Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:14:43, on 31.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files\trend micro\Michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] 1446273175
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Prevést cíl vazby do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Prevést cíl vazby do existujícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Prevést do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridat do stávajícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_host.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CxUtilSvc - Conexant Systems, Inc. - C:\Program Files\Conexant\SA3\CxUtilSvc.exe
O23 - Service: Dell Data Vault (DellDataVault) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVault.exe
O23 - Service: Dell Data Vault Wizard (DellDataVaultWiz) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) - Dell Inc. - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivní kontrolu. Děkuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o preventivní kontrolu. Děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2015-11-01 13:09:32
Microsoft Windows 10 Pro
System drive C: has 508 GB (73%) free of 700 GB
Total RAM: 8067 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:09:35, on 1.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files\trend micro\Michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Michal\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_2\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Michal\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_2\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Prevést cíl vazby do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Prevést cíl vazby do existujícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Prevést do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridat do stávajícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_host.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CxUtilSvc - Conexant Systems, Inc. - C:\Program Files\Conexant\SA3\CxUtilSvc.exe
O23 - Service: Dell Data Vault (DellDataVault) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVault.exe
O23 - Service: Dell Data Vault Wizard (DellDataVaultWiz) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) - Dell Inc. - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14891 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Conexant\SA3\CxUtilSvc.exe"
"C:\Program Files\Elantech\ETDService.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
dashost.exe {6fd11616-8fd1-4102-a460d486d3b690d2}
C:\WINDOWS\system32\WLANExt.exe 212043955344
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files\DigitalPersona\Bin\DpHostW.exe"
C:\WINDOWS\system32\mqsvc.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE" "C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe"
C:\Windows\system32\vcsFPService.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDGesture.exe"
"C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\DigitalPersona\Bin\DPAgent.exe"
"C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE"
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\Conexant\SA3\SmartAudio3.exe" /sa3 /nv:3.0+ /dne /s
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
C:\WINDOWS\system32\wbem\wmiprvse.exe
"fontdrvhost.exe"
"C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE15\CSISYN~1.EXE" -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe"
"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Dell\DellDataVault\DellDataVault.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe" -ServerName:RemindersServer
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k SDRSVC
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13821.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Dell\SupportAssist\uaclauncher.exe" -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="9948.0.229253894\230501138" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,22,50 --gpu-vendor-id=0x1002 --gpu-device-id=0x6840 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1101.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.3.517757186\1164732124" --font-cache-shared-handle=2504 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.4.234962622\718218581" --font-cache-shared-handle=2828 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.5.692804923\1595351931" --font-cache-shared-handle=3060 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.6.203532331\286018407" --font-cache-shared-handle=3172 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.7.1911053628\2015222075" --font-cache-shared-handle=3200 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.9.1166973170\2091124607" --font-cache-shared-handle=3352 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.11.1009563318\620260461" --font-cache-shared-handle=2412 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/*SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.12.2038540841\1105310464" --font-cache-shared-handle=5692 /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe18_ Global\UsGthrCtrlFltPipeMssGthrPipe18 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 616 620 628 8192 624
"C:\Users\Michal\Downloads\RSITx64 (1).exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cf2a4bc848f3f7.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf6b416f89bdba.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d040bbc568ccf2.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1248320584-61496903-985927887-1000Core.job - C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1248320584-61496903-985927887-1000UA.job - C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.5.3&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\searchplugins\
icqplugin.gif
icqplugin.src
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-09-29 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2015-09-15 2339032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-09-29 153768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2012-06-14 175776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL [2015-09-15 1733240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2012-06-14 4372120]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-08-04 3348200]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"Broadcom Wireless Manager UI"=C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [2012-11-12 7520768]
"SmartAudio"=C:\Program Files\CONEXANT\SA3\SACpl.exe [2012-02-21 1654400]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2013-02-01 5762408]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2015-10-12 22568216]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2015-09-11 1403192]
"Google Update"=C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe [2015-10-12 144200]
"OneDrive"=C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-10-31 548552]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Michal\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_2\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\0A14387EAFBAB88ACCEEB47F832213FBAA886F44._service_run]
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-10-27 799560]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2013-05-08 642664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service]
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2013-02-15 516928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTibMounterMonitor]
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-01-10 1103424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2013-05-08 44128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-11-20 1021128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx]
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2012-10-09 1637528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-10-19 8551848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell DataSafe Online]
