Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

RE: občasné sekání hudby a aplikací,myši v os 7

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní: http://forum.viry.cz/viewtopic.php?f=12&t=123975 . Děkujeme za pochopení.
Zpráva
Autor
dj-paja
Návštěvník
Návštěvník
Příspěvky: 412
Registrován: 16 úno 2012 12:30

RE: občasné sekání hudby a aplikací,myši v os 7

#1 Příspěvek od dj-paja »

Zdravim,pří spuštění mého notebooku s OS Windows 7 acer aspire 6930 G se občas zpomalí,sekne hudba i systém myš pak to za chvilku běží normálně.Dříve tento jev,nenanstával díky.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#2 Příspěvek od Rudy »

Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

dj-paja
Návštěvník
Návštěvník
Příspěvky: 412
Registrován: 16 úno 2012 12:30

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#3 Příspěvek od dj-paja »

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-07-2017
Ran by Paja (24-07-2017 21:51:07)
Running from D:\Stažené soubory
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2014-04-11 13:46:22)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-203695958-539750940-1501531493-500 - Administrator - Disabled)
Guest (S-1-5-21-203695958-539750940-1501531493-501 - Limited - Enabled)
Paja (S-1-5-21-203695958-539750940-1501531493-1000 - Administrator - Enabled) => C:\Users\Paja

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

_fm 0.0.4.5 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\{6DBFF1BC-C61E-49DD-832C-401BCCC39907}}_is1) (Version: 0.0.4.5 - František Szijartó)
µTorrent (HKLM\...\uTorrent) (Version: 2.2.1 - )
4K YouTube to MP3 2.10 (HKLM\...\4K YouTube to MP3_is1) (Version: 2.10.8.1505 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Advanced IP Scanner 2.4 (HKLM\...\{2E644D2D-993F-43B4-B85A-15363CA777C3}) (Version: 2.4.3021 - Famatech)
Advent 1.6.0.2 (HKLM\...\Advent 1.6.0.2) (Version: - )
AIMP (HKLM\...\AIMP) (Version: v4.13.1897, 26.06.2017 - AIMP DevTeam)
Any Video Recorder version 1.0.2 (HKLM\...\{17D86E62-4849-49BC-83D2-FA369CEEA9D9}_is1) (Version: 1.0.2 - anvsoft, Inc.)
Apowersoft Online Launcher verze 1.4.4 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.4.4 - APOWERSOFT LIMITED)
Apowersoft Video Stahovač V6.2.2 (HKLM\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.2.2 - APOWERSOFT LIMITED)
Apple Mobile Device Support (HKLM\...\{9A629DCB-415D-4A50-85B9-5C2E4F8F74A8}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
AquaSoft DiaShow 10 Ultimate (32 Bit) (HKLM\...\AquaSoft DiaShow 10 Ultimate (32 Bit)) (Version: 10.1.01.00697 - AquaSoft)
ArtRage 4 (HKLM\...\{FD363FA3-BBFF-4051-AD2B-FBFF5590217F}) (Version: 4.0.2.1 - Ambient Design) Hidden
ArtRage 4 (HKLM\...\ArtRage 4 4.0.2.1) (Version: 4.0.2.1 - Ambient Design)
Ashampoo Burning Studio 18 (HKLM\...\{91B33C97-AF35-C3DC-976E-8A253D817482}_is1) (Version: 18.0.0 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software)
BluffTitler (HKLM\...\BluffTitler) (Version: - Outerspace Software)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player PRO (HKLM\...\BSPlayerp) (Version: 2.69.1079 - AB Team, d.o.o.)
CPUID HWMonitor 1.29 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 6.8.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.8.0 - Crystal Dew World)
CSEP 14 1.0 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\CSEP 14 1.0) (Version: - )
Data Lifeguard Diagnostic for Windows (HKLM\...\{E40CE517-0D42-4198-96B4-C8232B257EB5}) (Version: 1.13 - Western Digital Corporation)
DVDFab 9.2.0.2 (10/06/2015) (HKLM\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Dynamic-Photo HDR 5 (HKLM\...\Dynamic-Photo HDR 5_is1) (Version: - Mediachance)
EVEREST Ultimate Edition v5.50 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
EZ CD Audio Converter (HKLM\...\EZ CD Audio Converter) (Version: 5.1.1 - Poikosoft)
Facebook Video Downloader 3 (HKLM\...\Facebook Video Downloader_is1) (Version: - Tomabo)
FileZilla Client 3.23.0.2 (HKLM\...\FileZilla Client) (Version: 3.23.0.2 - Tim Kosse)
FlashFXP 5 (HKLM\...\FlashFXP 5) (Version: 5.2.0.3897 - OpenSight Software LLC)
FotoMorph version 13.8.3 (HKLM\...\{87A9A094-22A8-4F8A-9B7D-03D7CA48CE15}_is1) (Version: 13.8.3 - Digital Photo Software)
Free Studio (HKLM\...\Free Studio_is1) (Version: 6.6.29.1027 - Digital Wave Ltd)
Free Video Flip and Rotate (HKLM\...\Free Video Flip and Rotate_is1) (Version: 1.1.35.831 - Digital Wave Ltd)
Free YouTube Download (HKLM\...\Free YouTube Download_is1) (Version: 4.1.47.525 - Digital Wave Ltd)
Freemake Video Converter verze 4.1.9 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation)
GetSmile v1.952 (HKLM\...\GetSmile0903_is1) (Version: 1.952 - Sofrayt LLC)
Google Chrome (HKLM\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hard Drive Inspector Professional 4.35 build # 243 (HKLM\...\Hard Drive Inspector) (Version: 4.35.243 - AltrixSoft)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InstantMask Pro 2.3 (HKLM\...\{A180E293-61BB-44E6-9470-4CE81FDBDECE}_is1) (Version: - clipping-path-studio.com)
iPhotoDraw 2.0 (HKLM\...\{AD0EFB82-D42E-4CBB-9662-98B4916FFBDA}) (Version: 2.0.0.0 - Simen Wu)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.42 - Irfan Skiljan)
iSkysoft Helper Compact 2.5.0 (HKLM\...\{9BF12010-8799-41A5-A671-E9CFDE9E79F3}_is1) (Version: 2.5.0 - iSkysoft)
iSkysoft iMedia Converter Deluxe(Build 5.8.0.1) (HKLM\...\iSkysoft iMedia Converter Deluxe_is1) (Version: 5.8.0.1 - iSkysoft Software)
iTunes (HKLM\...\{8862F11A-A9A0-4899-9F50-B5A79F12F3C2}) (Version: 12.3.1.23 - Apple Inc.)
JPEGCrops 0.7.5 beta (HKLM\...\{DEAD07C6-D070-43AB-A60D-D9ABE55E296D}_is1) (Version: - )
Life Is Strange (HKLM\...\Life Is Strange_is1) (Version: - )
M4VGear 5.1.5 (HKLM\...\M4VGear_is1) (Version: - M4VGear.com Inc.)
Malwarebytes verze 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Merge Version 2.1 (HKLM\...\merge_is1) (Version: - )
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (Czech) (HKLM\...\{95120000-00AF-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 ENU (HKLM\...\{773AC1E4-5F27-4DF6-A932-7FDDE35C069D}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mortal Kombat Komplete Edition (HKLM\...\{9F012408-04EC-4989-932F-4C096117D2DD}_is1) (Version: - Warner Bros)
Mozilla Firefox 54.0.1 (x86 cs) (HKLM\...\Mozilla Firefox 54.0.1 (x86 cs)) (Version: 54.0.1 - Mozilla)
Neat Image v7.6.0 Pro plug-in for Photoshop (HKLM\...\Neat Image plug-in for Photoshop_is1) (Version: - Neat Image team, ABSoft)
Neat Image v7.6.0 Pro Standalone (HKLM\...\Neat Image Standalone_is1) (Version: - Neat Image team, ABSoft)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - )
NVIDIA PhysX (HKLM\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Opera Stable 46.0.2597.57 (HKLM\...\Opera 46.0.2597.57) (Version: 46.0.2597.57 - Opera Software)
PDF Decrypter Pro 3.60 (HKLM\...\PDF Decrypter Pro_is1) (Version: - pdfdecrypter.com)
Photo! Editor 1.1 (HKLM\...\PhotoToolkit_is1) (Version: - )
Photodex Presenter (HKLM\...\Photodex Presenter) (Version: - Photodex Corporation)
PhotoFiltre 7 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\PhotoFiltre 7) (Version: - )
Photo-Reactor 1.51 (HKLM\...\{E6E9331E-A2FF-4503-B062-11769A435FAA}_is1) (Version: - Mediachance.com)
PilsFree IPTV verze 1.0 (HKLM\...\{FD0E773E-A8D6-4CFC-AA66-1FD81E2B0000}_is1) (Version: 1.0 - PilsFree, z. s.)
Podpora aplikací Apple (32bitová) (HKLM\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
ProShow Producer (HKLM\...\ProShow Producer) (Version: - Photodex Corporation)
PS3 Media Server (HKLM\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PUSH Entertainment - Video Wallpaper (HKLM\...\Video Wallpaper_is1) (Version: 2.23 - PUSH Entertainment)
RadioSure (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\RadioSure) (Version: - )
reaConverter 7 Standard (HKLM\...\{659727C6-7267-4076-803B-351A467F6CAF}_is1) (Version: 7.1.43.0 - reaConverter LLC)
RealDownloader (HKLM\...\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}) (Version: 1.3.3 - RealNetworks, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Resident Evil 0 HD Remaster (HKLM\...\{XXXXXXXX-XXXX-XXXX-XXXX-BLACKBOX0091}) (Version: 6.0 - Black Box)
Robo-FTP 3.10 (HKLM\...\{1fc5beaa-ed9b-4c31-80eb-ae4903021770}) (Version: 3.10.5.0 - Serengeti Systems Inc.) Hidden
Robo-FTP 3.10 (HKLM\...\{470D6527-E783-4A34-89A5-44492FEE901D}) (Version: 3.10.5.0 - Serengeti Systems Inc.)
Santas Christmas Solitaire (HKLM\...\Santas Christmas SolitaireFinal) (Version: Final - Game-Owl)
Sketch Drawer 3.0 (HKLM\...\Sketch Drawer_is1) (Version: 3.0 - SoftOrbits)
Skype™ 7.34 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.34.103 - Skype Technologies S.A.)
SoftPerfect WiFi Guard version 1.0.7 (HKLM\...\{38AFD787-4D2E-4442-92D2-7739F5F92CF4}_is1) (Version: 1.0.7 - SoftPerfect)
Spyware Terminator 2015 (HKLM\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.1.107 - Crawler Group)
TechPowerUp GPU-Z (HKLM\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Trillian (HKLM\...\Trillian) (Version: - Cerulean Studios, LLC)
UberSoldier 2 (CZ) 1.00 (HKLM\...\UberSoldier 2 (CZ) 1.00) (Version: 1.00 - Monster-CZ)
UEFA Euro 2016 France (HKLM\...\UEFA Euro 2016 France_is1) (Version: - )
Uninstall Tool (HKLM\...\Uninstall Tool_is1) (Version: 3.4.2 - CrystalIDEA Software, Inc.)
Video Rotator V1.0 (HKLM\...\Video Rotator_is1) (Version: - VideoRotator.com)
VirtualDJ Home FREE (HKLM\...\{19192A84-6172-4312-A661-D8F9A34585AB}) (Version: 7.0.4.1 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Wave Editor 3.3.3.0 (HKLM\...\Wave Editor_is1) (Version: 3.3.3.0 - AbyssMedia.com)
WiliSoft Video Splitter 2.1 (HKLM\...\WiliSoft Video Splitter_is1) (Version: - WiliSoft,Inc.)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinX HD Video Converter Deluxe 5.5.3 (HKLM\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)
Xilisoft Video Converter Ultimate (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Xilisoft Video Converter Ultimate) (Version: 7.8.5.20141031 - Xilisoft)
Zamzom Wireless (HKLM\...\{CED3B64B-9381-4AB8-A213-6C084C952E43}) (Version: 1.0.0 - Zamzom)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers01: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Nainstalovano\AIMP3\System\aimp_menu32.dll [2017-07-20] (AIMP DevTeam)
ContextMenuHandlers01: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers01: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F80} => C:\Nainstalovano\EZ CD Audio Converter\ezcd32.dll [2016-01-01] (Poikosoft)
ContextMenuHandlers01: [iSkysoftVideoConverterFileOpreation] -> {B5FA2AE6-7A94-4382-8EA9-58C725AAB854} => C:\Windows\System32\ISCM32.dll [2015-02-27] ()
ContextMenuHandlers01: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers01: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers01: [Right Click Image Converter] -> {13311DA7-1D24-40e5-AE07-7E3750F5DE3C} => C:\Nainstalovano\Right Click Image Converter\extRCIC.dll [2005-06-21] ()
ContextMenuHandlers01: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers01: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers01: [Tomabo.MP4Converter] -> {24146F89-6FA0-4821-96EC-74EED926A80E} => C:\Nainstalovano\Facebook Video Downloader\MP4C_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers01: [Tomabo.MP4Player] -> {5266035F-65FC-4C51-9024-FB57ED8AEB1E} => C:\Nainstalovano\Facebook Video Downloader\MP4P_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers01: [Uninstall] -> {84058084-7609-44D1-B3CC-7A9436CB6D92} => C:\Nainstalovano\Perfect Uninstaller\Contextmenu.dll [2011-10-08] ()
ContextMenuHandlers01: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Nainstalovano\winrar\rarext.dll [2013-08-22] (Alexander Roshal)
ContextMenuHandlers01: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers02: [IVBShlExt] -> {5B9C04C2-5EB5-4B60-8B71-46964DB8CDBF} => C:\Nainstalovano\Photo! Editor\IvBar\ivbshlext.dll [2008-09-02] ()
ContextMenuHandlers03: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers03: [IVBShlExt] -> {5B9C04C2-5EB5-4B60-8B71-46964DB8CDBF} => C:\Nainstalovano\Photo! Editor\IvBar\ivbshlext.dll [2008-09-02] ()
ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Nainstalovano\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers03: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers03: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers04: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Nainstalovano\AIMP3\System\aimp_menu32.dll [2017-07-20] (AIMP DevTeam)
ContextMenuHandlers04: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F80} => C:\Nainstalovano\EZ CD Audio Converter\ezcd32.dll [2016-01-01] (Poikosoft)
ContextMenuHandlers04: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers04: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers04: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers04: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers04: [Uninstall] -> {84058084-7609-44D1-B3CC-7A9436CB6D92} => C:\Nainstalovano\Perfect Uninstaller\Contextmenu.dll [2011-10-08] ()
ContextMenuHandlers04: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2014-07-02] (NVIDIA Corporation)
ContextMenuHandlers05: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers06: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Nainstalovano\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers06: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers06: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers06: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers06: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers06: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers06: [Tomabo.MP4Converter] -> {24146F89-6FA0-4821-96EC-74EED926A80E} => C:\Nainstalovano\Facebook Video Downloader\MP4C_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers06: [Tomabo.MP4Player] -> {5266035F-65FC-4C51-9024-FB57ED8AEB1E} => C:\Nainstalovano\Facebook Video Downloader\MP4P_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Nainstalovano\winrar\rarext.dll [2013-08-22] (Alexander Roshal)
ContextMenuHandlers06: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B6209B1-0FF8-48DF-AB17-83D82F43805E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0414a515638e1 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {0BD40F9A-711B-443F-A7FF-0A4D23AD89CD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-12] (AVAST Software)
Task: {125A41ED-C849-4696-8A5D-E4647A0CAEDE} - System32\Tasks\GoogleUpdateTaskMachineCore1d08f2e2e042fdf => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {1444F6B0-6A6D-4A62-AB01-C41022B9076F} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-203695958-539750940-1501531493-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {14605887-1D73-4D16-B0B3-4C85CE06D53A} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e329c6aa71d5 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {20082405-070B-4AED-94F8-F477F12B7EF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {271EB6EB-14A0-49DC-A60B-DD6C4C087A7D} - System32\Tasks\Opera scheduled Autoupdate 1397227235 => C:\Nainstalovano\Opera\launcher.exe [2017-07-18] (Opera Software)
Task: {29042D63-8759-451A-ABCC-AE39A3574B93} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bfeed906801e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {2DB69ADC-1E25-44C7-9BA4-D4F02ABD6EB4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {426026BA-E286-4FA3-8F9E-6C32093F3B04} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe
Task: {468FDEA5-3146-40A4-BCED-6A4715EA5AB7} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e908529931c8 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {4F80126F-E5BB-42B7-A539-3C8F7F6A9C33} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Task: {57EBABBC-E842-4BA1-A3A5-ED61FFB805A9} - System32\Tasks\Adobe Flash Player Updater
Task: {6114CB1B-6250-481A-9B66-66EF5AB541DD} - System32\Tasks\{6759A6A2-87DB-4B16-B70E-414F417269CA} => I:\Downloads\Pirate-1005.exe
Task: {638ADED8-02EE-4A28-B69C-DE75D6A718B1} - System32\Tasks\RunUninstallTool_SkipUac => C:\Nainstalovano\Uninstall Tool\UninstallTool.exe [2015-05-10] (CrystalIDEA Software)
Task: {7A7424A0-6D1A-41F8-977B-5231EE388F8A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {7DC8B22A-B3D8-4195-90FB-591289975C66} - System32\Tasks\{81EEE945-3041-4B97-8C04-70F3A409DCCC} => "c:\nainstalovano\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.33.0.105/cs/go/help.faq.installer?LastError=1603
Task: {7E6CF980-AFEA-4E80-92F4-56A97EF79A1F} - System32\Tasks\GoogleUpdateTaskMachineCore1d15d2091c2694a => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {7F678502-A58D-4804-834B-422A6EAEE73A} - System32\Tasks\GoogleUpdateTaskMachineCore1d12fa330b3a975 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {9BDB9D08-670A-4949-AF1F-DE49975CBB98} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-203695958-539750940-1501531493-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {9FEC9B6F-3C94-4E4E-A4F9-7B67B411CAF3} - System32\Tasks\GoogleUpdateTaskMachineCore1cfff933c927ae1 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {A057061E-CC52-49E0-A405-9DF5A628951D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Task: {AE6EA039-3D9D-41B5-A0C4-D98F35BCDCA7} - System32\Tasks\GoogleUpdateTaskMachineCore1d1aafc9c2c4a1d => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {C2339B06-CFDA-4EB1-A00C-42630D96FD88} - System32\Tasks\{34BB3E79-3E70-44AD-878C-DF558C7EA47B} => "c:\nainstalovano\mozilla firefox\firefox.exe" hxxps://www.skype.com/go/downloading?source=lig ... rror=12040
Task: {EA438FD9-0550-455D-8625-AD77120787EB} - System32\Tasks\Avast Emergency Update => C:\Nainstalovano\Avast\AvEmUpdate.exe [2017-07-22] (AVAST Software)
Task: {F6183BB2-1C16-4611-8529-109175800DF5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe
Task: {FCAE1829-AF1B-4659-B9AF-4050218A5853} - System32\Tasks\GoogleUpdateTaskMachineCore1d0efb443302158 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {FD090188-7BEE-4736-B126-CC23509F1570} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f322e751134a => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {FFEAE6C6-30CB-46BC-A358-FDAAFD800007} - System32\Tasks\GoogleUpdateTaskMachineCore1cfeaea3a378319 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfeaea3a378319.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfff933c927ae1.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0414a515638e1.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f2e2e042fdf.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bfeed906801e.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0e329c6aa71d5.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0efb443302158.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f322e751134a.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d12fa330b3a975.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d15d2091c2694a.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1aafc9c2c4a1d.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Loaded Modules (Whitelisted) ==============

