VIRY.CZ

Dobry den
prosim o radu co s PC kdyz se mi sekne pri spousteni systemu windows. Plocha mi najede az na desaty pokus. Nez se tak stane , tak se spusyi automaticka oprava, mebo se vypne monitor a nebo se sekne logo windows pri nacitani

Dekuji

Zdravím, na to tak jednoduchá rada není.

Je tady více možností čím to může být :

1. nakopnutý systém - najet do nouzáku a zkusit Poslední známou funkční konfiguraci systému nebo Oprava systému bez ztráty dat

2. odcházející hardware - pravděpodobně HDD a stím nic moc neuděláme, maximálně jej můžeme otestovat

3. vir - taky možnost, ale to bych potřeboval abys mi sem dal log.txt z FRST nebo RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by Roman at 2014-12-01 19:17:49
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 501 GB (53%) free of 954 GB
Total RAM: 8079 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:18:03, on 1.12.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
C:\Users\Roman\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Roman.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: 166090e0f32601317e4e5118752c52d60061752 - {11111111-1111-1111-1111-110611171152} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Roman\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Roman\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [FixMyRegistry] C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
O4 - HKCU\..\Run: [SpeedUpMyComputer] C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2762847957-2055220693-18600838-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2762847957-2055220693-18600838-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HTCMonitorService - Nero AG - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Update allgenius - Unknown owner - C:\Program Files (x86)\allgenius\updateallgenius.exe (file missing)
O23 - Service: Util allgenius - Unknown owner - C:\Program Files (x86)\allgenius\bin\utilallgenius.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater3.1.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.1.0\ToolbarUpdater.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12579 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
taskeng.exe {29265E3B-DCFF-44DF-978D-8723E4D08278}
szndesktop.exe default start
"C:\Users\Roman\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "1688346616-973877069-105361876-759900245-2062590837-6454275808971593221688124199
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe"
adb fork-server server
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9223
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3444.0.1444692513\1679069623" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38,46 --gpu-vendor-id=0x10de --gpu-device-id=0x0fc6 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.1422 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Preperiod_A4_StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_08/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="3444.2.842082423\697579556" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Preperiod_A4_StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prefetch/ExperimentYes/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_08/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="3444.7.20137785\2135263868" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3444.9.1458692139\1055508346" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Users\Roman\Downloads\FRST64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Preperiod_A4_StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prefetch/ExperimentYes/