WINDOWS\Minidump
2017-12-25 16:44:21 ----D---- C:\Users\Ondřej\AppData\Roaming\vlc
2017-12-22 18:20:59 ----D---- C:\ProgramData\NVIDIA Corporation
2017-12-22 18:20:54 ----D---- C:\WINDOWS\SysWOW64
2017-12-22 18:20:27 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-12-22 18:19:55 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-22 18:19:37 ----D---- C:\Temp
2017-12-22 18:19:26 ----D---- C:\WINDOWS\Help
2017-12-19 17:12:32 ----D---- C:\Program Files\Common Files
2017-12-18 18:10:11 ----RSD---- C:\WINDOWS\assembly
2017-12-14 20:19:20 ----RD---- C:\WINDOWS\ToastData
2017-12-14 20:19:14 ----D---- C:\Program Files\Internet Explorer
2017-12-14 20:19:14 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\wbem
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\en-US
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\cs-CZ
2017-12-14 20:19:09 ----D---- C:\WINDOWS\system32\appraiser
2017-12-14 20:19:09 ----D---- C:\WINDOWS\apppatch
2017-12-14 20:03:43 ----D---- C:\WINDOWS\system32\MRT
2017-12-14 20:00:13 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-12-14 19:40:39 ----D---- C:\ProgramData\Realtek
2017-12-14 19:35:29 ----D---- C:\WINDOWS\AppReadiness
2017-12-12 22:28:15 ----D---- C:\WINDOWS\system32\Macromed
2017-12-12 22:28:11 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-12-09 17:00:16 ----D---- C:\ProgramData\VMware