2014-04-11 17:24 - 2014-07-02 21:42 - 00107992 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00170224 _____ () C:\Nainstalovano\Avast\JsonRpcServer.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00192664 _____ () C:\Nainstalovano\Avast\event_routing_rpc.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00224256 _____ () C:\Nainstalovano\Avast\tasks_core.dll
2017-07-24 14:57 - 2017-07-24 14:57 - 05886720 _____ () C:\Nainstalovano\Avast\defs\17072402\algo.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00689272 _____ () C:\Nainstalovano\Avast\ffl2.dll
2017-07-24 21:35 - 2017-07-24 21:35 - 05886720 _____ () C:\Nainstalovano\Avast\defs\17072408\algo.dll
2015-08-24 15:58 - 2016-12-06 18:20 - 00048304 _____ () C:\Nainstalovano\FileZilla FTP Client\fzshellext.dll
2015-06-22 22:56 - 2015-06-19 10:18 - 02129408 _____ () C:\Nainstalovano\reaConverter 7 Standard\rc_service.exe
2017-07-23 00:47 - 2017-06-27 12:06 - 01720264 _____ () C:\NAINSTALOVANO\ANTI-MALWARE\MwacLib.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 01065936 _____ () C:\Nainstalovano\Avast\AvChrome.dll
2017-07-08 15:46 - 2017-07-08 15:46 - 67109376 _____ () C:\Nainstalovano\Avast\libcef.dll
2015-01-23 19:31 - 2014-09-09 13:30 - 00603648 _____ () C:\Nainstalovano\Photo Studio 17\Program32\SpiderMonkey.dll
2016-06-06 15:36 - 2016-06-06 15:36 - 01153368 _____ () C:\Nainstalovano\robo ftp\RoboFTPDLL.dll
2016-02-17 11:31 - 2016-02-17 11:31 - 00489472 _____ () C:\Nainstalovano\robo ftp\aws-cpp-sdk-core.dll
2016-02-17 11:37 - 2016-02-17 11:37 - 02027520 _____ () C:\Nainstalovano\robo ftp\aws-cpp-sdk-s3.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00017408 _____ () C:\Nainstalovano\robo ftp\boost_system-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00040960 _____ () C:\Nainstalovano\robo ftp\boost_date_time-vc120-mt-1_59.dll
2015-09-01 11:30 - 2015-09-01 11:30 - 00103936 _____ () C:\Nainstalovano\robo ftp\boost_filesystem-vc120-mt-1_59.dll
2015-09-01 11:35 - 2015-09-01 11:35 - 00519680 _____ () C:\Nainstalovano\robo ftp\boost_log-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00026112 _____ () C:\Nainstalovano\robo ftp\boost_chrono-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00082944 _____ () C:\Nainstalovano\robo ftp\boost_thread-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00628736 _____ () C:\Nainstalovano\robo ftp\boost_regex-vc120-mt-1_59.dll
2015-09-01 11:32 - 2015-09-01 11:32 - 00380416 _____ () C:\Nainstalovano\robo ftp\boost_locale-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00060416 _____ () C:\Nainstalovano\robo ftp\boost_iostreams-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00067072 _____ () C:\Nainstalovano\robo ftp\boost_zlib-vc120-mt-1_59.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:264A9BB7 [118]
AlternateDataStreams: C:\ProgramData\Temp:FB1B13D8 [358]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2017-03-03 22:56 - 00000027 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-203695958-539750940-1501531493-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: wuauserv => 2

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E855DC06-7687-46B6-ACD8-5663CC410ED6}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{678EA129-9FCB-4184-9A4F-0E0EDB40AF33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{4CEACF5E-45A8-4243-97D9-7E9F1CCB6E77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3E2D6AE9-2AAF-4C46-BAB6-1BBA6D83BC3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D6218026-0A3D-4379-BC5D-2D630637708D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0CF08F9A-23AD-4785-AACC-BB2DB7DA50CF}] => (Allow) C:\Nainstalovano\uTorrent\uTorrent.exe
FirewallRules: [{B35B4A50-69D2-4131-9593-0BE9A324BF3D}] => (Allow) C:\Nainstalovano\uTorrent\uTorrent.exe
FirewallRules: [{B18231AF-D45C-4500-9D85-1975EA24EFB2}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{F5F6A779-716A-4EF9-B01C-1410D3E7DE8A}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\outlook.exe
FirewallRules: [{2BA4E93F-9DE0-4CF8-B5DE-BE96A01C9EA2}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GROOVE.EXE
FirewallRules: [{ADF77F0E-9282-4EA5-BFF7-C89C836E2654}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GROOVE.EXE
FirewallRules: [{CDCC11FD-5C0D-493F-9149-07E63069C5C9}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\ONENOTE.EXE
FirewallRules: [{36006F2F-4E7C-407A-B389-FDB6FDDD2135}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\ONENOTE.EXE
FirewallRules: [TCP Query User{311AF5A6-BE4B-4E34-89B1-674997B013E1}D:\hry\comamortuary\binaries\win32\udk.exe] => (Allow) D:\hry\comamortuary\binaries\win32\udk.exe
FirewallRules: [UDP Query User{241FD680-F79A-4276-861F-30E80D50E08F}D:\hry\comamortuary\binaries\win32\udk.exe] => (Allow) D:\hry\comamortuary\binaries\win32\udk.exe
FirewallRules: [{506A7663-9646-45C2-ABA6-EB5AE74A06B5}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13.exe
FirewallRules: [{8D7EF84C-50BB-48FC-85AA-CE6C2A4FE7E4}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
FirewallRules: [{B8B5259A-F32C-407D-8A07-5B05E2E9FFDD}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13Agent.exe
FirewallRules: [{318757C7-D5CD-4DA2-ADE9-3A25120CDDB5}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13ML.exe
FirewallRules: [{26B2466D-1262-4606-BBDF-4D501A5982CD}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Movie\PowerDVD.exe
FirewallRules: [{D34C63DD-D6D0-4FA4-808E-BC7489854111}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe
FirewallRules: [TCP Query User{738821F9-47F3-473E-8AA9-14DB982F1172}F:\hry\dead island\deadislandgame.exe] => (Allow) F:\hry\dead island\deadislandgame.exe
FirewallRules: [UDP Query User{91860325-C950-44D5-A1B7-6F13ECEB2B60}F:\hry\dead island\deadislandgame.exe] => (Allow) F:\hry\dead island\deadislandgame.exe
FirewallRules: [TCP Query User{0EFE5356-6222-4906-AA75-89390A51619B}F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [UDP Query User{E77AB552-E91C-447E-9EE5-23A7FE027202}F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [TCP Query User{EBFC04A4-D04E-41AB-807A-6ED6C9EA3A14}F:\hry\resident evil 6\bh6.exe] => (Block) F:\hry\resident evil 6\bh6.exe
FirewallRules: [UDP Query User{9612F229-83F3-4BE9-AE08-CCC7235DF3D9}F:\hry\resident evil 6\bh6.exe] => (Block) F:\hry\resident evil 6\bh6.exe
FirewallRules: [TCP Query User{D74E380A-6E8E-483A-929C-91758E1C6128}F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{D37E1F17-9CA4-482B-BD1B-F1D518C7F8D4}F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [TCP Query User{CA1F2C7F-EB39-4302-B2CE-A8FCA309B815}D:\hry\fifa 2014\fifa 14\game\fifa14.exe] => (Allow) D:\hry\fifa 2014\fifa 14\game\fifa14.exe
FirewallRules: [UDP Query User{1B14D089-8A0E-4052-ABE9-A85BE7BDE73A}D:\hry\fifa 2014\fifa 14\game\fifa14.exe] => (Allow) D:\hry\fifa 2014\fifa 14\game\fifa14.exe
FirewallRules: [TCP Query User{BE115552-1BF6-4E8F-8F36-D18FF59D9484}F:\games\enemy front proper\bin32\enemyfront.exe] => (Block) F:\games\enemy front proper\bin32\enemyfront.exe
FirewallRules: [UDP Query User{C437B777-4BFE-4E0A-A6EB-4003EA21F2A8}F:\games\enemy front proper\bin32\enemyfront.exe] => (Block) F:\games\enemy front proper\bin32\enemyfront.exe
FirewallRules: [TCP Query User{6D2A9E09-F345-4A36-B0E9-F495C5EFD36B}C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe] => (Block) C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe
FirewallRules: [UDP Query User{4FFE92CF-1279-48BE-BE3B-093BB04AFB9E}C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe] => (Block) C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe
FirewallRules: [TCP Query User{8E36BF02-F6C3-43D4-8D82-2AAF7254E248}C:\games\fifa 14 (2013)\game\fifa14.exe] => (Block) C:\games\fifa 14 (2013)\game\fifa14.exe
FirewallRules: [UDP Query User{DEBACE0A-5D41-4742-AE72-38C90DDB2A88}C:\games\fifa 14 (2013)\game\fifa14.exe] => (Block) C:\games\fifa 14 (2013)\game\fifa14.exe
FirewallRules: [TCP Query User{CB19C983-064A-464B-A80C-DDF8C1BCD589}D:\hry\real boxing\binaries\win32\realboxing.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxing.exe
FirewallRules: [UDP Query User{E1C9D28B-2CA7-4D59-97E2-7A40D225222B}D:\hry\real boxing\binaries\win32\realboxing.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxing.exe
FirewallRules: [TCP Query User{38C61323-2EE4-46B7-B1E7-A22F3C4FCEFE}D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe] => (Block) D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe
FirewallRules: [UDP Query User{C141B86B-EBFA-4390-9F43-01E2A8F2F9A4}D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe] => (Block) D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe
FirewallRules: [TCP Query User{B8C2CB56-F37E-432F-B1C6-1C46FD560338}D:\hry\real boxing\binaries\win32\realboxinggame.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxinggame.exe
FirewallRules: [UDP Query User{3AF33CFC-F37E-4803-99B5-05E613D94A3C}D:\hry\real boxing\binaries\win32\realboxinggame.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxinggame.exe
FirewallRules: [{35123716-9FF5-458C-9481-16895A8E5DB5}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{F32E71FA-1C74-4262-AD7B-0BCDF83915C1}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{D40B1108-6D0B-449F-BE46-8EA117FC523D}] => (Allow) C:\Nainstalovano\Photo Studio 17\Program32\MediaServer.exe
FirewallRules: [{1CA080FD-B402-4693-812F-8A9BD496B9CA}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{9E212901-E354-4AE2-A10A-F6916B27BF9C}C:\nainstalovano\vlc\vlc.exe] => (Allow) C:\nainstalovano\vlc\vlc.exe
FirewallRules: [UDP Query User{BDE95086-5CED-46C0-8A50-0EDE47791C8E}C:\nainstalovano\vlc\vlc.exe] => (Allow) C:\nainstalovano\vlc\vlc.exe
FirewallRules: [TCP Query User{069B9BAC-7484-4323-A0AA-36BC98077479}C:\nainstalovano\ps3 media server\jre\bin\javaw.exe] => (Allow) C:\nainstalovano\ps3 media server\jre\bin\javaw.exe
FirewallRules: [UDP Query User{1F3CC5C1-E477-442C-9829-2777CD246CB8}C:\nainstalovano\ps3 media server\jre\bin\javaw.exe] => (Allow) C:\nainstalovano\ps3 media server\jre\bin\javaw.exe
FirewallRules: [TCP Query User{69EC4CDD-10F6-4C68-B987-BB6E441E25D5}C:\nainstalovano\totalcmd\totalcmd.exe] => (Allow) C:\nainstalovano\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{3C196146-D1DA-448B-8A78-5173E8025E3F}C:\nainstalovano\totalcmd\totalcmd.exe] => (Allow) C:\nainstalovano\totalcmd\totalcmd.exe
FirewallRules: [TCP Query User{E9949285-8801-497F-8EDB-E20781E76A22}I:\games\pro evolution soccer 2015\pes2015.exe] => (Allow) I:\games\pro evolution soccer 2015\pes2015.exe
FirewallRules: [UDP Query User{7AA3C894-AAAC-45A6-9C99-5D92207E04A5}I:\games\pro evolution soccer 2015\pes2015.exe] => (Allow) I:\games\pro evolution soccer 2015\pes2015.exe
FirewallRules: [TCP Query User{B70FE225-727C-4381-B901-DF6C752EEF29}I:\games\son of nor\son.exe] => (Allow) I:\games\son of nor\son.exe
FirewallRules: [UDP Query User{2D43CF5C-7A8E-4DB3-AE8B-19850EA1B6F6}I:\games\son of nor\son.exe] => (Allow) I:\games\son of nor\son.exe
FirewallRules: [TCP Query User{6B33D2C1-7F0B-4767-B851-908E9EA55DA0}C:\nainstalovano\filezilla ftp client\filezilla.exe] => (Allow) C:\nainstalovano\filezilla ftp client\filezilla.exe
FirewallRules: [UDP Query User{64C1A521-0942-435A-BA08-ABAF2B2C536F}C:\nainstalovano\filezilla ftp client\filezilla.exe] => (Allow) C:\nainstalovano\filezilla ftp client\filezilla.exe
FirewallRules: [TCP Query User{59BF052A-8A8A-402F-8005-50C99DF753BE}D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [UDP Query User{361719EC-240D-481A-8BB0-A45735A0E00B}D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [{D6FA0C13-5CB1-4953-A891-2647936CB998}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{578D0F63-3AF7-4897-94F7-46A8933EF93D}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{3F1596EC-8D8B-45B8-B7D0-A661585CD205}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0390F6E7-CBB5-46E3-AFDB-8611C62EFF4C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{EA3DF2FD-6A2D-4902-8A93-EA7468D34538}] => (Allow) C:\Nainstalovano\Itunes\iTunes.exe
FirewallRules: [{D54F1D65-DABC-43F4-82FC-8513ABFA7169}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{9C77410F-4E75-458B-B369-B710A204E8AB}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{728E93F6-3DB8-4A7E-ADC5-B1FD0882525F}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{F53F47A2-8241-4613-BBC4-5F4362575D2A}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{E1B657D0-8459-4DCB-AA5F-A7ADED2D2AE2}] => (Allow) C:\Nainstalovano\Video Download Capture\Video Download Capture.exe
FirewallRules: [{87256B0C-4F7D-4D8E-93D3-1A5721B90307}] => (Allow) C:\Nainstalovano\Video Download Capture\Video Download Capture.exe
FirewallRules: [{C275FEB4-D930-4302-A396-70D2AA229A01}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{8FB66D5A-E292-44FA-8851-58DB54711213}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{6A2A0450-4110-436E-B9D2-3421C68DAD26}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{5A686B6F-7B31-4AD7-B3EB-4B8C79E82F8A}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{3AC1205C-2F01-4AC4-84BA-813E422BC3D2}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{D1B50CF9-5737-4475-BC21-EB15BC801912}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{1FA20D28-B7AB-4BCF-B5CD-38CBAE07C642}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{AE5324D4-9E38-46E8-A9E3-0EF9D3764744}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{6E181540-DEF6-4904-ABC0-C60C7BCA3B5D}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{D002448B-77F7-45C2-9350-692C64084DDD}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{041E05C7-363F-4DDA-AE89-C0314DD77C39}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{0084348E-86E7-40F6-B058-49DD7D553E1A}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{B44BE1F4-94AE-491A-AB1B-D1E6B8BF8F3C}] => (Allow) C:\Users\Paja\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe
FirewallRules: [{E2BECB5F-4E14-4C97-A431-5E2D6BC3454E}] => (Allow) C:\Users\Paja\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe
FirewallRules: [{193DD11A-FAD3-4B4E-8050-EA94916F1321}] => (Allow) C:\Nainstalovano\Video Download Capture 6\Video Download Capture 6.exe
FirewallRules: [{9D76169F-78B4-4E08-A790-CEC4C9CCE54F}] => (Allow) C:\Nainstalovano\Video Download Capture 6\Video Download Capture 6.exe
FirewallRules: [{B3295ED0-85A8-4713-8CC9-E4C1D18137E9}] => (Allow) C:\Nainstalovano\Video Download Capture 6\rtmpsrv.exe
FirewallRules: [{0EB61236-97E3-4BD1-9C0E-CE1952191393}] => (Allow) C:\Nainstalovano\Video Download Capture 6\rtmpsrv.exe
FirewallRules: [{2D7406D9-9A70-4DED-8801-F7B09AAE728A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{C75B04B2-A39E-4BC7-BACE-0009A6FCB055}] => (Allow) C:\Nainstalovano\Opera\46.0.2597.46\opera.exe
FirewallRules: [{21D2E44D-57A8-4BE4-BEDE-8457BD65CB3A}] => (Allow) C:\Nainstalovano\Opera\46.0.2597.57\opera.exe
StandardProfile\AuthorizedApplications: [C:\Nainstalovano\Facebook Video Downloader\FacebookVideoDownloader.exe] => Enabled:Facebook Video Downloader

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter #3
Description: Adaptér miniportu Microsoft Virtual WiFi
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/24/2017 09:35:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/24/2017 09:34:14 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 09:34:14 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 09:34:14 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 02:57:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/24/2017 02:56:04 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 02:56:04 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 02:56:04 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/23/2017 10:24:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/23/2017 10:23:16 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0


System errors:
=============
Error: (07/24/2017 09:37:41 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.

Error: (07/24/2017 09:36:40 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: Přidělování DHCP bylo automaticky vypnuto u IP adresy 192.168.1.104, protože tato adresa nepatří do oboru 192.168.137.0/255.255.255.0, ze kterého jsou přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této IP adresy zapnout, změňte obor tak, aby tuto IP adresu zahrnoval, nebo změňte IP adresu tak, aby patřila do oboru.

Error: (07/24/2017 09:36:40 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: Službě ICS_IPV6 se nepodařilo nakonfigurovat zásobník IPv6.

Error: (07/24/2017 09:34:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) PROSet/Wireless Registry Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (07/24/2017 09:34:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) PROSet/Wireless Event Log neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (07/24/2017 09:34:13 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 22) (User: NT AUTHORITY)
Description: Služba protokolování událostí zjistila při inicializaci publikačních prostředků chybu v kanálu AirSpaceChannel. V případě analytického nebo ladicího typu kanálu to může znamenat, že došlo také k chybě při inicializaci přihlašovacích prostředků.

Error: (07/24/2017 09:34:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Virtualizace souborů nástroje Řízení uživatelských účtů neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (07/24/2017 02:58:20 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: Přidělování DHCP bylo automaticky vypnuto u IP adresy 192.168.1.103, protože tato adresa nepatří do oboru 192.168.137.0/255.255.255.0, ze kterého jsou přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této IP adresy zapnout, změňte obor tak, aby tuto IP adresu zahrnoval, nebo změňte IP adresu tak, aby patřila do oboru.

Error: (07/24/2017 02:58:19 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: Službě ICS_IPV6 se nepodařilo nakonfigurovat zásobník IPv6.

Error: (07/24/2017 02:56:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) PROSet/Wireless Registry Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.