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_08/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="3444.10.1329078543\375484143" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Preperiod_A4_StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prefetch/ExperimentYes/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_08/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="3444.12.490856224\1685513815" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Preperiod_A4_StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prefetch/ExperimentYes/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_08/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="3444.15.1721281499\438425217" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/ControlBootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/Preperiod_A4_StableBookmarksIndexURLs/PasswordGeneration/Disabled/Prefetch/ExperimentYes/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_08/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="3444.16.202191754\1973864469" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Roman\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\11ae59b8-bb4a-46df-a829-823ea51edb2d.job - C:\Program Files (x86)\Internet Speed Checker\11ae59b8-bb4a-46df-a829-823ea51edb2d.exe /agentregpath='Internet Speed Checker' /appid=61752 /srcid='001726' /subid='0' /zdata='0' /bic=6330EC7335E243E38E0E7140965BB66AIE /verifier=4ad1d762285fd287911f31a3c82ad6bb /installerversion=1_35_09_29 /installationtime=1416592270 /statsdomain=http://stats.newonlinedemoserv.com /errorsdomain=http://errors.newonlinedemoserv.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newonlinedemoserv.com /runfrom='task' /externallog=''
C:\Windows\tasks\35b23648-e6c8-4b51-97c9-30755d8dafbc-1.job - C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-codedownloader.exe /rawdata=ZUItHPgJG4+ITSffUvbg67rrztIlFqpkb9OCXauBouUxlFywlTmmwPv4qmQ+AV2oGwl34yZVIkTYgOW95U3NpPegFKvxe8bUqcuzH7B+7MdFe7dDlmpsDluXT1xhvh53pPaojtGC41XpMNCBuRD6XHhLYfLm/NET4OI3+zR/lQ81S8pDnm98Yb8xQbxjGk0/+1lXoTXvhh6d7tsnN4vYYxjjWTqBbGef+v8zNXH9gec7w1Hx4+7Cw6mk15qQ05P6ytHkcItQ6XbuQxiWDxW4wsWU71Ioi2PiYg1wa6a8RYin47gb2jnVKfa+8orIH0AmhRxafLunGCEHadOjALflUHbybFnocT+krreA3yw+cSNLLpVFieBNqM7Uga3NSEBiX/YvGWjOB/R5/cAk/eT/99OsqEtBAaXosmUOfW35QsawVu3W9KNynqyHBkIemCfC9N7oGP85mW1NyW584OppvgMvv1n1hf9dUvmj5LzAvU2wH78ASsuESf3H8e+rO3YCKIECXz9Mi7Gy7DO7ZkOt+uHSGeKsWekuA4P54lIVQJSXczaBrlgORmH3jG0mCu8wSAAR9FKmwybvCYLcn7By6X53BfHUvgwQmtrUyI88DZUR/r10DVHYbs/CYizBOkx27j0Nige4FA5dxdMJ9elM8Nj8As0gAMLrNpGhblQcMo1gveYxbOsLVX4E/GvQjF6vKgWE/sHAWAdYqiefa9bQvTLRENzw+8w3tAxnhyudAlaeLwt4WZpyCfXMDKd1xKNfQY0F2bbDPfo0MOYQeiEx05pbzc+XBsJLHMJCshahFOeJ3c4olwoMExFoaDFESZl2EhWkc7/Lf3j/mRLbX+Fqp3vSrS7cX3vSxQC++FX7O+sF/6vyB/iiCV9jeHhVshJIBiJre0GdGj0CdfQ0Ul1VCPbuems5sEqyxwAgHLgKlDXbw7+RUrUvIoUl1BMjq2Dq7jwXa77KE35kMRMWIlTtA2wrdZ2nbBmxjLQt737Ke4NMbSo0NiTn1Vjf7oGme9sNc08OW6h4KZ9wGQlAsBE/daNagAEEmv5dyRuaRIVhdrwIOhOnMq9M/g1ncDhCDgaluhBC7Vip9+jTiwD2O26/o2jVL/1S4R51MgvOQev54/eC2cUh2dyKOQ8ANpNb0/3htFwFTkcZHDu5mZUMiOyrP4HwNUcjKMDbsKFYYBGgkbt20hRQ6TjAbSXb67YM/hhKbCZnMJs5gmbR0ztJJJJ3Vl65hBLc66d9Q+5tL/xpbJavzvCFDrxyse8+kgKiwT3F7Ywzi7TFeKtx0IH3LpTCWz9qxx3bZ2Q4rgquz1gf7g3WH2CoUjgyU9X70MAnSWjvKe18zUKWKIdByHsKAdJ3P4iIeghz8HRQNtDn7wZ86Zoh+Y+2Cjp74rXvFT492ACBLCFTo250vZ8kGSxsb1/hqorofYder+UH2LedKrpLCu0IJPhgzMQrQXbQWrupQZErMfHPBnivrcKccsOVAI1UFJbLdc3olWXW9OHRLqkyUOG8tQuYnoFurqVbAGwtSgfv
C:\Windows\tasks\35b23648-e6c8-4b51-97c9-30755d8dafbc-11.job - C:\Program Files (x86)\Internet Speed Checker\35b23648-e6c8-4b51-97c9-30755d8dafbc-11.exe /rawdata=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
