VIRY.CZ

Zdravím, poslední dobou pociťuji zpomalení ntb, a občasné zamrzávání, a tak prosím o kotrolu logu.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jiří at 2016-03-02 13:16:41
Microsoft Windows 8.1 Pro
System drive C: has 15 GB (29%) free of 51 GB
Total RAM: 3999 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:16:46, on 2. 3. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
C:\Program Files (x86)\System Explorer\SystemExplorer.exe
C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jiří.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_74\bin\ssv.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_74\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVBg] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /ANDREA_BF_BYPASS
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [ProductUpdater] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Advanced SystemCare 8] "D:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /auto
O4 - HKCU\..\Run: [Advanced SystemCare 9] "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - D:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: Advanced SystemCare Service 9 (AdvancedSystemCareService9) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 9142 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"D:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task
taskhostex.exe
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /ANDREA_BF_BYPASS
"C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
"C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
"C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2976.0.1270725524\1703078525" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,24,52 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x2a42 --gpu-driver-vendor="%Sniper[bna]\"%" --gpu-driver-version=3.1.1.64 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledPreferAes/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-gpu-compositing --channel="2976.1.1340142678\1134688150" --font-cache-shared-handle=2068 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledPreferAes/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="2976.3.1556198713\1275292661" --font-cache-shared-handle=3052 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledPreferAes/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="2976.5.1028928541\1072735161" --font-cache-shared-handle=4552 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=*AffiliationBasedMatching/EnabledThroughFieldTrial/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Disabled/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_5/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*QUIC/EnabledPreferAes/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/WebRTC-LocalIPPermissionCheck/Default/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="2976.9.784235095\250954975" --font-cache-shared-handle=5208 /prefetch:673131151

