Dobrý večer,
poslední dobou můj počítač pracuje pomaleji, zejména prohlížeč...dnes mi také zničehonic přestalo fungovat přehrávání videí a streamů na internetu (facebook, soundcloud...) ale youtube třeba jde. Zkoušel jsem přeinstalovávat prohlížeče, flash player i vrátit pc do bodu obnovení, ale nic nepomohlo. Zde kdyžtak přikládám log z RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2016-09-16 19:35:42
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 127 GB (27%) free of 477 GB
Total RAM: 3955 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:35:48, on 16.9.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18427)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Michal.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABgdil3cdfjWS4eT4OE6v0mzP7VYdJkPKlCgWK7ljDTtlfBF6E6yTdQFbP_5oSLd0LWc1KzSBIBoyf6Vg4wO5X3UVm73qZSqftGD_rAs-6zjaQ3smYudkhx-Y9m1BkvKozxeV5wuewcTHyarf&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: 1st Atomic Time Adjust Time Service (GPAdjustTimeService) - Green Parrots Software - C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - CyberLink - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: TrueKeyServiceHelper - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9898 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 28232592
\??\C:\Windows\system32\conhost.exe "-1523529796-1868213084-1033923985770268843-112885427711920572571056373745-135879180
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"taskhost.exe"
"C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe"
"C:\Program Files\Intel\BCA\pabeSvc64.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\TrueKey\McTkSchedulerService.exe"
taskmgr.exe /3
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4432 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0xb4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5324.0.345307777\207824157" --mojo-application-channel-token=C40ACB2FBFE8741F6C52D6249886A757 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x0a29 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.5897 --gpu-driver-date=7-11-2010 --gpu-secondary-vendor-ids=0x0000 --gpu-secondary-device-ids=0x0000 --mojo-platform-channel-handle=1120 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=18AD410153DBBB8012B14B991F90E2DC --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=493FF1F9C13A32FE14C6672350EC2456 --mojo-application-channel-token=18AD410153DBBB8012B14B991F90E2DC --channel="5324.3.70348219\272860291" --mojo-platform-channel-handle=2788 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=E1D81921BBC2DFB303DCF5D9EE2E6422 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=CD77CD0A4D0146C94222342B776812E1 --mojo-application-channel-token=E1D81921BBC2DFB303DCF5D9EE2E6422 --channel="5324.6.1743725319\1225685635" --mojo-platform-channel-handle=4272 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=33603766A22B3AEA0FF43AC90F21A1D1 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=7B9DE5EDB000BD6608493435A597BEB8 --mojo-application-channel-token=33603766A22B3AEA0FF43AC90F21A1D1 --channel="5324.9.1544308987\1072446390" --mojo-platform-channel-handle=4168 /prefetch:1
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\Michal\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UVS11 Preload"=C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-03-03 341488]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"vidc.pDAD"=prodad-codec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-09-16 19:35:42 ----D---- C:\rsit
2016-09-16 19:35:42 ----D---- C:\Program Files\trend micro
2016-09-16 19:18:17 ----D---- C:\ProgramData\TrueKey
2016-09-16 17:07:42 ----A---- C:\Program Files (x86)\GUTC17B.tmp
2016-08-21 20:37:35 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-08-21 20:37:35 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-08-21 20:37:35 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-08-21 20:37:35 ----A---- C:\Windows\system32\iernonce.dll
2016-08-21 20:37:34 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-08-21 20:37:34 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-08-21 20:37:34 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-08-21 20:37:34 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-08-21 20:37:34 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-08-21 20:37:34 ----A---- C:\Windows\system32\inseng.dll
2016-08-21 20:37:34 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-08-21 20:37:34 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-08-21 20:37:34 ----A---- C:\Windows\system32\ie4uinit.exe
2016-08-21 20:37:33 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-08-21 20:37:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-08-21 20:37:33 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-08-21 20:37:33 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-08-21 20:37:33 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-08-21 20:37:33 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-08-21 20:37:31 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-08-21 20:37:31 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-08-21 20:37:31 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-08-21 20:37:31 ----A---- C:\Windows\system32\urlmon.dll
2016-08-21 20:37:31 ----A---- C:\Windows\system32\occache.dll
2016-08-21 20:37:31 ----A---- C:\Windows\system32\iedkcs32.dll
2016-08-21 20:37:30 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-08-21 20:37:30 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-08-21 20:37:30 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-08-21 20:37:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-08-21 20:37:30 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-08-21 20:37:30 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-08-21 20:37:30 ----A---- C:\Windows\system32\msfeeds.dll
2016-08-21 20:37:30 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-08-21 20:37:30 ----A---- C:\Windows\system32\dxtrans.dll
2016-08-21 20:37:29 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-08-21 20:37:29 ----A---- C:\Windows\system32\iesetup.dll
2016-08-21 20:37:29 ----A---- C:\Windows\system32\ieapfltr.dll
2016-08-21 20:37:28 ----A---- C:\Windows\system32\iertutil.dll
2016-08-21 20:37:27 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-08-21 20:37:27 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-08-21 20:37:27 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-08-21 20:37:27 ----A---- C:\Windows\system32\vbscript.dll
2016-08-21 20:37:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-08-21 20:37:25 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-08-21 20:37:25 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-08-21 20:37:25 ----A---- C:\Windows\system32\jsproxy.dll
2016-08-21 20:37:24 ----A---- C:\Windows\system32\ieui.dll
2016-08-21 20:37:24 ----A---- C:\Windows\system32\ieframe.dll
2016-08-21 20:37:24 ----A---- C:\Windows\system32\dxtmsft.dll
2016-08-21 20:37:23 ----A---- C:\Windows\system32\webcheck.dll
2016-08-21 20:37:23 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-08-21 20:37:23 ----A---- C:\Windows\system32\mshtmled.dll
2016-08-21 20:37:23 ----A---- C:\Windows\system32\ieUnatt.exe
2016-08-21 20:37:22 ----A---- C:\Windows\system32\jscript9diag.dll
2016-08-21 20:37:22 ----A---- C:\Windows\system32\jscript.dll
2016-08-21 20:37:21 ----A---- C:\Windows\system32\wininet.dll
2016-08-21 20:37:21 ----A---- C:\Windows\system32\jscript9.dll
2016-08-21 20:37:20 ----A---- C:\Windows\system32\msrating.dll
2016-08-21 20:37:20 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-08-21 20:37:19 ----A---- C:\Windows\system32\mshtml.dll
2016-08-21 20:36:18 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-08-21 20:36:18 ----A---- C:\Windows\system32\tzres.dll
2016-08-21 20:35:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-08-21 20:35:41 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-08-21 20:35:41 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-08-21 20:35:41 ----A---- C:\Windows\system32\schannel.dll
2016-08-21 20:35:41 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-08-21 20:35:41 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-08-21 20:35:41 ----A---- C:\Windows\system32\certcli.dll
2016-08-21 20:35:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-08-21 20:35:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-08-21 20:35:40 ----A---- C:\Windows\system32\rpcrt4.dll
2016-08-21 20:35:40 ----A---- C:\Windows\system32\kerberos.dll
2016-08-21 20:35:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-08-21 20:35:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-08-21 20:35:37 ----A---- C:\Windows\system32\ncrypt.dll
2016-08-21 20:35:36 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-08-21 20:35:36 ----A---- C:\Windows\system32\wdigest.dll
2016-08-21 20:35:36 ----A---- C:\Windows\system32\TSpkg.dll
2016-08-21 20:35:36 ----A---- C:\Windows\system32\msv1_0.dll
2016-08-21 20:35:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-08-21 20:35:35 ----A---- C:\Windows\system32\sspicli.dll
2016-08-21 20:35:35 ----A---- C:\Windows\system32\rpchttp.dll
2016-08-21 20:35:35 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-08-21 20:35:34 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-08-21 20:35:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-08-21 20:35:34 ----A---- C:\Windows\system32\cryptbase.dll
2016-08-21 20:35:33 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-08-21 20:35:33 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-08-21 20:35:33 ----A---- C:\Windows\system32\sspisrv.dll
2016-08-21 20:35:33 ----A---- C:\Windows\system32\secur32.dll
2016-08-21 20:35:33 ----A---- C:\Windows\system32\lsass.exe
2016-08-21 20:35:33 ----A---- C:\Windows\system32\credssp.dll
2016-08-21 20:35:32 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-08-21 20:35:32 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-08-21 20:35:32 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-08-21 20:35:32 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-08-21 20:35:32 ----A---- C:\Windows\system32\auditpol.exe
2016-08-21 20:35:30 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-08-21 20:35:30 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-08-21 20:35:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-08-21 20:35:30 ----A---- C:\Windows\system32\msobjs.dll
2016-08-21 20:35:30 ----A---- C:\Windows\system32\msaudite.dll
2016-08-21 20:35:30 ----A---- C:\Windows\system32\adtschema.dll
2016-08-21 20:31:34 ----A---- C:\Windows\system32\win32k.sys
======List of files/folders modified in the last 1 month======
2016-09-16 19:35:46 ----D---- C:\Windows\temp
2016-09-16 19:35:42 ----RD---- C:\Program Files
2016-09-16 19:27:09 ----D---- C:\Program Files (x86)
2016-09-16 19:26:47 ----D---- C:\Program Files (x86)\Google
2016-09-16 19:20:25 ----D---- C:\Windows\system32\config
2016-09-16 19:18:17 ----D---- C:\ProgramData
2016-09-16 19:15:28 ----SHD---- C:\Windows\Installer
2016-09-16 19:15:28 ----D---- C:\Windows\Tasks
2016-09-16 19:15:28 ----D---- C:\Windows\system32\wfp
2016-09-16 19:15:28 ----D---- C:\Windows\system32\Tasks
2016-09-16 19:15:28 ----D---- C:\Program Files\TrueKey
2016-09-16 19:15:25 ----D---- C:\Windows\system32\wbem
2016-09-16 19:15:25 ----D---- C:\Windows
2016-09-16 19:14:12 ----D---- C:\Windows\SysWOW64
2016-09-16 19:14:12 ----D---- C:\Windows\system32\DriverStore
2016-09-16 19:14:12 ----D---- C:\Windows\system32\catroot2
2016-09-16 19:14:12 ----D---- C:\Windows\System32
2016-09-16 19:14:12 ----D---- C:\Program Files\Internet Explorer
2016-09-16 19:14:11 ----D---- C:\Windows\inf
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel Security
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\McAfee
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\AV
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files
2016-09-16 19:13:46 ----D---- C:\Program Files (x86)\Common Files
2016-09-16 19:13:45 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-16 19:13:41 ----D---- C:\Windows\registration
2016-09-16 19:13:37 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-16 19:13:33 ----D---- C:\Windows\system32\Macromed
2016-09-16 19:12:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-09-16 19:07:45 ----SHD---- C:\System Volume Information
2016-09-14 19:57:36 ----D---- C:\Windows\Prefetch
2016-09-05 20:04:21 ----D---- C:\Users\Michal\AppData\Roaming\uTorrent
2016-08-29 21:45:56 ----D---- C:\Users\Michal\AppData\Roaming\Skype
2016-08-25 16:47:36 ----D---- C:\Windows\rescache
2016-08-23 21:26:34 ----D---- C:\Windows\Minidump
2016-08-23 19:42:27 ----D---- C:\Windows\Microsoft.NET
2016-08-22 15:22:45 ----D---- C:\Windows\winsxs
2016-08-22 15:16:30 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-08-22 15:16:29 ----D---- C:\Windows\system32\cs-CZ
2016-08-22 15:16:27 ----D---- C:\Windows\system32\drivers
2016-08-22 15:16:25 ----D---- C:\Windows\SYSWOW64\en-US
2016-08-22 15:16:24 ----D---- C:\Windows\system32\en-US
2016-08-22 15:16:22 ----D---- C:\Program Files (x86)\Internet Explorer