C:\Windows\tasks\35b23648-e6c8-4b51-97c9-30755d8dafbc-4.job - C:\Program Files (x86)\Internet Speed Checker\35b23648-e6c8-4b51-97c9-30755d8dafbc-4.exe /rawdata=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
C:\Windows\tasks\35b23648-e6c8-4b51-97c9-30755d8dafbc-5.job - C:\Program Files (x86)\Internet Speed Checker\35b23648-e6c8-4b51-97c9-30755d8dafbc-5.exe /rawdata=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
C:\Windows\tasks\35b23648-e6c8-4b51-97c9-30755d8dafbc-5_user.job - C:\Program Files (x86)\Internet Speed Checker\35b23648-e6c8-4b51-97c9-30755d8dafbc-5.exe /rawdata=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
C:\Windows\tasks\35b23648-e6c8-4b51-97c9-30755d8dafbc-7.job - C:\Program Files (x86)\Internet Speed Checker\35b23648-e6c8-4b51-97c9-30755d8dafbc-7.exe /rawdata=dcVMCMwTK0RqKDsJ/0BFyvyWkOcQmy1qefryQ87sIp300QzsrJWQ9lBiOvB5SK2dtX+Z43t9u5L3VSjupd3MefjeYcH3dTpQI5e6Dpi8KXQwlID0XC8xx6YLZdl4on8l74mMdcy9jMQ+nBjwCDYNIKjoh6Aisonf79e33YCLbY2EX6Vu8t1KSPs9jaZ0GJN3Aqh61bifOySzBTTsUk//8qMKwcul3dQkzWo2m+vbGGcO799o1mAgkwRxOwOHp9LPU0OPVGeLEeoQ0uCWOh5MggXYHLNNem7SuCgixM6oIQOYvwQoqwgxDB124sLoIeTUcj6nwEBnOpyrSk4RmHFTF3X1KK98hE8CZ5meMM8OiPhBD8jxHBzkkFa+9mkRmFRnF67MWeJWqvaOUn5x5AhLc2rPTJZ+6RYAeSXxZPDyFAffXUtYG6kIEaUf1/LvCZjO4P3j7i2ONWqOEGYJ8LRpAVRZ/gCGFKzu8NRioRFtaZc1BBSmHae4PmqUyqHp06tIas8O8Bjn9B+Kn+sH+lPRoWUSz2420t6VJY2UuOJ2yslg4sEVKI90Hl78NcPOcPbYb8sR1DZYsxRGlLp++3WMBFyFmbj2JIFOSe+RcED0lkH9Sx8jaOTfKBOijkpCelearmFqVM0F05Yc6bd0/qvhxrzHrWSjHdR6iSnEkJAKhAu/zB+JJ0eR9ZOIwFErCdj7B60G0k+4wLYv/ougYIp1McffMh/LemkxdNBznnE5/ibL/Ygb3qvPagQas3MpiBHbPMmWND+HXQzMsnk5eZPFNcrdFX4qXvyfjcCTGDVPdnJtUsFc1bozTnMlbmqF7xjT+XRR34ZOC1J3tQMdBotoWXpGP1K+36+QLHRQkGunGJo4aSmrCavfxQAk1CyTYJnq8M4IW12UN8e2EckmEUc1MEsrzCh+FHwCNapgud2LnMOCT9OoX5bNn3gHNzns/IXoIo0XpqI7MsUBRS6YCPfcYEUIfV/1HKkEXBkDAySBLkJD4IQAJ2poCE91j4yJs9vUgBiGopiB3TP8CarN4imyDCuwfaCshvr9OzYg2vfxKB3uZzAEoEI0p5vMDF2qV+PuHNf2X8Lh1XOwE84dKsM7wuKd0AIpcfTe1CQJoV/RdNdOSrdvAFrionHVVMrZHJm2NneOHX1Mcb0Cr8b0hV2ffKMgTMaV6HoUX/kzdRIcISIS19Vr/Ldr493gz8yEn+xUxYsNbnO+UlswPIW3XX+Zvp8UXWdAVNLq8qcCAdKtzAA1IhY+ltoJVE5DyYr8XcWHuIxu8BSW0xSNy1CqrX4B8j/5ERPSJ6Y/lOhO6QkbjBUX50ifKNgzynN4wOLLZk2lVVUngUtEiS/rTRclGnvtv0q6n5drN5hzWQHGBhVjS3HeUTPlnAsaLIHQ+/f0P1w+F5obkNdC3RepHIkoVxLcl5OcN2EXpE1Mxq5pkJd5mNfQkG8zGz87aIA7nKaWeGddNjbQYgenquxP7tXvsHPnxCsat7FfxfoIJEUpBw+6H1ttjGam0NK9JwUPOCBiIKh4dacYW2zoZQFwezdneJywRHtjfPwXwhs2NSnDB02Ka5QSu9uBIf/HcLALmVM5qSypJbAuXpOpQedugh9a0qvC4usDBuY7C9QGjsb+rek8iokSa9+zx972OlDcYPpanFzxdFKvV1c9MIlZlanhJc9uBe5VLKDKEDoe2HwadvMxu/Etfroy9napjCMAWWqvHmeGUN/aPGtfY3SXYk1aL5ANemvS1IROJgkqLgrN9TN9jKWt/Hf1Eqls7goM5kEnGERfKfaV6ATS17qGEB94gkepeu2qZdLI0Mlzxl3S884e0oJvt+NXMgZwP4n4DGwAWI6rY0ZUs5PKEJKQSJkVLtFRZgljqS9WVPbTSp+QfvR289Mm6+Lj9t5gxU7Wleo+fzA6u1Ho9QhTY40cAO9k85qacSYW+yFR+Yc+za3MX1n8s7md4NYclQlESyIYVn1czsDm2NUbsfWm0f5+sekPXglQT6uyqr6y4UyWXsILxfGrFfYG53ShjFdDMpBsTzbh9xuKMjhShEnFhPaFHX8hoUEBdXCKul7FHgq6CT1eeJTb/7k9/gpm3QJzG9pSK5NGEmQGS4gLr1zLxH9bFkLKEx/TAkq+9P1g0KJ3VIrfCS0SCSZxrvDD9XKHopV2IILQuSSwF48zt3U3FDSMj7GE0FMLquv/DxHllEjyk9QVPaR2AHszMNWoaFtTQg0wKTpE2HY1ONi60l4PpTmwUPYGjsASdlVp7AW6G9b8QjHgUx7cWoDj4CwY4JXEtHoPL20nhbzB6KWMkDUgwC0Mpvb0rYu7O/yE1wBV6jqbF9mTew+hdSAMFYv6gKn1/VVd8dREjbUDmR3tU22wzi69vfTWpofatA==
C:\Windows\tasks\89dd7f49-7a8c-48be-afb2-59dfe3b3cab5.job - C:\Program Files (x86)\Internet Speed Checker\89dd7f49-7a8c-48be-afb2-59dfe3b3cab5.exe 001726 6330EC7335E243E38E0E7140965BB66AIE 61752 1416592270 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 Internet Speed Checker