"C:\Users\Jiří\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\ASC8_SkipUac_Jiří.job - D:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe /SkipUac
C:\Windows\tasks\ASC9_SkipUac_Jiří.job - C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Uninstaller_SkipUac_Jiří.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-02-14 170696]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_74\bin\ssv.dll [2016-02-29 462432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-14 1537328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-02-29 173152]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HP Quick Launch"=C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-01-18 451072]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-11-17 163384]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-11-17 387640]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-12-04 8712960]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-04 1407744]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 8"=D:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2015-01-20 2428704]
"Advanced SystemCare 9"=C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2015-11-30 2010912]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-01-15 8619224]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-04 1407744]
"SystemExplorerAutoStart"=C:\Program Files (x86)\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"ProductUpdater"=C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [2016-01-19 73216]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-01-29 595504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-11-15 272384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HideSCAHealth"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EAProxyInstaller.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GetGameToken32.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GetGameToken64.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\igoproxy.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\igoproxy64.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Origin.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\OriginClientService.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\OriginCrashReporter.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\OriginER.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UpdateTool.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vcredist_x86.exe]
"Debugger="D:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-03-02 13:16:41 ----D---- C:\rsit
2016-03-02 13:16:41 ----D---- C:\Program Files\trend micro
2016-02-29 13:59:25 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-02-26 14:27:58 ----SD---- C:\Windows\SYSWOW64\GWX
2016-02-26 14:27:58 ----SD---- C:\Windows\system32\GWX
2016-02-26 11:58:40 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2016-02-26 11:58:40 ----A---- C:\Windows\system32\rsaenh.dll
2016-02-26 11:58:30 ----AC---- C:\Windows\system32\drivers\usbehci.sys
2016-02-26 11:58:20 ----A---- C:\Windows\system32\drivers\srv.sys
2016-02-26 11:58:08 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2016-02-26 11:58:08 ----A---- C:\Windows\system32\comsvcs.dll
2016-02-26 11:57:54 ----A---- C:\Windows\system32\winlogon.exe
2016-02-26 11:57:44 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2016-02-26 11:57:44 ----A---- C:\Windows\system32\wscsvc.dll
2016-02-26 11:57:44 ----A---- C:\Windows\system32\wscapi.dll
2016-02-26 11:57:34 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2016-02-26 11:57:34 ----A---- C:\Windows\system32\netlogon.dll
2016-02-26 11:57:25 ----A---- C:\Windows\system32\drivers\netio.sys
2016-02-26 11:57:12 ----AC---- C:\Windows\system32\drivers\spaceport.sys
2016-02-26 11:57:12 ----A---- C:\Windows\SYSWOW64\mispace.dll
2016-02-26 11:57:12 ----A---- C:\Windows\system32\mispace.dll
2016-02-26 11:57:12 ----A---- C:\Windows\system32\drivers\storport.sys
2016-02-26 11:57:12 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2016-02-26 11:56:38 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2016-02-26 11:56:38 ----A---- C:\Windows\system32\storagewmi.dll
2016-02-26 11:56:21 ----A---- C:\Windows\system32\drivers\ntfs.sys
2016-02-26 11:56:12 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2016-02-26 11:56:12 ----A---- C:\Windows\system32\ucrtbase.dll
2016-02-26 11:54:55 ----A---- C:\Windows\system32\msra.exe
2016-02-14 01:01:25 ----D---- C:\Program Files\Common Files\DESIGNER
2016-02-10 04:40:40 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-10 04:40:40 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-10 04:40:40 ----A---- C:\Windows\system32\mshtml.dll
2016-02-10 04:40:40 ----A---- C:\Windows\system32\iertutil.dll
2016-02-10 04:40:39 ----A---- C:\Windows\system32\urlmon.dll
2016-02-10 04:40:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-10 04:40:38 ----A---- C:\Windows\system32\ieframe.dll
2016-02-10 04:40:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-10 04:39:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-02-10 02:05:42 ----A---- C:\Windows\system32\invagent.dll
2016-02-10 02:05:42 ----A---- C:\Windows\system32\generaltel.dll
2016-02-10 02:05:42 ----A---- C:\Windows\system32\devinv.dll
2016-02-10 02:05:42 ----A---- C:\Windows\system32\appraiser.dll
2016-02-10 02:05:42 ----A---- C:\Windows\system32\aeinv.dll
2016-02-10 02:05:41 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-02-10 02:05:41 ----A---- C:\Windows\system32\acmigration.dll
