Prosím o kontrolu NB

[Altair849]

Dobrý deň,

nedávno som vám tu písal o jednom probléme a teraz tu mám znovu ďalší. Ide o to, že pri odpájaní tzv. "secret zone" externého HDD Samsung M3 Portable z notebooku (odpájanie týchto častí disku je riešené pomocou aplikácie) mi notebook spadne a zobrazí sa modrá obrazovka - tzv. "Blue death". Nie som práve z tých zdatných PC užívateľov, ale v Event Vieweri mám pri ERROR napísané toto:

Názov chybujúcej aplikácie: CAMService.exe, verzia: 1.0.0.1, časová značka: 0x556f49d2
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.18202, časová značka: 0x569e7d02
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000003dd8e
Identifikácia chybujúceho procesu: 0x4bc
Čas spustenia chybujúcej aplikácie: 0x01d16b373aadb77f
Cesta chybujúcej aplikácie: C:\Program Files\Intel\CAM\bin\CAMService.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 9cc28a86-d72a-11e5-bed4-2089841f824a
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


Chcel by som vás poprosiť o kontrolu tohto problému i celého NB. Čo sa týka toho externého HDD, doteraz som tam mal len jednu tú secret zónu, ale nedávno som ju zmazal a vytvoril viacero nových, menších zón. Padať mi to nezačalo hneď, až časom.

Log z RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by xbucany at 2016-02-19 19:35:54
Microsoft Windows 8.1
System drive C: has 301 GB (74%) free of 406 GB
Total RAM: 8048 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:35:55, on 19.2.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\WINDOWS\SysWOW64\rundll32.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files (x86)\Mousotron\Mousotron.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\xbucany.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [IntellingentTouchpad] C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\..\{419A71DD-5D0A-403B-8BF2-B05741D1874A}: NameServer = 95.169.183.219,89.41.60.38
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O21 - SSODL: EldosMountNotificator-cbfs5 - {BFCCDFFC-33DA-40E1-B23A-B3E16C49D0DB} - C:\WINDOWS\SysWOW64\cbfsMntNtf5.dll
O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {BFCCDFFC-33DA-40E1-B23A-B3E16C49D0DB} - C:\WINDOWS\SysWOW64\cbfsMntNtf5.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: CAM Service (CAMService) - Intel® Corporation - C:\Program Files\Intel\CAM\bin\CAMService.exe
O23 - Service: CyberGhost 5 Client Service (CGVPNCliService) - CyberGhost S.R.L - C:\Program Files\CyberGhost 5\Service.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel Bluetooth Service (ibtsiva.exe) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NETZSCH Remote Access Service (NgbRemoteAccessServer) - NETZSCH-Gerätebau GmbH - C:\PROGRA~2\NETZSCH\PROTEU~1\program\NGBREM~1.EXE
O23 - Service: NetLimiter 4 Service (nlsvc) - Locktime Software - C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 13517 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS