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2017-03-09 107344]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2014-10-21 118560]
R0 hiosd;WD Boost Storage Filter Driver; C:\WINDOWS\system32\DRIVERS\hiosd.sys [2013-04-13 173840]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-03-22 678384]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2017-12-16 38472]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2014-10-21 276256]
R1 dtsoftbus01;@oem15.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-08-07 283064]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2017-10-27 132848]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2017-10-27 180088]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2017-03-09 78192]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2017-10-27 102160]
R1 hiofs;WD Boost File System Filter Driver; C:\WINDOWS\system32\DRIVERS\hiofs.sys [2013-04-13 28944]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2016-12-20 959720]
R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [2016-12-20 131144]
R1 VBoxNetLwf;@oem122.inf,%VBoxNetLwfService_Desc%;VirtualBox NDIS6 Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [2016-12-20 205440]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2016-12-20 149304]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2017-03-09 50752]
R2 hcmon;VMware hcmon; \??\C:\WINDOWS\system32\drivers\hcmon.sys [2008-03-03 43568]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 clwvd;@oem33.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys [2012-08-03 40944]
R3 clwvd7;@oem151.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 7.0 Service; C:\WINDOWS\system32\DRIVERS\clwvd7.sys [2015-03-24 42968]
R3 DFX12;@oem147.inf,%DFX_Device.SvcDesc%;DFX Audio Enhancer; C:\WINDOWS\system32\drivers\dfx12x64.sys [2015-10-13 28344]
R3 ETD;@oem11.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2013-09-12 357200]
R3 ICCWDT;@oem199.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\WINDOWS\System32\drivers\ICCWDT.sys [2016-11-02 38680]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-08-09 4928256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-09-12 3425608]
R3 iwdbus;@oem31.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-05-26 30512]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MBfilt;MBfilt; C:\WINDOWS\system32\drivers\MBfilt64.sys [2013-09-12 32344]
R3 MEIx64;@oem212.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-12-02 204920]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [2012-10-26 13368]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2017-12-16 16854840]
R3 nvvad_WaveExtensible;@oem160.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-12-16 50624]
R3 nvvhci;@oem214.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-12-16 57792]
R3 RtkBtFilter;@oem5.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2013-09-12 524360]
R3 RTWlanE;@netrtwlane.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E – síťový adaptér; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-07-31 1936088]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2014-10-29 11776]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2017-10-27 15392]
S3 BCMH43XX;@oem215.inf,%BCMH43XX_Service_DispName%;N+ Wireless USB Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwlhigh664.sys [2011-04-19 1254464]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-06-09 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 clwvd6;@oem149.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 6.0 Service; C:\WINDOWS\system32\DRIVERS\clwvd6.sys []
S3 DFX11_1;@oem148.inf,%DFX_Device.SvcDesc%;DFX Audio Enhancer 11.1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [2015-08-31 28008]
S3 dg_ssudbus;@oem16.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 FTDIBUS;@oem211.inf,%SvcDesc%;USB Serial Converter Driver; C:\WINDOWS\system32\drivers\ftdibus.sys [2016-10-04 118160]
S3 FTSER2K;@oem210.inf,%SvcDesc%;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2016-10-04 88752]
S3 ggflt;@oem111.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\WINDOWS\System32\drivers\ggflt.sys [2015-05-10 16088]
S3 ggsomc;@oem111.inf,%SvcDesc%;SOMC USB Flash Driver; C:\WINDOWS\System32\drivers\ggsomc.sys [2015-05-10 30424]
S3 intaud_WaveExtensible;@oem30.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-05-26 42288]
S3 IntcDAud;@oem24.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-09-12 442368]
S3 LEqdUsb;@oem39.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF USB Filter; C:\WINDOWS\system32\DRIVERS\LEqdUsb.Sys [2013-05-23 77592]
S3 LHidEqd;@oem40.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF HID Filter; C:\WINDOWS\system32\DRIVERS\LHidEqd.Sys [2013-05-23 13080]
S3 LHidFilt;@oem43.inf,%LHidFilt.SvcDesc%;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2013-05-23 76568]
S3 LMouFilt;@oem45.inf,%LMouFilt.SvcDesc%;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2013-05-23 59160]
S3 LUsbFilt;@oem41.inf,%FltDisplayName%;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2013-05-23 40728]
S3 ManyCam;@oem149.inf,%ManyCam.DeviceDesc%;ManyCam Virtual Webcam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [2014-12-29 49272]
S3 massfilter;ZTE Mass Storage Filter Driver; C:\WINDOWS\system32\drivers\massfilter.sys [2009-09-04 11776]
S3 mcaudrv_simple;@oem150.inf,%mcaudrv_simple.SvcDesc%;ManyCam Virtual Microphone; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [2014-12-29 35960]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2013-03-01 36600]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-12-16 30144]
S3 rccfg;AMD-RAID Config Device; C:\WINDOWS\System32\drivers\rccfg.sys [2013-03-28 21680]
S3 rcraid;rcraid; C:\WINDOWS\System32\drivers\rcraid.sys [2013-03-28 526000]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSUSBSTOR;@oem7.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2013-09-12 252048]
S3 ssudmdm;@oem25.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2015-04-25 20992]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2014-10-29 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 VBoxUSB;@oem120.inf,%VBoxUSB.SvcDesc%;VirtualBox USB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [2016-12-20 137920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2017-10-27 2648184]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-03-22 15344]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-08-09 355232]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-02-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-02-16 366552]
R2 Micro Star SCM;Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [2013-04-18 160768]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [2013-02-08 154112]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-16 519104]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-12-16 460736]
R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2013-09-13 337776]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 CLKMSVC10_38F51D56;CyberLink Product - 2013/09/13 19:34:24; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [2013-04-02 247768]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-12 272384]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-08-09 288688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S4 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2014-05-30 943136]
S4 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2012-12-07 39424]
S4 Mobile Broadband HL Service;Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [2016-03-24 242264]
S4 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
S4 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-16 519104]
S4 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-12-16 463856]
S4 ufad-ws60;VMware Agent Service; D:\Vmware\vmware-ufad.exe [2007-11-30 186928]

-----------------EOF-----------------

Nebylo vše smazáno. Zkuste znovu se stejným skriptem.