2016-08-22 01:07:58 ----D---- C:\ProgramData\Microsoft Help
2016-08-22 01:02:35 ----D---- C:\Windows\system32\MRT
2016-08-22 00:54:05 ----AC---- C:\Windows\system32\MRT.exe
2016-08-19 13:08:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-08-19 11:15:10 ----D---- C:\Users\Michal\AppData\Roaming\Audacity
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-06-28 84640]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-23 834544]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2013-04-11 106704]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 26968]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-06-28 263336]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-06-28 197288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-06-28 208552]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-06-28 61608]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-06-28 153248]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-03-19 3058168]
R3 CLMirrorDriver;CLMirrorDriver; C:\Windows\system32\DRIVERS\CLMirrorDriver.sys [2015-09-17 21264]
R3 ffusb2audio;Focusrite USB 2.0 Audio Driver; C:\Windows\system32\DRIVERS\ffusb2audio.sys [2013-09-25 127280]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 412264]
S3 auulh8gh;auulh8gh; C:\Windows\system32\drivers\auulh8gh.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2013-05-04 113280]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-05-26 174680]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\Sandra.sys [2009-08-07 23112]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 Capture Device Service;Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-27 2139328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-06-10 2542216]
R2 GPAdjustTimeService;1st Atomic Time Adjust Time Service; C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [2009-06-19 467968]
R2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc64.exe [2016-05-06 3026584]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-11 159336]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2016-05-08 45692456]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-10-20 614664]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-07-14 908256]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-07-14 15736]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-23 270016]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-08-02 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [2008-12-07 68760]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-07-14 86864]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomalé pc a nelze přehrát videa na internetu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé pc a nelze přehrát videa na internetu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé pc a nelze přehrát videa na internetu
Zdravím, přikládám tedy log z AdwCleaneru:
# AdwCleaner v6.020 - Log soubor vytvořen 17/09/2016 na 09:09:33
# Aktualizováno dne 14/09/2016 z ToolsLib
# Databáze : 2016-09-17.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Michal - MICHAL-PC
# Beží od : C:\Users\Michal\Downloads\adwcleaner_6.020.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Adresáře ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\SavePass 1.1-nv-ie
[#] Klíč smazán po restartování:HKCU\Software\SavePass 1.1-nv-ie
[#] Klíč smazán po restartování:[x64] HKCU\Software\SavePass 1.1-nv-ie
[-] Data obnovena:HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
[-] Data obnovena:HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\SearchUrl [Default]
[-] Data obnovena:HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
[-] Data obnovena:HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
[-] Data obnovena:HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
[-] Data obnovena:[x64] HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
[-] Data obnovena:[x64] HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
[-] Hodnota smazána:HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\safefinder.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\search.safefinder.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\safefinder.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\search.safefinder.com
***** [ Prohlížeče ] *****
[-] [C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default] [favicon_url] Smazání:hxxp://www.mystartsearch.com/webfavicon.ico
[-] [C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Web data] [Search Provider] Smazání:ask.com
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2540 Bajtů] - [17/09/2016 09:09:33]
C:\AdwCleaner\AdwCleaner[S0].txt - [3776 Bajtů] - [17/09/2016 09:09:08]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2688 Bajtů] ##########
# AdwCleaner v6.020 - Log soubor vytvořen 17/09/2016 na 09:09:33
# Aktualizováno dne 14/09/2016 z ToolsLib
# Databáze : 2016-09-17.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Michal - MICHAL-PC
# Beží od : C:\Users\Michal\Downloads\adwcleaner_6.020.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Adresáře ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\SavePass 1.1-nv-ie
[#] Klíč smazán po restartování:HKCU\Software\SavePass 1.1-nv-ie
[#] Klíč smazán po restartování:[x64] HKCU\Software\SavePass 1.1-nv-ie
[-] Data obnovena:HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
[-] Data obnovena:HKU\S-1-5-21-2581228697-3019390296-4131092421-1000\Software\Microsoft\Internet Explorer\SearchUrl [Default]
[-] Data obnovena:HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
[-] Data obnovena:HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
[-] Data obnovena:HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
[-] Data obnovena:[x64] HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
[-] Data obnovena:[x64] HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
[-] Hodnota smazána:HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\safefinder.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\search.safefinder.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\safefinder.com
[#] Klíč smazán po restartování:[x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\search.safefinder.com
***** [ Prohlížeče ] *****
[-] [C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default] [favicon_url] Smazání:hxxp://www.mystartsearch.com/webfavicon.ico
[-] [C:\Users\Michal\AppData\Local\Comodo\Dragon\User Data\Default\Web data] [Search Provider] Smazání:ask.com
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2540 Bajtů] - [17/09/2016 09:09:33]
C:\AdwCleaner\AdwCleaner[S0].txt - [3776 Bajtů] - [17/09/2016 09:09:08]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2688 Bajtů] ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé pc a nelze přehrát videa na internetu
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé pc a nelze přehrát videa na internetu
zde vkládám nový log z rsit:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2016-09-18 19:58:30
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 110 GB (23%) free of 477 GB
Total RAM: 3955 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:58:34, on 18.9.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18450)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Michal.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: 1st Atomic Time Adjust Time Service (GPAdjustTimeService) - Green Parrots Software - C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - CyberLink - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: TrueKeyServiceHelper - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9632 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\WLANExt.exe 35314448
\??\C:\Windows\system32\conhost.exe "20214359652117793198-730421985-14330582601152947083967774769-1319715732-907226813
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe"
"C:\Program Files\Intel\BCA\pabeSvc64.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0xb4
rundll32 "C:\Program Files\ESET\ESET Smart Security\x86\eplgHooks.dll",Proc32_HooksLoop
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3252.0.1615716137\2056928287" --mojo-application-channel-token=BCFA8FDDC6FACC10866BF13E320ACB86 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x0a29 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.5897 --gpu-driver-date=7-11-2010 --gpu-secondary-vendor-ids=0x0000 --gpu-secondary-device-ids=0x0000 --mojo-platform-channel-handle=1120 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=D037444B12FC6A111DD30F6FDE301F47 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=1B5CFAA5F7D18C11CAE5B59DD71AA446 --mojo-application-channel-token=D037444B12FC6A111DD30F6FDE301F47 --channel="3252.3.1570095223\1014995455" --mojo-platform-channel-handle=1980 /prefetch:1
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=0B51D063F9CF77828812F1C050F28289 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=C717127FDE49F4F13C05372856B30AEB --mojo-application-channel-token=0B51D063F9CF77828812F1C050F28289 --channel="3252.4.1294236277\1119200400" --mojo-platform-channel-handle=2728 /prefetch:1
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=F6F26D6319EEFC5777124EE32882004C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=D731E6D5DF2EAD116E7D844E1DCCF432 --mojo-application-channel-token=F6F26D6319EEFC5777124EE32882004C --channel="3252.5.164293585\761276903" --mojo-platform-channel-handle=3768 /prefetch:1
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\TrueKey\McTkSchedulerService.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=3B156BF46F7E13D61B9295D58D11EFFF --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=69894746707D146F271BC6F4C16974C9 --mojo-application-channel-token=3B156BF46F7E13D61B9295D58D11EFFF --channel="3252.6.1762344861\1708110323" --mojo-platform-channel-handle=4960 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=169B10BBC47126BC3F514172C87534EB --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=2D238EBE95250CB67EA29CA7CD0E58BA --mojo-application-channel-token=169B10BBC47126BC3F514172C87534EB --channel="3252.7.1709098511\1282477396" --mojo-platform-channel-handle=5752 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=DB9C2A1EC8BDD7532E1A5E4E692D121D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=A7A97DD4340620247AF189C340EE1B7E --mojo-application-channel-token=DB9C2A1EC8BDD7532E1A5E4E692D121D --channel="3252.8.972093343\1177314817" --mojo-platform-channel-handle=4188 /prefetch:1
"C:\Users\Michal\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UVS11 Preload"=C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-03-03 341488]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"vidc.pDAD"=prodad-codec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srv.sys
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-09-17 20:27:30 ----A---- C:\Windows\system32\iernonce.dll
2016-09-17 20:27:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\inseng.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\ie4uinit.exe
2016-09-17 20:27:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-09-17 20:27:26 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-09-17 20:27:25 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-09-17 20:27:25 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-09-17 20:27:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-09-17 20:27:22 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-09-17 20:27:17 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-09-17 20:27:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\urlmon.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\occache.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\iedkcs32.dll
2016-09-17 20:27:16 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-09-17 20:27:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-09-17 20:27:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-09-17 20:27:09 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-09-17 20:27:09 ----A---- C:\Windows\system32\msfeeds.dll
2016-09-17 20:27:09 ----A---- C:\Windows\system32\dxtrans.dll
2016-09-17 20:27:08 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-09-17 20:27:08 ----A---- C:\Windows\system32\iesetup.dll
2016-09-17 20:27:07 ----A---- C:\Windows\system32\ieapfltr.dll
2016-09-17 20:27:06 ----A---- C:\Windows\system32\iertutil.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-09-17 20:27:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-09-17 20:27:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-09-17 20:27:04 ----A---- C:\Windows\system32\vbscript.dll
2016-09-17 20:27:04 ----A---- C:\Windows\system32\jsproxy.dll
2016-09-17 20:27:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-09-17 20:27:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\ieui.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\ieframe.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\dxtmsft.dll
2016-09-17 20:27:01 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-09-17 20:27:01 ----A---- C:\Windows\system32\mshtmled.dll
2016-09-17 20:27:00 ----A---- C:\Windows\system32\webcheck.dll