2016-02-10 02:05:40 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-10 02:05:40 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-10 02:05:40 ----A---- C:\Windows\system32\EncDec.dll
2016-02-10 02:05:40 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-10 02:05:39 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-10 02:05:39 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-10 02:05:39 ----A---- C:\Windows\SYSWOW64\cfgbkend.dll
2016-02-10 02:05:39 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-10 02:05:39 ----A---- C:\Windows\system32\cfgbkend.dll
2016-02-10 02:05:37 ----A---- C:\Windows\system32\glcndFilter.dll
2016-02-10 02:05:36 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2016-02-10 02:05:36 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2016-02-10 02:05:35 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2016-02-10 02:05:33 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-10 02:05:33 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-02-10 02:05:33 ----A---- C:\Windows\system32\kerberos.dll
2016-02-10 02:05:33 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-10 02:05:33 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-10 02:05:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-10 02:05:32 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-10 02:05:32 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-10 02:05:32 ----A---- C:\Windows\system32\dpapisrv.dll
2016-02-10 02:05:32 ----A---- C:\Windows\system32\certcli.dll
2016-02-10 02:05:08 ----A---- C:\Windows\system32\shell32.dll
2016-02-10 02:05:04 ----A---- C:\Windows\system32\twinui.dll
2016-02-10 02:05:02 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-02-10 02:04:59 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-02-10 02:04:57 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-02-10 02:04:57 ----A---- C:\Windows\system32\authui.dll
2016-02-10 02:04:52 ----A---- C:\Windows\system32\win32k.sys
2016-02-10 02:04:50 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-10 02:04:50 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-10 02:04:49 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2016-02-10 02:04:49 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-10 02:04:49 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-10 02:04:49 ----A---- C:\Windows\SYSWOW64\combase.dll
2016-02-10 02:04:49 ----A---- C:\Windows\system32\WinTypes.dll
2016-02-10 02:04:49 ----A---- C:\Windows\system32\ntdll.dll
2016-02-10 02:04:49 ----A---- C:\Windows\system32\microsoft-windows-system-events.dll
2016-02-10 02:04:49 ----A---- C:\Windows\system32\combase.dll
2016-02-10 02:04:48 ----A---- C:\Windows\SYSWOW64\wincorlib.dll
2016-02-10 02:04:47 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-10 02:04:41 ----A---- C:\Windows\system32\jscript9.dll
2016-02-10 02:04:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-10 02:04:34 ----A---- C:\Windows\system32\wininet.dll
2016-02-10 02:04:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-10 02:04:32 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-10 02:04:32 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-10 02:04:32 ----A---- C:\Windows\SYSWOW64\hlink.dll
2016-02-10 02:04:32 ----A---- C:\Windows\system32\webcheck.dll
2016-02-10 02:04:32 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-10 02:04:32 ----A---- C:\Windows\system32\hlink.dll
2016-02-10 02:04:32 ----A---- C:\Windows\system32\actxprxy.dll
2016-02-10 02:04:31 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-10 02:04:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-10 02:04:31 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-02-10 02:04:31 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-10 02:04:31 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-10 02:04:31 ----A---- C:\Windows\system32\vbscript.dll
2016-02-10 02:04:31 ----A---- C:\Windows\system32\jscript.dll
2016-02-10 02:04:31 ----A---- C:\Windows\system32\inetcomm.dll
2016-02-10 02:04:31 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-10 02:04:31 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-10 02:04:31 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-10 02:04:29 ----A---- C:\Windows\SYSWOW64\WinSync.dll
2016-02-10 02:04:29 ----A---- C:\Windows\system32\WinSync.dll
2016-02-10 02:04:14 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-02-10 02:04:14 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-02-10 02:04:14 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-02-10 02:04:14 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-02-10 02:04:14 ----A---- C:\Windows\system32\wuwebv.dll
2016-02-10 02:04:14 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2016-02-10 02:04:14 ----A---- C:\Windows\system32\wudriver.dll
2016-02-10 02:04:14 ----A---- C:\Windows\system32\wucltux.dll
2016-02-10 02:04:14 ----A---- C:\Windows\system32\wuaueng.dll
2016-02-10 02:04:14 ----A---- C:\Windows\system32\wuauclt.exe
2016-02-10 02:04:14 ----A---- C:\Windows\system32\wuapp.exe
2016-02-10 02:04:14 ----A---- C:\Windows\system32\wuapi.dll
2016-02-10 02:04:09 ----A---- C:\Windows\system32\rdpudd.dll
2016-02-10 02:04:09 ----A---- C:\Windows\system32\rdpcorets.dll
2016-02-10 02:01:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-10 02:01:02 ----A---- C:\Windows\system32\drivers\cng.sys
2016-02-04 23:39:26 ----D---- C:\Program Files\WinPcap