C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell Webcam Central]
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2012-03-07 577024]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSystemDetect]
C:\Users\Michal\AppData\Local\Apps\2.0\HL40JNMC.P6X\Y88GAG2Q.V96\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDCtrl]
C:\Program Files\Elantech\ETDCtrl.exe [2015-08-04 3348200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp]
C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2015-09-11 1403192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDInspector.exe]
C:\Program Files (x86)\Hard Drive Inspector\HDInspector.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-11-30 56128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lync]
C:\Program Files\Microsoft Office\Office15\lync.exe [2015-09-29 27885736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerDVD14Agent]
C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PrnStatusMX]
C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe [2012-07-04 1240064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartAudio]
C:\Program Files\CONEXANT\SA3\SACpl.exe [2012-02-21 1654400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16]
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk]
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Michal^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HDDlife.lnk]
C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Michal^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~3\Office12\ONENOTEM.EXE /tsr []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-12-21 291280]
""= []
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-07-25 468112]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-06 767176]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SppExtComObj.exe]
"Debugger="SppExtComObjPatcher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.ac3filter"=ac3filter64.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-01 11:17:19 ----HD---- C:\OneDriveTemp
2015-10-30 03:08:11 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-30 03:08:09 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-30 03:08:07 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-10-30 03:08:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-10-30 03:08:03 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 03:08:01 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-10-30 03:08:01 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-10-30 03:08:00 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-10-30 03:08:00 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-30 03:08:00 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-30 03:08:00 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 03:07:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2015-10-30 03:07:58 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 03:07:58 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 03:07:58 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 03:07:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-10-30 03:07:57 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-10-30 03:07:57 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-10-30 03:07:56 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-10-30 03:07:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2015-10-30 03:07:53 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2015-10-30 03:07:53 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 03:07:53 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-10-29 01:55:00 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-10-29 01:55:00 ----A---- C:\WINDOWS\system32\drivers\TeeDriverx64.sys
2015-10-28 14:20:45 ----HDC---- C:\ProgramData\{AA6BF06E-316C-487A-9BC2-5F06A43C56B1}
2015-10-28 12:39:09 ----D---- C:\ProgramData\ATI
2015-10-21 23:04:53 ----D---- C:\ProgramData\ESET
2015-10-13 19:18:39 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2015-10-13 19:18:39 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 18:36:06 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-13 18:36:06 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 18:36:06 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-13 18:36:05 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 18:36:04 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-13 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-10-13 18:36:03 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 18:36:03 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 18:36:00 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-13 18:36:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-10-13 18:35:59 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-10-13 18:35:59 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\jscript.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-13 18:35:55 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-13 18:35:55 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-13 18:35:54 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-13 18:35:53 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 18:35:53 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-13 18:35:53 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-11 04:09:23 ----D---- C:\Users\Michal\AppData\Roaming\Prodiance
2015-10-10 11:32:12 ----D---- C:\ProgramData\Microsoft OneDrive
2015-10-08 19:32:00 ----A---- C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-10-08 19:31:59 ----A---- C:\WINDOWS\SYSWOW64\Intel_OpenCL_ICD32.dll
2015-10-08 19:31:59 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-10-08 19:31:59 ----A---- C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\SYSWOW64\iglhsip32.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\SYSWOW64\iglhcp32.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\iglhsip64.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\iglhcp64.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxTray.exe
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxext.exe
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxCoIn_v4276.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2015-10-08 19:31:54 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2015-10-08 19:31:54 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\SYSWOW64\igdusc32.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\SYSWOW64\igdumdim32.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\system32\igdmd64.dll
2015-10-08 19:31:52 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\igdde64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\igdail64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2015-10-08 19:31:50 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2015-10-08 19:31:50 ----A---- C:\WINDOWS\system32\IccLibDll_x64.dll
2015-10-08 19:31:50 ----A---- C:\WINDOWS\system32\Gfxv4_0.exe
2015-10-08 19:31:50 ----A---- C:\WINDOWS\system32\Gfxv2_0.exe
2015-10-08 19:31:50 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\difx64.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\CustomModeApp.exe
2015-10-08 16:09:47 ----D---- C:\Program Files\Microsoft.NET
2015-10-08 14:33:56 ----A---- C:\WINDOWS\system32\SppExtComObjPatcher.exe
2015-10-08 14:33:56 ----A---- C:\WINDOWS\system32\SppExtComObjHook.dll
2015-10-08 14:25:13 ----D---- C:\Program Files\Common Files\DESIGNER
2015-10-08 14:24:55 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2015-10-08 14:24:16 ----D---- C:\Program Files\Microsoft SQL Server
2015-10-08 14:22:51 ----D---- C:\Program Files\Microsoft Analysis Services
2015-10-08 14:22:51 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2015-10-08 14:22:34 ----RHD---- C:\MSOCache
2015-10-07 05:16:32 ----A---- C:\WINDOWS\system32\drivers\ekbdflt.sys