"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\WLANExt.exe 586972596016
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {f937abf8-8fd9-4e48-a068c0f5751450a3}
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
"C:\PROGRA~2\NETZSCH\PROTEU~1\program\NGBREM~1.EXE" -service
"C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\CyberGhost 5\Service.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2637d5d6-b3b7-41cc-859d-3494d8757291 -SystemEventPortName:HostProcess-be9f9787-af53-47fd-8a61-2e23983a8b7b -IoCancelEventPortName:HostProcess-ad16313f-96b4-4d0c-bbe8-40a2eb03b4dd -NonStateChangingEventPortName:HostProcess-cdea0010-e7d4-4816-878b-2c1dfe83e155 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c2b69955-fccd-4363-9a87-096f7090cf2d -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide
C:\WINDOWS\Explorer.EXE
rundll32 "C:\Program Files\ESET\ESET Smart Security\x86\eplgHooks.dll",Proc32_HooksLoop
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\RTFTrack.exe"
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\RocketDock\RocketDock.exe"
"C:\Program Files (x86)\Mousotron\Mousotron.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2168.0.484665878\162277788" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,24,52 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3277 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.2.1106414762\1708037629" --font-cache-shared-handle=2284 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.3.1764234790\100598798" --font-cache-shared-handle=2428 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.6.1338297028\610486094" --font-cache-shared-handle=5264 /prefetch:673131151
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.7.393136374\639719330" --font-cache-shared-handle=4476 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.8.1017757893\1929149025" --font-cache-shared-handle=6200 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.9.1123137942\1250428445" --font-cache-shared-handle=6440 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="2168.10.164944980\455948858" --ppapi-flash-args --lang=sk --device-scale-factor=1 --font-cache-shared-handle=7376 --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.12.327054196\179809147" --font-cache-shared-handle=7936 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.13.1699750791\1226583578" --font-cache-shared-handle=8336 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.14.559203453\1089509893" --font-cache-shared-handle=9060 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.26.1179997151\1871115873" --font-cache-shared-handle=12436 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.27.197870812\688283662" --font-cache-shared-handle=16348 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.28.51928608\81190774" --font-cache-shared-handle=11800 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.29.1033469416\19094892" --font-cache-shared-handle=9612 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.30.1936094185\1429548400" --font-cache-shared-handle=17444 /prefetch:673131151
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.81.177116934\987277061" --font-cache-shared-handle=10608 /prefetch:673131151
taskeng.exe {1F609842-3D89-402A-B3F5-6A25D9269399}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Default/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A9_Stable_R2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SlimmingPaint/EnableSlimmingPaint/*SpdyEnableDependencies/Control/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/*WebRTC-LocalIPPermissionCheck/Default/*WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2168.86.1160950752\507794369" --font-cache-shared-handle=16924 /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 572 576 584 65536 580