======List of files/folders modified in the last 1 month======

2016-03-02 13:16:41 ----RD---- C:\Program Files
2016-03-02 13:08:38 ----D---- C:\Windows\Prefetch
2016-03-02 13:08:15 ----D---- C:\Windows\Temp
2016-03-02 13:07:42 ----D---- C:\AdwCleaner
2016-03-02 13:06:54 ----D---- C:\Windows\system32\catroot2
2016-03-02 13:05:49 ----D---- C:\Windows\SoftwareDistribution
2016-03-02 13:05:48 ----D---- C:\Windows\system32\config
2016-03-02 13:05:30 ----D---- C:\Windows
2016-03-02 12:52:40 ----D---- C:\Windows\WinSxS
2016-03-02 12:52:21 ----SHD---- C:\System Volume Information
2016-03-02 12:16:38 ----D---- C:\Users\Jiří\AppData\Roaming\TS3Client
2016-03-02 12:16:37 ----D---- C:\Windows\Minidump
2016-03-02 12:16:37 ----D---- C:\Windows\debug
2016-03-02 11:00:00 ----D---- C:\Windows\system32\sru
2016-03-01 19:17:04 ----D---- C:\ProgramData\ProductData
2016-02-29 17:06:41 ----D---- C:\Windows\Microsoft.NET
2016-02-29 13:59:45 ----SHD---- C:\Windows\Installer
2016-02-29 13:59:44 ----D---- C:\Program Files (x86)\Common Files
2016-02-29 13:59:40 ----D---- C:\ProgramData\Oracle
2016-02-29 13:59:27 ----D---- C:\Program Files (x86)\Java
2016-02-29 13:59:25 ----D---- C:\Windows\SysWOW64
2016-02-29 13:52:55 ----D---- C:\Windows\Tasks
2016-02-29 13:52:55 ----D---- C:\Windows\system32\Tasks
2016-02-29 13:52:38 ----D---- C:\ProgramData\IObit
2016-02-29 10:06:47 ----HD---- C:\Program Files\WindowsApps
2016-02-28 00:23:33 ----D---- C:\Users\Jiří\AppData\Roaming\Skype
2016-02-27 17:45:43 ----D---- C:\Windows\Inf
2016-02-27 05:15:03 ----D---- C:\Windows\rescache
2016-02-27 05:10:59 ----D---- C:\Windows\system32\DriverStore
2016-02-26 14:28:04 ----D---- C:\Windows\Logs
2016-02-26 14:27:58 ----RD---- C:\Windows\System32
2016-02-26 12:07:30 ----D---- C:\Windows\system32\drivers
2016-02-26 12:07:29 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-02-26 12:07:29 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-02-26 12:07:29 ----D---- C:\Windows\system32\cs-CZ
2016-02-26 11:58:44 ----D---- C:\Windows\CbsTemp
2016-02-26 11:53:57 ----D---- C:\Program Files (x86)\Steam
2016-02-23 12:26:39 ----RD---- C:\Program Files (x86)
2016-02-23 12:26:37 ----RSD---- C:\Windows\assembly
2016-02-23 12:24:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-20 22:10:47 ----D---- C:\KMPlayer
2016-02-20 13:55:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-16 04:29:28 ----D---- C:\Users\Jiří\AppData\Roaming\uTorrent
2016-02-14 01:01:42 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-02-14 01:01:25 ----D---- C:\Program Files\Common Files\microsoft shared
2016-02-14 01:01:25 ----D---- C:\Program Files\Common Files
2016-02-14 01:00:38 ----D---- C:\Program Files\Microsoft Office
2016-02-13 06:28:40 ----D---- C:\Windows\system32\appraiser
2016-02-13 06:28:40 ----D---- C:\Windows\apppatch
2016-02-13 06:28:39 ----RD---- C:\Windows\ToastData
2016-02-13 06:28:39 ----D---- C:\Program Files\Windows Journal
2016-02-13 06:28:38 ----D---- C:\Windows\system32\wbem
2016-02-13 06:28:37 ----D---- C:\Program Files\Internet Explorer
2016-02-13 06:28:37 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-10 04:49:57 ----D---- C:\Windows\system32\MRT
2016-02-10 04:44:09 ----A---- C:\Windows\system32\MRT.exe
2016-02-08 10:35:34 ----D---- C:\Users\Jiří\AppData\Roaming\Notepad++
2016-02-04 23:39:27 ----D---- C:\ProgramData\Freemake
2016-02-04 23:39:16 ----D---- C:\ProgramData\Skype
2016-02-04 23:38:57 ----D---- C:\Program Files (x86)\Freemake

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-11-06 26528]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35344]
R3 dtlitescsibus;@oem22.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\System32\drivers\dtlitescsibus.sys [2016-01-07 30264]
R3 dtliteusbbus;@oem23.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\Windows\System32\drivers\dtliteusbbus.sys [2016-01-07 46392]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-11-15 10629408]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-12-04 4615424]
R3 IntcHdmiAddService;@oem1.inf,%IntelHDMIDriverForHDAudio.SvcDesc%;Intel(R) High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2010-03-15 145408]
R3 RTL8168;@oem16.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2015-12-04 935168]
R3 rtl8192se;@net8192se64.inf,%RTL8192se.Service.DispName%;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\Windows\system32\DRIVERS\rtl8192se.sys [2013-06-18 1229896]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2015-12-04 33960]
R3 SynTP;@oem2.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-10-14 396848]
S3 dg_ssudbus;@oem11.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 RSUSBSTOR;@oem7.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-09-23 225280]
S3 RTSUER;@oem17.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\Windows\system32\Drivers\RtsUer.sys [2015-12-04 404184]
S3 ssudmdm;@oem13.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2015-11-20 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; D:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [2014-11-04 815392]
R2 AdvancedSystemCareService9;Advanced SystemCare Service 9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [2015-11-04 827680]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2015-12-04 106952]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-02-04 2804976]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 FreemakeVideoCapture;FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [2016-01-19 9216]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-08-04 92216]
R2 HPWMISVC;HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-10-09 2934048]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [2014-12-20 820960]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-06 144200]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-06 144200]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2010-08-04 704568]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-02-04 252120]
S3 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-02-04 835152]
S4 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S4 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-11-06 2099208]