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-06 612248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-30 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-09-26 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-06 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-30 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-09-26 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-30 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-30 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-10-03 391152]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-10-03 771056]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-10-03 769520]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-09-03 13651672]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"SpywareTerminatorUpdater"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe []
"SpywareTerminatorShield"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2014-11-18 1940160]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"cz.seznam.software.autoupdate"=C:\Users\Roman\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Roman\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"FixMyRegistry"=C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe [2014-05-26 1886840]
"SpeedUpMyComputer"=C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-06 4085896]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-08-01 152392]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2014-06-24 4101576]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-09-17 623104]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"msacm.ac3filter"=ac3filter64.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-01 19:17:49 ----D---- C:\rsit
2014-12-01 19:17:49 ----D---- C:\Program Files\trend micro
2014-12-01 16:55:20 ----N---- C:\bootsqm.dat
2014-12-01 16:22:00 ----A---- C:\Windows\system32\aswBoot.exe
2014-12-01 15:45:11 ----D---- C:\AdwCleaner
2014-11-30 23:26:22 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-11-30 23:26:17 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-11-30 23:26:17 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-11-30 23:26:17 ----A---- C:\Windows\SYSWOW64\java.exe
2014-11-30 19:44:28 ----D---- C:\Windows\pss
2014-11-30 17:11:50 ----A---- C:\Windows\system32\drivers\{650630f9-f52c-44b0-8894-4121f0529d80}Gw64.sys
2014-11-30 15:03:27 ----D---- C:\Program Files (x86)\PC Tools
2014-11-30 15:01:29 ----D---- C:\ProgramData\TEMP
2014-11-30 15:01:28 ----D---- C:\ProgramData\PC Tools
2014-11-30 15:01:27 ----D---- C:\Users\Roman\AppData\Roaming\TestApp
2014-11-30 14:32:04 ----A---- C:\autoexec.bat
2014-11-30 10:32:01 ----D---- C:\Windows\SYSWOW64\vbox
2014-11-30 10:32:01 ----D---- C:\Windows\system32\vbox
2014-11-29 23:41:45 ----A---- C:\Windows\system32\drivers\stflt.sys
2014-11-29 23:41:44 ----D---- C:\ProgramData\Spyware Terminator
2014-11-29 23:41:42 ----D---- C:\Program Files (x86)\Spyware Terminator
2014-11-29 23:36:22 ----A---- C:\Windows\system32\sdnclean64.exe
2014-11-29 23:36:21 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-11-29 23:36:17 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-11-29 20:01:25 ----D---- C:\Users\Roman\AppData\Roaming\Opera Software
2014-11-29 19:56:48 ----D---- C:\Program Files (x86)\Opera
2014-11-29 11:22:48 ----A---- C:\Windows\system32\drivers\{2e099d13-43b4-4786-97b8-180d8e368316}Gw64.sys
2014-11-29 11:07:27 ----D---- C:\Program Files (x86)\allgenius
2014-11-29 11:00:23 ----D---- C:\Program Files (x86)\VideoLAN
2014-11-21 18:52:04 ----D---- C:\Program Files (x86)\e21a72cb-7ae4-4efe-a401-b5fa41d5db02
2014-11-21 18:51:14 ----D---- C:\Program Files (x86)\Internet Speed Checker
2014-11-21 14:43:14 ----D---- C:\Program Files (x86)\Microsoft Silverlight