2016-09-17 20:27:00 ----A---- C:\Windows\system32\ieUnatt.exe
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript9diag.dll
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript9.dll
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript.dll
2016-09-17 20:26:57 ----A---- C:\Windows\system32\wininet.dll
2016-09-17 20:26:56 ----A---- C:\Windows\system32\msrating.dll
2016-09-17 20:26:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-09-17 20:26:55 ----A---- C:\Windows\system32\mshtml.dll
2016-09-17 20:24:14 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-09-17 20:24:14 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wucltux.dll
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wuauclt.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wuapp.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-09-17 20:24:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-09-17 20:24:13 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-09-17 20:24:13 ----A---- C:\Windows\system32\wudriver.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuwebv.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuaueng.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuapi.dll
2016-09-17 20:24:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-09-17 20:24:10 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-09-17 20:24:10 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-09-17 20:24:10 ----A---- C:\Windows\system32\ntdll.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\KernelBase.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\kernel32.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\advapi32.dll
2016-09-17 20:24:08 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-09-17 20:24:06 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\wow64win.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\schannel.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\crypt32.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wups2.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wups.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wow64.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\winsrv.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-09-17 20:24:03 ----A---- C:\Windows\system32\srcore.dll
2016-09-17 20:24:03 ----A---- C:\Windows\system32\msi.dll
2016-09-17 20:24:03 ----A---- C:\Windows\system32\conhost.exe
2016-09-17 20:24:03 ----A---- C:\Windows\system32\appidsvc.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-09-17 20:24:02 ----A---- C:\Windows\system32\msiexec.exe
2016-09-17 20:24:02 ----A---- C:\Windows\system32\drivers\appid.sys
2016-09-17 20:24:01 ----A---- C:\Windows\system32\appidapi.dll
2016-09-17 20:24:00 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\wintrust.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-09-17 20:24:00 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-09-17 20:24:00 ----A---- C:\Windows\system32\csrsrv.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\cryptsvc.dll
2016-09-17 20:23:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-09-17 20:23:59 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-09-17 20:23:59 ----A---- C:\Windows\system32\cryptnet.dll
2016-09-17 20:23:59 ----A---- C:\Windows\system32\consent.exe
2016-09-17 20:23:58 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-09-17 20:23:58 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2016-09-17 20:23:58 ----A---- C:\Windows\system32\smss.exe
2016-09-17 20:23:58 ----A---- C:\Windows\system32\asycfilt.dll
2016-09-17 20:23:57 ----A---- C:\Windows\system32\rstrui.exe
2016-09-17 20:23:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-09-17 20:23:56 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-09-17 20:23:56 ----A---- C:\Windows\system32\ntvdm64.dll
2016-09-17 20:23:52 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-09-17 20:23:52 ----A---- C:\Windows\system32\srclient.dll
2016-09-17 20:23:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-09-17 20:23:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-09-17 20:23:51 ----A---- C:\Windows\system32\certcli.dll
2016-09-17 20:23:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-09-17 20:23:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-09-17 20:23:49 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-09-17 20:23:49 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-09-17 20:23:49 ----A---- C:\Windows\system32\wow64cpu.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-09-17 20:23:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-09-17 20:23:44 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-09-17 20:23:44 ----A---- C:\Windows\system32\apisetschema.dll
2016-09-17 20:23:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-09-17 20:23:43 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-09-17 20:23:43 ----A---- C:\Windows\SYSWOW64\user.exe
2016-09-17 20:23:43 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-09-17 20:23:43 ----A---- C:\Windows\system32\rpcrt4.dll
2016-09-17 20:23:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-09-17 20:23:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-09-17 20:23:42 ----A---- C:\Windows\system32\kerberos.dll
2016-09-17 20:23:42 ----A---- C:\Windows\system32\authui.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\wdigest.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\TSpkg.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\ncrypt.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\msv1_0.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\msihnd.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-09-17 20:23:39 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\sspicli.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\rpchttp.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-09-17 20:23:39 ----A---- C:\Windows\system32\appinfo.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-09-17 20:23:38 ----A---- C:\Windows\system32\sspisrv.dll
2016-09-17 20:23:38 ----A---- C:\Windows\system32\lsass.exe
2016-09-17 20:23:38 ----A---- C:\Windows\system32\cryptbase.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-09-17 20:23:37 ----A---- C:\Windows\system32\secur32.dll
2016-09-17 20:23:37 ----A---- C:\Windows\system32\credssp.dll
2016-09-17 20:23:37 ----A---- C:\Windows\system32\auditpol.exe
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msobjs.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msimsg.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msaudite.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\adtschema.dll
2016-09-17 20:22:58 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-09-17 20:22:58 ----A---- C:\Windows\system32\win32k.sys
2016-09-17 20:22:58 ----A---- C:\Windows\system32\user32.dll
2016-09-17 20:22:55 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-09-17 20:22:54 ----A---- C:\Windows\system32\drivers\netio.sys
2016-09-17 20:22:53 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-09-17 20:22:53 ----A---- C:\Windows\system32\inetcomm.dll
2016-09-17 20:22:52 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2016-09-17 20:22:52 ----A---- C:\Windows\system32\INETRES.dll
2016-09-17 20:22:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2016-09-17 20:22:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-09-17 20:22:48 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-09-17 20:22:48 ----A---- C:\Windows\system32\oleaut32.dll
2016-09-17 09:07:15 ----D---- C:\AdwCleaner
2016-09-16 19:35:42 ----D---- C:\rsit
2016-09-16 19:35:42 ----D---- C:\Program Files\trend micro
2016-09-16 19:18:17 ----D---- C:\ProgramData\TrueKey
2016-09-16 17:07:42 ----A---- C:\Program Files (x86)\GUTC17B.tmp
2016-08-21 20:36:18 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-08-21 20:36:18 ----A---- C:\Windows\system32\tzres.dll
======List of files/folders modified in the last 1 month======
2016-09-18 19:58:29 ----D---- C:\Windows\temp
2016-09-18 19:35:31 ----D---- C:\Windows\system32\config
2016-09-18 15:32:38 ----D---- C:\Users\Michal\AppData\Roaming\uTorrent
2016-09-18 11:12:25 ----D---- C:\Windows\System32
2016-09-18 11:12:25 ----D---- C:\Windows\inf
2016-09-18 11:12:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-09-18 11:07:31 ----D---- C:\Windows\winsxs
2016-09-18 11:03:25 ----D---- C:\Program Files\Microsoft Silverlight
2016-09-18 11:03:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-09-18 04:00:18 ----D---- C:\Windows\SYSWOW64\en-US
2016-09-18 04:00:18 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-09-18 04:00:18 ----D---- C:\Windows\SysWOW64
2016-09-18 04:00:18 ----D---- C:\Windows\system32\drivers
2016-09-18 04:00:18 ----D---- C:\Windows\system32\cs-CZ
2016-09-18 04:00:18 ----D---- C:\Program Files\Internet Explorer
2016-09-18 04:00:17 ----D---- C:\Windows\system32\en-US
2016-09-18 04:00:17 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-18 04:00:09 ----RD---- C:\Program Files
2016-09-18 04:00:09 ----D---- C:\Windows\system32\Boot
2016-09-18 04:00:09 ----D---- C:\Windows\AppPatch
2016-09-18 03:29:19 ----SHD---- C:\Windows\Installer
2016-09-18 03:29:17 ----D---- C:\ProgramData\Microsoft Help
2016-09-18 03:07:44 ----D---- C:\Windows\system32\MRT
2016-09-18 03:07:26 ----AC---- C:\Windows\system32\MRT.exe
2016-09-18 03:03:15 ----SHD---- C:\System Volume Information
2016-09-17 20:20:53 ----D---- C:\Windows\system32\catroot2
2016-09-17 10:57:42 ----D---- C:\Windows\Minidump
2016-09-17 10:57:38 ----D---- C:\Windows
2016-09-16 20:15:12 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-09-16 20:15:07 ----D---- C:\Windows\system32\Macromed
2016-09-16 20:15:06 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-16 19:27:09 ----D---- C:\Program Files (x86)
2016-09-16 19:26:47 ----D---- C:\Program Files (x86)\Google
2016-09-16 19:18:17 ----D---- C:\ProgramData
2016-09-16 19:15:28 ----D---- C:\Windows\Tasks
2016-09-16 19:15:28 ----D---- C:\Windows\system32\wfp
2016-09-16 19:15:28 ----D---- C:\Windows\system32\Tasks
2016-09-16 19:15:28 ----D---- C:\Program Files\TrueKey
2016-09-16 19:15:25 ----D---- C:\Windows\system32\wbem
2016-09-16 19:14:12 ----D---- C:\Windows\system32\DriverStore
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel Security
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\McAfee
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\AV
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files
2016-09-16 19:13:46 ----D---- C:\Program Files (x86)\Common Files
2016-09-16 19:13:45 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-16 19:13:41 ----D---- C:\Windows\registration
2016-09-16 19:12:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-09-14 19:57:36 ----D---- C:\Windows\Prefetch
2016-08-29 21:45:56 ----D---- C:\Users\Michal\AppData\Roaming\Skype
2016-08-25 16:47:36 ----D---- C:\Windows\rescache
2016-08-23 19:42:27 ----D---- C:\Windows\Microsoft.NET
2016-08-19 11:15:10 ----D---- C:\Users\Michal\AppData\Roaming\Audacity
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-06-28 84640]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-23 834544]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2013-04-11 106704]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 26968]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-06-28 263336]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-06-28 197288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-06-28 208552]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-06-28 61608]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-06-28 153248]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-03-19 3058168]
R3 CLMirrorDriver;CLMirrorDriver; C:\Windows\system32\DRIVERS\CLMirrorDriver.sys [2015-09-17 21264]
R3 ffusb2audio;Focusrite USB 2.0 Audio Driver; C:\Windows\system32\DRIVERS\ffusb2audio.sys [2013-09-25 127280]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 412264]
S3 aeaa7adk;aeaa7adk; C:\Windows\system32\drivers\aeaa7adk.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2013-05-04 113280]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-05-26 174680]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\Sandra.sys [2009-08-07 23112]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 Capture Device Service;Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-27 2139328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-06-10 2542216]
R2 GPAdjustTimeService;1st Atomic Time Adjust Time Service; C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [2009-06-19 467968]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc64.exe [2016-05-06 3026584]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-11 159336]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2016-05-08 45692456]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-10-20 614664]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-07-14 908256]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-07-14 15736]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-16 270016]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-09-01 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [2008-12-07 68760]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-07-14 86864]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2016-09-18 19:58:30