Takže znovu použit OTM a tady nový log RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondřej at 2018-01-08 22:06:45
Microsoft Windows 8.1
System drive C: has 66 GB (20%) free of 328 GB
Total RAM: 8112 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:06:50, on 8. 1. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Ondřej.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [vmware-tray] "D:\Vmware\vmware-tray.exe"
O4 - HKLM\..\Run: [VMware hqtray] "D:\Vmware\hqtray.exe"
O4 - HKLM\..\Run: [DFX] C:\Program Files (x86)\DFX\DFX.exe -startup
O4 - HKLM\..\Run: [YouCam Service7] "C:\Program Files (x86)\CyberLink\YouCam7\YouCamService7.exe" /s
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [HP DeskJet 4530 series (NET)] "C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH65O3C2170661:NW" -scfn "HP DeskJet 4530 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [Spotify Web Helper] C:\Users\Ondřej\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart
O4 - Startup: cleantemp.bat
O4 - Startup: Logitech . Registrace produktu.lnk = C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: CyberLink Product - 2013/09/13 19:34:24 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) - arvato digital services llc - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WD Boost - Western Digital - C:\Program Files\Western Digital\WD Boost\WDBoost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10836 bytes

======Listing Processes======





wininit.exe


C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"

"C:\Program Files\Western Digital\WD Boost\WDBoost.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {DA339474-CCDC-42CD-9889-739FE299033A}
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {a95a8164-5520-4f68-b2fc686efe10c342}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\SCM\MSIService.exe"
"C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
"C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a2301013-ff48-4dad-bee8-db75a33bb88a -SystemEventPortName:HostProcess-e5739ea0-f2cd-4e09-b6a8-47ef5607071d -IoCancelEventPortName:HostProcess-56cb5bdc-e3bf-4546-abaa-1efbbfeeb21e -NonStateChangingEventPortName:HostProcess-862c6f4d-6c4c-40e1-86f4-fbdf09b8b09c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6820bfd3-068d-458a-be35-ea601ba66aa4 -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
taskhostex.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
wmiadap.exe /F /T /R
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
"C:\Program Files (x86)\SCM\Radio Manager.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\SCM\SCM.exe"
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\wbem\WmiApSrv.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"

"C:\Users\Ondřej\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\AutoKMS.job - C:\Windows\AutoKMS\AutoKMS.exe /Application
C:\WINDOWS\tasks\DriverToolkit Autorun.job - D:\DriverToolkit\DriverToolkit.exe --autorun

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-09-12 13538376]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-08-09 404376]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-09-12 2875728]
"BtServer"=C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [2013-01-28 452608]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-03-22 36352]
"MBCfg64"=C:\Windows\system32\MBCfg64.dll [2013-04-23 34432]
"Radio Manager"=C:\Program Files (x86)\SCM\Radio Manager.exe [2013-04-18 406920]
"SCM"=C:\Program Files (x86)\SCM\SCM.exe [2013-04-18 407968]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2014-05-30 383992]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-12-16 2404800]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2017-10-27 324216]
"LogiOptions"=C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2017-12-18 2142328]
"TNOD UP"=D:\TNod\TNODUP.exe /i []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"HP DeskJet 4530 series (NET)"=C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [2015-03-09 3651080]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2014-10-29 479744]
"Spotify Web Helper"=C:\Users\Ondřej\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-12-20 780688]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema"=C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [2012-11-29 711680]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"Super-Charger"=C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [2013-02-07 490480]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-03-08 95192]
"BDRegion"=C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [2013-04-02 181208]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"vmware-tray"=D:\Vmware\vmware-tray.exe [2008-03-03 72240]
"VMware hqtray"=D:\Vmware\hqtray.exe [2008-03-03 55856]
"DFX"=C:\Program Files (x86)\DFX\DFX.exe [2016-05-19 1328632]
"YouCam Service7"=C:\Program Files (x86)\CyberLink\YouCam7\YouCamService7.exe [2016-03-15 458168]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []

C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
cleantemp.bat
Logitech . Registrace produktu.lnk - C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll,C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-01-08 22:01:40 ----A---- C:\WINDOWS\KMSEmulator.exe
2018-01-08 21:12:47 ----D---- C:\_OTM
2018-01-08 19:19:18 ----D---- C:\rsit
2018-01-08 19:19:18 ----D---- C:\Program Files\trend micro
2017-12-26 20:13:42 ----D---- C:\AdwCleaner
2017-12-22 18:20:54 ----D---- C:\WINDOWS\SYSWOW64\NV
2017-12-22 18:20:54 ----D---- C:\WINDOWS\system32\NV
2017-12-22 18:20:27 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-12-22 18:20:26 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2017-12-22 18:20:26 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2017-12-22 18:19:46 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2017-12-22 18:19:45 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-12-22 18:19:42 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-12-22 18:19:41 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2017-12-22 18:19:40 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2017-12-22 18:19:40 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2017-12-22 18:19:40 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2017-12-22 18:19:38 ----D---- C:\Program Files (x86)\VulkanRT
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-12-22 18:19:27 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-12-22 18:19:14 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvinitx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvdispgenco6438871.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvdispco6438871.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2017-12-22 18:11:50 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2017-12-22 18:11:49 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-12-22 18:11:49 ----A---- C:\WINDOWS\system32\nvapi64.dll
2017-12-19 17:12:32 ----D---- C:\Program Files\Common Files\Adobe
2017-12-19 17:11:47 ----D---- C:\Program Files\Logitech
2017-12-16 22:11:57 ----D---- C:\Users\Ondřej\AppData\Roaming\GTA_5_CZ_Instalator
2017-12-14 20:28:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-12-14 20:04:16 ----A---- C:\WINDOWS\system32\aspnet_counters.dll
2017-12-14 20:04:14 ----A---- C:\WINDOWS\SYSWOW64\aspnet_counters.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\system32\msvcr100_clr0400.dll
2017-12-14 20:03:58 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-12-14 20:03:54 ----A---- C:\WINDOWS\SYSWOW64\msvcr100_clr0400.dll
2017-12-14 20:03:48 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-12-14 20:03:48 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-12-14 20:00:20 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-12-14 19:59:15 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-12-14 19:59:14 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-12-14 19:59:13 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-12-14 19:59:12 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\tquery.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\jscript.dll
2017-12-14 19:59:11 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-12-14 19:59:10 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\wininet.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\win32k.sys
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-12-14 19:59:09 ----A---- C:\WINDOWS\system32\gdi32.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-12-14 19:59:08 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-12-14 19:59:07 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-12-14 19:59:07 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2017-12-14 19:59:06 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\srvsvc.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\shell32.dll
2017-12-14 19:59:06 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-12-14 19:59:04 ----A---- C:\WINDOWS\system32\wmp.dll
2017-12-14 19:59:04 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-12-14 19:59:03 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\system32\twinui.dll
2017-12-14 19:59:01 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2017-12-14 19:59:00 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-12-14 19:58:59 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-12-14 19:58:58 ----A---- C:\WINDOWS\system32\authui.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\msctf.dll
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-12-14 19:58:57 ----A---- C:\WINDOWS\system32\certcli.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\SYSWOW64\PCPTpm12.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\PCPTpm12.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-12-14 19:58:56 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-12-14 19:58:55 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\system32\uxtheme.dll
2017-12-14 19:58:55 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-12-14 19:58:54 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wevtapi.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\wer.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\tpmvsc.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\localspl.dll
2017-12-14 19:58:54 ----A---- C:\WINDOWS\system32\advapi32.dll
2017-12-14 19:58:53 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\Wldap32.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\scksp.dll
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-12-14 19:58:53 ----A---- C:\WINDOWS\system32\basecsp.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-12-14 19:58:52 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-12-14 19:58:51 ----A---- C:\WINDOWS\system32\TabSvc.dll
2017-12-14 19:58:51 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-12-14 19:58:50 ----AC---- C:\WINDOWS\system32\drivers\disk.sys
2017-12-14 19:58:50 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\UXInit.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-12-14 19:58:50 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2017-12-14 19:58:49 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\t2embed.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\rastls.dll
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-12-14 19:58:49 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-12-14 19:58:48 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\shdocvw.dll
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\regsvc.dll
2017-12-14 19:58:48 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2017-12-14 19:58:46 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-12-14 19:58:46 ----A---- C:\WINDOWS\system32\wuauclt.exe
2017-12-14 19:58:45 ----A---- C:\WINDOWS\SYSWOW64\mswstr10.dll
2017-12-14 19:58:44 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-12-14 19:58:43 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2017-12-14 19:58:40 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2017-12-14 19:58:40 ----A---- C:\WINDOWS\system32\wermgr.exe
2017-12-14 19:58:39 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2017-12-14 19:58:37 ----A---- C:\WINDOWS\system32\itss.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\SYSWOW64\mgmtapi.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\system32\iscsium.dll
2017-12-14 19:58:36 ----A---- C:\WINDOWS\system32\appidpolicyconverter.exe
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\msjint40.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\SYSWOW64\iscsium.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\system32\authz.dll
2017-12-14 19:58:34 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-12-14 19:58:32 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\invagent.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\devinv.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aitstatic.exe
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aepic.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-12-14 19:57:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-12-14 19:57:56 ----A---- C:\WINDOWS\system32\pcasvc.dll
2017-12-14 19:57:56 ----A---- C:\WINDOWS\system32\centel.dll