======List of files/folders modified in the last 1 month======
2015-11-01 13:09:34 ----D---- C:\Program Files\trend micro
2015-11-01 13:09:23 ----D---- C:\WINDOWS\Temp
2015-11-01 12:59:25 ----D---- C:\WINDOWS\System32
2015-11-01 12:24:55 ----D---- C:\WINDOWS\Prefetch
2015-11-01 12:23:23 ----RD---- C:\Program Files (x86)
2015-11-01 12:23:21 ----D---- C:\Users\Michal\AppData\Roaming\GHISLER
2015-11-01 12:22:24 ----D---- C:\Program Files (x86)\SpeedFan
2015-11-01 12:18:07 ----D---- C:\WINDOWS\system32\sru
2015-11-01 12:04:11 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-01 12:04:11 ----D---- C:\Windows
2015-11-01 11:52:36 ----RD---- C:\Program Files
2015-11-01 11:46:47 ----SHD---- C:\WINDOWS\Installer
2015-11-01 11:46:46 ----D---- C:\Program Files (x86)\Garmin
2015-11-01 11:46:46 ----D---- C:\Garmin
2015-11-01 11:46:34 ----SHD---- C:\System Volume Information
2015-11-01 11:43:31 ----D---- C:\WINDOWS\INF
2015-11-01 11:43:30 ----D---- C:\WINDOWS\debug
2015-11-01 11:41:22 ----D---- C:\WINDOWS\system32\drivers
2015-11-01 08:37:47 ----D---- C:\WINDOWS\rescache
2015-10-31 22:03:05 ----HD---- C:\Program Files\WindowsApps
2015-10-31 21:40:45 ----D---- C:\WINDOWS\AppReadiness
2015-10-31 14:30:19 ----D---- C:\Users\Michal\AppData\Roaming\AIMP3
2015-10-31 14:11:38 ----D---- C:\WINDOWS\Microsoft.NET
2015-10-30 20:00:45 ----D---- C:\ProgramData\PCDr
2015-10-30 12:41:15 ----RSD---- C:\WINDOWS\assembly
2015-10-30 12:31:53 ----D---- C:\WINDOWS\system32\config
2015-10-30 11:16:11 ----D---- C:\Program Files (x86)\Dell
2015-10-30 11:16:10 ----D---- C:\ProgramData\Dell
2015-10-30 08:24:08 ----D---- C:\WINDOWS\system32\Tasks
2015-10-30 08:09:09 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-30 03:15:31 ----D---- C:\WINDOWS\WinSxS
2015-10-30 03:12:43 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-10-30 03:12:43 ----D---- C:\WINDOWS\SysWOW64
2015-10-30 03:12:42 ----D---- C:\WINDOWS\system32\cs-CZ
2015-10-30 03:12:42 ----D---- C:\WINDOWS\system32\appraiser
2015-10-30 03:12:41 ----D---- C:\WINDOWS\AppPatch
2015-10-30 03:12:35 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-30 03:09:09 ----D---- C:\WINDOWS\CbsTemp
2015-10-30 03:07:03 ----D---- C:\WINDOWS\system32\catroot2
2015-10-29 11:54:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-29 07:54:47 ----D---- C:\WINDOWS\Logs
2015-10-29 02:16:33 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-29 01:55:08 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-10-28 14:20:45 ----HD---- C:\ProgramData
2015-10-28 12:36:59 ----D---- C:\Program Files\AMD
2015-10-28 12:36:51 ----D---- C:\ProgramData\Package Cache
2015-10-28 11:59:34 ----D---- C:\WINDOWS\system32\NDF
2015-10-28 11:55:09 ----D---- C:\Program Files\CCleaner
2015-10-28 11:10:14 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-27 12:05:01 ----RD---- C:\Users
2015-10-23 10:34:58 ----D---- C:\Users\Michal\AppData\Roaming\YouTube Downloader
2015-10-22 20:01:38 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-21 23:05:33 ----HD---- C:\WINDOWS\ELAMBKUP
2015-10-21 23:03:48 ----D---- C:\Program Files\ESET
2015-10-19 17:17:25 ----D---- C:\Program Files (x86)\YTD
2015-10-17 14:05:07 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-17 11:57:38 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-10-16 04:10:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-10-13 19:19:24 ----D---- C:\Program Files (x86)\Realtek
2015-10-13 18:59:37 ----D---- C:\WINDOWS\system32\Boot
2015-10-13 18:59:36 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-13 18:56:24 ----D---- C:\WINDOWS\system32\MRT
2015-10-13 18:50:25 ----A---- C:\WINDOWS\system32\MRT.exe
2015-10-13 18:49:42 ----D---- C:\ProgramData\Microsoft Help
2015-10-13 18:45:54 ----A---- C:\WINDOWS\win.ini
2015-10-12 17:41:37 ----D---- C:\WINDOWS\Tasks
2015-10-09 05:04:44 ----D---- C:\Program Files (x86)\AIMP3
2015-10-08 19:38:30 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-10-08 19:33:54 ----D---- C:\Program Files (x86)\Intel
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxLHM.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxHK.exe
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxexps.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxEM.exe
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDI.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDH.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxCUIService.exe
2015-10-08 19:31:53 ----A---- C:\WINDOWS\system32\igdusc64.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\system32\igdumdim64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\igd10iumd64.dll
2015-10-08 16:09:47 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-10-08 16:09:29 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-08 14:25:25 ----RSD---- C:\WINDOWS\Fonts
2015-10-08 14:25:18 ----D---- C:\WINDOWS\ShellNew
2015-10-08 14:25:13 ----D---- C:\Program Files\Common Files
2015-10-08 14:24:41 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-10-08 14:24:16 ----D---- C:\Program Files\Microsoft Office
2015-10-08 14:23:16 ----D---- C:\Program Files\Common Files\System
2015-10-08 14:22:45 ----D---- C:\Program Files (x86)\Microsoft Office
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem127.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-07-31 82696]
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-07-14 251632]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-09-23 69840]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2013-06-02 108832]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-11-19 652344]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2013-06-02 233760]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-09-23 264040]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-09-23 186784]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-09-23 206312]
R1 EpfwLWF;@oem136.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-09-23 52872]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2015-10-07 142976]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-09-01 21655080]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-09-01 686120]
R3 bcbtums;@oem121.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
R3 BCM42RLY;BCM42RLY; C:\WINDOWS\system32\drivers\BCM42RLY.sys [2012-11-12 22632]
R3 BCM43XX;@oem96.inf,%BCM43XX_Service_DispName%;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\WINDOWS\system32\DRIVERS\bcmwl664.sys [2012-03-21 5443648]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 CnxtHdAudService;@oem0.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-04-06 1604736]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\CtClsFlt.sys [2011-06-16 176000]
R3 DDDriver;DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [2015-01-30 23760]
R3 DellProf;DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [2015-05-22 24240]
R3 ETD;@oem128.inf,%PS2DeviceDesc%;Dell Touchpad; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-08-04 469080]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-08 3797424]
R3 IntcDAud;@oem132.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem124.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;@oem139.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-12 99288]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-04 175104]
R3 rt640x64;@oem133.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528]
R3 RTSUER;@oem117.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-09-23 14976]
S0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2012-02-02 568600]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\WINDOWS\system32\DRIVERS\stdcfltn.sys [2011-07-15 22128]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 afcdp;afcdp; C:\WINDOWS\system32\DRIVERS\afcdp.sys [2013-06-02 367200]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-09-17 929280]