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 110 GB (23%) free of 477 GB
Total RAM: 3955 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:58:34, on 18.9.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18450)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Michal.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: 1st Atomic Time Adjust Time Service (GPAdjustTimeService) - Green Parrots Software - C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - CyberLink - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: TrueKeyServiceHelper - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9632 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\WLANExt.exe 35314448
\??\C:\Windows\system32\conhost.exe "20214359652117793198-730421985-14330582601152947083967774769-1319715732-907226813
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe"
"C:\Program Files\Intel\BCA\pabeSvc64.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0xb4
rundll32 "C:\Program Files\ESET\ESET Smart Security\x86\eplgHooks.dll",Proc32_HooksLoop
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3252.0.1615716137\2056928287" --mojo-application-channel-token=BCFA8FDDC6FACC10866BF13E320ACB86 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x0a29 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.5897 --gpu-driver-date=7-11-2010 --gpu-secondary-vendor-ids=0x0000 --gpu-secondary-device-ids=0x0000 --mojo-platform-channel-handle=1120 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=D037444B12FC6A111DD30F6FDE301F47 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=1B5CFAA5F7D18C11CAE5B59DD71AA446 --mojo-application-channel-token=D037444B12FC6A111DD30F6FDE301F47 --channel="3252.3.1570095223\1014995455" --mojo-platform-channel-handle=1980 /prefetch:1
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=0B51D063F9CF77828812F1C050F28289 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=C717127FDE49F4F13C05372856B30AEB --mojo-application-channel-token=0B51D063F9CF77828812F1C050F28289 --channel="3252.4.1294236277\1119200400" --mojo-platform-channel-handle=2728 /prefetch:1
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=F6F26D6319EEFC5777124EE32882004C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=D731E6D5DF2EAD116E7D844E1DCCF432 --mojo-application-channel-token=F6F26D6319EEFC5777124EE32882004C --channel="3252.5.164293585\761276903" --mojo-platform-channel-handle=3768 /prefetch:1
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\TrueKey\McTkSchedulerService.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=3B156BF46F7E13D61B9295D58D11EFFF --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=69894746707D146F271BC6F4C16974C9 --mojo-application-channel-token=3B156BF46F7E13D61B9295D58D11EFFF --channel="3252.6.1762344861\1708110323" --mojo-platform-channel-handle=4960 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=169B10BBC47126BC3F514172C87534EB --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=2D238EBE95250CB67EA29CA7CD0E58BA --mojo-application-channel-token=169B10BBC47126BC3F514172C87534EB --channel="3252.7.1709098511\1282477396" --mojo-platform-channel-handle=5752 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteEvaluatorGroup/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=DB9C2A1EC8BDD7532E1A5E4E692D121D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=A7A97DD4340620247AF189C340EE1B7E --mojo-application-channel-token=DB9C2A1EC8BDD7532E1A5E4E692D121D --channel="3252.8.972093343\1177314817" --mojo-platform-channel-handle=4188 /prefetch:1
"C:\Users\Michal\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-03-12 153136]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UVS11 Preload"=C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-03-03 341488]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"vidc.pDAD"=prodad-codec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srv.sys
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-09-17 20:27:30 ----A---- C:\Windows\system32\iernonce.dll
2016-09-17 20:27:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\inseng.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\ie4uinit.exe
2016-09-17 20:27:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-09-17 20:27:26 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-09-17 20:27:25 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-09-17 20:27:25 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-09-17 20:27:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-09-17 20:27:22 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-09-17 20:27:17 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-09-17 20:27:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\urlmon.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\occache.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\iedkcs32.dll
2016-09-17 20:27:16 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-09-17 20:27:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-09-17 20:27:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-09-17 20:27:09 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-09-17 20:27:09 ----A---- C:\Windows\system32\msfeeds.dll
2016-09-17 20:27:09 ----A---- C:\Windows\system32\dxtrans.dll
2016-09-17 20:27:08 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-09-17 20:27:08 ----A---- C:\Windows\system32\iesetup.dll
2016-09-17 20:27:07 ----A---- C:\Windows\system32\ieapfltr.dll
2016-09-17 20:27:06 ----A---- C:\Windows\system32\iertutil.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-09-17 20:27:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-09-17 20:27:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-09-17 20:27:04 ----A---- C:\Windows\system32\vbscript.dll
2016-09-17 20:27:04 ----A---- C:\Windows\system32\jsproxy.dll
2016-09-17 20:27:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-09-17 20:27:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\ieui.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\ieframe.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\dxtmsft.dll
2016-09-17 20:27:01 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-09-17 20:27:01 ----A---- C:\Windows\system32\mshtmled.dll
2016-09-17 20:27:00 ----A---- C:\Windows\system32\webcheck.dll
2016-09-17 20:27:00 ----A---- C:\Windows\system32\ieUnatt.exe
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript9diag.dll
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript9.dll
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript.dll
2016-09-17 20:26:57 ----A---- C:\Windows\system32\wininet.dll
2016-09-17 20:26:56 ----A---- C:\Windows\system32\msrating.dll
2016-09-17 20:26:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-09-17 20:26:55 ----A---- C:\Windows\system32\mshtml.dll
2016-09-17 20:24:14 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-09-17 20:24:14 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wucltux.dll
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wuauclt.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wuapp.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-09-17 20:24:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-09-17 20:24:13 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-09-17 20:24:13 ----A---- C:\Windows\system32\wudriver.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuwebv.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuaueng.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuapi.dll
2016-09-17 20:24:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-09-17 20:24:10 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-09-17 20:24:10 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-09-17 20:24:10 ----A---- C:\Windows\system32\ntdll.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\KernelBase.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\kernel32.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\advapi32.dll
2016-09-17 20:24:08 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-09-17 20:24:06 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\wow64win.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\schannel.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\crypt32.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wups2.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wups.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wow64.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\winsrv.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-09-17 20:24:03 ----A---- C:\Windows\system32\srcore.dll
2016-09-17 20:24:03 ----A---- C:\Windows\system32\msi.dll
2016-09-17 20:24:03 ----A---- C:\Windows\system32\conhost.exe
2016-09-17 20:24:03 ----A---- C:\Windows\system32\appidsvc.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-09-17 20:24:02 ----A---- C:\Windows\system32\msiexec.exe
2016-09-17 20:24:02 ----A---- C:\Windows\system32\drivers\appid.sys
2016-09-17 20:24:01 ----A---- C:\Windows\system32\appidapi.dll
2016-09-17 20:24:00 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\wintrust.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-09-17 20:24:00 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-09-17 20:24:00 ----A---- C:\Windows\system32\csrsrv.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\cryptsvc.dll
2016-09-17 20:23:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-09-17 20:23:59 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-09-17 20:23:59 ----A---- C:\Windows\system32\cryptnet.dll
2016-09-17 20:23:59 ----A---- C:\Windows\system32\consent.exe
2016-09-17 20:23:58 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-09-17 20:23:58 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2016-09-17 20:23:58 ----A---- C:\Windows\system32\smss.exe
2016-09-17 20:23:58 ----A---- C:\Windows\system32\asycfilt.dll
2016-09-17 20:23:57 ----A---- C:\Windows\system32\rstrui.exe
2016-09-17 20:23:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-09-17 20:23:56 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-09-17 20:23:56 ----A---- C:\Windows\system32\ntvdm64.dll
2016-09-17 20:23:52 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-09-17 20:23:52 ----A---- C:\Windows\system32\srclient.dll
2016-09-17 20:23:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-09-17 20:23:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-09-17 20:23:51 ----A---- C:\Windows\system32\certcli.dll
2016-09-17 20:23:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-09-17 20:23:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-09-17 20:23:49 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-09-17 20:23:49 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-09-17 20:23:49 ----A---- C:\Windows\system32\wow64cpu.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-09-17 20:23:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-09-17 20:23:44 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-09-17 20:23:44 ----A---- C:\Windows\system32\apisetschema.dll
2016-09-17 20:23:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-09-17 20:23:43 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-09-17 20:23:43 ----A---- C:\Windows\SYSWOW64\user.exe
2016-09-17 20:23:43 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-09-17 20:23:43 ----A---- C:\Windows\system32\rpcrt4.dll
2016-09-17 20:23:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-09-17 20:23:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-09-17 20:23:42 ----A---- C:\Windows\system32\kerberos.dll
2016-09-17 20:23:42 ----A---- C:\Windows\system32\authui.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\wdigest.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\TSpkg.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\ncrypt.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\msv1_0.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\msihnd.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-09-17 20:23:39 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\sspicli.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\rpchttp.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-09-17 20:23:39 ----A---- C:\Windows\system32\appinfo.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-09-17 20:23:38 ----A---- C:\Windows\system32\sspisrv.dll
2016-09-17 20:23:38 ----A---- C:\Windows\system32\lsass.exe
2016-09-17 20:23:38 ----A---- C:\Windows\system32\cryptbase.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-09-17 20:23:37 ----A---- C:\Windows\system32\secur32.dll
2016-09-17 20:23:37 ----A---- C:\Windows\system32\credssp.dll
2016-09-17 20:23:37 ----A---- C:\Windows\system32\auditpol.exe
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msobjs.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msimsg.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msaudite.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\adtschema.dll