C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Martin\Downloads\Google Chrome\RSITx64 (2).exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-19 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-19 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2012-08-27 6334096]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-08-27 665400]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-08-15 17111056]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-08-15 193008]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-27 2916152]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-09-19 7818040]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-01-12 2787264]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-08-27 13647576]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-08-07 1321688]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21 472992]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-08-23 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-08-23 771032]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-08-23 769496]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-01-12 1860120]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2013-04-25 1075296]
"IntellingentTouchpad"=C:\Program Files (x86)\Lenovo\Intelligent Touchpad\IntelligentTouchpad.exe [2012-07-23 673336]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-12-22 596528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-08-23 622080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
EldosMountNotificator-cbfs5 - {BFCCDFFC-33DA-40E1-B23A-B3E16C49D0DB} - C:\WINDOWS\system32\cbfsMntNtf5.dll [2015-10-04 185640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Virtual Storage Mount Notification - {BFCCDFFC-33DA-40E1-B23A-B3E16C49D0DB} - C:\WINDOWS\system32\cbfsMntNtf5.dll [2015-10-04 185640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
"SafeModeBlockNonAdmins"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.tscc"=C:\WINDOWS\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\WINDOWS\SysWOW64\tsc2_codec64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2016-02-19 19:28:19 ----D---- C:\rsit
2016-02-19 19:28:19 ----D---- C:\Program Files\trend micro
2016-02-15 12:51:15 ----A---- C:\WINDOWS\system32\novamnk7.dll
2016-02-15 12:51:15 ----A---- C:\WINDOWS\system32\novamik7.dll
2016-02-15 12:51:13 ----D---- C:\Program Files\Softland
2016-02-15 12:49:04 ----SD---- C:\NETZSCH
2016-02-15 12:44:33 ----SD---- C:\Program Files (x86)\NETZSCH
2016-02-11 11:29:44 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-02-11 11:29:44 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-02-11 11:29:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-02-11 11:29:44 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-02-11 11:29:43 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-02-11 11:29:43 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-02-11 11:29:42 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-02-11 11:29:42 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-02-11 11:27:26 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2016-02-11 11:27:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-02-11 11:27:25 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2016-02-11 11:27:25 ----A---- C:\WINDOWS\SYSWOW64\EncDec.dll
2016-02-11 11:27:25 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-02-11 11:27:25 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-02-11 11:27:25 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-02-11 11:27:25 ----A---- C:\WINDOWS\system32\EncDec.dll
2016-02-11 11:27:25 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-02-11 11:27:24 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-02-11 11:27:24 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-02-11 11:27:24 ----A---- C:\WINDOWS\SYSWOW64\cfgbkend.dll
2016-02-11 11:27:24 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2016-02-11 11:27:23 ----A---- C:\WINDOWS\system32\invagent.dll
2016-02-11 11:27:23 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-02-11 11:27:23 ----A---- C:\WINDOWS\system32\devinv.dll
2016-02-11 11:27:23 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-02-11 11:27:23 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-02-11 11:27:23 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-02-11 11:27:23 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-02-11 11:27:02 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-02-11 11:27:02 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-02-11 11:27:02 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-02-11 11:27:02 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-02-11 11:27:02 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-02-11 11:27:02 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-02-11 11:27:02 ----A---- C:\WINDOWS\system32\certcli.dll
2016-02-11 11:27:01 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-02-11 11:27:01 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-02-11 11:27:01 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2016-02-11 11:26:52 ----A---- C:\WINDOWS\system32\shell32.dll
2016-02-11 11:26:51 ----A---- C:\WINDOWS\system32\twinui.dll
2016-02-11 11:26:50 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-02-11 11:26:49 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-02-11 11:26:49 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-02-11 11:26:49 ----A---- C:\WINDOWS\system32\authui.dll
2016-02-11 11:26:40 ----A---- C:\WINDOWS\system32\win32k.sys
2016-02-11 11:25:48 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-02-11 11:25:47 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-02-11 11:25:47 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-11 11:25:46 ----A---- C:\WINDOWS\system32\combase.dll
2016-02-11 11:25:42 ----A---- C:\WINDOWS\SYSWOW64\WinSync.dll
2016-02-11 11:25:42 ----A---- C:\WINDOWS\system32\WinSync.dll
2016-02-11 11:25:17 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-02-11 11:25:15 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-02-11 11:25:13 ----A---- C:\WINDOWS\system32\wininet.dll
2016-02-11 11:25:12 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-02-11 11:25:11 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2016-02-11 11:25:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-02-11 11:25:11 ----A---- C:\WINDOWS\system32\hlink.dll
2016-02-11 11:25:10 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-02-11 11:25:10 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-02-11 11:25:10 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-02-11 11:25:10 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\system32\jscript.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-02-11 11:25:09 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-02-11 11:24:59 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-02-11 11:24:59 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-02-11 11:24:59 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-02-11 11:24:59 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-02-11 11:24:58 ----A---- C:\WINDOWS\system32\wucltux.dll