CodeIntegrity:
===================================
Date: 2017-06-17 15:51:32.750
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-06-10 14:55:18.642
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-25 22:12:03.212
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-25 22:12:01.418
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 20:57:58.820
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 18:31:12.693
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 18:31:12.123
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-27 01:06:56.054
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-01 22:50:41.635
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-02-19 20:09:05.772
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T6400 @ 2.00GHz
Percentage of memory in use: 54%
Total physical RAM: 3066.87 MB
Available physical RAM: 1382.88 MB
Total Virtual: 4289.11 MB
Available Virtual: 2488.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:1.67 GB) NTFS
Drive d: () (Fixed) (Total:368.1 GB) (Free:1.44 GB) NTFS
Drive g: (Elements) (Fixed) (Total:1863.01 GB) (Free:2.17 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 0002F734)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#4 Příspěvek od Rudy »

Teď spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

dj-paja
Návštěvník
Návštěvník
Příspěvky: 412
Registrován: 16 úno 2012 12:30

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#5 Příspěvek od dj-paja »

# AdwCleaner 7.0.0.0 - Logfile created on Mon Jul 24 20:21:05 2017
# Updated on 2017/17/07 by Malwarebytes
# Running on Windows 7 Home Premium (X86)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

Deleted: C:\Users\Paja\Downloads\ReimageRepair.exe
Deleted: C:\Windows\System32\drivers\sp_rsdrv2.sys
Deleted: C:\Users\Paja\AppData\Local\Temp\Utils.dll


***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKCU\Software\Microsoft\Internet Explorer\DOMStorage\akamaihd.net
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1047545AA65D2F345942875EA4F70CA7
Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Features\1047545AA65D2F345942875EA4F70CA7
Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Products\1047545AA65D2F345942875EA4F70CA7
Deleted: [Key] - HKU\S-1-5-21-203695958-539750940-1501531493-1000\Software\Conduit
Deleted: [Key] - HKCU\Software\Conduit


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [4264 B] - [2016/11/17 20:26:9]
C:/AdwCleaner/AdwCleaner[S0].txt - [4281 B] - [2016/11/17 20:22:29]
C:/AdwCleaner/AdwCleaner[S1].txt - [1822 B] - [2017/7/24 20:19:42]


########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#6 Příspěvek od Rudy »

Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

dj-paja
Návštěvník
Návštěvník
Příspěvky: 412
Registrován: 16 úno 2012 12:30

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#7 Příspěvek od dj-paja »

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-07-2017
Ran by Paja (25-07-2017 22:06:17)
Running from D:\Stažené soubory
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2014-04-11 13:46:22)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-203695958-539750940-1501531493-500 - Administrator - Disabled)
Guest (S-1-5-21-203695958-539750940-1501531493-501 - Limited - Enabled)
Paja (S-1-5-21-203695958-539750940-1501531493-1000 - Administrator - Enabled) => C:\Users\Paja

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

_fm 0.0.4.5 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\{6DBFF1BC-C61E-49DD-832C-401BCCC39907}}_is1) (Version: 0.0.4.5 - František Szijartó)
µTorrent (HKLM\...\uTorrent) (Version: 2.2.1 - )
4K YouTube to MP3 2.10 (HKLM\...\4K YouTube to MP3_is1) (Version: 2.10.8.1505 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Advanced IP Scanner 2.4 (HKLM\...\{2E644D2D-993F-43B4-B85A-15363CA777C3}) (Version: 2.4.3021 - Famatech)
Advent 1.6.0.2 (HKLM\...\Advent 1.6.0.2) (Version: - )
AIMP (HKLM\...\AIMP) (Version: v4.13.1897, 26.06.2017 - AIMP DevTeam)
Any Video Recorder version 1.0.2 (HKLM\...\{17D86E62-4849-49BC-83D2-FA369CEEA9D9}_is1) (Version: 1.0.2 - anvsoft, Inc.)
Apowersoft Online Launcher verze 1.4.4 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.4.4 - APOWERSOFT LIMITED)
Apowersoft Video Stahovač V6.2.2 (HKLM\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.2.2 - APOWERSOFT LIMITED)
Apple Mobile Device Support (HKLM\...\{9A629DCB-415D-4A50-85B9-5C2E4F8F74A8}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
AquaSoft DiaShow 10 Ultimate (32 Bit) (HKLM\...\AquaSoft DiaShow 10 Ultimate (32 Bit)) (Version: 10.1.01.00697 - AquaSoft)
ArtRage 4 (HKLM\...\{FD363FA3-BBFF-4051-AD2B-FBFF5590217F}) (Version: 4.0.2.1 - Ambient Design) Hidden
ArtRage 4 (HKLM\...\ArtRage 4 4.0.2.1) (Version: 4.0.2.1 - Ambient Design)
Ashampoo Burning Studio 18 (HKLM\...\{91B33C97-AF35-C3DC-976E-8A253D817482}_is1) (Version: 18.0.0 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software)
BluffTitler (HKLM\...\BluffTitler) (Version: - Outerspace Software)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player PRO (HKLM\...\BSPlayerp) (Version: 2.69.1079 - AB Team, d.o.o.)
CPUID HWMonitor 1.29 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 6.8.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.8.0 - Crystal Dew World)
CSEP 14 1.0 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\CSEP 14 1.0) (Version: - )
Data Lifeguard Diagnostic for Windows (HKLM\...\{E40CE517-0D42-4198-96B4-C8232B257EB5}) (Version: 1.13 - Western Digital Corporation)
DVDFab 9.2.0.2 (10/06/2015) (HKLM\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Dynamic-Photo HDR 5 (HKLM\...\Dynamic-Photo HDR 5_is1) (Version: - Mediachance)
EVEREST Ultimate Edition v5.50 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
EZ CD Audio Converter (HKLM\...\EZ CD Audio Converter) (Version: 5.1.1 - Poikosoft)
Facebook Video Downloader 3 (HKLM\...\Facebook Video Downloader_is1) (Version: - Tomabo)
FileZilla Client 3.23.0.2 (HKLM\...\FileZilla Client) (Version: 3.23.0.2 - Tim Kosse)
FlashFXP 5 (HKLM\...\FlashFXP 5) (Version: 5.2.0.3897 - OpenSight Software LLC)
FotoMorph version 13.8.3 (HKLM\...\{87A9A094-22A8-4F8A-9B7D-03D7CA48CE15}_is1) (Version: 13.8.3 - Digital Photo Software)
Free Studio (HKLM\...\Free Studio_is1) (Version: 6.6.29.1027 - Digital Wave Ltd)
Free Video Flip and Rotate (HKLM\...\Free Video Flip and Rotate_is1) (Version: 1.1.35.831 - Digital Wave Ltd)
Free YouTube Download (HKLM\...\Free YouTube Download_is1) (Version: 4.1.47.525 - Digital Wave Ltd)
Freemake Video Converter verze 4.1.9 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation)
GetSmile v1.952 (HKLM\...\GetSmile0903_is1) (Version: 1.952 - Sofrayt LLC)
Google Chrome (HKLM\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hard Drive Inspector Professional 4.35 build # 243 (HKLM\...\Hard Drive Inspector) (Version: 4.35.243 - AltrixSoft)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InstantMask Pro 2.3 (HKLM\...\{A180E293-61BB-44E6-9470-4CE81FDBDECE}_is1) (Version: - clipping-path-studio.com)
iPhotoDraw 2.0 (HKLM\...\{AD0EFB82-D42E-4CBB-9662-98B4916FFBDA}) (Version: 2.0.0.0 - Simen Wu)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.42 - Irfan Skiljan)
iSkysoft Helper Compact 2.5.0 (HKLM\...\{9BF12010-8799-41A5-A671-E9CFDE9E79F3}_is1) (Version: 2.5.0 - iSkysoft)
iSkysoft iMedia Converter Deluxe(Build 5.8.0.1) (HKLM\...\iSkysoft iMedia Converter Deluxe_is1) (Version: 5.8.0.1 - iSkysoft Software)
iTunes (HKLM\...\{8862F11A-A9A0-4899-9F50-B5A79F12F3C2}) (Version: 12.3.1.23 - Apple Inc.)
JPEGCrops 0.7.5 beta (HKLM\...\{DEAD07C6-D070-43AB-A60D-D9ABE55E296D}_is1) (Version: - )
Life Is Strange (HKLM\...\Life Is Strange_is1) (Version: - )
M4VGear 5.1.5 (HKLM\...\M4VGear_is1) (Version: - M4VGear.com Inc.)
Malwarebytes verze 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Merge Version 2.1 (HKLM\...\merge_is1) (Version: - )
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (Czech) (HKLM\...\{95120000-00AF-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 ENU (HKLM\...\{773AC1E4-5F27-4DF6-A932-7FDDE35C069D}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mortal Kombat Komplete Edition (HKLM\...\{9F012408-04EC-4989-932F-4C096117D2DD}_is1) (Version: - Warner Bros)
Mozilla Firefox 54.0.1 (x86 cs) (HKLM\...\Mozilla Firefox 54.0.1 (x86 cs)) (Version: 54.0.1 - Mozilla)
Neat Image v7.6.0 Pro plug-in for Photoshop (HKLM\...\Neat Image plug-in for Photoshop_is1) (Version: - Neat Image team, ABSoft)
Neat Image v7.6.0 Pro Standalone (HKLM\...\Neat Image Standalone_is1) (Version: - Neat Image team, ABSoft)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - )
NVIDIA PhysX (HKLM\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Opera Stable 46.0.2597.57 (HKLM\...\Opera 46.0.2597.57) (Version: 46.0.2597.57 - Opera Software)
PDF Decrypter Pro 3.60 (HKLM\...\PDF Decrypter Pro_is1) (Version: - pdfdecrypter.com)
Photo! Editor 1.1 (HKLM\...\PhotoToolkit_is1) (Version: - )
Photodex Presenter (HKLM\...\Photodex Presenter) (Version: - Photodex Corporation)
PhotoFiltre 7 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\PhotoFiltre 7) (Version: - )
Photo-Reactor 1.51 (HKLM\...\{E6E9331E-A2FF-4503-B062-11769A435FAA}_is1) (Version: - Mediachance.com)
PilsFree IPTV verze 1.0 (HKLM\...\{FD0E773E-A8D6-4CFC-AA66-1FD81E2B0000}_is1) (Version: 1.0 - PilsFree, z. s.)
Podpora aplikací Apple (32bitová) (HKLM\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
ProShow Producer (HKLM\...\ProShow Producer) (Version: - Photodex Corporation)
PS3 Media Server (HKLM\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PUSH Entertainment - Video Wallpaper (HKLM\...\Video Wallpaper_is1) (Version: 2.23 - PUSH Entertainment)
RadioSure (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\RadioSure) (Version: - )
reaConverter 7 Standard (HKLM\...\{659727C6-7267-4076-803B-351A467F6CAF}_is1) (Version: 7.1.43.0 - reaConverter LLC)
RealDownloader (HKLM\...\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}) (Version: 1.3.3 - RealNetworks, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Resident Evil 0 HD Remaster (HKLM\...\{XXXXXXXX-XXXX-XXXX-XXXX-BLACKBOX0091}) (Version: 6.0 - Black Box)
Robo-FTP 3.10 (HKLM\...\{1fc5beaa-ed9b-4c31-80eb-ae4903021770}) (Version: 3.10.5.0 - Serengeti Systems Inc.) Hidden
Robo-FTP 3.10 (HKLM\...\{470D6527-E783-4A34-89A5-44492FEE901D}) (Version: 3.10.5.0 - Serengeti Systems Inc.)
Santas Christmas Solitaire (HKLM\...\Santas Christmas SolitaireFinal) (Version: Final - Game-Owl)
Sketch Drawer 3.0 (HKLM\...\Sketch Drawer_is1) (Version: 3.0 - SoftOrbits)
Skype™ 7.34 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.34.103 - Skype Technologies S.A.)
SoftPerfect WiFi Guard version 1.0.7 (HKLM\...\{38AFD787-4D2E-4442-92D2-7739F5F92CF4}_is1) (Version: 1.0.7 - SoftPerfect)
Spyware Terminator 2015 (HKLM\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.1.107 - Crawler Group)
TechPowerUp GPU-Z (HKLM\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Trillian (HKLM\...\Trillian) (Version: - Cerulean Studios, LLC)
UberSoldier 2 (CZ) 1.00 (HKLM\...\UberSoldier 2 (CZ) 1.00) (Version: 1.00 - Monster-CZ)
UEFA Euro 2016 France (HKLM\...\UEFA Euro 2016 France_is1) (Version: - )
Uninstall Tool (HKLM\...\Uninstall Tool_is1) (Version: 3.4.2 - CrystalIDEA Software, Inc.)
Video Rotator V1.0 (HKLM\...\Video Rotator_is1) (Version: - VideoRotator.com)
VirtualDJ Home FREE (HKLM\...\{19192A84-6172-4312-A661-D8F9A34585AB}) (Version: 7.0.4.1 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Wave Editor 3.3.3.0 (HKLM\...\Wave Editor_is1) (Version: 3.3.3.0 - AbyssMedia.com)
WiliSoft Video Splitter 2.1 (HKLM\...\WiliSoft Video Splitter_is1) (Version: - WiliSoft,Inc.)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinX HD Video Converter Deluxe 5.5.3 (HKLM\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)
Xilisoft Video Converter Ultimate (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Xilisoft Video Converter Ultimate) (Version: 7.8.5.20141031 - Xilisoft)
Zamzom Wireless (HKLM\...\{CED3B64B-9381-4AB8-A213-6C084C952E43}) (Version: 1.0.0 - Zamzom)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers01: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Nainstalovano\AIMP3\System\aimp_menu32.dll [2017-07-20] (AIMP DevTeam)
ContextMenuHandlers01: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers01: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F80} => C:\Nainstalovano\EZ CD Audio Converter\ezcd32.dll [2016-01-01] (Poikosoft)
ContextMenuHandlers01: [iSkysoftVideoConverterFileOpreation] -> {B5FA2AE6-7A94-4382-8EA9-58C725AAB854} => C:\Windows\System32\ISCM32.dll [2015-02-27] ()
ContextMenuHandlers01: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers01: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers01: [Right Click Image Converter] -> {13311DA7-1D24-40e5-AE07-7E3750F5DE3C} => C:\Nainstalovano\Right Click Image Converter\extRCIC.dll [2005-06-21] ()
ContextMenuHandlers01: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers01: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers01: [Tomabo.MP4Converter] -> {24146F89-6FA0-4821-96EC-74EED926A80E} => C:\Nainstalovano\Facebook Video Downloader\MP4C_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers01: [Tomabo.MP4Player] -> {5266035F-65FC-4C51-9024-FB57ED8AEB1E} => C:\Nainstalovano\Facebook Video Downloader\MP4P_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers01: [Uninstall] -> {84058084-7609-44D1-B3CC-7A9436CB6D92} => C:\Nainstalovano\Perfect Uninstaller\Contextmenu.dll [2011-10-08] ()
ContextMenuHandlers01: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Nainstalovano\winrar\rarext.dll [2013-08-22] (Alexander Roshal)
ContextMenuHandlers01: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers02: [IVBShlExt] -> {5B9C04C2-5EB5-4B60-8B71-46964DB8CDBF} => C:\Nainstalovano\Photo! Editor\IvBar\ivbshlext.dll [2008-09-02] ()
ContextMenuHandlers03: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers03: [IVBShlExt] -> {5B9C04C2-5EB5-4B60-8B71-46964DB8CDBF} => C:\Nainstalovano\Photo! Editor\IvBar\ivbshlext.dll [2008-09-02] ()
ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Nainstalovano\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers03: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers03: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers04: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Nainstalovano\AIMP3\System\aimp_menu32.dll [2017-07-20] (AIMP DevTeam)
ContextMenuHandlers04: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F80} => C:\Nainstalovano\EZ CD Audio Converter\ezcd32.dll [2016-01-01] (Poikosoft)
ContextMenuHandlers04: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers04: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers04: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers04: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers04: [Uninstall] -> {84058084-7609-44D1-B3CC-7A9436CB6D92} => C:\Nainstalovano\Perfect Uninstaller\Contextmenu.dll [2011-10-08] ()
ContextMenuHandlers04: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2014-07-02] (NVIDIA Corporation)
ContextMenuHandlers05: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers06: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Nainstalovano\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers06: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers06: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers06: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers06: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers06: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers06: [Tomabo.MP4Converter] -> {24146F89-6FA0-4821-96EC-74EED926A80E} => C:\Nainstalovano\Facebook Video Downloader\MP4C_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers06: [Tomabo.MP4Player] -> {5266035F-65FC-4C51-9024-FB57ED8AEB1E} => C:\Nainstalovano\Facebook Video Downloader\MP4P_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Nainstalovano\winrar\rarext.dll [2013-08-22] (Alexander Roshal)
ContextMenuHandlers06: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B6209B1-0FF8-48DF-AB17-83D82F43805E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0414a515638e1 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {0BD40F9A-711B-443F-A7FF-0A4D23AD89CD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-12] (AVAST Software)
Task: {125A41ED-C849-4696-8A5D-E4647A0CAEDE} - System32\Tasks\GoogleUpdateTaskMachineCore1d08f2e2e042fdf => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {1444F6B0-6A6D-4A62-AB01-C41022B9076F} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-203695958-539750940-1501531493-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {14605887-1D73-4D16-B0B3-4C85CE06D53A} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e329c6aa71d5 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {20082405-070B-4AED-94F8-F477F12B7EF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {271EB6EB-14A0-49DC-A60B-DD6C4C087A7D} - System32\Tasks\Opera scheduled Autoupdate 1397227235 => C:\Nainstalovano\Opera\launcher.exe [2017-07-18] (Opera Software)
Task: {29042D63-8759-451A-ABCC-AE39A3574B93} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bfeed906801e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {2DB69ADC-1E25-44C7-9BA4-D4F02ABD6EB4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {426026BA-E286-4FA3-8F9E-6C32093F3B04} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe
Task: {468FDEA5-3146-40A4-BCED-6A4715EA5AB7} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e908529931c8 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {4F80126F-E5BB-42B7-A539-3C8F7F6A9C33} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Task: {57EBABBC-E842-4BA1-A3A5-ED61FFB805A9} - System32\Tasks\Adobe Flash Player Updater
Task: {6114CB1B-6250-481A-9B66-66EF5AB541DD} - System32\Tasks\{6759A6A2-87DB-4B16-B70E-414F417269CA} => I:\Downloads\Pirate-1005.exe
Task: {638ADED8-02EE-4A28-B69C-DE75D6A718B1} - System32\Tasks\RunUninstallTool_SkipUac => C:\Nainstalovano\Uninstall Tool\UninstallTool.exe [2015-05-10] (CrystalIDEA Software)
Task: {7A7424A0-6D1A-41F8-977B-5231EE388F8A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {7DC8B22A-B3D8-4195-90FB-591289975C66} - System32\Tasks\{81EEE945-3041-4B97-8C04-70F3A409DCCC} => "c:\nainstalovano\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.33.0.105/cs/go/help.faq.installer?LastError=1603
Task: {7E6CF980-AFEA-4E80-92F4-56A97EF79A1F} - System32\Tasks\GoogleUpdateTaskMachineCore1d15d2091c2694a => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {7F678502-A58D-4804-834B-422A6EAEE73A} - System32\Tasks\GoogleUpdateTaskMachineCore1d12fa330b3a975 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {9BDB9D08-670A-4949-AF1F-DE49975CBB98} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-203695958-539750940-1501531493-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {9FEC9B6F-3C94-4E4E-A4F9-7B67B411CAF3} - System32\Tasks\GoogleUpdateTaskMachineCore1cfff933c927ae1 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {A057061E-CC52-49E0-A405-9DF5A628951D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Task: {AE6EA039-3D9D-41B5-A0C4-D98F35BCDCA7} - System32\Tasks\GoogleUpdateTaskMachineCore1d1aafc9c2c4a1d => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {C2339B06-CFDA-4EB1-A00C-42630D96FD88} - System32\Tasks\{34BB3E79-3E70-44AD-878C-DF558C7EA47B} => "c:\nainstalovano\mozilla firefox\firefox.exe" hxxps://www.skype.com/go/downloading?source=lig ... rror=12040
Task: {EA438FD9-0550-455D-8625-AD77120787EB} - System32\Tasks\Avast Emergency Update => C:\Nainstalovano\Avast\AvEmUpdate.exe [2017-07-22] (AVAST Software)
Task: {F6183BB2-1C16-4611-8529-109175800DF5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe
Task: {FCAE1829-AF1B-4659-B9AF-4050218A5853} - System32\Tasks\GoogleUpdateTaskMachineCore1d0efb443302158 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {FD090188-7BEE-4736-B126-CC23509F1570} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f322e751134a => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {FFEAE6C6-30CB-46BC-A358-FDAAFD800007} - System32\Tasks\GoogleUpdateTaskMachineCore1cfeaea3a378319 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfeaea3a378319.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfff933c927ae1.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0414a515638e1.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f2e2e042fdf.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bfeed906801e.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0e329c6aa71d5.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0efb443302158.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f322e751134a.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d12fa330b3a975.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d15d2091c2694a.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1aafc9c2c4a1d.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Loaded Modules (Whitelisted) ==============