2016-09-17 20:22:58 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-09-17 20:22:58 ----A---- C:\Windows\system32\win32k.sys
2016-09-17 20:22:58 ----A---- C:\Windows\system32\user32.dll
2016-09-17 20:22:55 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-09-17 20:22:54 ----A---- C:\Windows\system32\drivers\netio.sys
2016-09-17 20:22:53 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-09-17 20:22:53 ----A---- C:\Windows\system32\inetcomm.dll
2016-09-17 20:22:52 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2016-09-17 20:22:52 ----A---- C:\Windows\system32\INETRES.dll
2016-09-17 20:22:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2016-09-17 20:22:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-09-17 20:22:48 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-09-17 20:22:48 ----A---- C:\Windows\system32\oleaut32.dll
2016-09-17 09:07:15 ----D---- C:\AdwCleaner
2016-09-16 19:35:42 ----D---- C:\rsit
2016-09-16 19:35:42 ----D---- C:\Program Files\trend micro
2016-09-16 19:18:17 ----D---- C:\ProgramData\TrueKey
2016-09-16 17:07:42 ----A---- C:\Program Files (x86)\GUTC17B.tmp
2016-08-21 20:36:18 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-08-21 20:36:18 ----A---- C:\Windows\system32\tzres.dll
======List of files/folders modified in the last 1 month======
2016-09-18 19:58:29 ----D---- C:\Windows\temp
2016-09-18 19:35:31 ----D---- C:\Windows\system32\config
2016-09-18 15:32:38 ----D---- C:\Users\Michal\AppData\Roaming\uTorrent
2016-09-18 11:12:25 ----D---- C:\Windows\System32
2016-09-18 11:12:25 ----D---- C:\Windows\inf
2016-09-18 11:12:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-09-18 11:07:31 ----D---- C:\Windows\winsxs
2016-09-18 11:03:25 ----D---- C:\Program Files\Microsoft Silverlight
2016-09-18 11:03:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-09-18 04:00:18 ----D---- C:\Windows\SYSWOW64\en-US
2016-09-18 04:00:18 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-09-18 04:00:18 ----D---- C:\Windows\SysWOW64
2016-09-18 04:00:18 ----D---- C:\Windows\system32\drivers
2016-09-18 04:00:18 ----D---- C:\Windows\system32\cs-CZ
2016-09-18 04:00:18 ----D---- C:\Program Files\Internet Explorer
2016-09-18 04:00:17 ----D---- C:\Windows\system32\en-US
2016-09-18 04:00:17 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-18 04:00:09 ----RD---- C:\Program Files
2016-09-18 04:00:09 ----D---- C:\Windows\system32\Boot
2016-09-18 04:00:09 ----D---- C:\Windows\AppPatch
2016-09-18 03:29:19 ----SHD---- C:\Windows\Installer
2016-09-18 03:29:17 ----D---- C:\ProgramData\Microsoft Help
2016-09-18 03:07:44 ----D---- C:\Windows\system32\MRT
2016-09-18 03:07:26 ----AC---- C:\Windows\system32\MRT.exe
2016-09-18 03:03:15 ----SHD---- C:\System Volume Information
2016-09-17 20:20:53 ----D---- C:\Windows\system32\catroot2
2016-09-17 10:57:42 ----D---- C:\Windows\Minidump
2016-09-17 10:57:38 ----D---- C:\Windows
2016-09-16 20:15:12 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-09-16 20:15:07 ----D---- C:\Windows\system32\Macromed
2016-09-16 20:15:06 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-16 19:27:09 ----D---- C:\Program Files (x86)
2016-09-16 19:26:47 ----D---- C:\Program Files (x86)\Google
2016-09-16 19:18:17 ----D---- C:\ProgramData
2016-09-16 19:15:28 ----D---- C:\Windows\Tasks
2016-09-16 19:15:28 ----D---- C:\Windows\system32\wfp
2016-09-16 19:15:28 ----D---- C:\Windows\system32\Tasks
2016-09-16 19:15:28 ----D---- C:\Program Files\TrueKey
2016-09-16 19:15:25 ----D---- C:\Windows\system32\wbem
2016-09-16 19:14:12 ----D---- C:\Windows\system32\DriverStore
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel Security
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\McAfee
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\AV
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files
2016-09-16 19:13:46 ----D---- C:\Program Files (x86)\Common Files
2016-09-16 19:13:45 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-16 19:13:41 ----D---- C:\Windows\registration
2016-09-16 19:12:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-09-14 19:57:36 ----D---- C:\Windows\Prefetch
2016-08-29 21:45:56 ----D---- C:\Users\Michal\AppData\Roaming\Skype
2016-08-25 16:47:36 ----D---- C:\Windows\rescache
2016-08-23 19:42:27 ----D---- C:\Windows\Microsoft.NET
2016-08-19 11:15:10 ----D---- C:\Users\Michal\AppData\Roaming\Audacity
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-06-28 84640]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-23 834544]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2013-04-11 106704]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 26968]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-06-28 263336]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-06-28 197288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-06-28 208552]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-06-28 61608]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-06-28 153248]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-03-19 3058168]
R3 CLMirrorDriver;CLMirrorDriver; C:\Windows\system32\DRIVERS\CLMirrorDriver.sys [2015-09-17 21264]
R3 ffusb2audio;Focusrite USB 2.0 Audio Driver; C:\Windows\system32\DRIVERS\ffusb2audio.sys [2013-09-25 127280]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 412264]
S3 aeaa7adk;aeaa7adk; C:\Windows\system32\drivers\aeaa7adk.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2013-05-04 113280]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-05-26 174680]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\Sandra.sys [2009-08-07 23112]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 Capture Device Service;Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-27 2139328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-06-10 2542216]
R2 GPAdjustTimeService;1st Atomic Time Adjust Time Service; C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [2009-06-19 467968]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc64.exe [2016-05-06 3026584]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-11 159336]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2016-05-08 45692456]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-10-20 614664]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-07-14 908256]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-07-14 15736]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-16 270016]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-09-01 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [2008-12-07 68760]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-07-14 86864]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé pc a nelze přehrát videa na internetu
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Program Files (x86)\GUTC17B.tmp
:services
Bonjour Service
:reg
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]/64
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé pc a nelze přehrát videa na internetu
zde je nový log z RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2016-09-20 16:17:35
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 137 GB (29%) free of 477 GB
Total RAM: 3955 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:17:47, on 20.9.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18450)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Michal.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: 1st Atomic Time Adjust Time Service (GPAdjustTimeService) - Green Parrots Software - C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - CyberLink - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: TrueKeyServiceHelper - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9488 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\WLANExt.exe 31442752
\??\C:\Windows\system32\conhost.exe "-6474456491287895387-4385597301196618904706509891917440410-629990820244344434
C:\Windows\System32\spoolsv.exe
taskeng.exe {34451CFF-BECE-4746-9DFD-5C1BEC61650D}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe"
"C:\Program Files\Intel\BCA\pabeSvc64.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0xb4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1996.0.121605878\2047847843" --mojo-application-channel-token=DE3EA4616E734B5F23226DC32BA9F2A0 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x0a29 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.5897 --gpu-driver-date=7-11-2010 --gpu-secondary-vendor-ids=0x0000 --gpu-secondary-device-ids=0x0000 --mojo-platform-channel-handle=1100 --ignored=" --type=renderer " /prefetch:2
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=57D287281B9A067B10B9DF7D5B90EC5C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=9973CE755BF0CD51E7E4A4918DE2DBA2 --mojo-application-channel-token=57D287281B9A067B10B9DF7D5B90EC5C --channel="1996.3.1217385421\1030736619" --mojo-platform-channel-handle=4080 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=6E7DEFDD2AE02AA8E93B876B44DB3484 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=348C252E3506ECD6AED720EF9CF34D64 --mojo-application-channel-token=6E7DEFDD2AE02AA8E93B876B44DB3484 --channel="1996.4.1657670691\244582989" --mojo-platform-channel-handle=1852 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=949C6D58EF7F8D0554BD53C53CA4EA4E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=2C64CA5068F0EE69EDBE2B561FFABED2 --mojo-application-channel-token=949C6D58EF7F8D0554BD53C53CA4EA4E --channel="1996.5.437244628\1975546690" --mojo-platform-channel-handle=4620 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=64B42361F372F3555DBCCE3314930F62 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=CD99C837163C9EE2C9E340470FCF6890 --mojo-application-channel-token=64B42361F372F3555DBCCE3314930F62 --channel="1996.6.2017691900\955366476" --mojo-platform-channel-handle=5188 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=B51DADD5B60E22D0BF9B127B9D01A270 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=F5F874E9C9C19B0F91E039D8E3F12C5D --mojo-application-channel-token=B51DADD5B60E22D0BF9B127B9D01A270 --channel="1996.7.368446106\1951444244" --mojo-platform-channel-handle=5636 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=3ADEC5BFF7568976BC6504DB5F5A0A11 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=656AD341FE8FF713E5DE2BF7640FE5D4 --mojo-application-channel-token=3ADEC5BFF7568976BC6504DB5F5A0A11 --channel="1996.8.1328878970\536350268" --mojo-platform-channel-handle=5980 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=517D6B7E6F7FFE09B7AF622C2E3EC991 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=D5345416C419701BACA367E3B1363B3E --mojo-application-channel-token=517D6B7E6F7FFE09B7AF622C2E3EC991 --channel="1996.9.203135565\22398867" --mojo-platform-channel-handle=6296 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=D1FC0D7062E63C0688739C261F205EA8 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=523D3058DB1AB03C5E4BEBCD3860AB5E --mojo-application-channel-token=D1FC0D7062E63C0688739C261F205EA8 --channel="1996.10.417487423\2122916121" --mojo-platform-channel-handle=4248 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=D97EBA1F398AED7E3AD4FB94C4D79035 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=70C8E97164D8C3F68E638F9C673D877E --mojo-application-channel-token=D97EBA1F398AED7E3AD4FB94C4D79035 --channel="1996.11.1213490592\860422630" --mojo-platform-channel-handle=6864 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=8BFAD88492F08E2404AC5372F92B9098 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=B69DB3EA4FFA6178C496CF08CF65838D --mojo-application-channel-token=8BFAD88492F08E2404AC5372F92B9098 --channel="1996.12.1226245457\714039490" --mojo-platform-channel-handle=7220 /prefetch:1
"C:\Users\Michal\Downloads\RSITx64.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UVS11 Preload"=C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-03-03 341488]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"vidc.pDAD"=prodad-codec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-09-20 16:10:18 ----D---- C:\_OTM
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srv.sys
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-09-17 20:27:30 ----A---- C:\Windows\system32\iernonce.dll
2016-09-17 20:27:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\inseng.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\ie4uinit.exe
2016-09-17 20:27:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-09-17 20:27:26 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-09-17 20:27:25 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-09-17 20:27:25 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-09-17 20:27:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-09-17 20:27:22 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-09-17 20:27:17 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-09-17 20:27:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\urlmon.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\occache.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\iedkcs32.dll