2016-02-11 11:24:57 ----A---- C:\WINDOWS\system32\wuwebv.dll
2016-02-11 11:24:57 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2016-02-11 11:24:56 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2016-02-11 11:24:56 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2016-02-11 11:24:56 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2016-02-11 11:24:56 ----A---- C:\WINDOWS\system32\wudriver.dll
2016-02-11 11:24:56 ----A---- C:\WINDOWS\system32\wuapp.exe
2016-02-11 11:24:08 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-02-11 11:24:08 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-02-08 20:52:06 ----D---- C:\Users\Martin\AppData\Roaming\Locktime
2016-02-08 20:51:03 ----D---- C:\ProgramData\Locktime
2016-02-08 20:50:52 ----D---- C:\Program Files\Locktime Software
2016-02-08 20:50:31 ----D---- C:\Users\Martin\AppData\Roaming\Locktime Software
2016-02-08 17:40:51 ----D---- C:\Users\Martin\AppData\Roaming\The Binding of Isaac Rebirth
2016-02-08 14:01:06 ----D---- C:\Users\Martin\AppData\Roaming\Softland
2016-02-08 14:00:57 ----D---- C:\WINDOWS\5E99AEE1F26643218A2003F8B68617F9.TMP
2016-02-08 14:00:31 ----A---- C:\WINDOWS\Ieee_32m.dll
2016-02-07 11:27:04 ----D---- C:\ProgramData\VsTelemetry
2016-02-06 22:30:53 ----D---- C:\FRST
2016-02-06 13:56:19 ----D---- C:\ProgramData\ESET
2016-02-06 13:56:14 ----D---- C:\Program Files\ESET
2016-02-03 20:14:53 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2016-02-02 13:00:42 ----D---- C:\Users\Martin\AppData\Roaming\Ori and the Blind Forest
2016-02-02 12:51:22 ----D---- C:\Program Files (x86)\R.G. Mechanics
2016-01-31 15:03:56 ----D---- C:\Users\Martin\AppData\Roaming\.mono
2016-01-30 23:59:59 ----D---- C:\WINDOWS\SYSWOW64\NV
2016-01-30 23:59:59 ----D---- C:\WINDOWS\system32\NV
2016-01-30 23:51:09 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2016-01-30 23:47:48 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2016-01-30 23:47:48 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2016-01-30 23:47:48 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2016-01-30 23:47:48 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2016-01-30 23:47:48 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2016-01-30 23:47:48 ----A---- C:\WINDOWS\system32\nvopencl.dll
2016-01-30 23:47:48 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2016-01-30 23:47:48 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2016-01-30 23:47:48 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2016-01-30 23:47:47 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\nvdispgenco6436175.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\nvdispco6436175.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\nvcuda.dll
2016-01-30 23:47:47 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2016-01-30 23:47:46 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2016-01-30 23:47:46 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2016-01-30 23:47:46 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2016-01-30 23:26:50 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2016-01-30 23:26:50 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2016-01-30 23:26:49 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2016-01-30 21:06:17 ----D---- C:\ProgramData\Malwarebytes
2016-01-30 21:06:05 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-01-30 21:06:05 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-01-30 21:04:17 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2016-01-25 20:44:25 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-01-25 20:43:13 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-25 20:43:12 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2016-01-25 20:43:12 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2adec.dll
2016-01-25 20:43:12 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-01-25 20:43:12 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-01-25 20:43:12 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-25 20:43:12 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-25 20:43:12 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-25 20:43:12 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\WMVSDECD.DLL
2016-01-25 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\WMVENCOD.DLL
2016-01-25 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOD.DLL
2016-01-25 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2016-01-25 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-25 20:43:11 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-25 20:43:10 ----AC---- C:\WINDOWS\system32\SysFxUI.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\VIDRESZR.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\RESAMPLEDMO.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\MPG4DECD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\MP4SDECD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\MP43DECD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\MP3DMOD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\MFWMAAEC.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\mfvdsp.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\SYSWOW64\COLORCNV.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\MP43DECD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\mfvdsp.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\devenum.dll
2016-01-25 20:43:10 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2016-01-25 20:43:03 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2016-01-25 20:43:03 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-25 20:43:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-01-25 20:43:01 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-01-25 20:42:31 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-01-25 20:42:31 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-25 20:42:30 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-01-25 20:42:30 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-01-25 20:42:30 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-01-25 20:42:30 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-01-25 20:42:29 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-01-25 20:42:29 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-01-25 20:41:23 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-01-25 20:41:23 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-01-25 20:41:22 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-25 20:41:03 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2016-01-25 20:41:03 ----A---- C:\WINDOWS\system32\advapi32.dll