2014-04-11 17:24 - 2014-07-02 21:42 - 00107992 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00170224 _____ () C:\Nainstalovano\Avast\JsonRpcServer.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00192664 _____ () C:\Nainstalovano\Avast\event_routing_rpc.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00224256 _____ () C:\Nainstalovano\Avast\tasks_core.dll
2017-07-24 21:35 - 2017-07-24 21:35 - 05886720 _____ () C:\Nainstalovano\Avast\defs\17072408\algo.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00689272 _____ () C:\Nainstalovano\Avast\ffl2.dll
2017-07-25 21:52 - 2017-07-25 21:52 - 05886720 _____ () C:\Nainstalovano\Avast\defs\17072502\algo.dll
2015-06-22 22:56 - 2015-06-19 10:18 - 02129408 _____ () C:\Nainstalovano\reaConverter 7 Standard\rc_service.exe
2017-07-23 00:47 - 2017-06-27 12:06 - 01720264 _____ () C:\NAINSTALOVANO\ANTI-MALWARE\MwacLib.dll
2015-08-24 15:58 - 2016-12-06 18:20 - 00048304 _____ () C:\Nainstalovano\FileZilla FTP Client\fzshellext.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 01065936 _____ () C:\Nainstalovano\Avast\AvChrome.dll
2017-07-08 15:46 - 2017-07-08 15:46 - 67109376 _____ () C:\Nainstalovano\Avast\libcef.dll
2015-01-23 19:31 - 2014-09-09 13:30 - 00603648 _____ () C:\Nainstalovano\Photo Studio 17\Program32\SpiderMonkey.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00134928 _____ () c:\Nainstalovano\Avast\vaarclient.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00231664 _____ () c:\Nainstalovano\Avast\StreamBack.dll
2016-06-06 15:36 - 2016-06-06 15:36 - 01153368 _____ () C:\Nainstalovano\robo ftp\RoboFTPDLL.dll
2016-02-17 11:31 - 2016-02-17 11:31 - 00489472 _____ () C:\Nainstalovano\robo ftp\aws-cpp-sdk-core.dll
2016-02-17 11:37 - 2016-02-17 11:37 - 02027520 _____ () C:\Nainstalovano\robo ftp\aws-cpp-sdk-s3.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00017408 _____ () C:\Nainstalovano\robo ftp\boost_system-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00040960 _____ () C:\Nainstalovano\robo ftp\boost_date_time-vc120-mt-1_59.dll
2015-09-01 11:30 - 2015-09-01 11:30 - 00103936 _____ () C:\Nainstalovano\robo ftp\boost_filesystem-vc120-mt-1_59.dll
2015-09-01 11:35 - 2015-09-01 11:35 - 00519680 _____ () C:\Nainstalovano\robo ftp\boost_log-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00026112 _____ () C:\Nainstalovano\robo ftp\boost_chrono-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00082944 _____ () C:\Nainstalovano\robo ftp\boost_thread-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00628736 _____ () C:\Nainstalovano\robo ftp\boost_regex-vc120-mt-1_59.dll
2015-09-01 11:32 - 2015-09-01 11:32 - 00380416 _____ () C:\Nainstalovano\robo ftp\boost_locale-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00060416 _____ () C:\Nainstalovano\robo ftp\boost_iostreams-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00067072 _____ () C:\Nainstalovano\robo ftp\boost_zlib-vc120-mt-1_59.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:264A9BB7 [118]
AlternateDataStreams: C:\ProgramData\Temp:FB1B13D8 [358]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2017-03-03 22:56 - 00000027 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-203695958-539750940-1501531493-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: wuauserv => 2

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E855DC06-7687-46B6-ACD8-5663CC410ED6}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{678EA129-9FCB-4184-9A4F-0E0EDB40AF33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{4CEACF5E-45A8-4243-97D9-7E9F1CCB6E77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3E2D6AE9-2AAF-4C46-BAB6-1BBA6D83BC3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D6218026-0A3D-4379-BC5D-2D630637708D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0CF08F9A-23AD-4785-AACC-BB2DB7DA50CF}] => (Allow) C:\Nainstalovano\uTorrent\uTorrent.exe
FirewallRules: [{B35B4A50-69D2-4131-9593-0BE9A324BF3D}] => (Allow) C:\Nainstalovano\uTorrent\uTorrent.exe
FirewallRules: [{B18231AF-D45C-4500-9D85-1975EA24EFB2}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{F5F6A779-716A-4EF9-B01C-1410D3E7DE8A}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\outlook.exe
FirewallRules: [{2BA4E93F-9DE0-4CF8-B5DE-BE96A01C9EA2}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GROOVE.EXE
FirewallRules: [{ADF77F0E-9282-4EA5-BFF7-C89C836E2654}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GROOVE.EXE
FirewallRules: [{CDCC11FD-5C0D-493F-9149-07E63069C5C9}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\ONENOTE.EXE
FirewallRules: [{36006F2F-4E7C-407A-B389-FDB6FDDD2135}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\ONENOTE.EXE
FirewallRules: [TCP Query User{311AF5A6-BE4B-4E34-89B1-674997B013E1}D:\hry\comamortuary\binaries\win32\udk.exe] => (Allow) D:\hry\comamortuary\binaries\win32\udk.exe
FirewallRules: [UDP Query User{241FD680-F79A-4276-861F-30E80D50E08F}D:\hry\comamortuary\binaries\win32\udk.exe] => (Allow) D:\hry\comamortuary\binaries\win32\udk.exe
FirewallRules: [{506A7663-9646-45C2-ABA6-EB5AE74A06B5}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13.exe
FirewallRules: [{8D7EF84C-50BB-48FC-85AA-CE6C2A4FE7E4}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
FirewallRules: [{B8B5259A-F32C-407D-8A07-5B05E2E9FFDD}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13Agent.exe
FirewallRules: [{318757C7-D5CD-4DA2-ADE9-3A25120CDDB5}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13ML.exe
FirewallRules: [{26B2466D-1262-4606-BBDF-4D501A5982CD}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Movie\PowerDVD.exe
FirewallRules: [{D34C63DD-D6D0-4FA4-808E-BC7489854111}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe
FirewallRules: [TCP Query User{738821F9-47F3-473E-8AA9-14DB982F1172}F:\hry\dead island\deadislandgame.exe] => (Allow) F:\hry\dead island\deadislandgame.exe
FirewallRules: [UDP Query User{91860325-C950-44D5-A1B7-6F13ECEB2B60}F:\hry\dead island\deadislandgame.exe] => (Allow) F:\hry\dead island\deadislandgame.exe
FirewallRules: [TCP Query User{0EFE5356-6222-4906-AA75-89390A51619B}F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [UDP Query User{E77AB552-E91C-447E-9EE5-23A7FE027202}F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [TCP Query User{EBFC04A4-D04E-41AB-807A-6ED6C9EA3A14}F:\hry\resident evil 6\bh6.exe] => (Block) F:\hry\resident evil 6\bh6.exe
FirewallRules: [UDP Query User{9612F229-83F3-4BE9-AE08-CCC7235DF3D9}F:\hry\resident evil 6\bh6.exe] => (Block) F:\hry\resident evil 6\bh6.exe
FirewallRules: [TCP Query User{D74E380A-6E8E-483A-929C-91758E1C6128}F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{D37E1F17-9CA4-482B-BD1B-F1D518C7F8D4}F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [TCP Query User{CA1F2C7F-EB39-4302-B2CE-A8FCA309B815}D:\hry\fifa 2014\fifa 14\game\fifa14.exe] => (Allow) D:\hry\fifa 2014\fifa 14\game\fifa14.exe
FirewallRules: [UDP Query User{1B14D089-8A0E-4052-ABE9-A85BE7BDE73A}D:\hry\fifa 2014\fifa 14\game\fifa14.exe] => (Allow) D:\hry\fifa 2014\fifa 14\game\fifa14.exe
FirewallRules: [TCP Query User{BE115552-1BF6-4E8F-8F36-D18FF59D9484}F:\games\enemy front proper\bin32\enemyfront.exe] => (Block) F:\games\enemy front proper\bin32\enemyfront.exe
FirewallRules: [UDP Query User{C437B777-4BFE-4E0A-A6EB-4003EA21F2A8}F:\games\enemy front proper\bin32\enemyfront.exe] => (Block) F:\games\enemy front proper\bin32\enemyfront.exe
FirewallRules: [TCP Query User{6D2A9E09-F345-4A36-B0E9-F495C5EFD36B}C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe] => (Block) C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe
FirewallRules: [UDP Query User{4FFE92CF-1279-48BE-BE3B-093BB04AFB9E}C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe] => (Block) C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe
FirewallRules: [TCP Query User{8E36BF02-F6C3-43D4-8D82-2AAF7254E248}C:\games\fifa 14 (2013)\game\fifa14.exe] => (Block) C:\games\fifa 14 (2013)\game\fifa14.exe
FirewallRules: [UDP Query User{DEBACE0A-5D41-4742-AE72-38C90DDB2A88}C:\games\fifa 14 (2013)\game\fifa14.exe] => (Block) C:\games\fifa 14 (2013)\game\fifa14.exe
FirewallRules: [TCP Query User{CB19C983-064A-464B-A80C-DDF8C1BCD589}D:\hry\real boxing\binaries\win32\realboxing.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxing.exe
FirewallRules: [UDP Query User{E1C9D28B-2CA7-4D59-97E2-7A40D225222B}D:\hry\real boxing\binaries\win32\realboxing.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxing.exe
FirewallRules: [TCP Query User{38C61323-2EE4-46B7-B1E7-A22F3C4FCEFE}D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe] => (Block) D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe
FirewallRules: [UDP Query User{C141B86B-EBFA-4390-9F43-01E2A8F2F9A4}D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe] => (Block) D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe
FirewallRules: [TCP Query User{B8C2CB56-F37E-432F-B1C6-1C46FD560338}D:\hry\real boxing\binaries\win32\realboxinggame.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxinggame.exe
FirewallRules: [UDP Query User{3AF33CFC-F37E-4803-99B5-05E613D94A3C}D:\hry\real boxing\binaries\win32\realboxinggame.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxinggame.exe
FirewallRules: [{35123716-9FF5-458C-9481-16895A8E5DB5}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{F32E71FA-1C74-4262-AD7B-0BCDF83915C1}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{D40B1108-6D0B-449F-BE46-8EA117FC523D}] => (Allow) C:\Nainstalovano\Photo Studio 17\Program32\MediaServer.exe
FirewallRules: [{1CA080FD-B402-4693-812F-8A9BD496B9CA}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{9E212901-E354-4AE2-A10A-F6916B27BF9C}C:\nainstalovano\vlc\vlc.exe] => (Allow) C:\nainstalovano\vlc\vlc.exe
FirewallRules: [UDP Query User{BDE95086-5CED-46C0-8A50-0EDE47791C8E}C:\nainstalovano\vlc\vlc.exe] => (Allow) C:\nainstalovano\vlc\vlc.exe
FirewallRules: [TCP Query User{069B9BAC-7484-4323-A0AA-36BC98077479}C:\nainstalovano\ps3 media server\jre\bin\javaw.exe] => (Allow) C:\nainstalovano\ps3 media server\jre\bin\javaw.exe
FirewallRules: [UDP Query User{1F3CC5C1-E477-442C-9829-2777CD246CB8}C:\nainstalovano\ps3 media server\jre\bin\javaw.exe] => (Allow) C:\nainstalovano\ps3 media server\jre\bin\javaw.exe
FirewallRules: [TCP Query User{69EC4CDD-10F6-4C68-B987-BB6E441E25D5}C:\nainstalovano\totalcmd\totalcmd.exe] => (Allow) C:\nainstalovano\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{3C196146-D1DA-448B-8A78-5173E8025E3F}C:\nainstalovano\totalcmd\totalcmd.exe] => (Allow) C:\nainstalovano\totalcmd\totalcmd.exe
FirewallRules: [TCP Query User{E9949285-8801-497F-8EDB-E20781E76A22}I:\games\pro evolution soccer 2015\pes2015.exe] => (Allow) I:\games\pro evolution soccer 2015\pes2015.exe
FirewallRules: [UDP Query User{7AA3C894-AAAC-45A6-9C99-5D92207E04A5}I:\games\pro evolution soccer 2015\pes2015.exe] => (Allow) I:\games\pro evolution soccer 2015\pes2015.exe
FirewallRules: [TCP Query User{B70FE225-727C-4381-B901-DF6C752EEF29}I:\games\son of nor\son.exe] => (Allow) I:\games\son of nor\son.exe
FirewallRules: [UDP Query User{2D43CF5C-7A8E-4DB3-AE8B-19850EA1B6F6}I:\games\son of nor\son.exe] => (Allow) I:\games\son of nor\son.exe
FirewallRules: [TCP Query User{6B33D2C1-7F0B-4767-B851-908E9EA55DA0}C:\nainstalovano\filezilla ftp client\filezilla.exe] => (Allow) C:\nainstalovano\filezilla ftp client\filezilla.exe
FirewallRules: [UDP Query User{64C1A521-0942-435A-BA08-ABAF2B2C536F}C:\nainstalovano\filezilla ftp client\filezilla.exe] => (Allow) C:\nainstalovano\filezilla ftp client\filezilla.exe
FirewallRules: [TCP Query User{59BF052A-8A8A-402F-8005-50C99DF753BE}D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [UDP Query User{361719EC-240D-481A-8BB0-A45735A0E00B}D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [{D6FA0C13-5CB1-4953-A891-2647936CB998}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{578D0F63-3AF7-4897-94F7-46A8933EF93D}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{3F1596EC-8D8B-45B8-B7D0-A661585CD205}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0390F6E7-CBB5-46E3-AFDB-8611C62EFF4C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{EA3DF2FD-6A2D-4902-8A93-EA7468D34538}] => (Allow) C:\Nainstalovano\Itunes\iTunes.exe
FirewallRules: [{D54F1D65-DABC-43F4-82FC-8513ABFA7169}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{9C77410F-4E75-458B-B369-B710A204E8AB}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{728E93F6-3DB8-4A7E-ADC5-B1FD0882525F}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{F53F47A2-8241-4613-BBC4-5F4362575D2A}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{E1B657D0-8459-4DCB-AA5F-A7ADED2D2AE2}] => (Allow) C:\Nainstalovano\Video Download Capture\Video Download Capture.exe
FirewallRules: [{87256B0C-4F7D-4D8E-93D3-1A5721B90307}] => (Allow) C:\Nainstalovano\Video Download Capture\Video Download Capture.exe
FirewallRules: [{C275FEB4-D930-4302-A396-70D2AA229A01}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{8FB66D5A-E292-44FA-8851-58DB54711213}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{6A2A0450-4110-436E-B9D2-3421C68DAD26}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{5A686B6F-7B31-4AD7-B3EB-4B8C79E82F8A}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{3AC1205C-2F01-4AC4-84BA-813E422BC3D2}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{D1B50CF9-5737-4475-BC21-EB15BC801912}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{1FA20D28-B7AB-4BCF-B5CD-38CBAE07C642}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{AE5324D4-9E38-46E8-A9E3-0EF9D3764744}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{6E181540-DEF6-4904-ABC0-C60C7BCA3B5D}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{D002448B-77F7-45C2-9350-692C64084DDD}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{041E05C7-363F-4DDA-AE89-C0314DD77C39}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{0084348E-86E7-40F6-B058-49DD7D553E1A}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{B44BE1F4-94AE-491A-AB1B-D1E6B8BF8F3C}] => (Allow) C:\Users\Paja\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe
FirewallRules: [{E2BECB5F-4E14-4C97-A431-5E2D6BC3454E}] => (Allow) C:\Users\Paja\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe
FirewallRules: [{193DD11A-FAD3-4B4E-8050-EA94916F1321}] => (Allow) C:\Nainstalovano\Video Download Capture 6\Video Download Capture 6.exe
FirewallRules: [{9D76169F-78B4-4E08-A790-CEC4C9CCE54F}] => (Allow) C:\Nainstalovano\Video Download Capture 6\Video Download Capture 6.exe
FirewallRules: [{B3295ED0-85A8-4713-8CC9-E4C1D18137E9}] => (Allow) C:\Nainstalovano\Video Download Capture 6\rtmpsrv.exe
FirewallRules: [{0EB61236-97E3-4BD1-9C0E-CE1952191393}] => (Allow) C:\Nainstalovano\Video Download Capture 6\rtmpsrv.exe
FirewallRules: [{2D7406D9-9A70-4DED-8801-F7B09AAE728A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{C75B04B2-A39E-4BC7-BACE-0009A6FCB055}] => (Allow) C:\Nainstalovano\Opera\46.0.2597.46\opera.exe
FirewallRules: [{21D2E44D-57A8-4BE4-BEDE-8457BD65CB3A}] => (Allow) C:\Nainstalovano\Opera\46.0.2597.57\opera.exe
StandardProfile\AuthorizedApplications: [C:\Nainstalovano\Facebook Video Downloader\FacebookVideoDownloader.exe] => Enabled:Facebook Video Downloader

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter #3
Description: Adaptér miniportu Microsoft Virtual WiFi
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/25/2017 09:55:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 3.0.0.1068, časové razítko: 0x59125d35
Název chybujícího modulu: Qt5Core.dll, verze: 5.6.2.0, časové razítko: 0x58ed4d4f
Kód výjimky: 0xc0000005
Posun chyby: 0x0018da93
ID chybujícího procesu: 0xa98
Čas spuštění chybující aplikace: 0x01d3057f95c38dc6
Cesta k chybující aplikaci: C:\Nainstalovano\Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Nainstalovano\Anti-Malware\Qt5Core.dll
ID zprávy: 3879571c-7173-11e7-aeda-00238b4d4eb9

Error: (07/25/2017 09:52:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/25/2017 09:51:16 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/25/2017 09:51:16 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/25/2017 09:51:16 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 10:24:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/24/2017 10:22:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 10:22:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 10:22:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (07/24/2017 09:35:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (07/25/2017 09:54:24 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: Přidělování DHCP bylo automaticky vypnuto u IP adresy 192.168.1.105, protože tato adresa nepatří do oboru 192.168.137.0/255.255.255.0, ze kterého jsou přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této IP adresy zapnout, změňte obor tak, aby tuto IP adresu zahrnoval, nebo změňte IP adresu tak, aby patřila do oboru.