2016-09-17 20:27:16 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-09-17 20:27:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-09-17 20:27:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-09-17 20:27:09 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-09-17 20:27:09 ----A---- C:\Windows\system32\msfeeds.dll
2016-09-17 20:27:09 ----A---- C:\Windows\system32\dxtrans.dll
2016-09-17 20:27:08 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-09-17 20:27:08 ----A---- C:\Windows\system32\iesetup.dll
2016-09-17 20:27:07 ----A---- C:\Windows\system32\ieapfltr.dll
2016-09-17 20:27:06 ----A---- C:\Windows\system32\iertutil.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-09-17 20:27:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-09-17 20:27:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-09-17 20:27:04 ----A---- C:\Windows\system32\vbscript.dll
2016-09-17 20:27:04 ----A---- C:\Windows\system32\jsproxy.dll
2016-09-17 20:27:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-09-17 20:27:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\ieui.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\ieframe.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\dxtmsft.dll
2016-09-17 20:27:01 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-09-17 20:27:01 ----A---- C:\Windows\system32\mshtmled.dll
2016-09-17 20:27:00 ----A---- C:\Windows\system32\webcheck.dll
2016-09-17 20:27:00 ----A---- C:\Windows\system32\ieUnatt.exe
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript9diag.dll
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript9.dll
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript.dll
2016-09-17 20:26:57 ----A---- C:\Windows\system32\wininet.dll
2016-09-17 20:26:56 ----A---- C:\Windows\system32\msrating.dll
2016-09-17 20:26:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-09-17 20:26:55 ----A---- C:\Windows\system32\mshtml.dll
2016-09-17 20:24:14 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-09-17 20:24:14 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wucltux.dll
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wuauclt.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wuapp.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-09-17 20:24:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-09-17 20:24:13 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-09-17 20:24:13 ----A---- C:\Windows\system32\wudriver.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuwebv.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuaueng.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuapi.dll
2016-09-17 20:24:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-09-17 20:24:10 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-09-17 20:24:10 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-09-17 20:24:10 ----A---- C:\Windows\system32\ntdll.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\KernelBase.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\kernel32.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\advapi32.dll
2016-09-17 20:24:08 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-09-17 20:24:06 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\wow64win.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\schannel.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\crypt32.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wups2.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wups.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wow64.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\winsrv.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-09-17 20:24:03 ----A---- C:\Windows\system32\srcore.dll
2016-09-17 20:24:03 ----A---- C:\Windows\system32\msi.dll
2016-09-17 20:24:03 ----A---- C:\Windows\system32\conhost.exe
2016-09-17 20:24:03 ----A---- C:\Windows\system32\appidsvc.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-09-17 20:24:02 ----A---- C:\Windows\system32\msiexec.exe
2016-09-17 20:24:02 ----A---- C:\Windows\system32\drivers\appid.sys
2016-09-17 20:24:01 ----A---- C:\Windows\system32\appidapi.dll
2016-09-17 20:24:00 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\wintrust.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-09-17 20:24:00 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-09-17 20:24:00 ----A---- C:\Windows\system32\csrsrv.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\cryptsvc.dll
2016-09-17 20:23:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-09-17 20:23:59 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-09-17 20:23:59 ----A---- C:\Windows\system32\cryptnet.dll
2016-09-17 20:23:59 ----A---- C:\Windows\system32\consent.exe
2016-09-17 20:23:58 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-09-17 20:23:58 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2016-09-17 20:23:58 ----A---- C:\Windows\system32\smss.exe
2016-09-17 20:23:58 ----A---- C:\Windows\system32\asycfilt.dll
2016-09-17 20:23:57 ----A---- C:\Windows\system32\rstrui.exe
2016-09-17 20:23:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-09-17 20:23:56 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-09-17 20:23:56 ----A---- C:\Windows\system32\ntvdm64.dll
2016-09-17 20:23:52 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-09-17 20:23:52 ----A---- C:\Windows\system32\srclient.dll
2016-09-17 20:23:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-09-17 20:23:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-09-17 20:23:51 ----A---- C:\Windows\system32\certcli.dll
2016-09-17 20:23:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-09-17 20:23:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-09-17 20:23:49 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-09-17 20:23:49 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-09-17 20:23:49 ----A---- C:\Windows\system32\wow64cpu.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-09-17 20:23:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-09-17 20:23:44 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-09-17 20:23:44 ----A---- C:\Windows\system32\apisetschema.dll
2016-09-17 20:23:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-09-17 20:23:43 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-09-17 20:23:43 ----A---- C:\Windows\SYSWOW64\user.exe
2016-09-17 20:23:43 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-09-17 20:23:43 ----A---- C:\Windows\system32\rpcrt4.dll
2016-09-17 20:23:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-09-17 20:23:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-09-17 20:23:42 ----A---- C:\Windows\system32\kerberos.dll
2016-09-17 20:23:42 ----A---- C:\Windows\system32\authui.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\wdigest.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\TSpkg.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\ncrypt.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\msv1_0.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\msihnd.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-09-17 20:23:39 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\sspicli.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\rpchttp.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-09-17 20:23:39 ----A---- C:\Windows\system32\appinfo.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-09-17 20:23:38 ----A---- C:\Windows\system32\sspisrv.dll
2016-09-17 20:23:38 ----A---- C:\Windows\system32\lsass.exe
2016-09-17 20:23:38 ----A---- C:\Windows\system32\cryptbase.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-09-17 20:23:37 ----A---- C:\Windows\system32\secur32.dll
2016-09-17 20:23:37 ----A---- C:\Windows\system32\credssp.dll
2016-09-17 20:23:37 ----A---- C:\Windows\system32\auditpol.exe
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msobjs.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msimsg.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msaudite.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\adtschema.dll
2016-09-17 20:22:58 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-09-17 20:22:58 ----A---- C:\Windows\system32\win32k.sys
2016-09-17 20:22:58 ----A---- C:\Windows\system32\user32.dll
2016-09-17 20:22:55 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-09-17 20:22:54 ----A---- C:\Windows\system32\drivers\netio.sys
2016-09-17 20:22:53 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-09-17 20:22:53 ----A---- C:\Windows\system32\inetcomm.dll
2016-09-17 20:22:52 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2016-09-17 20:22:52 ----A---- C:\Windows\system32\INETRES.dll
2016-09-17 20:22:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2016-09-17 20:22:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-09-17 20:22:48 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-09-17 20:22:48 ----A---- C:\Windows\system32\oleaut32.dll
2016-09-17 09:07:15 ----D---- C:\AdwCleaner
2016-09-16 19:35:42 ----D---- C:\rsit
2016-09-16 19:35:42 ----D---- C:\Program Files\trend micro
2016-09-16 19:18:17 ----D---- C:\ProgramData\TrueKey
2016-08-21 20:36:18 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-08-21 20:36:18 ----A---- C:\Windows\system32\tzres.dll
======List of files/folders modified in the last 1 month======
2016-09-20 16:17:39 ----D---- C:\Windows\temp
2016-09-20 16:12:46 ----D---- C:\Windows\system32\config
2016-09-20 16:10:19 ----D---- C:\Windows\Tasks
2016-09-20 16:10:19 ----D---- C:\Program Files (x86)
2016-09-19 18:52:00 ----SHD---- C:\System Volume Information
2016-09-19 18:21:03 ----D---- C:\Windows\rescache
2016-09-18 15:32:38 ----D---- C:\Users\Michal\AppData\Roaming\uTorrent
2016-09-18 11:12:25 ----D---- C:\Windows\System32
2016-09-18 11:12:25 ----D---- C:\Windows\inf
2016-09-18 11:12:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-09-18 11:07:31 ----D---- C:\Windows\winsxs
2016-09-18 11:03:25 ----D---- C:\Program Files\Microsoft Silverlight
2016-09-18 11:03:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-09-18 04:00:18 ----D---- C:\Windows\SYSWOW64\en-US
2016-09-18 04:00:18 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-09-18 04:00:18 ----D---- C:\Windows\SysWOW64
2016-09-18 04:00:18 ----D---- C:\Windows\system32\drivers
2016-09-18 04:00:18 ----D---- C:\Windows\system32\cs-CZ
2016-09-18 04:00:18 ----D---- C:\Program Files\Internet Explorer
2016-09-18 04:00:17 ----D---- C:\Windows\system32\en-US
2016-09-18 04:00:17 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-18 04:00:09 ----RD---- C:\Program Files
2016-09-18 04:00:09 ----D---- C:\Windows\system32\Boot
2016-09-18 04:00:09 ----D---- C:\Windows\AppPatch
2016-09-18 03:29:19 ----SHD---- C:\Windows\Installer
2016-09-18 03:29:17 ----D---- C:\ProgramData\Microsoft Help
2016-09-18 03:19:22 ----D---- C:\Windows\system32\MRT
2016-09-18 03:07:26 ----AC---- C:\Windows\system32\MRT.exe
2016-09-17 20:20:53 ----D---- C:\Windows\system32\catroot2
2016-09-17 10:57:42 ----D---- C:\Windows\Minidump
2016-09-17 10:57:38 ----D---- C:\Windows
2016-09-16 20:15:12 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-09-16 20:15:07 ----D---- C:\Windows\system32\Macromed
2016-09-16 20:15:06 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-16 19:26:47 ----D---- C:\Program Files (x86)\Google
2016-09-16 19:18:17 ----D---- C:\ProgramData
2016-09-16 19:15:28 ----D---- C:\Windows\system32\wfp
2016-09-16 19:15:28 ----D---- C:\Windows\system32\Tasks
2016-09-16 19:15:28 ----D---- C:\Program Files\TrueKey
2016-09-16 19:15:25 ----D---- C:\Windows\system32\wbem
2016-09-16 19:14:12 ----D---- C:\Windows\system32\DriverStore
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel Security
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\McAfee
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\AV
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files
2016-09-16 19:13:46 ----D---- C:\Program Files (x86)\Common Files
2016-09-16 19:13:45 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-16 19:13:41 ----D---- C:\Windows\registration
2016-09-16 19:12:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-09-14 19:57:36 ----D---- C:\Windows\Prefetch
2016-08-29 21:45:56 ----D---- C:\Users\Michal\AppData\Roaming\Skype
2016-08-23 19:42:27 ----D---- C:\Windows\Microsoft.NET
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-06-28 84640]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-23 834544]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2013-04-11 106704]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 26968]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-06-28 263336]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-06-28 197288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-06-28 208552]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-06-28 61608]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-06-28 153248]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-03-19 3058168]
R3 CLMirrorDriver;CLMirrorDriver; C:\Windows\system32\DRIVERS\CLMirrorDriver.sys [2015-09-17 21264]