======List of files/folders modified in the last 1 month======

2016-02-19 19:35:51 ----D---- C:\WINDOWS\Temp
2016-02-19 19:33:10 ----D---- C:\WINDOWS\Prefetch
2016-02-19 19:28:19 ----D---- C:\Program Files
2016-02-19 19:09:57 ----D---- C:\WINDOWS\system32\config
2016-02-19 19:02:04 ----D---- C:\WINDOWS\system32\sru
2016-02-19 18:59:28 ----D---- C:\WINDOWS\Microsoft.NET
2016-02-19 18:23:13 ----D---- C:\ProgramData\NVIDIA
2016-02-19 18:22:57 ----D---- C:\WINDOWS\Minidump
2016-02-19 18:22:55 ----D---- C:\Windows
2016-02-19 14:27:53 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2016-02-19 12:42:40 ----D---- C:\Program Files (x86)\Steam
2016-02-19 12:12:23 ----D---- C:\ProgramData\Origin
2016-02-17 22:43:08 ----D---- C:\Users\Martin\AppData\Roaming\Battle.net
2016-02-17 22:43:08 ----D---- C:\ProgramData\Battle.net
2016-02-17 22:42:45 ----D---- C:\Program Files (x86)\Battle.net
2016-02-17 17:31:41 ----SHD---- C:\WINDOWS\Installer
2016-02-17 17:31:41 ----SHD---- C:\Config.Msi
2016-02-17 17:31:21 ----D---- C:\WINDOWS\SysWOW64
2016-02-17 17:27:53 ----D---- C:\WINDOWS\AppReadiness
2016-02-16 16:55:38 ----RD---- C:\Program Files (x86)
2016-02-16 16:55:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-16 16:55:38 ----D---- C:\WINDOWS\system32\Tasks
2016-02-16 14:55:36 ----RSD---- C:\WINDOWS\Fonts
2016-02-16 14:54:13 ----SHD---- C:\System Volume Information
2016-02-16 14:17:53 ----D---- C:\WINDOWS\System32
2016-02-16 14:17:53 ----D---- C:\WINDOWS\Inf
2016-02-16 14:17:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-15 14:51:38 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2016-02-15 14:51:20 ----D---- C:\WINDOWS\Logs
2016-02-15 14:51:20 ----D---- C:\WINDOWS\debug
2016-02-15 13:17:52 ----A---- C:\WINDOWS\win.ini
2016-02-15 12:50:59 ----D---- C:\WINDOWS\system32\DriverStore
2016-02-15 12:50:59 ----D---- C:\WINDOWS\system32\catroot
2016-02-15 12:04:27 ----HD---- C:\ProgramData
2016-02-14 14:08:09 ----RSD---- C:\WINDOWS\assembly
2016-02-13 14:24:38 ----D---- C:\WINDOWS\rescache
2016-02-11 12:02:25 ----D---- C:\WINDOWS\WinSxS
2016-02-11 11:56:37 ----D---- C:\WINDOWS\system32\wbem
2016-02-11 11:56:37 ----D---- C:\WINDOWS\system32\en-US
2016-02-11 11:56:36 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-02-11 11:56:36 ----D---- C:\WINDOWS\system32\sk-SK
2016-02-11 11:56:36 ----D---- C:\WINDOWS\system32\drivers
2016-02-11 11:56:36 ----D---- C:\WINDOWS\system32\appraiser
2016-02-11 11:56:36 ----D---- C:\WINDOWS\apppatch
2016-02-11 11:56:36 ----D---- C:\Program Files\Internet Explorer
2016-02-11 11:56:36 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-11 11:56:35 ----RD---- C:\WINDOWS\ToastData
2016-02-11 11:46:11 ----D---- C:\WINDOWS\CbsTemp
2016-02-11 11:44:53 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 11:40:00 ----D---- C:\WINDOWS\system32\catroot2
2016-02-11 11:38:57 ----D---- C:\Program Files\Windows Journal
2016-02-11 11:37:46 ----D---- C:\WINDOWS\system32\MRT
2016-02-11 11:30:52 ----A---- C:\WINDOWS\system32\MRT.exe
2016-02-10 12:13:12 ----HD---- C:\Program Files\WindowsApps
2016-02-08 22:11:56 ----D---- C:\ProgramData\Package Cache
2016-02-08 22:11:10 ----SD---- C:\Users\Martin\AppData\Roaming\Microsoft
2016-02-08 21:12:20 ----D---- C:\Users\Martin\AppData\Roaming\TeamViewer
2016-02-08 21:05:40 ----D---- C:\WINDOWS\SoftwareDistribution
2016-02-08 20:51:06 ----SHD---- C:\WINDOWS\SYSWOW64\AI_RecycleBin
2016-02-08 14:17:43 ----D---- C:\Program Files\DIFX
2016-02-06 23:31:32 ----D---- C:\Program Files (x86)\Autodesk
2016-02-06 23:30:11 ----D---- C:\Users\Martin\AppData\Roaming\Autodesk
2016-02-06 23:30:06 ----D---- C:\ProgramData\Autodesk
2016-02-06 23:26:45 ----D---- C:\Program Files\Autodesk
2016-02-06 14:29:43 ----D---- C:\WINDOWS\tracing
2016-02-06 14:16:44 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-02-06 13:56:53 ----HD---- C:\WINDOWS\ELAMBKUP
2016-02-03 22:48:51 ----D---- C:\ProgramData\AVAST Software
2016-02-03 20:33:15 ----D---- C:\Program Files\Common Files\AV
2016-02-03 20:33:15 ----D---- C:\Program Files (x86)\Common Files
2016-02-03 20:11:49 ----D---- C:\ProgramData\Skype
2016-02-02 21:58:04 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2016-02-02 21:36:50 ----D---- C:\Program Files (x86)\Origin
2016-02-02 15:57:50 ----D---- C:\WINDOWS\Tasks
2016-02-02 03:37:41 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-01-30 23:51:34 ----D---- C:\ProgramData\NVIDIA Corporation
2016-01-30 23:49:47 ----D---- C:\Program Files\NVIDIA Corporation
2016-01-30 22:47:25 ----D---- C:\Users\Martin\AppData\Roaming\TS3Client
2016-01-30 21:28:00 ----RD---- C:\Users
2016-01-25 21:07:48 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-25 21:07:47 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-25 21:04:30 ----SD---- C:\WINDOWS\system32\CompatTel
2016-01-23 04:42:25 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2016-01-23 04:42:25 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2016-01-23 04:42:25 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2016-01-23 04:42:25 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2016-01-23 04:42:25 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2016-01-23 04:42:25 ----A---- C:\WINDOWS\system32\nvinitx.dll
2016-01-23 04:42:25 ----A---- C:\WINDOWS\system32\nvapi64.dll
2016-01-23 02:04:10 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2016-01-23 02:04:10 ----A---- C:\WINDOWS\system32\nvcpl.dll
2016-01-23 02:04:08 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2016-01-23 02:04:08 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2016-01-23 02:04:08 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2016-01-23 02:04:07 ----A---- C:\WINDOWS\system32\nvshext.dll
2016-01-23 02:04:07 ----A---- C:\WINDOWS\system32\nvmctray.dll