-----------------EOF-----------------

ahoj,
nuz ak bude instalovat podobne kraviny ako Advanced SystemCare mozno raz NTB
zamrzne raz a navzdy na ktorom odbornom fore Ti toto poradili VSETKO OD IOBIT PREC
a kde mas nejaky antivir

Včetně DriverBooster? Bez něho bych nevěděl co všechno mám mít za ovladače..
A antivir již dlouhou dobu nepoužívám. Zkoušel jsem jich hodně, ale všechny mi akorát zasekávaly notebook. A od té doby (rok - rok a půl zpátky) jsem byl v klidu.. Akorát dneska mi začal nějak hodně zamrzávat (ale může se jen přehřívat, nevím)

- ak si uz raz ovladace nainstaloval, pocitac bezi, tak nevidim zmysel nejakého DriverBooster
- AV je nevyhnutna sucast kazdeho pocitaca pripojeného k sieti - to je moj pohlad

No jak jsem psal, už hodně dlouho av nepoužívám, a doteď jsem žádný problém neměl Akorát občas jsem projel ntb adw cleanerem, toť vše. A až na ty iobit appky je log v pohodě?

az na log v poriadku

Ještě otázku bych měl. Trošku jsem koukal, co se děje, když ntb zamrzá, a časově by to odpovídalo událostem "Byl proveden opakovaný pokus o vstupně-výstupní operaci na adrese logického bloku 0x20b9b9a0 pro disk 0 (Název PDO: \Device\00000028)." ..
Co to je, a proč se to děje?

vypada to chybu disku
spust s príkazového riadku chkdsk ak najde chyby zopakuj s parametrom /f

Tak po několika pokusech o opravu disku (chyby to našlo, a po zadání parametru /f se stejně nic neopravilo) systém už nenajede.. Tedy najede, ale strašně dlouho mi nabíhá přihlašovací obrazovka, a po přihlášení mám jen černou obrazovku a kurzor. Jediné co jde, tak přes ctrl+alt+del spustit správce úloh, a když chci přes správce něco spustit, tak mi vyskočí hláška Neznámé prostředí...
Částečná obnova systému nefunguje, také skončí nějakou chybovou hláškou, nouzový režim dělá to samé (černá obrazovka s kurzorem), body obnovení mi o žádné neukazuje..

Mám ještě na dalším oddílu nainstalovaný starší systém, ale ten také nebyl v pořádku, tak jsem zkusil spustit opravu disku z onoho systému, také neúspěšně. V centru akcí mi pořád vyskakuje Restartovat a opravit chyby na jednotce (důležité). Někde jsem se dočetl, že mám zkusit spíš sfc /scannow, to doběhlo do konce, a napsalo to Windows Resource Protection found corrupt files but was unable to fix some of them Details are included in the CBS.log ...
Když vám sem dám ten log, mohl byste se na to mrknout?

zial skor to vidim na novy disk a cistu instalaciu Win
1. ak je moznost vybrat disk, vlozit do iného PC a dat opravit s chkdsk/r
2. bootnut z CD HirensBoot a skontrolovat disk s HDTune free - ak ukaze viac ako 2 cervene policka - vymenit

1. stolní pc mám, ale není tam přípojka na disk z ntb :/
2. S HDTune můžu zkontrolovat i normálně při běžícím systému ne? Jsem teď přihlášený na tom druhým systému


Tak jsem to nechal projet Quick skenem, a ukázalo mi to 4 červené políčka :/ Zrovna v místech, kde mám oddíl se systémem, který mi nejde... Můžu disk normálně používat s tím, že jakoby ten špatný konec disku nebudu používat? (Jako že tam nechám třeba volný, nevyužívaný oddíl)

Quick scan je velmi povrchny ,,, spust normal scan
ako pouzivat to mozes - ja by som takemu disku uz neveril ,,, zvycajne vadne miesta pribudaju az k uplnemu kolapsu disku

Když quick ukázal 4 červené políčka.. bojím se ten normální spustit

Když už, tak ho můžu používat dokuď nedoslouží.. hledám si už nový notebook :/

pri normal su dve moznosti:
- bud dobehne do konca a dozvies sa pravdu
- alebo pri teste zamrzne
nic ine nehrozi
ja by som tam kludne dal aj nejaky bazarovy disk - len by musel prejst testami HDTune

Nechám to tedy projet tím normálním
A stejně už jsem zvažoval nový ntb, tenhle mám už přes 5 let, a je to nějaký kancelářský sh*t