R3 ffusb2audio;Focusrite USB 2.0 Audio Driver; C:\Windows\system32\DRIVERS\ffusb2audio.sys [2013-09-25 127280]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2013-05-04 113280]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-05-26 174680]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 412264]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 a47w9eu2;a47w9eu2; C:\Windows\system32\drivers\a47w9eu2.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\Sandra.sys [2009-08-07 23112]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 Capture Device Service;Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-27 2139328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-06-10 2542216]
R2 GPAdjustTimeService;1st Atomic Time Adjust Time Service; C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [2009-06-19 467968]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc64.exe [2016-05-06 3026584]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-11 159336]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2016-05-08 45692456]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-10-20 614664]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-07-14 908256]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-07-14 15736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-16 270016]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-09-01 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [2008-12-07 68760]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-07-14 86864]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2016-09-20 16:17:35
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 137 GB (29%) free of 477 GB
Total RAM: 3955 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:17:47, on 20.9.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18450)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Michal.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: 1st Atomic Time Adjust Time Service (GPAdjustTimeService) - Green Parrots Software - C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Service Installer TrueKey (InstallerService) - Unknown owner - C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe (file missing)
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) - Intel(R) Corporation - C:\Program Files\Intel\BCA\pabeSvc64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - CyberLink - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: TrueKeyServiceHelper - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9488 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\WLANExt.exe 31442752
\??\C:\Windows\system32\conhost.exe "-6474456491287895387-4385597301196618904706509891917440410-629990820244344434
C:\Windows\System32\spoolsv.exe
taskeng.exe {34451CFF-BECE-4746-9DFD-5C1BEC61650D}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe"
"C:\Program Files\Intel\BCA\pabeSvc64.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=53.0.2785.116 --handshake-handle=0xb4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1996.0.121605878\2047847843" --mojo-application-channel-token=DE3EA4616E734B5F23226DC32BA9F2A0 --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,11,13,14,15,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x0a29 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.5897 --gpu-driver-date=7-11-2010 --gpu-secondary-vendor-ids=0x0000 --gpu-secondary-device-ids=0x0000 --mojo-platform-channel-handle=1100 --ignored=" --type=renderer " /prefetch:2
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=57D287281B9A067B10B9DF7D5B90EC5C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=9973CE755BF0CD51E7E4A4918DE2DBA2 --mojo-application-channel-token=57D287281B9A067B10B9DF7D5B90EC5C --channel="1996.3.1217385421\1030736619" --mojo-platform-channel-handle=4080 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=6E7DEFDD2AE02AA8E93B876B44DB3484 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=348C252E3506ECD6AED720EF9CF34D64 --mojo-application-channel-token=6E7DEFDD2AE02AA8E93B876B44DB3484 --channel="1996.4.1657670691\244582989" --mojo-platform-channel-handle=1852 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=949C6D58EF7F8D0554BD53C53CA4EA4E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=2C64CA5068F0EE69EDBE2B561FFABED2 --mojo-application-channel-token=949C6D58EF7F8D0554BD53C53CA4EA4E --channel="1996.5.437244628\1975546690" --mojo-platform-channel-handle=4620 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=64B42361F372F3555DBCCE3314930F62 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=CD99C837163C9EE2C9E340470FCF6890 --mojo-application-channel-token=64B42361F372F3555DBCCE3314930F62 --channel="1996.6.2017691900\955366476" --mojo-platform-channel-handle=5188 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=B51DADD5B60E22D0BF9B127B9D01A270 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=F5F874E9C9C19B0F91E039D8E3F12C5D --mojo-application-channel-token=B51DADD5B60E22D0BF9B127B9D01A270 --channel="1996.7.368446106\1951444244" --mojo-platform-channel-handle=5636 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=3ADEC5BFF7568976BC6504DB5F5A0A11 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=656AD341FE8FF713E5DE2BF7640FE5D4 --mojo-application-channel-token=3ADEC5BFF7568976BC6504DB5F5A0A11 --channel="1996.8.1328878970\536350268" --mojo-platform-channel-handle=5980 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=517D6B7E6F7FFE09B7AF622C2E3EC991 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=D5345416C419701BACA367E3B1363B3E --mojo-application-channel-token=517D6B7E6F7FFE09B7AF622C2E3EC991 --channel="1996.9.203135565\22398867" --mojo-platform-channel-handle=6296 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=D1FC0D7062E63C0688739C261F205EA8 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=523D3058DB1AB03C5E4BEBCD3860AB5E --mojo-application-channel-token=D1FC0D7062E63C0688739C261F205EA8 --channel="1996.10.417487423\2122916121" --mojo-platform-channel-handle=4248 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=D97EBA1F398AED7E3AD4FB94C4D79035 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=70C8E97164D8C3F68E638F9C673D877E --mojo-application-channel-token=D97EBA1F398AED7E3AD4FB94C4D79035 --channel="1996.11.1213490592\860422630" --mojo-platform-channel-handle=6864 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,*BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,*PreconnectMore<PreconnectMore,*TranslateUI2016Q2<TranslateUI2016Q2,UsePasswordSeparatedSigninFlow<PasswordSeparatedSigninFlow --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableMediaRouter/Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PasswordSeparatedSigninFlow/Enabled/PasswordSmartBubble/3-Times/*PluginPowerSaverTiny/Default/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/MonthlyPrompt/SSLCommonNameMismatchHandling/Enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/SyncHttpContentCompression/Enabled/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_17/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/ --primordial-pipe-token=8BFAD88492F08E2404AC5372F92B9098 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --mojo-channel-token=B69DB3EA4FFA6178C496CF08CF65838D --mojo-application-channel-token=8BFAD88492F08E2404AC5372F92B9098 --channel="1996.12.1226245457\714039490" --mojo-platform-channel-handle=7220 /prefetch:1
"C:\Users\Michal\Downloads\RSITx64.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15 988400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UVS11 Preload"=C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-03-03 341488]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"vidc.pDAD"=prodad-codec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-09-20 16:10:18 ----D---- C:\_OTM
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-09-17 20:28:23 ----A---- C:\Windows\system32\drivers\srv.sys
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-09-17 20:27:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-09-17 20:27:30 ----A---- C:\Windows\system32\iernonce.dll
2016-09-17 20:27:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-09-17 20:27:28 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\inseng.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-09-17 20:27:28 ----A---- C:\Windows\system32\ie4uinit.exe
2016-09-17 20:27:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-09-17 20:27:26 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-09-17 20:27:25 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-09-17 20:27:25 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-09-17 20:27:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-09-17 20:27:22 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-09-17 20:27:17 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-09-17 20:27:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\urlmon.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\occache.dll
2016-09-17 20:27:17 ----A---- C:\Windows\system32\iedkcs32.dll
2016-09-17 20:27:16 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-09-17 20:27:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-09-17 20:27:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-09-17 20:27:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-09-17 20:27:09 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-09-17 20:27:09 ----A---- C:\Windows\system32\msfeeds.dll
2016-09-17 20:27:09 ----A---- C:\Windows\system32\dxtrans.dll
2016-09-17 20:27:08 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-09-17 20:27:08 ----A---- C:\Windows\system32\iesetup.dll
2016-09-17 20:27:07 ----A---- C:\Windows\system32\ieapfltr.dll
2016-09-17 20:27:06 ----A---- C:\Windows\system32\iertutil.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-09-17 20:27:05 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-09-17 20:27:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-09-17 20:27:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-09-17 20:27:04 ----A---- C:\Windows\system32\vbscript.dll
2016-09-17 20:27:04 ----A---- C:\Windows\system32\jsproxy.dll
2016-09-17 20:27:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-09-17 20:27:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\ieui.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\ieframe.dll
2016-09-17 20:27:02 ----A---- C:\Windows\system32\dxtmsft.dll
2016-09-17 20:27:01 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-09-17 20:27:01 ----A---- C:\Windows\system32\mshtmled.dll
2016-09-17 20:27:00 ----A---- C:\Windows\system32\webcheck.dll
2016-09-17 20:27:00 ----A---- C:\Windows\system32\ieUnatt.exe
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript9diag.dll
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript9.dll
2016-09-17 20:26:58 ----A---- C:\Windows\system32\jscript.dll
2016-09-17 20:26:57 ----A---- C:\Windows\system32\wininet.dll
2016-09-17 20:26:56 ----A---- C:\Windows\system32\msrating.dll
2016-09-17 20:26:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-09-17 20:26:55 ----A---- C:\Windows\system32\mshtml.dll
2016-09-17 20:24:14 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-09-17 20:24:14 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wucltux.dll
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wuauclt.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\wuapp.exe
2016-09-17 20:24:14 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-09-17 20:24:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-09-17 20:24:13 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-09-17 20:24:13 ----A---- C:\Windows\system32\wudriver.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuwebv.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuaueng.dll
2016-09-17 20:24:12 ----A---- C:\Windows\system32\wuapi.dll
2016-09-17 20:24:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-09-17 20:24:10 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-09-17 20:24:10 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-09-17 20:24:10 ----A---- C:\Windows\system32\ntdll.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\KernelBase.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\kernel32.dll
2016-09-17 20:24:09 ----A---- C:\Windows\system32\advapi32.dll
2016-09-17 20:24:08 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-09-17 20:24:06 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\wow64win.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\schannel.dll
2016-09-17 20:24:06 ----A---- C:\Windows\system32\crypt32.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-09-17 20:24:05 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wups2.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wups.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\wow64.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\winsrv.dll
2016-09-17 20:24:05 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-09-17 20:24:03 ----A---- C:\Windows\system32\srcore.dll
2016-09-17 20:24:03 ----A---- C:\Windows\system32\msi.dll
2016-09-17 20:24:03 ----A---- C:\Windows\system32\conhost.exe
2016-09-17 20:24:03 ----A---- C:\Windows\system32\appidsvc.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2016-09-17 20:24:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-09-17 20:24:02 ----A---- C:\Windows\system32\msiexec.exe