2016-01-23 02:04:07 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2016-01-23 02:04:07 ----A---- C:\WINDOWS\system32\nv3dappshext.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-11-20 69840]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2014-08-15 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2016-01-23 38336]
R0 PxHlpa64;PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R1 cbfs5;cbfs5; \??\C:\WINDOWS\system32\drivers\cbfs5.sys [2015-10-04 422080]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-11-20 263528]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-11-20 186784]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-11-20 206312]
R1 EpfwLWF;@oem115.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-11-20 52872]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2015-11-20 142976]
R2 nldrv;nldrv; \??\C:\Program Files\Locktime Software\NetLimiter 4\nldrv.sys [2015-10-10 120720]
R3 ACPIVPC;@oem53.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-08-15 35600]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-06-09 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-09-05 1390904]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-04-23 69088]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-08-23 4165120]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-08-27 3613528]
R3 IntcDAud;@oem64.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-08-20 449528]
R3 iwdbus;@oem63.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-08-08 26008]
R3 MEIx64;@oem60.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-08-08 99288]
R3 NETwNe64;@oem91.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew01.sys [2015-05-04 3354384]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-01-23 12379072]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-01-12 26560]
R3 nvvad_WaveExtensible;@oem113.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-12-18 47760]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 rtsuvc;@oem16.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2012-08-27 8227216]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-27 43832]
R3 SynTP;@oem38.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-27 448312]
R3 tap0901;@oem83.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2015-11-20 14976]
S3 AMPPAL;@oem49.inf,%AMPPAL.SVCDESC%;Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed Virtual Adapter; C:\WINDOWS\System32\drivers\AMPPAL.sys [2013-05-21 165344]
S3 Apowersoft_AudioDevice;@oem72.inf,%DriverFile%;Apowersoft_AudioDevice; C:\WINDOWS\system32\drivers\Apowersoft_AudioDevice.sys [2014-04-09 31920]
S3 aswTap;@oem67.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-08-15 44640]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-06-09 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-06-09 1201664]
S3 btmaux;@oem44.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\WINDOWS\system32\DRIVERS\btmaux.sys [2013-07-22 140600]
S3 dg_ssudbus;@oem97.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-08 122160]
S3 dot4;@oem85.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem86.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 27040]
S3 dot4usb;@oem85.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 intaud_WaveExtensible;@oem57.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-05-06 38296]
S3 mdf16;mdf16; \??\C:\Users\Martin\AppData\Local\Temp\mdf16.sys [2016-02-19 20400]
S3 mvd23;mvd23; \??\C:\Users\Martin\AppData\Local\Temp\mvd23.sys [2016-02-19 99248]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSUSBVSTOR;@oem4.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-07-09 329944]
S3 ssudmdm;@oem102.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-12-08 214832]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]
S3 VBoxNetFlt;@oem72.inf,%VBoxNetFltService_Desc%;VirtualBox Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-08-26 1157496]
R2 CGVPNCliService;CyberGhost 5 Client Service; C:\Program Files\CyberGhost 5\Service.exe [2016-01-11 65128]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2015-11-20 2522616]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2015-06-12 640928]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-01-12 1163200]
R2 ibtsiva.exe;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2015-06-18 135408]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-05-20 314696]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-18 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-08-08 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-08-08 390616]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 NgbRemoteAccessServer;NETZSCH Remote Access Service; C:\PROGRA~2\NETZSCH\PROTEU~1\program\NGBREM~1.EXE [2015-03-03 343856]
R2 nlsvc;NetLimiter 4 Service; C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe [2015-10-10 322480]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-01-12 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-01-12 4812736]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-01-23 1263040]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2015-06-12 157088]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2016-01-23 424384]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-01-12 6308288]
S2 CAMService;CAM Service; C:\Program Files\Intel\CAM\bin\CAMService.exe [2015-06-03 1246112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-11 269504]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-08-23 279000]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-10-31 1471352]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-06-12 268192]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-02-02 2104840]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-02-19 835152]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