S3 btwampfl;@oem121.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 grmnusb;grmnusb; C:\WINDOWS\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 intaud_WaveExtensible;@oem123.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 iscFlash;iscFlash; \??\C:\Users\Michal\AppData\Local\Temp\7zS911D.tmp\iscflashx64.sys []
S3 kiox_ff_driver;@oem120.inf,%kiox_ff_driver.SVCDESC%;Kionix freefall detection service; C:\WINDOWS\System32\drivers\kiox_ff_driver.sys [2015-06-15 41456]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-10-05 64216]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 nmwcdnsucx64;@oem130.inf,%ServiceDisplayName%;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsucx64.sys [2015-09-16 12800]
S3 nmwcdnsux64;@oem99.inf,%ServiceDisplayName%;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsux64.sys [2015-09-16 171008]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-04 934752]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
S3 RTLE8023x64;Realtek 10/100/1000 PCI-E NIC Family NDIS XP(x64) Driver; C:\WINDOWS\system32\DRIVERS\Rtenic64.sys [2012-03-19 334952]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-09-01 265776]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 BcmBtRSupport;@oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 CxUtilSvc;CxUtilSvc; C:\Program Files\Conexant\SA3\CxUtilSvc.exe [2013-04-06 109184]
R2 DellDataVault;Dell Data Vault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2015-09-11 2574168]
R2 DellDataVaultWiz;Dell Data Vault Wizard; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [2015-09-11 201560]
R2 DpHost;Authentication Service; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2011-12-15 458064]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2015-10-09 2505472]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-08-04 144104]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2012-09-07 2464400]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-08 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-12 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-12 390616]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-04 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2014-04-30 337776]
R2 SupportAssistAgent;Dell SupportAssist Agent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [2015-09-30 21160]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-08 291744]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-01-05 651720]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2015-09-11 762272]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_host.exe [2015-09-01 69448]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-17 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-04 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S4 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2013-02-15 1143720]
S4 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2013-06-02 3783672]
S4 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2014-01-13 198664]
S4 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S4 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-11-19 14904]
S4 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-03-20 7084672]
-----------------EOF-----------------
Run by Michal at 2015-11-01 13:09:32
Microsoft Windows 10 Pro
System drive C: has 508 GB (73%) free of 700 GB
Total RAM: 8067 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:09:35, on 1.11.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files\trend micro\Michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Michal\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_2\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Michal\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_2\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Prevést cíl vazby do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Prevést cíl vazby do existujícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Prevést do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridat do stávajícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_host.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CxUtilSvc - Conexant Systems, Inc. - C:\Program Files\Conexant\SA3\CxUtilSvc.exe
O23 - Service: Dell Data Vault (DellDataVault) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVault.exe
O23 - Service: Dell Data Vault Wizard (DellDataVaultWiz) - Dell Inc. - C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) - Dell Inc. - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: DW WLAN Tray Service (wltrysvc) - Dell Inc. - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14891 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Conexant\SA3\CxUtilSvc.exe"
"C:\Program Files\Elantech\ETDService.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
dashost.exe {6fd11616-8fd1-4102-a460d486d3b690d2}
C:\WINDOWS\system32\WLANExt.exe 212043955344
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files\DigitalPersona\Bin\DpHostW.exe"
C:\WINDOWS\system32\mqsvc.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE" "C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe"
C:\Windows\system32\vcsFPService.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDGesture.exe"
"C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\DigitalPersona\Bin\DPAgent.exe"
"C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE"
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files\Conexant\SA3\SmartAudio3.exe" /sa3 /nv:3.0+ /dne /s
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
C:\WINDOWS\system32\wbem\wmiprvse.exe
"fontdrvhost.exe"
"C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE15\CSISYN~1.EXE" -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe"
"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Dell\DellDataVault\DellDataVault.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe" -ServerName:RemindersServer
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k SDRSVC
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13821.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Dell\SupportAssist\uaclauncher.exe" -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="9948.0.229253894\230501138" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,22,50 --gpu-vendor-id=0x1002 --gpu-device-id=0x6840 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1101.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.3.517757186\1164732124" --font-cache-shared-handle=2504 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.4.234962622\718218581" --font-cache-shared-handle=2828 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.5.692804923\1595351931" --font-cache-shared-handle=3060 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.6.203532331\286018407" --font-cache-shared-handle=3172 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.7.1911053628\2015222075" --font-cache-shared-handle=3200 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.9.1166973170\2091124607" --font-cache-shared-handle=3352 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.11.1009563318\620260461" --font-cache-shared-handle=2412 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Enabled/*AutofillClassifier/Control/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once/*BackgroundTracing/default/CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Control_Enabled/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*LocalNTPSuggestionsService/Control/MaterialDesignDownloads/Control/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/DevControlR6/*OutOfProcessPac/Default/PasswordBranding/Disabled/*PasswordGeneration/Enabled/PasswordLinkInSettings/Enabled/PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/Disabled/*RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Enabled/SafeBrowsingReportPhishingErrorLink/Control/SafeBrowsingSocialEngineeringStrings/Enabled/*SafeBrowsingUpdateFrequency/Default/*SdchPersistence/Enabled/*SimpleCacheTrial/ExperimentControl/*SiteEngagement/Default/SlimmingPaint/DisableSlimmingPaint/StackProfiling/Report profiles/StunProbeTrial2/Default/SyncBackingDatabase32K/Enabled/TabSyncByRecency/Enabled/*TriggeredResetFieldTrial/On/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Control/VoiceTrigger/Install/WebRTC-LocalIPPermissionCheck/Disabled/WebRTC-PeerConnectionDTLS1.2/Enabled/WebRTC-StunInterPacketDelay/Default/*WebRTC-SupportVP9/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="9948.12.2038540841\1105310464" --font-cache-shared-handle=5692 /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe18_ Global\UsGthrCtrlFltPipeMssGthrPipe18 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 616 620 628 8192 624