Error: (07/25/2017 09:54:24 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: Službě ICS_IPV6 se nepodařilo nakonfigurovat zásobník IPv6.

Error: (07/25/2017 09:54:19 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: Agent serveru proxy služby DNS nemohl přidělit 0 bajtů paměti. To může znamenat, že tento systém má nedostatek virtuální paměti nebo že správce paměti zjistil vnitřní chybu.

Error: (07/25/2017 09:51:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) PROSet/Wireless Registry Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (07/25/2017 09:51:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) PROSet/Wireless Event Log neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (07/25/2017 09:51:15 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 22) (User: NT AUTHORITY)
Description: Služba protokolování událostí zjistila při inicializaci publikačních prostředků chybu v kanálu AirSpaceChannel. V případě analytického nebo ladicího typu kanálu to může znamenat, že došlo také k chybě při inicializaci přihlašovacích prostředků.

Error: (07/25/2017 09:51:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Virtualizace souborů nástroje Řízení uživatelských účtů neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (07/24/2017 10:24:59 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: Přidělování DHCP bylo automaticky vypnuto u IP adresy 192.168.1.104, protože tato adresa nepatří do oboru 192.168.137.0/255.255.255.0, ze kterého jsou přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této IP adresy zapnout, změňte obor tak, aby tuto IP adresu zahrnoval, nebo změňte IP adresu tak, aby patřila do oboru.

Error: (07/24/2017 10:24:59 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: Službě ICS_IPV6 se nepodařilo nakonfigurovat zásobník IPv6.

Error: (07/24/2017 10:24:32 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
sp_rsdrv2


CodeIntegrity:
===================================
Date: 2017-06-17 15:51:32.750
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-06-10 14:55:18.642
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-25 22:12:03.212
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-25 22:12:01.418
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 20:57:58.820
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 18:31:12.693
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 18:31:12.123
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-27 01:06:56.054
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-01 22:50:41.635
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-02-19 20:09:05.772
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T6400 @ 2.00GHz
Percentage of memory in use: 52%
Total physical RAM: 3066.87 MB
Available physical RAM: 1452.85 MB
Total Virtual: 4375.06 MB
Available Virtual: 2674.64 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:1.59 GB) NTFS
Drive d: () (Fixed) (Total:368.1 GB) (Free:1.43 GB) NTFS
Drive g: (Elements) (Fixed) (Total:1863.01 GB) (Free:2.17 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 0002F734)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#8 Příspěvek od Rudy »

Ještě potřebuji vidět log FRST. Toto je pouze Additional.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

dj-paja
Návštěvník
Návštěvník
Příspěvky: 412
Registrován: 16 úno 2012 12:30

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#9 Příspěvek od dj-paja »

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2017
Ran by Paja (administrator) on PAJA-NOTEBOOK (01-08-2017 00:34:31)
Running from D:\Stažené soubory
Loaded Profiles: Paja (Available Profiles: Paja)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Nainstalovano\Avast\AvastSvc.exe
(Ellora Assets Corp.) C:\Nainstalovano\Freemake\CaptureLib\CaptureLibService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Nainstalovano\reaConverter 7 Standard\rc_service.exe
(Crawler Group, LLC) C:\Program Files\Spyware Terminator\st_rsser.exe
(Malwarebytes) C:\Nainstalovano\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVAST Software) C:\Nainstalovano\Avast\avastui.exe
(Malwarebytes) C:\Nainstalovano\Anti-Malware\mbamtray.exe
(ZONER software) C:\Nainstalovano\Photo Studio 17\Program32\ZPSTray.exe
(AltrixSoft (hxxp://www.altrixsoft.com/)) C:\Program Files\Common Files\AltrixSoft\HDDInfoService\HDDSvc.exe
(AVAST Software s.r.o.) C:\Nainstalovano\Avast\aswidsagent.exe
(Serengeti Systems Incorporated) C:\Nainstalovano\robo ftp\SchedulerService.exe
(Mozilla Corporation) C:\Nainstalovano\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Nainstalovano\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Nainstalovano\Mozilla Firefox\firefox.exe
(Farbar) D:\Stažené soubory\FRST(3).exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Nainstalovano\Avast\AvLaunch.exe [213832 2017-07-22] (AVAST Software)
HKLM\...\Run: [HDInspector.exe] => C:\Nainstalovano\Hard Drive Inspector\HDInspector.exe [3171584 2015-07-27] (Altrixsoft)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\NAINSTALOVANO\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\Nainstalovano\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software)
HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Policies\system: [DisableClock] 0
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
BootExecute: autocheck autochk * sh4native Sh4Removal

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{773AED62-3847-4BF6-ADB6-CD8382113C44}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-203695958-539750940-1501531493-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-203695958-539750940-1501531493-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
SearchScopes: HKU\S-1-5-21-203695958-539750940-1501531493-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-203695958-539750940-1501531493-1000 -> 1500C81568E2C9D8F17E29C71ECBB74C URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-203695958-539750940-1501531493-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-203695958-539750940-1501531493-1000 -> {E3BF7B2D-C987-462D-9BF9-92F2FCC615DA} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll => No File

FireFox:
========
FF ProfilePath: C:\Users\Paja\AppData\Roaming\Mozilla\Firefox\Profiles\3456uct3.default [2017-08-01]
FF Homepage: Mozilla\Firefox\Profiles\3456uct3.default -> hxxps://www.seznam.cz/
FF NetworkProxy: Mozilla\Firefox\Profiles\3456uct3.default -> socks_remote_dns", true
FF NetworkProxy: Mozilla\Firefox\Profiles\3456uct3.default -> type", 4
FF Extension: (MEGA) - C:\Users\Paja\AppData\Roaming\Mozilla\Firefox\Profiles\3456uct3.default\Extensions\firefox@mega.co.nz.xpi [2017-07-28]
FF HKLM\...\Firefox\Extensions: [ISVCU@iSkysoft.com] - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com
FF Extension: (iSkysoft iMedia Converter Deluxe) - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com [2015-10-29] [not signed]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: (RealDownloader) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2016-01-17] [not signed]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{30628BCD-632F-4698-8E83-0B6597E9100A}] - C:\Nainstalovano\Facebook Video Downloader\FBVD_FF.xpi
FF Extension: (Facebook Video Downloader Extension) - C:\Nainstalovano\Facebook Video Downloader\FBVD_FF.xpi [2014-09-19] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-12] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Nainstalovano\Itunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin: @photodex.com/PhotodexPresenter -> C:\Program Files\Photodex Presenter\npPxPlay.dll [2014-11-11] ( )
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Nainstalovano\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Nainstalovano\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Nainstalovano\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Nainstalovano\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - C:\Nainstalovano\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default [2017-07-24]
CHR Extension: (Dokumenty Google) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-13]
CHR Extension: (Disk Google) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-04-27]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-03-13]
CHR Extension: (YouTube) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (RealDownloader) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2016-01-17]
CHR Extension: (Facebook Video Downloader Extension) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\jffdffcnfhdcfbjijbcfghooboafmhel [2016-05-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-18]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-05-26]
CHR Extension: (Gmail) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-08]
CHR Extension: (Chrome Media Router) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-26]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [jffdffcnfhdcfbjijbcfghooboafmhel] - C:\Nainstalovano\Facebook Video Downloader\FBVD_GC.crx [2016-04-26]

Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"
StartMenuInternet: (HKLM) OperaStable - C:\Nainstalovano\Opera\Launcher.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [62464 2015-03-04] (Microsoft Corporation) [File not signed]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [27648 2015-02-03] (Microsoft Corporation) [File not signed]
S3 Appinfo; C:\Windows\System32\appinfo.dll [47104 2015-06-15] (Microsoft Corporation) [File not signed]
R3 aswbIDSAgent; C:\Nainstalovano\Avast\aswidsagent.exe [5815840 2017-07-22] (AVAST Software s.r.o.)
R2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [475136 2015-02-03] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [475136 2015-02-03] (Microsoft Corporation) [File not signed]
R2 avast! Antivirus; C:\Nainstalovano\Avast\AvastSvc.exe [263312 2017-07-22] (AVAST Software)
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [143872 2015-04-27] (Microsoft Corporation) [File not signed]
S4 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Nainstalovano\Power DVD 13\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-10-23] (CyberLink)
S4 CyberLink PowerDVD 13 Media Server Service; C:\Nainstalovano\Power DVD 13\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-10-23] (CyberLink)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [853504 2015-05-25] (Microsoft Corporation) [File not signed]
S3 EFS; C:\Windows\System32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 FontCache; C:\Windows\system32\FntCache.dll [909312 2015-04-20] (Microsoft Corporation) [File not signed]
R2 FreemakeVideoCapture; C:\Nainstalovano\Freemake\CaptureLib\CaptureLibService.exe [9216 2014-04-17] (Ellora Assets Corp.) [File not signed]
R3 HDDSvc; C:\Program Files\Common Files\AltrixSoft\HDDInfoService\HDDSvc.exe [484600 2015-03-26] (AltrixSoft (hxxp://www.altrixsoft.com/))
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [102912 2015-06-19] (Microsoft Corporation) [File not signed]
R3 KeyIso; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 MBAMService; C:\Nainstalovano\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
S3 Microsoft Office Groove Audit Service; C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
S3 msiserver; C:\Windows\System32\msiexec.exe [73216 2015-06-15] (Microsoft Corporation) [File not signed]
S4 NBService; C:\Nainstalovano\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
S3 Netlogon; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 NlaSvc; C:\Windows\System32\nlasvc.dll [242688 2014-12-06] (Microsoft Corporation) [File not signed]
U2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15904544 2014-02-05] (NVIDIA Corporation)
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [157184 2015-02-03] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [164864 2014-12-19] (Microsoft Corporation) [File not signed]
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 reaConverter_service; C:\Nainstalovano\reaConverter 7 Standard\rc_service.exe [2129408 2015-06-19] () [File not signed]
S4 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 SamSs; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 SchedulerService0310; C:\Nainstalovano\robo ftp\SchedulerService.exe [48448 2016-05-27] (Serengeti Systems Incorporated)
S4 ScsiAccess; C:\Nainstalovano\ProShow\ScsiAccess.exe [186760 2014-11-11] ()
S4 Secure Hunter Service; C:\Nainstalovano\AntiMalwarePro\bin\shrtsrv.exe [47416 2015-12-16] (SecureHunter LLC) [File not signed]
R2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [2114384 2016-03-03] (Crawler Group, LLC)
S3 TermService; C:\Windows\System32\termsrv.dll [523776 2014-10-14] (Microsoft Corporation) [File not signed]
R3 VaultSvc; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [76800 2015-01-09] (Microsoft Corporation) [File not signed]
S3 WdiSystemHost; C:\Windows\system32\wdi.dll [76800 2015-01-09] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S3 WinRM; C:\Windows\system32\WsmSvc.dll [1177088 2014-10-03] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\Windows\system32\wuaueng.dll [2057216 2015-07-09] (Microsoft Corporation) [File not signed]
S2 EvtEng; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [X]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [X]
S2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [243712 2011-08-08] (Windows (R) Win 7 DDK provider)
R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [32896 2012-05-17] (AnvSoft Inc.) [File not signed]
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [26032 2014-04-09] (Wondershare)
S3 AppID; C:\Windows\system32\drivers\appid.sys [50176 2015-02-03] (Microsoft Corporation) [File not signed]
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [267008 2017-07-22] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [157416 2017-07-22] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [276736 2017-07-22] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [50384 2017-07-22] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [42824 2017-07-08] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [123928 2017-07-22] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [99536 2017-07-08] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [70840 2017-07-08] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [774288 2017-07-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [496976 2017-07-08] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [147688 2017-07-08] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [296312 2017-07-08] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-04-11] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [59936 2017-06-27] ()
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [514560 2015-02-25] (Microsoft Corporation) [File not signed]
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [55848 2000-01-01] (Atheros Communications, Inc.)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [162240 2017-07-24] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [85400 2017-07-31] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [40352 2017-07-31] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [221600 2017-07-31] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [65824 2017-07-31] (Malwarebytes)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [116224 2014-12-19] (Microsoft Corporation) [File not signed]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [124416 2015-07-01] (Microsoft Corporation) [File not signed]
R3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [225792 2015-07-01] (Microsoft Corporation) [File not signed]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [98304 2015-07-01] (Microsoft Corporation) [File not signed]
R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7517696 2011-08-03] (Intel Corporation)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-01-02] (Riverbed Technology, Inc.)
R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [44544 2009-08-31] (Nuvoton Technology Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2013-12-27] (NVIDIA Corporation)
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [593920 2015-02-03] (Microsoft Corporation) [File not signed]
S3 RDPWD; C:\Windows\system32\Drivers\RDPWD.sys [184320 2014-07-17] (Microsoft Corporation) [File not signed]
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [31644 2006-12-25] (PowerISO Computing, Inc.) [File not signed]
R3 SCREAMINGBDRIVER; C:\Windows\System32\drivers\ScreamingBAudio.sys [34896 2014-02-07] (Screaming Bee LLC)
R1 sp_rsdrv2; C:\Windows\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] () [File not signed]
R1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [74752 2014-11-11] (Microsoft Corporation) [File not signed]
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [31232 2014-07-17] (Microsoft Corporation) [File not signed]
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2015-06-17] (Apple, Inc.) [File not signed]
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Nainstalovano\Power DVD 13\PowerDVD13\Common\NavFilter\000.fcl [76560 2013-10-23] (CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-24 22:23 - 2011-06-21 11:24 - 00032768 _____ C:\Windows\system32\Drivers\sp_rsdrv2.sys
2017-07-23 01:29 - 2017-07-23 01:36 - 00120258 _____ C:\Users\Paja\Documents\GPU-Z Sensor Log.txt
2017-07-23 01:25 - 2017-07-23 01:25 - 00000728 _____ C:\Users\Paja\Desktop\TechPowerUp GPU-Z.lnk
2017-07-23 01:25 - 2017-07-23 01:25 - 00000000 ____D C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2017-07-23 00:52 - 2017-07-24 14:58 - 00162240 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-07-23 00:48 - 2017-07-31 23:53 - 00065824 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-07-23 00:48 - 2017-07-31 19:49 - 00085400 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-07-23 00:48 - 2017-07-31 19:49 - 00040352 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-07-23 00:47 - 2017-07-31 19:48 - 00221600 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-07-23 00:47 - 2017-07-23 00:47 - 00001642 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-07-23 00:47 - 2017-07-23 00:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-07-23 00:47 - 2017-06-27 12:06 - 00059936 _____ C:\Windows\system32\Drivers\mbae.sys
2017-07-23 00:14 - 2017-07-23 00:14 - 00000793 _____ C:\Users\Paja\Desktop\EVEREST Ultimate Edition.lnk
2017-07-23 00:14 - 2017-07-23 00:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2017-07-22 23:25 - 2017-07-22 23:25 - 00000871 _____ C:\Users\Public\Desktop\Hard Drive Inspector.lnk
2017-07-22 23:25 - 2017-07-22 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Drive Inspector Professional
2017-07-22 23:25 - 2017-07-22 23:25 - 00000000 ____D C:\ProgramData\AltrixSoft
2017-07-22 23:25 - 2017-07-22 23:25 - 00000000 ____D C:\Program Files\Common Files\AltrixSoft
2017-07-22 16:06 - 2017-07-24 15:25 - 00000000 ____D C:\Depo Auta 2017
2017-07-22 15:47 - 2017-07-22 15:47 - 00303280 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-07-21 11:43 - 2017-07-21 11:43 - 00000000 ____D C:\13x18 matná
2017-07-16 20:45 - 2017-07-17 14:08 - 00000000 ____D C:\balkon lodzie
2017-07-16 19:07 - 2017-07-16 19:14 - 00000000 ____D C:\stříhání 2017
2017-07-14 13:25 - 2017-07-14 14:00 - 00000000 ____D C:\vyvolat rozměr 13x18 matná
2017-07-10 23:20 - 2017-07-09 01:24 - 787193151 _____ C:\Waldemar-Matuška---tour-91.mp4
2017-07-08 15:48 - 2017-07-22 15:46 - 00276736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-07-08 15:48 - 2017-07-22 15:46 - 00267008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-07-08 15:48 - 2017-07-22 15:46 - 00157416 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-07-08 15:48 - 2017-07-22 15:46 - 00050384 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-07-04 18:26 - 2017-07-04 18:38 - 00000000 ____D C:\100KC813

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-01 00:34 - 2016-11-14 23:34 - 00000000 ____D C:\FRST
2017-08-01 00:34 - 2016-06-03 22:14 - 00000000 ____D C:\Users\Paja\AppData\Roaming\AIMP
2017-08-01 00:30 - 2016-11-18 14:33 - 00000000 ____D C:\Users\Paja\AppData\LocalLow\Mozilla
2017-07-31 21:12 - 2009-07-14 06:34 - 00028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-31 21:12 - 2009-07-14 06:34 - 00028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-31 19:50 - 2017-03-03 22:59 - 00000440 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2017-07-31 19:47 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-30 23:35 - 2014-04-11 18:11 - 00042198 _____ C:\Users\Paja\Desktop\Nový textový dokument.txt
2017-07-30 01:00 - 2015-11-22 23:54 - 00000000 ____D C:\Users\Paja\AppData\Roaming\vlc
2017-07-25 21:56 - 2014-06-24 15:04 - 00000000 ____D C:\Users\Paja\AppData\Local\CrashDumps
2017-07-24 22:21 - 2016-11-17 22:20 - 00000000 ____D C:\AdwCleaner
2017-07-24 00:38 - 2016-02-12 01:39 - 00000000 ____D C:\Users\Paja\AppData\Roaming\uTorrent
2017-07-24 00:12 - 2010-11-21 03:16 - 00672046 _____ C:\Windows\system32\perfh005.dat
2017-07-24 00:12 - 2010-11-21 03:16 - 00142610 _____ C:\Windows\system32\perfc005.dat
2017-07-24 00:12 - 2010-11-20 23:01 - 01591750 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-24 00:12 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2017-07-23 22:22 - 2014-04-11 16:15 - 00000000 ____D C:\Nainstalovano
2017-07-23 00:46 - 2015-10-15 20:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-07-22 20:38 - 2017-05-28 21:18 - 00000000 ____D C:\Veterán Club 2017 28 ročník Ostende Bolevák
2017-07-22 15:48 - 2017-03-03 23:33 - 00123928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2017-07-21 21:26 - 2014-04-14 23:00 - 00000000 ____D C:\Users\Paja\AppData\Roaming\DVDVideoSoft
2017-07-14 14:02 - 2015-11-10 23:22 - 00000000 ____D C:\já
2017-07-12 22:57 - 2014-04-11 21:38 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-07-12 22:57 - 2014-04-11 21:38 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-07-12 22:57 - 2014-04-11 21:38 - 00000000 ____D C:\Windows\system32\Macromed
2017-07-12 22:35 - 2015-11-13 19:26 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-07-08 15:48 - 2017-03-03 23:33 - 00296312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-07-08 15:47 - 2014-04-11 16:19 - 00000000 ____D C:\ProgramData\AVAST Software
2017-07-08 15:46 - 2017-03-03 23:33 - 00496976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-07-08 15:46 - 2017-03-03 23:33 - 00147688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-07-08 15:46 - 2017-03-03 23:33 - 00099536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-07-08 15:46 - 2017-03-03 23:33 - 00070840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-07-08 15:46 - 2017-03-03 23:33 - 00042824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-07-08 15:45 - 2017-03-03 23:33 - 00774288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-07-02 22:43 - 2014-04-11 20:07 - 00000000 ____D C:\Users\Paja\AppData\Local\ElevatedDiagnostics
2017-07-02 21:53 - 2014-05-02 22:24 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service