======List of files/folders modified in the last 1 month======

2018-01-08 22:06:48 ----D---- C:\WINDOWS\Temp
2018-01-08 22:01:50 ----D---- C:\WINDOWS\Tasks
2018-01-08 22:01:40 ----D---- C:\Windows
2018-01-08 22:01:33 ----D---- C:\ProgramData\NVIDIA
2018-01-08 22:01:05 ----D---- C:\WINDOWS\system32\drivers
2018-01-08 22:00:00 ----D---- C:\WINDOWS\system32\sru
2018-01-08 21:28:00 ----D---- C:\WINDOWS\Prefetch
2018-01-08 21:24:42 ----RD---- C:\WINDOWS\System32
2018-01-08 21:24:42 ----D---- C:\WINDOWS\Inf
2018-01-08 21:24:42 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-08 20:45:25 ----D---- C:\WINDOWS\Microsoft.NET
2018-01-08 20:29:07 ----D---- C:\WINDOWS\system32\Tasks
2018-01-08 19:19:18 ----D---- C:\Program Files
2018-01-07 21:20:12 ----D---- C:\Users\Ondřej\AppData\Roaming\Spotify
2018-01-07 17:50:15 ----D---- C:\WINDOWS\system32\DriverStore
2018-01-07 17:49:36 ----D---- C:\WINDOWS\system32\config
2018-01-06 19:30:15 ----D---- C:\Users\Ondřej\AppData\Roaming\uTorrent
2018-01-06 18:17:04 ----SHD---- C:\System Volume Information
2017-12-28 17:25:10 ----D---- C:\Program Files\Windows Sidebar
2017-12-28 17:25:09 ----D---- C:\Program Files (x86)\Windows Sidebar
2017-12-28 17:25:04 ----SHD---- C:\WINDOWS\Installer
2017-12-27 17:09:13 ----D---- C:\WINDOWS\rescache
2017-12-26 20:16:38 ----HD---- C:\ProgramData
2017-12-26 20:16:38 ----D---- C:\Program Files (x86)
2017-12-26 19:53:19 ----D---- C:\WINDOWS\WinSxS
2017-12-26 19:50:58 ----D---- C:\WINDOWS\CbsTemp
2017-12-26 19:50:11 ----D---- C:\WINDOWS\system32\catroot2
2017-12-26 19:35:00 ----D---- C:\WINDOWS\Minidump
2017-12-25 16:44:21 ----D---- C:\Users\Ondřej\AppData\Roaming\vlc
2017-12-22 18:20:59 ----D---- C:\ProgramData\NVIDIA Corporation
2017-12-22 18:20:54 ----D---- C:\WINDOWS\SysWOW64
2017-12-22 18:20:27 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-12-22 18:19:55 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-22 18:19:37 ----D---- C:\Temp
2017-12-22 18:19:26 ----D---- C:\WINDOWS\Help
2017-12-19 17:12:32 ----D---- C:\Program Files\Common Files
2017-12-18 18:10:11 ----RSD---- C:\WINDOWS\assembly
2017-12-14 20:19:20 ----RD---- C:\WINDOWS\ToastData
2017-12-14 20:19:14 ----D---- C:\Program Files\Internet Explorer
2017-12-14 20:19:14 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-12-14 20:19:13 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\wbem
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\en-US
2017-12-14 20:19:13 ----D---- C:\WINDOWS\system32\cs-CZ
2017-12-14 20:19:09 ----D---- C:\WINDOWS\system32\appraiser
2017-12-14 20:19:09 ----D---- C:\WINDOWS\apppatch
2017-12-14 20:03:43 ----D---- C:\WINDOWS\system32\MRT
2017-12-14 20:00:13 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-12-14 19:40:39 ----D---- C:\ProgramData\Realtek
2017-12-14 19:35:29 ----D---- C:\WINDOWS\AppReadiness
2017-12-12 22:28:15 ----D---- C:\WINDOWS\system32\Macromed
2017-12-12 22:28:11 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-12-09 17:00:16 ----D---- C:\ProgramData\VMware