-----------------EOF-----------------

[Rudy]

Zdravím!
Chybu oznamuje ovladač od Intel. Zkuste přeinstalovat ovladač zákl. desky (chipsetu).

[Altair849]

Dobrý deň,

CAMService patrilo k wifi ovládaču a preinstalval som to. Už to CAMService nerobí problémy, mozno to ani nebolo príčinou ale stále ten Windows pri odpájaní secret zón padá do blue screen. Možno je chyba v externom HDD. Neviem. Dá sa to nejak zistiť ? Skontrolovať ?

Ďakujem za každú radu

[Rudy]

Otevřte adresář windows\minidump. Soubory v něm zablte do raru a přiložte k vašemu příštímu postu.

[Altair849]

https://onedrive.live.com/redir?resid=A ... lder%2cdmp

/11:42 pridaný ďalší súbor

[Rudy]

Zde je postup: http://www.solvusoft.com/cs/errors/chyb ... y-pointer/

[Altair849]

Zdravím, tento problém ako som opisoval a začiatku sa mi podarilo odstrániť cez ten sfc/scannow a použitím SFCFix.exe (niekde som to tak našiel a vydarilo sa). Problém s HDD ale pretrvával a nakoniec sa mi oplatilo stiahnuť si bluescreenview program, kde som našiel, že som mal problém ešte s fltmgr.sys súborom a to sa vyriešilo obdobne ako v tomto prípade - http://forum.viry.cz/viewtopic.php?f=5& ... lue+screen

Tak snáď už pôjde všetko tak ako má

Ďakujem za pomoc

[Rudy]

Nemáte zač!