2016-09-17 20:24:02 ----A---- C:\Windows\system32\drivers\appid.sys
2016-09-17 20:24:01 ----A---- C:\Windows\system32\appidapi.dll
2016-09-17 20:24:00 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\wintrust.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-09-17 20:24:00 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-09-17 20:24:00 ----A---- C:\Windows\system32\csrsrv.dll
2016-09-17 20:24:00 ----A---- C:\Windows\system32\cryptsvc.dll
2016-09-17 20:23:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-09-17 20:23:59 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-09-17 20:23:59 ----A---- C:\Windows\system32\cryptnet.dll
2016-09-17 20:23:59 ----A---- C:\Windows\system32\consent.exe
2016-09-17 20:23:58 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-09-17 20:23:58 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2016-09-17 20:23:58 ----A---- C:\Windows\system32\smss.exe
2016-09-17 20:23:58 ----A---- C:\Windows\system32\asycfilt.dll
2016-09-17 20:23:57 ----A---- C:\Windows\system32\rstrui.exe
2016-09-17 20:23:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-09-17 20:23:56 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-09-17 20:23:56 ----A---- C:\Windows\system32\ntvdm64.dll
2016-09-17 20:23:52 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-09-17 20:23:52 ----A---- C:\Windows\system32\srclient.dll
2016-09-17 20:23:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-09-17 20:23:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-09-17 20:23:51 ----A---- C:\Windows\system32\certcli.dll
2016-09-17 20:23:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-09-17 20:23:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-09-17 20:23:50 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-09-17 20:23:49 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-09-17 20:23:49 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-09-17 20:23:49 ----A---- C:\Windows\system32\wow64cpu.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-09-17 20:23:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-09-17 20:23:47 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-09-17 20:23:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-09-17 20:23:45 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-09-17 20:23:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-09-17 20:23:44 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-09-17 20:23:44 ----A---- C:\Windows\system32\apisetschema.dll
2016-09-17 20:23:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-09-17 20:23:43 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-09-17 20:23:43 ----A---- C:\Windows\SYSWOW64\user.exe
2016-09-17 20:23:43 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-09-17 20:23:43 ----A---- C:\Windows\system32\rpcrt4.dll
2016-09-17 20:23:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-09-17 20:23:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-09-17 20:23:42 ----A---- C:\Windows\system32\kerberos.dll
2016-09-17 20:23:42 ----A---- C:\Windows\system32\authui.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-09-17 20:23:40 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\wdigest.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\TSpkg.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\ncrypt.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\msv1_0.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\msihnd.dll
2016-09-17 20:23:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-09-17 20:23:39 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\sspicli.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\rpchttp.dll
2016-09-17 20:23:39 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-09-17 20:23:39 ----A---- C:\Windows\system32\appinfo.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-09-17 20:23:38 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-09-17 20:23:38 ----A---- C:\Windows\system32\sspisrv.dll
2016-09-17 20:23:38 ----A---- C:\Windows\system32\lsass.exe
2016-09-17 20:23:38 ----A---- C:\Windows\system32\cryptbase.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-09-17 20:23:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-09-17 20:23:37 ----A---- C:\Windows\system32\secur32.dll
2016-09-17 20:23:37 ----A---- C:\Windows\system32\credssp.dll
2016-09-17 20:23:37 ----A---- C:\Windows\system32\auditpol.exe
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-09-17 20:23:36 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msobjs.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msimsg.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\msaudite.dll
2016-09-17 20:23:36 ----A---- C:\Windows\system32\adtschema.dll
2016-09-17 20:22:58 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-09-17 20:22:58 ----A---- C:\Windows\system32\win32k.sys
2016-09-17 20:22:58 ----A---- C:\Windows\system32\user32.dll
2016-09-17 20:22:55 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-09-17 20:22:54 ----A---- C:\Windows\system32\drivers\netio.sys
2016-09-17 20:22:53 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-09-17 20:22:53 ----A---- C:\Windows\system32\inetcomm.dll
2016-09-17 20:22:52 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2016-09-17 20:22:52 ----A---- C:\Windows\system32\INETRES.dll
2016-09-17 20:22:52 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2016-09-17 20:22:52 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-09-17 20:22:48 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-09-17 20:22:48 ----A---- C:\Windows\system32\oleaut32.dll
2016-09-17 09:07:15 ----D---- C:\AdwCleaner
2016-09-16 19:35:42 ----D---- C:\rsit
2016-09-16 19:35:42 ----D---- C:\Program Files\trend micro
2016-09-16 19:18:17 ----D---- C:\ProgramData\TrueKey
2016-08-21 20:36:18 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-08-21 20:36:18 ----A---- C:\Windows\system32\tzres.dll
======List of files/folders modified in the last 1 month======
2016-09-20 16:17:39 ----D---- C:\Windows\temp
2016-09-20 16:12:46 ----D---- C:\Windows\system32\config
2016-09-20 16:10:19 ----D---- C:\Windows\Tasks
2016-09-20 16:10:19 ----D---- C:\Program Files (x86)
2016-09-19 18:52:00 ----SHD---- C:\System Volume Information
2016-09-19 18:21:03 ----D---- C:\Windows\rescache
2016-09-18 15:32:38 ----D---- C:\Users\Michal\AppData\Roaming\uTorrent
2016-09-18 11:12:25 ----D---- C:\Windows\System32
2016-09-18 11:12:25 ----D---- C:\Windows\inf
2016-09-18 11:12:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-09-18 11:07:31 ----D---- C:\Windows\winsxs
2016-09-18 11:03:25 ----D---- C:\Program Files\Microsoft Silverlight
2016-09-18 11:03:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-09-18 04:00:18 ----D---- C:\Windows\SYSWOW64\en-US
2016-09-18 04:00:18 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-09-18 04:00:18 ----D---- C:\Windows\SysWOW64
2016-09-18 04:00:18 ----D---- C:\Windows\system32\drivers
2016-09-18 04:00:18 ----D---- C:\Windows\system32\cs-CZ
2016-09-18 04:00:18 ----D---- C:\Program Files\Internet Explorer
2016-09-18 04:00:17 ----D---- C:\Windows\system32\en-US
2016-09-18 04:00:17 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-18 04:00:09 ----RD---- C:\Program Files
2016-09-18 04:00:09 ----D---- C:\Windows\system32\Boot
2016-09-18 04:00:09 ----D---- C:\Windows\AppPatch
2016-09-18 03:29:19 ----SHD---- C:\Windows\Installer
2016-09-18 03:29:17 ----D---- C:\ProgramData\Microsoft Help
2016-09-18 03:19:22 ----D---- C:\Windows\system32\MRT
2016-09-18 03:07:26 ----AC---- C:\Windows\system32\MRT.exe
2016-09-17 20:20:53 ----D---- C:\Windows\system32\catroot2
2016-09-17 10:57:42 ----D---- C:\Windows\Minidump
2016-09-17 10:57:38 ----D---- C:\Windows
2016-09-16 20:15:12 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-09-16 20:15:07 ----D---- C:\Windows\system32\Macromed
2016-09-16 20:15:06 ----D---- C:\Windows\SYSWOW64\Macromed
2016-09-16 19:26:47 ----D---- C:\Program Files (x86)\Google
2016-09-16 19:18:17 ----D---- C:\ProgramData
2016-09-16 19:15:28 ----D---- C:\Windows\system32\wfp
2016-09-16 19:15:28 ----D---- C:\Windows\system32\Tasks
2016-09-16 19:15:28 ----D---- C:\Program Files\TrueKey
2016-09-16 19:15:25 ----D---- C:\Windows\system32\wbem
2016-09-16 19:14:12 ----D---- C:\Windows\system32\DriverStore
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel Security
2016-09-16 19:13:48 ----D---- C:\Program Files\Intel
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\McAfee
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files\AV
2016-09-16 19:13:48 ----D---- C:\Program Files\Common Files
2016-09-16 19:13:46 ----D---- C:\Program Files (x86)\Common Files
2016-09-16 19:13:45 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-16 19:13:41 ----D---- C:\Windows\registration
2016-09-16 19:12:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-09-14 19:57:36 ----D---- C:\Windows\Prefetch
2016-08-29 21:45:56 ----D---- C:\Users\Michal\AppData\Roaming\Skype
2016-08-23 19:42:27 ----D---- C:\Windows\Microsoft.NET
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-06-28 84640]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-23 834544]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2013-04-11 106704]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 26968]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-06-28 263336]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-06-28 197288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-06-28 208552]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-06-28 61608]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-06-28 153248]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-03-19 3058168]
R3 CLMirrorDriver;CLMirrorDriver; C:\Windows\system32\DRIVERS\CLMirrorDriver.sys [2015-09-17 21264]
R3 ffusb2audio;Focusrite USB 2.0 Audio Driver; C:\Windows\system32\DRIVERS\ffusb2audio.sys [2013-09-25 127280]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2013-05-04 113280]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-05-26 174680]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 412264]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 a47w9eu2;a47w9eu2; C:\Windows\system32\drivers\a47w9eu2.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\WNt500x64\Sandra.sys [2009-08-07 23112]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 Capture Device Service;Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-27 2139328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-06-10 2542216]
R2 GPAdjustTimeService;1st Atomic Time Adjust Time Service; C:\Program Files (x86)\1st Atomic Time\1stAtomicTimeAdjustTimeSvc.exe [2009-06-19 467968]
R2 IntelBCAsvc;Intel(R) Biometric and Context Agent Service; C:\Program Files\Intel\BCA\pabeSvc64.exe [2016-05-06 3026584]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-11 159336]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2016-05-08 45692456]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-10-20 614664]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-07-14 908256]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-07-14 15736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 InstallerService;Service Installer TrueKey; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-16 270016]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-09-01 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013a\RpcAgentSrv.exe [2008-12-07 68760]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-07-14 86864]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé pc a nelze přehrát videa na internetu
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé pc a nelze přehrát videa na internetu
prohlížeč už pracuje rychleji ale stále nefunguje stream u některých videí na internetu....píše to, že plugin se nepodařilo načíst....například videa na Novinky.cz nebo iVysílání na Česke televizi....oproti tomu youtube třeba funguje. A jak jsem říkal, Flash player už jsem přeinstalovával a nic se nestalo :/
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé pc a nelze přehrát videa na internetu
Zkuste aktualizovat SilverlightPlayer: http://www.microsoft.com/getsilverlight ... fault.aspx .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé pc a nelze přehrát videa na internetu
píše mi to nelze nainstalovat, stejná verze produktu je již nainstalována.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé pc a nelze přehrát videa na internetu
Zkuste obnovu systému k datu, kdy korketně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé pc a nelze přehrát videa na internetu
návrat systému do bodu obnovení jsem již zkoušel,....bohužel nic se nezměnilo :/
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalé pc a nelze přehrát videa na internetu
Zkuste Silverlight opravit/přeinstalovat: https://support.microsoft.com/cs-cz/kb/2608523 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalé pc a nelze přehrát videa na internetu
tak jsem zkoušel i tuto variantu a ani po přeinstalování mi některá videa z internetu nejdou přehrát....třeba to online vysílání ČT :/
Přispějete na provoz fóra?