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2017-03-09 107344]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2014-10-21 118560]
R0 hiosd;WD Boost Storage Filter Driver; C:\WINDOWS\system32\DRIVERS\hiosd.sys [2013-04-13 173840]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-03-22 678384]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2017-12-16 38472]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2014-10-21 276256]
R1 dtsoftbus01;@oem15.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-08-07 283064]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2017-10-27 132848]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2017-10-27 180088]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2017-03-09 78192]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2017-10-27 102160]
R1 hiofs;WD Boost File System Filter Driver; C:\WINDOWS\system32\DRIVERS\hiofs.sys [2013-04-13 28944]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2016-12-20 959720]
R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [2016-12-20 131144]
R1 VBoxNetLwf;@oem122.inf,%VBoxNetLwfService_Desc%;VirtualBox NDIS6 Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [2016-12-20 205440]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2016-12-20 149304]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2017-03-09 50752]
R2 hcmon;VMware hcmon; \??\C:\WINDOWS\system32\drivers\hcmon.sys [2008-03-03 43568]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 clwvd;@oem33.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys [2012-08-03 40944]
R3 clwvd7;@oem151.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 7.0 Service; C:\WINDOWS\system32\DRIVERS\clwvd7.sys [2015-03-24 42968]
R3 DFX12;@oem147.inf,%DFX_Device.SvcDesc%;DFX Audio Enhancer; C:\WINDOWS\system32\drivers\dfx12x64.sys [2015-10-13 28344]
R3 ETD;@oem11.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2013-09-12 357200]
R3 ICCWDT;@oem199.inf,%ICCWDT.SVCDESC%;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\WINDOWS\System32\drivers\ICCWDT.sys [2016-11-02 38680]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-08-09 4928256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-09-12 3425608]
R3 iwdbus;@oem31.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-05-26 30512]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MBfilt;MBfilt; C:\WINDOWS\system32\drivers\MBfilt64.sys [2013-09-12 32344]
R3 MEIx64;@oem212.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-12-02 204920]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [2012-10-26 13368]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2017-12-16 16854840]
R3 nvvad_WaveExtensible;@oem160.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-12-16 50624]
R3 nvvhci;@oem214.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-12-16 57792]
R3 RtkBtFilter;@oem5.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2013-09-12 524360]
R3 RTWlanE;@netrtwlane.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E – síťový adaptér; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-07-31 1936088]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2014-10-29 11776]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2017-10-27 15392]
S3 BCMH43XX;@oem215.inf,%BCMH43XX_Service_DispName%;N+ Wireless USB Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwlhigh664.sys [2011-04-19 1254464]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-06-09 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 clwvd6;@oem149.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 6.0 Service; C:\WINDOWS\system32\DRIVERS\clwvd6.sys []
S3 DFX11_1;@oem148.inf,%DFX_Device.SvcDesc%;DFX Audio Enhancer 11.1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [2015-08-31 28008]
S3 dg_ssudbus;@oem16.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 FTDIBUS;@oem211.inf,%SvcDesc%;USB Serial Converter Driver; C:\WINDOWS\system32\drivers\ftdibus.sys [2016-10-04 118160]
S3 FTSER2K;@oem210.inf,%SvcDesc%;USB Serial Port Driver; C:\WINDOWS\system32\drivers\ftser2k.sys [2016-10-04 88752]
S3 ggflt;@oem111.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\WINDOWS\System32\drivers\ggflt.sys [2015-05-10 16088]