"C:\Users\Michal\Downloads\RSITx64 (1).exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cf2a4bc848f3f7.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf6b416f89bdba.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1d040bbc568ccf2.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1248320584-61496903-985927887-1000Core.job - C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1248320584-61496903-985927887-1000UA.job - C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.5.3&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\searchplugins\
icqplugin.gif
icqplugin.src
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-09-29 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2015-09-15 2339032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-09-29 153768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2012-06-14 175776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL [2015-09-15 1733240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2012-06-14 4372120]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-08-04 3348200]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"Broadcom Wireless Manager UI"=C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [2012-11-12 7520768]
"SmartAudio"=C:\Program Files\CONEXANT\SA3\SACpl.exe [2012-02-21 1654400]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2013-02-01 5762408]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2015-10-12 22568216]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2015-09-11 1403192]
"Google Update"=C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe [2015-10-12 144200]
"OneDrive"=C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-10-31 548552]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Michal\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_2\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\0A14387EAFBAB88ACCEEB47F832213FBAA886F44._service_run]
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-10-27 799560]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2013-05-08 642664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service]
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2013-02-15 516928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTibMounterMonitor]
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-01-10 1103424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2013-05-08 44128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-11-20 1021128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx]
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2012-10-09 1637528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-10-19 8551848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell DataSafe Online]
C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell Webcam Central]
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [2012-03-07 577024]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSystemDetect]
C:\Users\Michal\AppData\Local\Apps\2.0\HL40JNMC.P6X\Y88GAG2Q.V96\dell..tion_0f612f649c4a10af_0005.0008_a4204ff54ae5d3ac\DellSystemDetect.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDCtrl]
C:\Program Files\Elantech\ETDCtrl.exe [2015-08-04 3348200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp]
C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2015-09-11 1403192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDInspector.exe]
C:\Program Files (x86)\Hard Drive Inspector\HDInspector.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-11-30 56128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lync]
C:\Program Files\Microsoft Office\Office15\lync.exe [2015-09-29 27885736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerDVD14Agent]
C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PrnStatusMX]
C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe [2012-07-04 1240064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartAudio]
C:\Program Files\CONEXANT\SA3\SACpl.exe [2012-02-21 1654400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16]
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk]
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Michal^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HDDlife.lnk]
C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Michal^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~3\Office12\ONENOTEM.EXE /tsr []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-12-21 291280]
""= []
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-07-25 468112]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-06 767176]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SppExtComObj.exe]
"Debugger="SppExtComObjPatcher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"msacm.ac3filter"=ac3filter64.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-01 11:17:19 ----HD---- C:\OneDriveTemp
2015-10-30 03:08:11 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-30 03:08:09 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-30 03:08:07 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-10-30 03:08:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-10-30 03:08:03 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 03:08:02 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 03:08:01 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-10-30 03:08:01 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-10-30 03:08:00 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-10-30 03:08:00 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-30 03:08:00 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-30 03:08:00 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 03:07:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 03:07:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2015-10-30 03:07:58 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 03:07:58 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 03:07:58 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 03:07:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-10-30 03:07:57 ----A---- C:\WINDOWS\system32\dssvc.dll
2015-10-30 03:07:57 ----A---- C:\WINDOWS\system32\dlnashext.dll
2015-10-30 03:07:56 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2015-10-30 03:07:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2015-10-30 03:07:53 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2015-10-30 03:07:53 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 03:07:53 ----A---- C:\WINDOWS\system32\browserbroker.dll
2015-10-29 01:55:00 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-10-29 01:55:00 ----A---- C:\WINDOWS\system32\drivers\TeeDriverx64.sys
2015-10-28 14:20:45 ----HDC---- C:\ProgramData\{AA6BF06E-316C-487A-9BC2-5F06A43C56B1}
2015-10-28 12:39:09 ----D---- C:\ProgramData\ATI
2015-10-21 23:04:53 ----D---- C:\ProgramData\ESET
2015-10-13 19:18:39 ----A---- C:\WINDOWS\system32\RtNicProp64.dll
2015-10-13 19:18:39 ----A---- C:\WINDOWS\system32\drivers\rt640x64.sys