==================== Files in the root of some directories =======

2014-08-09 00:17 - 2011-07-19 03:37 - 0003262 _____ () C:\Program Files\Falco.ico
2014-08-09 00:17 - 2011-07-19 04:05 - 0000046 _____ () C:\Program Files\Falco.url
2014-07-10 08:16 - 2014-07-10 08:16 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files\Common Files\atimpenc.dll
2014-04-17 23:50 - 2014-04-19 22:57 - 0007887 _____ () C:\Users\Paja\AppData\Roaming\pcouffin.cat
2014-04-17 23:50 - 2014-04-19 22:57 - 0001144 _____ () C:\Users\Paja\AppData\Roaming\pcouffin.inf
2014-04-17 23:52 - 2014-04-19 22:57 - 0000034 _____ () C:\Users\Paja\AppData\Roaming\pcouffin.log
2014-04-17 23:50 - 2014-04-19 22:57 - 0047360 _____ (VSO Software) C:\Users\Paja\AppData\Roaming\pcouffin.sys
2014-05-02 23:58 - 2014-05-02 23:58 - 0000001 _____ () C:\Users\Paja\AppData\Local\llftool.4.40.agreement
2016-07-01 19:50 - 2017-01-12 22:12 - 0000600 _____ () C:\Users\Paja\AppData\Local\PUTTY.RND
2017-04-05 22:52 - 2017-04-05 22:52 - 0000817 _____ () C:\Users\Paja\AppData\Local\recently-used.xbel
2016-01-02 23:28 - 2016-01-02 23:28 - 0000000 _____ () C:\Users\Paja\AppData\Local\{260E69FE-667F-4EA6-AAA1-CDB82EE17888}
2016-01-02 23:28 - 2016-01-02 23:28 - 0000000 _____ () C:\Users\Paja\AppData\Local\{420565C7-551E-4DB4-A42D-D66A5D182EA7}

Some files in TEMP:
====================
2017-04-24 18:29 - 2017-04-24 18:30 - 57547224 _____ (Skype Technologies S.A.) C:\Users\Paja\AppData\Local\temp\SkypeSetup.exe
2017-04-24 20:53 - 2017-04-24 20:53 - 14456872 _____ (Microsoft Corporation) C:\Users\Paja\AppData\Local\temp\vc_redist.x86.exe
2017-06-04 00:51 - 2017-06-04 00:51 - 30950664 _____ () C:\Users\Paja\AppData\Local\temp\vlc-2.2.6-win32.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-07-22 21:22

==================== End of FRST.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#10 Příspěvek od Rudy »

OK, to je on. Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll => No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
ContextMenuHandlers04: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers06: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {FD090188-7BEE-4736-B126-CC23509F1570} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f322e751134a => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {FFEAE6C6-30CB-46BC-A358-FDAAFD800007} - System32\Tasks\GoogleUpdateTaskMachineCore1cfeaea3a378319 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)

EmptyTemp:
End
Uložte do D:\Stažené soubory jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

dj-paja
Návštěvník
Návštěvník
Příspěvky: 412
Registrován: 16 úno 2012 12:30

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#11 Příspěvek od dj-paja »

Nevim,zda jse udělal nějaký pokrok viz mazání nevim jak u tohoto programu ten fix vytvořit viz mazání.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2017
Ran by Paja (administrator) on PAJA-NOTEBOOK (05-08-2017 21:26:21)
Running from D:\Stažené soubory
Loaded Profiles: Paja (Available Profiles: Paja)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Nainstalovano\Avast\AvastSvc.exe
(Ellora Assets Corp.) C:\Nainstalovano\Freemake\CaptureLib\CaptureLibService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes) C:\Nainstalovano\Anti-Malware\mbamtray.exe
(ZONER software) C:\Nainstalovano\Photo Studio 17\Program32\ZPSTray.exe
(AVAST Software) C:\Nainstalovano\Avast\avastui.exe
() C:\Nainstalovano\reaConverter 7 Standard\rc_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Crawler Group, LLC) C:\Program Files\Spyware Terminator\st_rsser.exe
(Malwarebytes) C:\Nainstalovano\Anti-Malware\MBAMService.exe
(AVAST Software s.r.o.) C:\Nainstalovano\Avast\aswidsagent.exe
(AltrixSoft (hxxp://www.altrixsoft.com/)) C:\Program Files\Common Files\AltrixSoft\HDDInfoService\HDDSvc.exe
(AIMP DevTeam) C:\Nainstalovano\AIMP3\AIMP.exe
(Mozilla Corporation) C:\Nainstalovano\Mozilla Firefox\firefox.exe
(Serengeti Systems Incorporated) C:\Nainstalovano\robo ftp\SchedulerService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation) C:\Nainstalovano\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Nainstalovano\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\CompatTel\QueryAppBlock.exe
(Farbar) D:\Stažené soubory\FRST(3).exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Nainstalovano\Avast\AvLaunch.exe [213832 2017-07-22] (AVAST Software)
HKLM\...\Run: [HDInspector.exe] => C:\Nainstalovano\Hard Drive Inspector\HDInspector.exe [3171584 2015-07-27] (Altrixsoft)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\NAINSTALOVANO\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\Nainstalovano\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software)
HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Policies\system: [DisableClock] 0
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
BootExecute: autocheck autochk * sh4native Sh4Removal

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{773AED62-3847-4BF6-ADB6-CD8382113C44}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-203695958-539750940-1501531493-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-203695958-539750940-1501531493-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
SearchScopes: HKU\S-1-5-21-203695958-539750940-1501531493-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-203695958-539750940-1501531493-1000 -> 1500C81568E2C9D8F17E29C71ECBB74C URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-203695958-539750940-1501531493-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-203695958-539750940-1501531493-1000 -> {E3BF7B2D-C987-462D-9BF9-92F2FCC615DA} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll => No File

FireFox:
========
FF ProfilePath: C:\Users\Paja\AppData\Roaming\Mozilla\Firefox\Profiles\3456uct3.default [2017-08-05]
FF Homepage: Mozilla\Firefox\Profiles\3456uct3.default -> hxxps://www.seznam.cz/
FF NetworkProxy: Mozilla\Firefox\Profiles\3456uct3.default -> socks_remote_dns", true
FF NetworkProxy: Mozilla\Firefox\Profiles\3456uct3.default -> type", 4
FF Extension: (MEGA) - C:\Users\Paja\AppData\Roaming\Mozilla\Firefox\Profiles\3456uct3.default\Extensions\firefox@mega.co.nz.xpi [2017-07-28]
FF HKLM\...\Firefox\Extensions: [ISVCU@iSkysoft.com] - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com
FF Extension: (iSkysoft iMedia Converter Deluxe) - C:\ProgramData\iSkysoft\Video Converter Ultimate\ISVCU@iSkysoft.com [2015-10-29] [not signed]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: (RealDownloader) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2016-01-17] [not signed]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{30628BCD-632F-4698-8E83-0B6597E9100A}] - C:\Nainstalovano\Facebook Video Downloader\FBVD_FF.xpi
FF Extension: (Facebook Video Downloader Extension) - C:\Nainstalovano\Facebook Video Downloader\FBVD_FF.xpi [2014-09-19] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-12] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Nainstalovano\Itunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [No File]
FF Plugin: @photodex.com/PhotodexPresenter -> C:\Program Files\Photodex Presenter\npPxPlay.dll [2014-11-11] ( )
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Nainstalovano\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Nainstalovano\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Nainstalovano\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Nainstalovano\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - C:\Nainstalovano\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default [2017-08-05]
CHR Extension: (Dokumenty Google) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-13]
CHR Extension: (Disk Google) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-04-27]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-03-13]
CHR Extension: (YouTube) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (RealDownloader) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2016-01-17]
CHR Extension: (Facebook Video Downloader Extension) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\jffdffcnfhdcfbjijbcfghooboafmhel [2016-05-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-18]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-05-26]
CHR Extension: (Gmail) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-08]
CHR Extension: (Chrome Media Router) - C:\Users\Paja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-26]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [jffdffcnfhdcfbjijbcfghooboafmhel] - C:\Nainstalovano\Facebook Video Downloader\FBVD_GC.crx [2016-04-26]

Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"
StartMenuInternet: (HKLM) OperaStable - C:\Nainstalovano\Opera\Launcher.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [62464 2015-03-04] (Microsoft Corporation) [File not signed]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [27648 2015-02-03] (Microsoft Corporation) [File not signed]
S3 Appinfo; C:\Windows\System32\appinfo.dll [47104 2015-06-15] (Microsoft Corporation) [File not signed]
R3 aswbIDSAgent; C:\Nainstalovano\Avast\aswidsagent.exe [5815840 2017-07-22] (AVAST Software s.r.o.)
R2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [475136 2015-02-03] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [475136 2015-02-03] (Microsoft Corporation) [File not signed]
R2 avast! Antivirus; C:\Nainstalovano\Avast\AvastSvc.exe [263312 2017-07-22] (AVAST Software)
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [143872 2015-04-27] (Microsoft Corporation) [File not signed]
S4 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Nainstalovano\Power DVD 13\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-10-23] (CyberLink)
S4 CyberLink PowerDVD 13 Media Server Service; C:\Nainstalovano\Power DVD 13\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-10-23] (CyberLink)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [853504 2015-05-25] (Microsoft Corporation) [File not signed]
S3 EFS; C:\Windows\System32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 FontCache; C:\Windows\system32\FntCache.dll [909312 2015-04-20] (Microsoft Corporation) [File not signed]
R2 FreemakeVideoCapture; C:\Nainstalovano\Freemake\CaptureLib\CaptureLibService.exe [9216 2014-04-17] (Ellora Assets Corp.) [File not signed]
R3 HDDSvc; C:\Program Files\Common Files\AltrixSoft\HDDInfoService\HDDSvc.exe [484600 2015-03-26] (AltrixSoft (hxxp://www.altrixsoft.com/))
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [102912 2015-06-19] (Microsoft Corporation) [File not signed]
R3 KeyIso; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 MBAMService; C:\Nainstalovano\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
S3 Microsoft Office Groove Audit Service; C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
S3 msiserver; C:\Windows\System32\msiexec.exe [73216 2015-06-15] (Microsoft Corporation) [File not signed]
S4 NBService; C:\Nainstalovano\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
S3 Netlogon; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 NlaSvc; C:\Windows\System32\nlasvc.dll [242688 2014-12-06] (Microsoft Corporation) [File not signed]
U2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15904544 2014-02-05] (NVIDIA Corporation)
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [157184 2015-02-03] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [164864 2014-12-19] (Microsoft Corporation) [File not signed]
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 reaConverter_service; C:\Nainstalovano\reaConverter 7 Standard\rc_service.exe [2129408 2015-06-19] () [File not signed]
S4 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 SamSs; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R2 SchedulerService0310; C:\Nainstalovano\robo ftp\SchedulerService.exe [48448 2016-05-27] (Serengeti Systems Incorporated)
S4 ScsiAccess; C:\Nainstalovano\ProShow\ScsiAccess.exe [186760 2014-11-11] ()
S4 Secure Hunter Service; C:\Nainstalovano\AntiMalwarePro\bin\shrtsrv.exe [47416 2015-12-16] (SecureHunter LLC) [File not signed]
R2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [2114384 2016-03-03] (Crawler Group, LLC)
S3 TermService; C:\Windows\System32\termsrv.dll [523776 2014-10-14] (Microsoft Corporation) [File not signed]
S3 VaultSvc; C:\Windows\system32\lsass.exe [22528 2015-07-01] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [76800 2015-01-09] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\system32\wdi.dll [76800 2015-01-09] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S3 WinRM; C:\Windows\system32\WsmSvc.dll [1177088 2014-10-03] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\Windows\system32\wuaueng.dll [2057216 2015-07-09] (Microsoft Corporation) [File not signed]
S2 EvtEng; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [X]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [X]
S2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [243712 2011-08-08] (Windows (R) Win 7 DDK provider)
R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [32896 2012-05-17] (AnvSoft Inc.) [File not signed]
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [26032 2014-04-09] (Wondershare)
S3 AppID; C:\Windows\system32\drivers\appid.sys [50176 2015-02-03] (Microsoft Corporation) [File not signed]
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [267008 2017-07-22] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [157416 2017-07-22] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [276736 2017-07-22] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [50384 2017-07-22] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [42824 2017-07-08] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [123928 2017-07-22] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [99536 2017-07-08] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [70840 2017-07-08] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [774288 2017-07-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [496976 2017-07-08] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [147688 2017-07-08] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [296312 2017-07-08] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-04-11] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [59936 2017-06-27] ()
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [514560 2015-02-25] (Microsoft Corporation) [File not signed]
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [55848 2000-01-01] (Atheros Communications, Inc.)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [162240 2017-07-24] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [85400 2017-08-05] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [40352 2017-08-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [221600 2017-08-05] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [65824 2017-08-05] (Malwarebytes)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [116224 2014-12-19] (Microsoft Corporation) [File not signed]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [124416 2015-07-01] (Microsoft Corporation) [File not signed]
R3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [225792 2015-07-01] (Microsoft Corporation) [File not signed]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [98304 2015-07-01] (Microsoft Corporation) [File not signed]
R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7517696 2011-08-03] (Intel Corporation)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-01-02] (Riverbed Technology, Inc.)
R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [44544 2009-08-31] (Nuvoton Technology Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2013-12-27] (NVIDIA Corporation)
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [593920 2015-02-03] (Microsoft Corporation) [File not signed]
S3 RDPWD; C:\Windows\system32\Drivers\RDPWD.sys [184320 2014-07-17] (Microsoft Corporation) [File not signed]
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [31644 2006-12-25] (PowerISO Computing, Inc.) [File not signed]
R3 SCREAMINGBDRIVER; C:\Windows\System32\drivers\ScreamingBAudio.sys [34896 2014-02-07] (Screaming Bee LLC)
R1 sp_rsdrv2; C:\Windows\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] () [File not signed]
R1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [74752 2014-11-11] (Microsoft Corporation) [File not signed]
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [31232 2014-07-17] (Microsoft Corporation) [File not signed]
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2015-06-17] (Apple, Inc.) [File not signed]
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Nainstalovano\Power DVD 13\PowerDVD13\Common\NavFilter\000.fcl [76560 2013-10-23] (CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-04 21:21 - 2017-08-04 21:23 - 00000000 ____D C:\babi klika sehnat
2017-07-24 22:23 - 2011-06-21 11:24 - 00032768 _____ C:\Windows\system32\Drivers\sp_rsdrv2.sys
2017-07-23 01:29 - 2017-07-23 01:36 - 00120258 _____ C:\Users\Paja\Documents\GPU-Z Sensor Log.txt
2017-07-23 01:25 - 2017-07-23 01:25 - 00000728 _____ C:\Users\Paja\Desktop\TechPowerUp GPU-Z.lnk
2017-07-23 01:25 - 2017-07-23 01:25 - 00000000 ____D C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2017-07-23 00:52 - 2017-07-24 14:58 - 00162240 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-07-23 00:48 - 2017-08-05 21:03 - 00065824 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-07-23 00:48 - 2017-08-05 21:00 - 00085400 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-07-23 00:48 - 2017-08-05 21:00 - 00040352 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-07-23 00:47 - 2017-08-05 21:00 - 00221600 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-07-23 00:47 - 2017-07-23 00:47 - 00001642 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-07-23 00:47 - 2017-07-23 00:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-07-23 00:47 - 2017-06-27 12:06 - 00059936 _____ C:\Windows\system32\Drivers\mbae.sys
2017-07-23 00:14 - 2017-07-23 00:14 - 00000793 _____ C:\Users\Paja\Desktop\EVEREST Ultimate Edition.lnk
2017-07-23 00:14 - 2017-07-23 00:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2017-07-22 23:25 - 2017-07-22 23:25 - 00000871 _____ C:\Users\Public\Desktop\Hard Drive Inspector.lnk
2017-07-22 23:25 - 2017-07-22 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Drive Inspector Professional
2017-07-22 23:25 - 2017-07-22 23:25 - 00000000 ____D C:\ProgramData\AltrixSoft
2017-07-22 23:25 - 2017-07-22 23:25 - 00000000 ____D C:\Program Files\Common Files\AltrixSoft
2017-07-22 16:06 - 2017-07-24 15:25 - 00000000 ____D C:\Depo Auta 2017
2017-07-22 15:47 - 2017-07-22 15:47 - 00303280 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-07-21 11:43 - 2017-07-21 11:43 - 00000000 ____D C:\13x18 matná
2017-07-16 20:45 - 2017-07-17 14:08 - 00000000 ____D C:\balkon lodzie
2017-07-16 19:07 - 2017-07-16 19:14 - 00000000 ____D C:\stříhání 2017
2017-07-14 13:25 - 2017-07-14 14:00 - 00000000 ____D C:\vyvolat rozměr 13x18 matná
2017-07-10 23:20 - 2017-07-09 01:24 - 787193151 _____ C:\Waldemar-Matuška---tour-91.mp4
2017-07-08 15:48 - 2017-07-22 15:46 - 00276736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-07-08 15:48 - 2017-07-22 15:46 - 00267008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-07-08 15:48 - 2017-07-22 15:46 - 00157416 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-07-08 15:48 - 2017-07-22 15:46 - 00050384 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-05 21:26 - 2016-11-14 23:34 - 00000000 ____D C:\FRST
2017-08-05 21:13 - 2009-07-14 06:34 - 00028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-05 21:13 - 2009-07-14 06:34 - 00028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-05 21:12 - 2016-06-03 22:14 - 00000000 ____D C:\Users\Paja\AppData\Roaming\AIMP
2017-08-05 21:03 - 2016-11-18 14:33 - 00000000 ____D C:\Users\Paja\AppData\LocalLow\Mozilla
2017-08-05 21:00 - 2017-03-03 22:59 - 00000439 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2017-08-05 20:58 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-04 21:11 - 2010-11-21 03:16 - 00672046 _____ C:\Windows\system32\perfh005.dat
2017-08-04 21:11 - 2010-11-21 03:16 - 00142610 _____ C:\Windows\system32\perfc005.dat
2017-08-04 21:11 - 2010-11-20 23:01 - 01591750 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-04 21:11 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2017-08-03 02:26 - 2014-04-11 18:11 - 00042371 _____ C:\Users\Paja\Desktop\Nový textový dokument.txt
2017-07-30 01:00 - 2015-11-22 23:54 - 00000000 ____D C:\Users\Paja\AppData\Roaming\vlc
2017-07-25 21:56 - 2014-06-24 15:04 - 00000000 ____D C:\Users\Paja\AppData\Local\CrashDumps
2017-07-24 22:21 - 2016-11-17 22:20 - 00000000 ____D C:\AdwCleaner
2017-07-24 00:38 - 2016-02-12 01:39 - 00000000 ____D C:\Users\Paja\AppData\Roaming\uTorrent
2017-07-23 22:22 - 2014-04-11 16:15 - 00000000 ____D C:\Nainstalovano
2017-07-23 00:46 - 2015-10-15 20:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-07-22 20:38 - 2017-05-28 21:18 - 00000000 ____D C:\Veterán Club 2017 28 ročník Ostende Bolevák
2017-07-22 15:48 - 2017-03-03 23:33 - 00123928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2017-07-21 21:26 - 2014-04-14 23:00 - 00000000 ____D C:\Users\Paja\AppData\Roaming\DVDVideoSoft
2017-07-14 14:02 - 2015-11-10 23:22 - 00000000 ____D C:\já
2017-07-12 22:57 - 2014-04-11 21:38 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-07-12 22:57 - 2014-04-11 21:38 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-07-12 22:57 - 2014-04-11 21:38 - 00000000 ____D C:\Windows\system32\Macromed
2017-07-12 22:35 - 2015-11-13 19:26 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-07-08 15:48 - 2017-03-03 23:33 - 00296312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-07-08 15:47 - 2014-04-11 16:19 - 00000000 ____D C:\ProgramData\AVAST Software
2017-07-08 15:46 - 2017-03-03 23:33 - 00496976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-07-08 15:46 - 2017-03-03 23:33 - 00147688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-07-08 15:46 - 2017-03-03 23:33 - 00099536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-07-08 15:46 - 2017-03-03 23:33 - 00070840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-07-08 15:46 - 2017-03-03 23:33 - 00042824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-07-08 15:45 - 2017-03-03 23:33 - 00774288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys

==================== Files in the root of some directories =======

2014-08-09 00:17 - 2011-07-19 03:37 - 0003262 _____ () C:\Program Files\Falco.ico
2014-08-09 00:17 - 2011-07-19 04:05 - 0000046 _____ () C:\Program Files\Falco.url
2014-07-10 08:16 - 2014-07-10 08:16 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files\Common Files\atimpenc.dll
2014-04-17 23:50 - 2014-04-19 22:57 - 0007887 _____ () C:\Users\Paja\AppData\Roaming\pcouffin.cat
2014-04-17 23:50 - 2014-04-19 22:57 - 0001144 _____ () C:\Users\Paja\AppData\Roaming\pcouffin.inf
2014-04-17 23:52 - 2014-04-19 22:57 - 0000034 _____ () C:\Users\Paja\AppData\Roaming\pcouffin.log
2014-04-17 23:50 - 2014-04-19 22:57 - 0047360 _____ (VSO Software) C:\Users\Paja\AppData\Roaming\pcouffin.sys
2014-05-02 23:58 - 2014-05-02 23:58 - 0000001 _____ () C:\Users\Paja\AppData\Local\llftool.4.40.agreement
2016-07-01 19:50 - 2017-01-12 22:12 - 0000600 _____ () C:\Users\Paja\AppData\Local\PUTTY.RND
2017-04-05 22:52 - 2017-04-05 22:52 - 0000817 _____ () C:\Users\Paja\AppData\Local\recently-used.xbel
2016-01-02 23:28 - 2016-01-02 23:28 - 0000000 _____ () C:\Users\Paja\AppData\Local\{260E69FE-667F-4EA6-AAA1-CDB82EE17888}
2016-01-02 23:28 - 2016-01-02 23:28 - 0000000 _____ () C:\Users\Paja\AppData\Local\{420565C7-551E-4DB4-A42D-D66A5D182EA7}

Some files in TEMP:
====================
2017-04-24 18:29 - 2017-04-24 18:30 - 57547224 _____ (Skype Technologies S.A.) C:\Users\Paja\AppData\Local\temp\SkypeSetup.exe
2017-04-24 20:53 - 2017-04-24 20:53 - 14456872 _____ (Microsoft Corporation) C:\Users\Paja\AppData\Local\temp\vc_redist.x86.exe
2017-06-04 00:51 - 2017-06-04 00:51 - 30950664 _____ () C:\Users\Paja\AppData\Local\temp\vlc-2.2.6-win32.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-01 10:03

==================== End of FRST.txt ============================


Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-07-2017
Ran by Paja (05-08-2017 21:27:40)
Running from D:\Stažené soubory
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2014-04-11 13:46:22)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-203695958-539750940-1501531493-500 - Administrator - Disabled)
Guest (S-1-5-21-203695958-539750940-1501531493-501 - Limited - Enabled)
Paja (S-1-5-21-203695958-539750940-1501531493-1000 - Administrator - Enabled) => C:\Users\Paja

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

_fm 0.0.4.5 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\{6DBFF1BC-C61E-49DD-832C-401BCCC39907}}_is1) (Version: 0.0.4.5 - František Szijartó)
µTorrent (HKLM\...\uTorrent) (Version: 2.2.1 - )
4K YouTube to MP3 2.10 (HKLM\...\4K YouTube to MP3_is1) (Version: 2.10.8.1505 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Advanced IP Scanner 2.4 (HKLM\...\{2E644D2D-993F-43B4-B85A-15363CA777C3}) (Version: 2.4.3021 - Famatech)
Advent 1.6.0.2 (HKLM\...\Advent 1.6.0.2) (Version: - )
AIMP (HKLM\...\AIMP) (Version: v4.13.1897, 26.06.2017 - AIMP DevTeam)
Any Video Recorder version 1.0.2 (HKLM\...\{17D86E62-4849-49BC-83D2-FA369CEEA9D9}_is1) (Version: 1.0.2 - anvsoft, Inc.)
Apowersoft Online Launcher verze 1.4.4 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.4.4 - APOWERSOFT LIMITED)
Apowersoft Video Stahovač V6.2.2 (HKLM\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.2.2 - APOWERSOFT LIMITED)
Apple Mobile Device Support (HKLM\...\{9A629DCB-415D-4A50-85B9-5C2E4F8F74A8}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
AquaSoft DiaShow 10 Ultimate (32 Bit) (HKLM\...\AquaSoft DiaShow 10 Ultimate (32 Bit)) (Version: 10.1.01.00697 - AquaSoft)
ArtRage 4 (HKLM\...\{FD363FA3-BBFF-4051-AD2B-FBFF5590217F}) (Version: 4.0.2.1 - Ambient Design) Hidden
ArtRage 4 (HKLM\...\ArtRage 4 4.0.2.1) (Version: 4.0.2.1 - Ambient Design)
Ashampoo Burning Studio 18 (HKLM\...\{91B33C97-AF35-C3DC-976E-8A253D817482}_is1) (Version: 18.0.0 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software)
BluffTitler (HKLM\...\BluffTitler) (Version: - Outerspace Software)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player PRO (HKLM\...\BSPlayerp) (Version: 2.69.1079 - AB Team, d.o.o.)
CPUID HWMonitor 1.29 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 6.8.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.8.0 - Crystal Dew World)
CSEP 14 1.0 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\CSEP 14 1.0) (Version: - )
Data Lifeguard Diagnostic for Windows (HKLM\...\{E40CE517-0D42-4198-96B4-C8232B257EB5}) (Version: 1.13 - Western Digital Corporation)
DVDFab 9.2.0.2 (10/06/2015) (HKLM\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Dynamic-Photo HDR 5 (HKLM\...\Dynamic-Photo HDR 5_is1) (Version: - Mediachance)
EVEREST Ultimate Edition v5.50 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
EZ CD Audio Converter (HKLM\...\EZ CD Audio Converter) (Version: 5.1.1 - Poikosoft)
Facebook Video Downloader 3 (HKLM\...\Facebook Video Downloader_is1) (Version: - Tomabo)
FileZilla Client 3.23.0.2 (HKLM\...\FileZilla Client) (Version: 3.23.0.2 - Tim Kosse)
FlashFXP 5 (HKLM\...\FlashFXP 5) (Version: 5.2.0.3897 - OpenSight Software LLC)
FotoMorph version 13.8.3 (HKLM\...\{87A9A094-22A8-4F8A-9B7D-03D7CA48CE15}_is1) (Version: 13.8.3 - Digital Photo Software)
Free Studio (HKLM\...\Free Studio_is1) (Version: 6.6.29.1027 - Digital Wave Ltd)
Free Video Flip and Rotate (HKLM\...\Free Video Flip and Rotate_is1) (Version: 1.1.35.831 - Digital Wave Ltd)
Free YouTube Download (HKLM\...\Free YouTube Download_is1) (Version: 4.1.47.525 - Digital Wave Ltd)
Freemake Video Converter verze 4.1.9 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation)
GetSmile v1.952 (HKLM\...\GetSmile0903_is1) (Version: 1.952 - Sofrayt LLC)
Google Chrome (HKLM\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hard Drive Inspector Professional 4.35 build # 243 (HKLM\...\Hard Drive Inspector) (Version: 4.35.243 - AltrixSoft)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InstantMask Pro 2.3 (HKLM\...\{A180E293-61BB-44E6-9470-4CE81FDBDECE}_is1) (Version: - clipping-path-studio.com)
iPhotoDraw 2.0 (HKLM\...\{AD0EFB82-D42E-4CBB-9662-98B4916FFBDA}) (Version: 2.0.0.0 - Simen Wu)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.42 - Irfan Skiljan)
iSkysoft Helper Compact 2.5.0 (HKLM\...\{9BF12010-8799-41A5-A671-E9CFDE9E79F3}_is1) (Version: 2.5.0 - iSkysoft)
iSkysoft iMedia Converter Deluxe(Build 5.8.0.1) (HKLM\...\iSkysoft iMedia Converter Deluxe_is1) (Version: 5.8.0.1 - iSkysoft Software)
iTunes (HKLM\...\{8862F11A-A9A0-4899-9F50-B5A79F12F3C2}) (Version: 12.3.1.23 - Apple Inc.)
JPEGCrops 0.7.5 beta (HKLM\...\{DEAD07C6-D070-43AB-A60D-D9ABE55E296D}_is1) (Version: - )
Life Is Strange (HKLM\...\Life Is Strange_is1) (Version: - )
M4VGear 5.1.5 (HKLM\...\M4VGear_is1) (Version: - M4VGear.com Inc.)
Malwarebytes verze 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Merge Version 2.1 (HKLM\...\merge_is1) (Version: - )
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (Czech) (HKLM\...\{95120000-00AF-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 ENU (HKLM\...\{773AC1E4-5F27-4DF6-A932-7FDDE35C069D}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mortal Kombat Komplete Edition (HKLM\...\{9F012408-04EC-4989-932F-4C096117D2DD}_is1) (Version: - Warner Bros)
Mozilla Firefox 54.0.1 (x86 cs) (HKLM\...\Mozilla Firefox 54.0.1 (x86 cs)) (Version: 54.0.1 - Mozilla)
Neat Image v7.6.0 Pro plug-in for Photoshop (HKLM\...\Neat Image plug-in for Photoshop_is1) (Version: - Neat Image team, ABSoft)
Neat Image v7.6.0 Pro Standalone (HKLM\...\Neat Image Standalone_is1) (Version: - Neat Image team, ABSoft)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - )
NVIDIA PhysX (HKLM\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Opera Stable 46.0.2597.57 (HKLM\...\Opera 46.0.2597.57) (Version: 46.0.2597.57 - Opera Software)
PDF Decrypter Pro 3.60 (HKLM\...\PDF Decrypter Pro_is1) (Version: - pdfdecrypter.com)
Photo! Editor 1.1 (HKLM\...\PhotoToolkit_is1) (Version: - )
Photodex Presenter (HKLM\...\Photodex Presenter) (Version: - Photodex Corporation)
PhotoFiltre 7 (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\PhotoFiltre 7) (Version: - )
Photo-Reactor 1.51 (HKLM\...\{E6E9331E-A2FF-4503-B062-11769A435FAA}_is1) (Version: - Mediachance.com)
PilsFree IPTV verze 1.0 (HKLM\...\{FD0E773E-A8D6-4CFC-AA66-1FD81E2B0000}_is1) (Version: 1.0 - PilsFree, z. s.)
Podpora aplikací Apple (32bitová) (HKLM\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
ProShow Producer (HKLM\...\ProShow Producer) (Version: - Photodex Corporation)
PS3 Media Server (HKLM\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PUSH Entertainment - Video Wallpaper (HKLM\...\Video Wallpaper_is1) (Version: 2.23 - PUSH Entertainment)
RadioSure (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\RadioSure) (Version: - )
reaConverter 7 Standard (HKLM\...\{659727C6-7267-4076-803B-351A467F6CAF}_is1) (Version: 7.1.43.0 - reaConverter LLC)
RealDownloader (HKLM\...\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}) (Version: 1.3.3 - RealNetworks, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Resident Evil 0 HD Remaster (HKLM\...\{XXXXXXXX-XXXX-XXXX-XXXX-BLACKBOX0091}) (Version: 6.0 - Black Box)
Robo-FTP 3.10 (HKLM\...\{1fc5beaa-ed9b-4c31-80eb-ae4903021770}) (Version: 3.10.5.0 - Serengeti Systems Inc.) Hidden
Robo-FTP 3.10 (HKLM\...\{470D6527-E783-4A34-89A5-44492FEE901D}) (Version: 3.10.5.0 - Serengeti Systems Inc.)
Santas Christmas Solitaire (HKLM\...\Santas Christmas SolitaireFinal) (Version: Final - Game-Owl)
Sketch Drawer 3.0 (HKLM\...\Sketch Drawer_is1) (Version: 3.0 - SoftOrbits)
Skype™ 7.34 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.34.103 - Skype Technologies S.A.)
SoftPerfect WiFi Guard version 1.0.7 (HKLM\...\{38AFD787-4D2E-4442-92D2-7739F5F92CF4}_is1) (Version: 1.0.7 - SoftPerfect)
Spyware Terminator 2015 (HKLM\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.1.107 - Crawler Group)
TechPowerUp GPU-Z (HKLM\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Trillian (HKLM\...\Trillian) (Version: - Cerulean Studios, LLC)
UberSoldier 2 (CZ) 1.00 (HKLM\...\UberSoldier 2 (CZ) 1.00) (Version: 1.00 - Monster-CZ)
UEFA Euro 2016 France (HKLM\...\UEFA Euro 2016 France_is1) (Version: - )
Uninstall Tool (HKLM\...\Uninstall Tool_is1) (Version: 3.4.2 - CrystalIDEA Software, Inc.)
Video Rotator V1.0 (HKLM\...\Video Rotator_is1) (Version: - VideoRotator.com)
VirtualDJ Home FREE (HKLM\...\{19192A84-6172-4312-A661-D8F9A34585AB}) (Version: 7.0.4.1 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Wave Editor 3.3.3.0 (HKLM\...\Wave Editor_is1) (Version: 3.3.3.0 - AbyssMedia.com)
WiliSoft Video Splitter 2.1 (HKLM\...\WiliSoft Video Splitter_is1) (Version: - WiliSoft,Inc.)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinX HD Video Converter Deluxe 5.5.3 (HKLM\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)
Xilisoft Video Converter Ultimate (HKU\S-1-5-21-203695958-539750940-1501531493-1000\...\Xilisoft Video Converter Ultimate) (Version: 7.8.5.20141031 - Xilisoft)
Zamzom Wireless (HKLM\...\{CED3B64B-9381-4AB8-A213-6C084C952E43}) (Version: 1.0.0 - Zamzom)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers01: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Nainstalovano\AIMP3\System\aimp_menu32.dll [2017-07-20] (AIMP DevTeam)
ContextMenuHandlers01: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers01: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F80} => C:\Nainstalovano\EZ CD Audio Converter\ezcd32.dll [2016-01-01] (Poikosoft)
ContextMenuHandlers01: [iSkysoftVideoConverterFileOpreation] -> {B5FA2AE6-7A94-4382-8EA9-58C725AAB854} => C:\Windows\System32\ISCM32.dll [2015-02-27] ()
ContextMenuHandlers01: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers01: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers01: [Right Click Image Converter] -> {13311DA7-1D24-40e5-AE07-7E3750F5DE3C} => C:\Nainstalovano\Right Click Image Converter\extRCIC.dll [2005-06-21] ()
ContextMenuHandlers01: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers01: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers01: [Tomabo.MP4Converter] -> {24146F89-6FA0-4821-96EC-74EED926A80E} => C:\Nainstalovano\Facebook Video Downloader\MP4C_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers01: [Tomabo.MP4Player] -> {5266035F-65FC-4C51-9024-FB57ED8AEB1E} => C:\Nainstalovano\Facebook Video Downloader\MP4P_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers01: [Uninstall] -> {84058084-7609-44D1-B3CC-7A9436CB6D92} => C:\Nainstalovano\Perfect Uninstaller\Contextmenu.dll [2011-10-08] ()
ContextMenuHandlers01: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Nainstalovano\winrar\rarext.dll [2013-08-22] (Alexander Roshal)
ContextMenuHandlers01: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers02: [IVBShlExt] -> {5B9C04C2-5EB5-4B60-8B71-46964DB8CDBF} => C:\Nainstalovano\Photo! Editor\IvBar\ivbshlext.dll [2008-09-02] ()
ContextMenuHandlers03: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers03: [IVBShlExt] -> {5B9C04C2-5EB5-4B60-8B71-46964DB8CDBF} => C:\Nainstalovano\Photo! Editor\IvBar\ivbshlext.dll [2008-09-02] ()
ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Nainstalovano\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers03: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers03: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers04: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Nainstalovano\AIMP3\System\aimp_menu32.dll [2017-07-20] (AIMP DevTeam)
ContextMenuHandlers04: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F80} => C:\Nainstalovano\EZ CD Audio Converter\ezcd32.dll [2016-01-01] (Poikosoft)
ContextMenuHandlers04: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers04: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers04: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers04: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers04: [Uninstall] -> {84058084-7609-44D1-B3CC-7A9436CB6D92} => C:\Nainstalovano\Perfect Uninstaller\Contextmenu.dll [2011-10-08] ()
ContextMenuHandlers04: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2014-07-02] (NVIDIA Corporation)
ContextMenuHandlers05: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
ContextMenuHandlers06: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Nainstalovano\Avast\ashShell.dll [2017-07-22] (AVAST Software)
ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Nainstalovano\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers06: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers06: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Nainstalovano\PowerISO\PWRISOSH.DLL [2006-12-25] (PowerISO Computing, Inc.)
ContextMenuHandlers06: [ReaConverter7_std] -> {0C83C06D-41F5-4666-B1C2-0923EA75EB10} => C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll [2015-06-19] ()
ContextMenuHandlers06: [RoboFtp] -> {0CE9538C-D1F3-4BE8-B61A-E5A66C1136EE} => C:\Nainstalovano\robo ftp\RoboUpload.dll [2016-06-06] ()
ContextMenuHandlers06: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files\Spyware Terminator\STShell.dll [2016-03-03] (Crawler Group)
ContextMenuHandlers06: [Tomabo.MP4Converter] -> {24146F89-6FA0-4821-96EC-74EED926A80E} => C:\Nainstalovano\Facebook Video Downloader\MP4C_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers06: [Tomabo.MP4Player] -> {5266035F-65FC-4C51-9024-FB57ED8AEB1E} => C:\Nainstalovano\Facebook Video Downloader\MP4P_WS.dll [2013-05-13] (Tomabo)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Nainstalovano\winrar\rarext.dll [2013-08-22] (Alexander Roshal)
ContextMenuHandlers06: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B6209B1-0FF8-48DF-AB17-83D82F43805E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0414a515638e1 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {0BD40F9A-711B-443F-A7FF-0A4D23AD89CD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-12] (AVAST Software)
Task: {125A41ED-C849-4696-8A5D-E4647A0CAEDE} - System32\Tasks\GoogleUpdateTaskMachineCore1d08f2e2e042fdf => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {1444F6B0-6A6D-4A62-AB01-C41022B9076F} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-203695958-539750940-1501531493-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {14605887-1D73-4D16-B0B3-4C85CE06D53A} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e329c6aa71d5 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {20082405-070B-4AED-94F8-F477F12B7EF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {271EB6EB-14A0-49DC-A60B-DD6C4C087A7D} - System32\Tasks\Opera scheduled Autoupdate 1397227235 => C:\Nainstalovano\Opera\launcher.exe [2017-07-18] (Opera Software)
Task: {29042D63-8759-451A-ABCC-AE39A3574B93} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bfeed906801e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {426026BA-E286-4FA3-8F9E-6C32093F3B04} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe
Task: {45A9FB09-4B46-48F1-88DB-7A78EE21F624} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {468FDEA5-3146-40A4-BCED-6A4715EA5AB7} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e908529931c8 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {4F80126F-E5BB-42B7-A539-3C8F7F6A9C33} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Task: {57EBABBC-E842-4BA1-A3A5-ED61FFB805A9} - System32\Tasks\Adobe Flash Player Updater
Task: {6114CB1B-6250-481A-9B66-66EF5AB541DD} - System32\Tasks\{6759A6A2-87DB-4B16-B70E-414F417269CA} => I:\Downloads\Pirate-1005.exe
Task: {638ADED8-02EE-4A28-B69C-DE75D6A718B1} - System32\Tasks\RunUninstallTool_SkipUac => C:\Nainstalovano\Uninstall Tool\UninstallTool.exe [2015-05-10] (CrystalIDEA Software)
Task: {7A7424A0-6D1A-41F8-977B-5231EE388F8A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {7DC8B22A-B3D8-4195-90FB-591289975C66} - System32\Tasks\{81EEE945-3041-4B97-8C04-70F3A409DCCC} => "c:\nainstalovano\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.33.0.105/cs/go/help.faq.installer?LastError=1603
Task: {7E6CF980-AFEA-4E80-92F4-56A97EF79A1F} - System32\Tasks\GoogleUpdateTaskMachineCore1d15d2091c2694a => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {7F678502-A58D-4804-834B-422A6EAEE73A} - System32\Tasks\GoogleUpdateTaskMachineCore1d12fa330b3a975 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {9BDB9D08-670A-4949-AF1F-DE49975CBB98} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-203695958-539750940-1501531493-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {9FEC9B6F-3C94-4E4E-A4F9-7B67B411CAF3} - System32\Tasks\GoogleUpdateTaskMachineCore1cfff933c927ae1 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {A057061E-CC52-49E0-A405-9DF5A628951D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Task: {AE6EA039-3D9D-41B5-A0C4-D98F35BCDCA7} - System32\Tasks\GoogleUpdateTaskMachineCore1d1aafc9c2c4a1d => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {C2339B06-CFDA-4EB1-A00C-42630D96FD88} - System32\Tasks\{34BB3E79-3E70-44AD-878C-DF558C7EA47B} => "c:\nainstalovano\mozilla firefox\firefox.exe" hxxps://www.skype.com/go/downloading?source=lig ... rror=12040
Task: {EA438FD9-0550-455D-8625-AD77120787EB} - System32\Tasks\Avast Emergency Update => C:\Nainstalovano\Avast\AvEmUpdate.exe [2017-07-22] (AVAST Software)
Task: {F6183BB2-1C16-4611-8529-109175800DF5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe
Task: {FCAE1829-AF1B-4659-B9AF-4050218A5853} - System32\Tasks\GoogleUpdateTaskMachineCore1d0efb443302158 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {FD090188-7BEE-4736-B126-CC23509F1570} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f322e751134a => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)
Task: {FFEAE6C6-30CB-46BC-A358-FDAAFD800007} - System32\Tasks\GoogleUpdateTaskMachineCore1cfeaea3a378319 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-19] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfeaea3a378319.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfff933c927ae1.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0414a515638e1.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f2e2e042fdf.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bfeed906801e.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0e329c6aa71d5.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0efb443302158.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f322e751134a.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d12fa330b3a975.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d15d2091c2694a.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1aafc9c2c4a1d.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Loaded Modules (Whitelisted) ==============