======List of files/folders modified in the last 1 month======

2014-12-01 19:17:53 ----D---- C:\Windows\Temp
2014-12-01 19:17:49 ----D---- C:\Program Files
2014-12-01 19:09:32 ----D---- C:\Users\Roman\AppData\Roaming\Seznam.cz
2014-12-01 19:08:38 ----D---- C:\Windows\system32\config
2014-12-01 19:08:07 ----D---- C:\Windows\Prefetch
2014-12-01 19:07:03 ----D---- C:\Program Files (x86)\Steam
2014-12-01 19:06:51 ----D---- C:\Windows\system32\NDF
2014-12-01 19:04:07 ----D---- C:\ProgramData\NVIDIA
2014-12-01 16:22:14 ----D---- C:\Windows\system32\Tasks
2014-12-01 16:22:01 ----D---- C:\Windows\System32
2014-12-01 16:21:58 ----D---- C:\Windows
2014-12-01 16:21:19 ----SHD---- C:\System Volume Information
2014-12-01 16:19:51 ----D---- C:\Windows\SYSWOW64\NV
2014-12-01 16:19:49 ----D---- C:\Windows\system32\NV
2014-12-01 16:14:38 ----A---- C:\Windows\ntbtlog.txt
2014-12-01 15:56:35 ----D---- C:\Windows\Tasks
2014-12-01 15:56:35 ----D---- C:\Windows\system32\wfp
2014-12-01 15:56:35 ----D---- C:\Windows\system32\DriverStore
2014-12-01 15:56:35 ----D---- C:\Windows\system32\catroot2
2014-12-01 15:56:34 ----D---- C:\Windows\winsxs
2014-12-01 15:56:34 ----D---- C:\Windows\SysWOW64
2014-12-01 15:56:33 ----D---- C:\Windows\system32\drivers
2014-12-01 15:56:33 ----D---- C:\Users\Roman\AppData\Roaming\OpenCandy
2014-12-01 15:56:31 ----RD---- C:\Program Files (x86)
2014-12-01 15:56:31 ----D---- C:\Program Files (x86)\SmartTweak
2014-12-01 15:56:30 ----D---- C:\Windows\registration
2014-12-01 15:56:22 ----HD---- C:\ProgramData
2014-11-30 23:26:35 ----D---- C:\ProgramData\Oracle
2014-11-30 23:26:32 ----SHD---- C:\Windows\Installer
2014-11-30 23:26:31 ----D---- C:\Program Files (x86)\Common Files
2014-11-30 23:26:16 ----D---- C:\Program Files (x86)\Java
2014-11-30 23:25:29 ----D---- C:\The KMPlayer
2014-11-30 20:05:47 ----D---- C:\Windows\Minidump
2014-11-30 18:54:34 ----A---- C:\Windows\win.ini
2014-11-30 18:32:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-30 18:32:08 ----D---- C:\Windows\system32\cs-CZ
2014-11-30 18:31:54 ----D---- C:\Windows\system32\wbem
2014-11-30 18:31:47 ----D---- C:\Windows\system32\catroot
2014-11-30 16:54:19 ----SD---- C:\Windows\system32\CompatTel
2014-11-30 16:54:19 ----RSD---- C:\Windows\Media
2014-11-30 16:54:19 ----D---- C:\Windows\SYSWOW64\wbem
2014-11-30 16:54:19 ----D---- C:\Windows\system32\drivers\etc
2014-11-30 16:54:19 ----D---- C:\Windows\PolicyDefinitions
2014-11-30 16:54:19 ----D---- C:\Program Files\Internet Explorer
2014-11-30 16:54:14 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-30 16:54:14 ----D---- C:\Windows\inf
2014-11-30 16:54:13 ----SD---- C:\ProgramData\Microsoft
2014-11-30 16:53:23 ----D---- C:\Windows\Microsoft.NET
2014-11-29 23:44:39 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-29 12:28:43 ----D---- C:\Windows\system32\GroupPolicy
2014-11-27 22:26:00 ----D---- C:\Windows\Resources
2014-11-27 19:35:18 ----D---- C:\Program Files (x86)\Gaming Keyboard
2014-11-22 15:48:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-22 14:15:34 ----D---- C:\Users\Roman\AppData\Roaming\BitTorrent
2014-11-21 18:52:19 ----D---- C:\Program Files (x86)\Adobe
2014-11-21 15:49:39 ----RSD---- C:\Windows\assembly
2014-11-21 15:06:50 ----D---- C:\Program Files (x86)\Ubisoft
2014-11-21 13:04:49 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-11-15 18:51:14 ----D---- C:\ProgramData\Origin
2014-11-13 23:47:23 ----D---- C:\Program Files (x86)\Microsoft Games
2014-11-13 21:18:43 ----D---- C:\Windows\system32\LogFiles
2014-11-13 21:14:46 ----D---- C:\Windows\LiveKernelReports
2014-11-12 09:26:57 ----D---- C:\FFOutput