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-13 18:36:08 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 18:36:07 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 18:36:06 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-13 18:36:06 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 18:36:06 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-13 18:36:05 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 18:36:04 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-13 18:36:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-10-13 18:36:03 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 18:36:03 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 18:36:00 ----A---- C:\WINDOWS\system32\shell32.dll
2015-10-13 18:36:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-10-13 18:35:59 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-10-13 18:35:59 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-13 18:35:58 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\winresume.exe
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\winload.exe
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\jscript.dll
2015-10-13 18:35:57 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-10-13 18:35:55 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-13 18:35:55 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-13 18:35:54 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-13 18:35:53 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 18:35:53 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-10-13 18:35:53 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-11 04:09:23 ----D---- C:\Users\Michal\AppData\Roaming\Prodiance
2015-10-10 11:32:12 ----D---- C:\ProgramData\Microsoft OneDrive
2015-10-08 19:32:00 ----A---- C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-10-08 19:31:59 ----A---- C:\WINDOWS\SYSWOW64\Intel_OpenCL_ICD32.dll
2015-10-08 19:31:59 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-10-08 19:31:59 ----A---- C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-10-08 19:31:58 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\SYSWOW64\iglhsip32.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\SYSWOW64\iglhcp32.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\iglhsip64.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\iglhcp64.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxTray.exe
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxext.exe
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxCoIn_v4276.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2015-10-08 19:31:54 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2015-10-08 19:31:54 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\SYSWOW64\igdusc32.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\SYSWOW64\igdumdim32.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\system32\igdmd64.dll
2015-10-08 19:31:52 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\igdde64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\igdail64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2015-10-08 19:31:50 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2015-10-08 19:31:50 ----A---- C:\WINDOWS\system32\IccLibDll_x64.dll
2015-10-08 19:31:50 ----A---- C:\WINDOWS\system32\Gfxv4_0.exe
2015-10-08 19:31:50 ----A---- C:\WINDOWS\system32\Gfxv2_0.exe
2015-10-08 19:31:50 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\difx64.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-10-08 19:31:49 ----A---- C:\WINDOWS\system32\CustomModeApp.exe
2015-10-08 16:09:47 ----D---- C:\Program Files\Microsoft.NET
2015-10-08 14:33:56 ----A---- C:\WINDOWS\system32\SppExtComObjPatcher.exe
2015-10-08 14:33:56 ----A---- C:\WINDOWS\system32\SppExtComObjHook.dll
2015-10-08 14:25:13 ----D---- C:\Program Files\Common Files\DESIGNER
2015-10-08 14:24:55 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2015-10-08 14:24:16 ----D---- C:\Program Files\Microsoft SQL Server
2015-10-08 14:22:51 ----D---- C:\Program Files\Microsoft Analysis Services
2015-10-08 14:22:51 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2015-10-08 14:22:34 ----RHD---- C:\MSOCache
2015-10-07 05:16:32 ----A---- C:\WINDOWS\system32\drivers\ekbdflt.sys
======List of files/folders modified in the last 1 month======
2015-11-01 13:09:34 ----D---- C:\Program Files\trend micro
2015-11-01 13:09:23 ----D---- C:\WINDOWS\Temp
2015-11-01 12:59:25 ----D---- C:\WINDOWS\System32
2015-11-01 12:24:55 ----D---- C:\WINDOWS\Prefetch
2015-11-01 12:23:23 ----RD---- C:\Program Files (x86)
2015-11-01 12:23:21 ----D---- C:\Users\Michal\AppData\Roaming\GHISLER
2015-11-01 12:22:24 ----D---- C:\Program Files (x86)\SpeedFan
2015-11-01 12:18:07 ----D---- C:\WINDOWS\system32\sru
2015-11-01 12:04:11 ----D---- C:\WINDOWS\SoftwareDistribution
2015-11-01 12:04:11 ----D---- C:\Windows
2015-11-01 11:52:36 ----RD---- C:\Program Files
2015-11-01 11:46:47 ----SHD---- C:\WINDOWS\Installer
2015-11-01 11:46:46 ----D---- C:\Program Files (x86)\Garmin
2015-11-01 11:46:46 ----D---- C:\Garmin
2015-11-01 11:46:34 ----SHD---- C:\System Volume Information
2015-11-01 11:43:31 ----D---- C:\WINDOWS\INF
2015-11-01 11:43:30 ----D---- C:\WINDOWS\debug
2015-11-01 11:41:22 ----D---- C:\WINDOWS\system32\drivers
2015-11-01 08:37:47 ----D---- C:\WINDOWS\rescache
2015-10-31 22:03:05 ----HD---- C:\Program Files\WindowsApps
2015-10-31 21:40:45 ----D---- C:\WINDOWS\AppReadiness
2015-10-31 14:30:19 ----D---- C:\Users\Michal\AppData\Roaming\AIMP3
2015-10-31 14:11:38 ----D---- C:\WINDOWS\Microsoft.NET
2015-10-30 20:00:45 ----D---- C:\ProgramData\PCDr
2015-10-30 12:41:15 ----RSD---- C:\WINDOWS\assembly
2015-10-30 12:31:53 ----D---- C:\WINDOWS\system32\config
2015-10-30 11:16:11 ----D---- C:\Program Files (x86)\Dell
2015-10-30 11:16:10 ----D---- C:\ProgramData\Dell
2015-10-30 08:24:08 ----D---- C:\WINDOWS\system32\Tasks
2015-10-30 08:09:09 ----D---- C:\WINDOWS\system32\drivers\etc
2015-10-30 03:15:31 ----D---- C:\WINDOWS\WinSxS
2015-10-30 03:12:43 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-10-30 03:12:43 ----D---- C:\WINDOWS\SysWOW64
2015-10-30 03:12:42 ----D---- C:\WINDOWS\system32\cs-CZ
2015-10-30 03:12:42 ----D---- C:\WINDOWS\system32\appraiser
2015-10-30 03:12:41 ----D---- C:\WINDOWS\AppPatch
2015-10-30 03:12:35 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-30 03:09:09 ----D---- C:\WINDOWS\CbsTemp
2015-10-30 03:07:03 ----D---- C:\WINDOWS\system32\catroot2
2015-10-29 11:54:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-29 07:54:47 ----D---- C:\WINDOWS\Logs
2015-10-29 02:16:33 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-29 01:55:08 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-10-28 14:20:45 ----HD---- C:\ProgramData
2015-10-28 12:36:59 ----D---- C:\Program Files\AMD
2015-10-28 12:36:51 ----D---- C:\ProgramData\Package Cache
2015-10-28 11:59:34 ----D---- C:\WINDOWS\system32\NDF
2015-10-28 11:55:09 ----D---- C:\Program Files\CCleaner
2015-10-28 11:10:14 ----HD---- C:\WINDOWS\system32\GroupPolicy
2015-10-27 12:05:01 ----RD---- C:\Users
2015-10-23 10:34:58 ----D---- C:\Users\Michal\AppData\Roaming\YouTube Downloader
2015-10-22 20:01:38 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-21 23:05:33 ----HD---- C:\WINDOWS\ELAMBKUP
2015-10-21 23:03:48 ----D---- C:\Program Files\ESET
2015-10-19 17:17:25 ----D---- C:\Program Files (x86)\YTD
2015-10-17 14:05:07 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-17 11:57:38 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-10-16 04:10:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-10-13 19:19:24 ----D---- C:\Program Files (x86)\Realtek
2015-10-13 18:59:37 ----D---- C:\WINDOWS\system32\Boot
2015-10-13 18:59:36 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-10-13 18:56:24 ----D---- C:\WINDOWS\system32\MRT
2015-10-13 18:50:25 ----A---- C:\WINDOWS\system32\MRT.exe