S3 ggsomc;@oem111.inf,%SvcDesc%;SOMC USB Flash Driver; C:\WINDOWS\System32\drivers\ggsomc.sys [2015-05-10 30424]
S3 intaud_WaveExtensible;@oem30.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-05-26 42288]
S3 IntcDAud;@oem24.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-09-12 442368]
S3 LEqdUsb;@oem39.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF USB Filter; C:\WINDOWS\system32\DRIVERS\LEqdUsb.Sys [2013-05-23 77592]
S3 LHidEqd;@oem40.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF HID Filter; C:\WINDOWS\system32\DRIVERS\LHidEqd.Sys [2013-05-23 13080]
S3 LHidFilt;@oem43.inf,%LHidFilt.SvcDesc%;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2013-05-23 76568]
S3 LMouFilt;@oem45.inf,%LMouFilt.SvcDesc%;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2013-05-23 59160]
S3 LUsbFilt;@oem41.inf,%FltDisplayName%;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2013-05-23 40728]
S3 ManyCam;@oem149.inf,%ManyCam.DeviceDesc%;ManyCam Virtual Webcam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [2014-12-29 49272]
S3 massfilter;ZTE Mass Storage Filter Driver; C:\WINDOWS\system32\drivers\massfilter.sys [2009-09-04 11776]
S3 mcaudrv_simple;@oem150.inf,%mcaudrv_simple.SvcDesc%;ManyCam Virtual Microphone; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [2014-12-29 35960]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2013-03-01 36600]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-12-16 30144]
S3 rccfg;AMD-RAID Config Device; C:\WINDOWS\System32\drivers\rccfg.sys [2013-03-28 21680]
S3 rcraid;rcraid; C:\WINDOWS\System32\drivers\rcraid.sys [2013-03-28 526000]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSUSBSTOR;@oem7.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2013-09-12 252048]
S3 ssudmdm;@oem25.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2015-04-25 20992]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2014-10-29 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S3 VBoxUSB;@oem120.inf,%VBoxUSB.SvcDesc%;VirtualBox USB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [2016-12-20 137920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2017-10-27 2648184]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-03-22 15344]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-08-09 355232]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-12-10 732160]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-02-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-02-16 366552]
R2 Micro Star SCM;Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [2013-04-18 160768]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [2013-02-08 154112]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-16 519104]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-12-16 460736]
R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2013-09-13 337776]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 CLKMSVC10_38F51D56;CyberLink Product - 2013/09/13 19:34:24; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [2013-04-02 247768]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-12 272384]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-08-09 288688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2012-12-10 803872]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S4 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2014-05-30 943136]
S4 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2012-12-07 39424]
S4 Mobile Broadband HL Service;Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [2016-03-24 242264]
S4 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
S4 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-16 519104]
S4 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-12-16 463856]
S4 ufad-ws60;VMware Agent Service; D:\Vmware\vmware-ufad.exe [2007-11-30 186928]

-----------------EOF-----------------

Co ten cracklý antivir? To ho mažete ze skriptu? Takovýto log bych správně neměl ani řešit. Viz pravidla: https://forum.viry.cz/viewtopic.php?f=12&t=115512 .

Nn nic nemažu(aspoň né já přímo), jediné co mám nastaveno na automatické mazání po startu je složka Temp, protože se mi časem nesmyslně plnila.

OK. Tak odinstalujte ten cracklý antivir (stejně je k ničemu) a nainstalujte nějaký free.