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-08-06 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-08-06 224896]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2013-02-19 21584]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-08-06 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-21 1041168]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-08-06 427360]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-05-27 283064]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-08-06 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-08-06 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-08-06 92008]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\Windows\system32\DRIVERS\stflt.sys [2014-11-29 51496]
R3 athr;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athrx.sys [2012-10-11 1579520]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-09-17 4177920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-09-10 3640024]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-09-17 449528]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-12-19 194488]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-10-25 769168]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\Windows\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\Windows\System32\Drivers\BTHidMgr.sys []
S1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys []
S1 UsbCharger;UsbCharger; C:\Windows\system32\DRIVERS\UsbCharger.sys [2013-05-06 21584]
S3 BlueletAudio;Bluetooth Audio Service; C:\Windows\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys [2007-05-09 44688]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2013-10-17 36928]
S3 HtcVCom32;HTC Diagnostic Port; C:\Windows\system32\DRIVERS\HtcVComV64.sys [2010-03-08 121800]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2014-06-10 54784]
S3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-06-12 43336]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-06 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-05-27 2139328]
R2 HTCMonitorService;HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2013-11-18 87368]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 877856]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-10-17 166912]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-06-04 76888]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2014-04-25 171928]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2012-09-07 1148664]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-08-01 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-07 116648]
S2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2014-06-24 1738168]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2014-06-27 2088408]
S2 Update allgenius;Update allgenius; C:\Program Files (x86)\allgenius\updateallgenius.exe []
S2 Util allgenius;Util allgenius; C:\Program Files (x86)\allgenius\bin\utilallgenius.exe []
S2 vToolbarUpdater3.1.0;vToolbarUpdater3.1.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.1.0\ToolbarUpdater.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-29 267440]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-10-03 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-07 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-07 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-16 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

V Plánovači úloh zakaž Google Update a Internet Speed Checker může to tam být vícekrát.


Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)
Služba Google Update (gupdatem)
Google Software Updater
vToolbarUpdater3.1.0

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.


Přes Odebrat programy nebo CCleaner níže odinstaluj Spybot - SD, Internet Speed Checker, vše od AVG a Smart Tweak.


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.

Omluva za vstup.
1) Upni mi soubory ze složky C:\Windows\Minidump na http://www.leteckaposta.cz
2) V Ovládací panely->Nástroje pro správu->Prohlížeč událostí->Protokoly systému Windows->klik pravým myšítkem na protokol Systém, vybrat Uložit všechny události jako, uložit jako .evtx soubor a upnout na http://www.leteckaposta.cz