2015-10-13 18:49:42 ----D---- C:\ProgramData\Microsoft Help
2015-10-13 18:45:54 ----A---- C:\WINDOWS\win.ini
2015-10-12 17:41:37 ----D---- C:\WINDOWS\Tasks
2015-10-09 05:04:44 ----D---- C:\Program Files (x86)\AIMP3
2015-10-08 19:38:30 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-10-08 19:33:54 ----D---- C:\Program Files (x86)\Intel
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxLHM.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxHK.exe
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxexps.dll
2015-10-08 19:31:56 ----A---- C:\WINDOWS\system32\igfxEM.exe
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDI.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxDH.dll
2015-10-08 19:31:55 ----A---- C:\WINDOWS\system32\igfxCUIService.exe
2015-10-08 19:31:53 ----A---- C:\WINDOWS\system32\igdusc64.dll
2015-10-08 19:31:53 ----A---- C:\WINDOWS\system32\igdumdim64.dll
2015-10-08 19:31:51 ----A---- C:\WINDOWS\system32\igd10iumd64.dll
2015-10-08 16:09:47 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-10-08 16:09:29 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-08 14:25:25 ----RSD---- C:\WINDOWS\Fonts
2015-10-08 14:25:18 ----D---- C:\WINDOWS\ShellNew
2015-10-08 14:25:13 ----D---- C:\Program Files\Common Files
2015-10-08 14:24:41 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-10-08 14:24:16 ----D---- C:\Program Files\Microsoft Office
2015-10-08 14:23:16 ----D---- C:\Program Files\Common Files\System
2015-10-08 14:22:45 ----D---- C:\Program Files (x86)\Microsoft Office
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem127.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-07-31 82696]
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-07-14 251632]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-09-23 69840]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2013-06-02 108832]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-11-19 652344]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2013-06-02 233760]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-09-23 264040]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-09-23 186784]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-09-23 206312]
R1 EpfwLWF;@oem136.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-09-23 52872]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2015-10-07 142976]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-09-01 21655080]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-09-01 686120]
R3 bcbtums;@oem121.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
R3 BCM42RLY;BCM42RLY; C:\WINDOWS\system32\drivers\BCM42RLY.sys [2012-11-12 22632]
R3 BCM43XX;@oem96.inf,%BCM43XX_Service_DispName%;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\WINDOWS\system32\DRIVERS\bcmwl664.sys [2012-03-21 5443648]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 CnxtHdAudService;@oem0.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-04-06 1604736]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\CtClsFlt.sys [2011-06-16 176000]
R3 DDDriver;DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [2015-01-30 23760]
R3 DellProf;DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [2015-05-22 24240]
R3 ETD;@oem128.inf,%PS2DeviceDesc%;Dell Touchpad; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-08-04 469080]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-08 3797424]
R3 IntcDAud;@oem132.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem124.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;@oem139.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-12 99288]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-04 175104]
R3 rt640x64;@oem133.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-05-29 886528]
R3 RTSUER;@oem117.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-09-23 14976]
S0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\drivers\iaStor.sys [2012-02-02 568600]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\WINDOWS\system32\DRIVERS\stdcfltn.sys [2011-07-15 22128]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 afcdp;afcdp; C:\WINDOWS\system32\DRIVERS\afcdp.sys [2013-06-02 367200]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-09-17 929280]
S3 btwampfl;@oem121.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 grmnusb;grmnusb; C:\WINDOWS\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 intaud_WaveExtensible;@oem123.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-07-20 50240]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 iscFlash;iscFlash; \??\C:\Users\Michal\AppData\Local\Temp\7zS911D.tmp\iscflashx64.sys []
S3 kiox_ff_driver;@oem120.inf,%kiox_ff_driver.SVCDESC%;Kionix freefall detection service; C:\WINDOWS\System32\drivers\kiox_ff_driver.sys [2015-06-15 41456]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-10-05 64216]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 nmwcdnsucx64;@oem130.inf,%ServiceDisplayName%;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsucx64.sys [2015-09-16 12800]
S3 nmwcdnsux64;@oem99.inf,%ServiceDisplayName%;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsux64.sys [2015-09-16 171008]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-04 934752]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
S3 RTLE8023x64;Realtek 10/100/1000 PCI-E NIC Family NDIS XP(x64) Driver; C:\WINDOWS\system32\DRIVERS\Rtenic64.sys [2012-03-19 334952]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-09-01 265776]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 BcmBtRSupport;@oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 CxUtilSvc;CxUtilSvc; C:\Program Files\Conexant\SA3\CxUtilSvc.exe [2013-04-06 109184]
R2 DellDataVault;Dell Data Vault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2015-09-11 2574168]
R2 DellDataVaultWiz;Dell Data Vault Wizard; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [2015-09-11 201560]
R2 DpHost;Authentication Service; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2011-12-15 458064]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2015-10-09 2505472]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-08-04 144104]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2012-09-07 2464400]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-08 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-12 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-12 390616]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-04 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2014-04-30 337776]
R2 SupportAssistAgent;Dell SupportAssist Agent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [2015-09-30 21160]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-08 291744]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-01-05 651720]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2015-09-11 762272]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\46.0.2490.13\remoting_host.exe [2015-09-01 69448]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-17 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-04 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S4 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2013-02-15 1143720]
S4 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2013-06-02 3783672]
S4 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2014-01-13 198664]
S4 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S4 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-11-19 14904]
S4 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-03-20 7084672]
-----------------EOF-----------------
Re: Prosím o preventivní kontrolu. Děkuji
Jen uklidíme 
Smaž nepotřebné soubory
pomocí CCleaneru
návod :
Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš
Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)
čištění registru je třeba několikrát zopakovat !
Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém
Stáhni a ulož na plochu AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po dokončení skenu klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zkopíruj Report.
Smaž nepotřebné soubory
pomocí CCleaneru
návod :
Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš
Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)
čištění registru je třeba několikrát zopakovat !
Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém
Stáhni a ulož na plochu AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po dokončení skenu klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zkopíruj Report.
Re: Prosím o preventivní kontrolu. Děkuji
# AdwCleaner v5.016 - Logfile created 01/11/2015 at 20:33:39
# Updated 01/11/2015 by Xplode
# Database : 2015-11-01.2 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : Michal - MICHAL-PC
# Running from : C:\Users\Michal\Desktop\adwcleaner_5.016.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\ICQToolbarData
***** [ Files ] *****
[-] File Deleted : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\searchplugins\icqplugin.gif
[-] File Deleted : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\searchplugins\icqplugin.src
[-] File Deleted : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\user.js
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{363F46BE-27B4-4C8D-99E7-B1E049B84376}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{90A9B7D2-3794-45EA-9E23-140E3938D2D9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A753A1EC-973E-4718-AF8E-A3F554D45C44}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02AFA80F-4BEE-41FD-8572-214B58A9EF90}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{363F46BE-27B4-4C8D-99E7-B1E049B84376}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{90A9B7D2-3794-45EA-9E23-140E3938D2D9}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A753A1EC-973E-4718-AF8E-A3F554D45C44}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{02AFA80F-4BEE-41FD-8572-214B58A9EF90}
[!] Data Not Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[!] Data Not Restored : HKU\S-1-5-21-1248320584-61496903-985927887-1000\Software\Microsoft\Internet Explorer\Main [ICQ Search]
***** [ Web browsers ] *****
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.engineVerified", true);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.firstTbRun", false);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.geolastmodified", 1412189317);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.history", "hor%C3%A1kovi%2018urgmedurgedplavu%C5%88%20vidla%C4%8Dka");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.icqgeo", 42);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.installTime", "1369396841");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.previousFFVersion", "31.0");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.showPc", false);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.uninstStatSent", true);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.uniqueID", "153635815811248729001369370753092");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");
[-] [C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : daemon-search.com
[-] [C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.icq.com
[-] [C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4933 bytes] ##########
Moc děkuji.
# Updated 01/11/2015 by Xplode
# Database : 2015-11-01.2 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : Michal - MICHAL-PC
# Running from : C:\Users\Michal\Desktop\adwcleaner_5.016.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\ICQToolbarData
***** [ Files ] *****
[-] File Deleted : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\searchplugins\icqplugin.gif
[-] File Deleted : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\searchplugins\icqplugin.src
[-] File Deleted : C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\user.js
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{363F46BE-27B4-4C8D-99E7-B1E049B84376}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{90A9B7D2-3794-45EA-9E23-140E3938D2D9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A753A1EC-973E-4718-AF8E-A3F554D45C44}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02AFA80F-4BEE-41FD-8572-214B58A9EF90}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{363F46BE-27B4-4C8D-99E7-B1E049B84376}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{90A9B7D2-3794-45EA-9E23-140E3938D2D9}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A753A1EC-973E-4718-AF8E-A3F554D45C44}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{02AFA80F-4BEE-41FD-8572-214B58A9EF90}
[!] Data Not Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[!] Data Not Restored : HKU\S-1-5-21-1248320584-61496903-985927887-1000\Software\Microsoft\Internet Explorer\Main [ICQ Search]
***** [ Web browsers ] *****
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.engineVerified", true);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.firstTbRun", false);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.geolastmodified", 1412189317);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.history", "hor%C3%A1kovi%2018urgmedurgedplavu%C5%88%20vidla%C4%8Dka");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.icqgeo", 42);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.installTime", "1369396841");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.previousFFVersion", "31.0");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.showPc", false);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.uninstStatSent", true);
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("icqtoolbar.uniqueID", "153635815811248729001369370753092");
[-] [C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\jkw3gz4b.default\prefs.js] [Preference] Deleted : user_pref("keyword.URL", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.5.3&q=");
[-] [C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : daemon-search.com
[-] [C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.icq.com
[-] [C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4933 bytes] ##########
Moc děkuji.
Re: Prosím o preventivní kontrolu. Děkuji
Problémy nejsou. Ještě jednou moc děkuji. M
Přispějete na provoz fóra?