2014-04-11 17:24 - 2014-07-02 21:42 - 00107992 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00170224 _____ () C:\Nainstalovano\Avast\JsonRpcServer.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00192664 _____ () C:\Nainstalovano\Avast\event_routing_rpc.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00224256 _____ () C:\Nainstalovano\Avast\tasks_core.dll
2017-08-04 20:42 - 2017-08-04 20:42 - 05891448 _____ () C:\Nainstalovano\Avast\defs\17080402\algo.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00689272 _____ () C:\Nainstalovano\Avast\ffl2.dll
2015-08-24 15:58 - 2016-12-06 18:20 - 00048304 _____ () C:\Nainstalovano\FileZilla FTP Client\fzshellext.dll
2015-02-09 20:25 - 2008-09-02 13:29 - 00098304 _____ () C:\Nainstalovano\Photo! Editor\IvBar\ivbshlext.dll
2014-05-09 23:53 - 2011-10-08 16:28 - 00411056 _____ () C:\Nainstalovano\Perfect Uninstaller\Contextmenu.dll
2016-06-06 15:36 - 2016-06-06 15:36 - 00085336 _____ () C:\Nainstalovano\robo ftp\RoboUpload.dll
2016-06-06 15:36 - 2016-06-06 15:36 - 01153368 _____ () C:\Nainstalovano\robo ftp\RoboFTPDLL.dll
2016-02-17 11:31 - 2016-02-17 11:31 - 00489472 _____ () C:\Nainstalovano\robo ftp\aws-cpp-sdk-core.dll
2016-02-17 11:37 - 2016-02-17 11:37 - 02027520 _____ () C:\Nainstalovano\robo ftp\aws-cpp-sdk-s3.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00017408 _____ () C:\Nainstalovano\robo ftp\boost_system-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00040960 _____ () C:\Nainstalovano\robo ftp\boost_date_time-vc120-mt-1_59.dll
2015-09-01 11:30 - 2015-09-01 11:30 - 00103936 _____ () C:\Nainstalovano\robo ftp\boost_filesystem-vc120-mt-1_59.dll
2015-09-01 11:35 - 2015-09-01 11:35 - 00519680 _____ () C:\Nainstalovano\robo ftp\boost_log-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00026112 _____ () C:\Nainstalovano\robo ftp\boost_chrono-vc120-mt-1_59.dll
2015-09-01 11:29 - 2015-09-01 11:29 - 00082944 _____ () C:\Nainstalovano\robo ftp\boost_thread-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00628736 _____ () C:\Nainstalovano\robo ftp\boost_regex-vc120-mt-1_59.dll
2015-09-01 11:32 - 2015-09-01 11:32 - 00380416 _____ () C:\Nainstalovano\robo ftp\boost_locale-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00060416 _____ () C:\Nainstalovano\robo ftp\boost_iostreams-vc120-mt-1_59.dll
2015-09-01 11:31 - 2015-09-01 11:31 - 00067072 _____ () C:\Nainstalovano\robo ftp\boost_zlib-vc120-mt-1_59.dll
2005-06-21 04:34 - 2005-06-21 04:34 - 00557056 _____ () C:\Nainstalovano\Right Click Image Converter\extRCIC.dll
2015-06-22 22:56 - 2015-06-19 10:18 - 01086976 _____ () C:\Nainstalovano\reaConverter 7 Standard\newcontext.dll
2015-10-29 22:41 - 2015-02-27 15:38 - 00214528 _____ () C:\Windows\System32\ISCM32.dll
2015-01-23 19:31 - 2014-09-09 13:30 - 00603648 _____ () C:\Nainstalovano\Photo Studio 17\Program32\SpiderMonkey.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 01065936 _____ () C:\Nainstalovano\Avast\AvChrome.dll
2017-07-08 15:46 - 2017-07-08 15:46 - 67109376 _____ () C:\Nainstalovano\Avast\libcef.dll
2015-06-22 22:56 - 2015-06-19 10:18 - 02129408 _____ () C:\Nainstalovano\reaConverter 7 Standard\rc_service.exe
2017-07-23 00:47 - 2017-06-27 12:06 - 01720264 _____ () C:\NAINSTALOVANO\ANTI-MALWARE\MwacLib.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00134928 _____ () c:\Nainstalovano\Avast\vaarclient.dll
2017-07-22 15:47 - 2017-07-22 15:47 - 00231664 _____ () c:\Nainstalovano\Avast\StreamBack.dll
2016-06-03 22:14 - 2017-07-20 23:11 - 00205824 _____ () C:\Nainstalovano\AIMP3\System\libsoxr.dll
2016-06-03 22:14 - 2017-07-20 23:11 - 00299008 _____ () C:\Nainstalovano\AIMP3\System\Encoders\libFLAC.dll
2017-05-24 20:46 - 2017-07-20 23:11 - 00299008 _____ () C:\Nainstalovano\AIMP3\System\Encoders\lame_enc.dll
2016-06-03 22:14 - 2017-07-20 23:11 - 00759296 _____ () C:\Nainstalovano\AIMP3\System\Encoders\aimp_libvorbis.dll
2017-07-20 23:10 - 2017-07-20 23:10 - 00156208 _____ () C:\Nainstalovano\AIMP3\Plugins\aimp_AnalogMeter\aimp_AnalogMeter.dll
2014-12-06 20:42 - 2017-07-20 23:10 - 00171568 _____ () C:\Nainstalovano\AIMP3\Plugins\aimp_cdda\aimp_cdda.dll
2014-12-06 20:42 - 2017-07-20 23:10 - 00159232 _____ () C:\Nainstalovano\AIMP3\Plugins\aimp_sacd\libsacd.dll
2017-07-20 23:10 - 2017-07-20 23:10 - 00026624 _____ () C:\Nainstalovano\AIMP3\Plugins\Aorta\Aorta.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:264A9BB7 [118]
AlternateDataStreams: C:\ProgramData\Temp:FB1B13D8 [358]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2017-03-03 22:56 - 00000027 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-203695958-539750940-1501531493-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Paja\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: wuauserv => 2

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E855DC06-7687-46B6-ACD8-5663CC410ED6}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{678EA129-9FCB-4184-9A4F-0E0EDB40AF33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{4CEACF5E-45A8-4243-97D9-7E9F1CCB6E77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3E2D6AE9-2AAF-4C46-BAB6-1BBA6D83BC3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D6218026-0A3D-4379-BC5D-2D630637708D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0CF08F9A-23AD-4785-AACC-BB2DB7DA50CF}] => (Allow) C:\Nainstalovano\uTorrent\uTorrent.exe
FirewallRules: [{B35B4A50-69D2-4131-9593-0BE9A324BF3D}] => (Allow) C:\Nainstalovano\uTorrent\uTorrent.exe
FirewallRules: [{B18231AF-D45C-4500-9D85-1975EA24EFB2}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{F5F6A779-716A-4EF9-B01C-1410D3E7DE8A}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\outlook.exe
FirewallRules: [{2BA4E93F-9DE0-4CF8-B5DE-BE96A01C9EA2}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GROOVE.EXE
FirewallRules: [{ADF77F0E-9282-4EA5-BFF7-C89C836E2654}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\GROOVE.EXE
FirewallRules: [{CDCC11FD-5C0D-493F-9149-07E63069C5C9}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\ONENOTE.EXE
FirewallRules: [{36006F2F-4E7C-407A-B389-FDB6FDDD2135}] => (Allow) C:\Nainstalovano\Microsoft Office Enterprise 2007\Office12\ONENOTE.EXE
FirewallRules: [TCP Query User{311AF5A6-BE4B-4E34-89B1-674997B013E1}D:\hry\comamortuary\binaries\win32\udk.exe] => (Allow) D:\hry\comamortuary\binaries\win32\udk.exe
FirewallRules: [UDP Query User{241FD680-F79A-4276-861F-30E80D50E08F}D:\hry\comamortuary\binaries\win32\udk.exe] => (Allow) D:\hry\comamortuary\binaries\win32\udk.exe
FirewallRules: [{506A7663-9646-45C2-ABA6-EB5AE74A06B5}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13.exe
FirewallRules: [{8D7EF84C-50BB-48FC-85AA-CE6C2A4FE7E4}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
FirewallRules: [{B8B5259A-F32C-407D-8A07-5B05E2E9FFDD}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13Agent.exe
FirewallRules: [{318757C7-D5CD-4DA2-ADE9-3A25120CDDB5}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\PowerDVD13ML.exe
FirewallRules: [{26B2466D-1262-4606-BBDF-4D501A5982CD}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Movie\PowerDVD.exe
FirewallRules: [{D34C63DD-D6D0-4FA4-808E-BC7489854111}] => (Allow) C:\Nainstalovano\Power DVD 13\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe
FirewallRules: [TCP Query User{738821F9-47F3-473E-8AA9-14DB982F1172}F:\hry\dead island\deadislandgame.exe] => (Allow) F:\hry\dead island\deadislandgame.exe
FirewallRules: [UDP Query User{91860325-C950-44D5-A1B7-6F13ECEB2B60}F:\hry\dead island\deadislandgame.exe] => (Allow) F:\hry\dead island\deadislandgame.exe
FirewallRules: [TCP Query User{0EFE5356-6222-4906-AA75-89390A51619B}F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [UDP Query User{E77AB552-E91C-447E-9EE5-23A7FE027202}F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) F:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [TCP Query User{EBFC04A4-D04E-41AB-807A-6ED6C9EA3A14}F:\hry\resident evil 6\bh6.exe] => (Block) F:\hry\resident evil 6\bh6.exe
FirewallRules: [UDP Query User{9612F229-83F3-4BE9-AE08-CCC7235DF3D9}F:\hry\resident evil 6\bh6.exe] => (Block) F:\hry\resident evil 6\bh6.exe
FirewallRules: [TCP Query User{D74E380A-6E8E-483A-929C-91758E1C6128}F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [UDP Query User{D37E1F17-9CA4-482B-BD1B-F1D518C7F8D4}F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe] => (Block) F:\hry\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe
FirewallRules: [TCP Query User{CA1F2C7F-EB39-4302-B2CE-A8FCA309B815}D:\hry\fifa 2014\fifa 14\game\fifa14.exe] => (Allow) D:\hry\fifa 2014\fifa 14\game\fifa14.exe
FirewallRules: [UDP Query User{1B14D089-8A0E-4052-ABE9-A85BE7BDE73A}D:\hry\fifa 2014\fifa 14\game\fifa14.exe] => (Allow) D:\hry\fifa 2014\fifa 14\game\fifa14.exe
FirewallRules: [TCP Query User{BE115552-1BF6-4E8F-8F36-D18FF59D9484}F:\games\enemy front proper\bin32\enemyfront.exe] => (Block) F:\games\enemy front proper\bin32\enemyfront.exe
FirewallRules: [UDP Query User{C437B777-4BFE-4E0A-A6EB-4003EA21F2A8}F:\games\enemy front proper\bin32\enemyfront.exe] => (Block) F:\games\enemy front proper\bin32\enemyfront.exe
FirewallRules: [TCP Query User{6D2A9E09-F345-4A36-B0E9-F495C5EFD36B}C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe] => (Block) C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe
FirewallRules: [UDP Query User{4FFE92CF-1279-48BE-BE3B-093BB04AFB9E}C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe] => (Block) C:\games\batman - arkham asylum [goty]\binaries\shippingpc-bmgame.exe
FirewallRules: [TCP Query User{8E36BF02-F6C3-43D4-8D82-2AAF7254E248}C:\games\fifa 14 (2013)\game\fifa14.exe] => (Block) C:\games\fifa 14 (2013)\game\fifa14.exe
FirewallRules: [UDP Query User{DEBACE0A-5D41-4742-AE72-38C90DDB2A88}C:\games\fifa 14 (2013)\game\fifa14.exe] => (Block) C:\games\fifa 14 (2013)\game\fifa14.exe
FirewallRules: [TCP Query User{CB19C983-064A-464B-A80C-DDF8C1BCD589}D:\hry\real boxing\binaries\win32\realboxing.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxing.exe
FirewallRules: [UDP Query User{E1C9D28B-2CA7-4D59-97E2-7A40D225222B}D:\hry\real boxing\binaries\win32\realboxing.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxing.exe
FirewallRules: [TCP Query User{38C61323-2EE4-46B7-B1E7-A22F3C4FCEFE}D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe] => (Block) D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe
FirewallRules: [UDP Query User{C141B86B-EBFA-4390-9F43-01E2A8F2F9A4}D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe] => (Block) D:\hry\real boxing\binaries\gfx\gfxmediaplayeropengl.exe
FirewallRules: [TCP Query User{B8C2CB56-F37E-432F-B1C6-1C46FD560338}D:\hry\real boxing\binaries\win32\realboxinggame.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxinggame.exe
FirewallRules: [UDP Query User{3AF33CFC-F37E-4803-99B5-05E613D94A3C}D:\hry\real boxing\binaries\win32\realboxinggame.exe] => (Block) D:\hry\real boxing\binaries\win32\realboxinggame.exe
FirewallRules: [{35123716-9FF5-458C-9481-16895A8E5DB5}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{F32E71FA-1C74-4262-AD7B-0BCDF83915C1}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{D40B1108-6D0B-449F-BE46-8EA117FC523D}] => (Allow) C:\Nainstalovano\Photo Studio 17\Program32\MediaServer.exe
FirewallRules: [{1CA080FD-B402-4693-812F-8A9BD496B9CA}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{9E212901-E354-4AE2-A10A-F6916B27BF9C}C:\nainstalovano\vlc\vlc.exe] => (Allow) C:\nainstalovano\vlc\vlc.exe
FirewallRules: [UDP Query User{BDE95086-5CED-46C0-8A50-0EDE47791C8E}C:\nainstalovano\vlc\vlc.exe] => (Allow) C:\nainstalovano\vlc\vlc.exe
FirewallRules: [TCP Query User{069B9BAC-7484-4323-A0AA-36BC98077479}C:\nainstalovano\ps3 media server\jre\bin\javaw.exe] => (Allow) C:\nainstalovano\ps3 media server\jre\bin\javaw.exe
FirewallRules: [UDP Query User{1F3CC5C1-E477-442C-9829-2777CD246CB8}C:\nainstalovano\ps3 media server\jre\bin\javaw.exe] => (Allow) C:\nainstalovano\ps3 media server\jre\bin\javaw.exe
FirewallRules: [TCP Query User{69EC4CDD-10F6-4C68-B987-BB6E441E25D5}C:\nainstalovano\totalcmd\totalcmd.exe] => (Allow) C:\nainstalovano\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{3C196146-D1DA-448B-8A78-5173E8025E3F}C:\nainstalovano\totalcmd\totalcmd.exe] => (Allow) C:\nainstalovano\totalcmd\totalcmd.exe
FirewallRules: [TCP Query User{E9949285-8801-497F-8EDB-E20781E76A22}I:\games\pro evolution soccer 2015\pes2015.exe] => (Allow) I:\games\pro evolution soccer 2015\pes2015.exe
FirewallRules: [UDP Query User{7AA3C894-AAAC-45A6-9C99-5D92207E04A5}I:\games\pro evolution soccer 2015\pes2015.exe] => (Allow) I:\games\pro evolution soccer 2015\pes2015.exe
FirewallRules: [TCP Query User{B70FE225-727C-4381-B901-DF6C752EEF29}I:\games\son of nor\son.exe] => (Allow) I:\games\son of nor\son.exe
FirewallRules: [UDP Query User{2D43CF5C-7A8E-4DB3-AE8B-19850EA1B6F6}I:\games\son of nor\son.exe] => (Allow) I:\games\son of nor\son.exe
FirewallRules: [TCP Query User{6B33D2C1-7F0B-4767-B851-908E9EA55DA0}C:\nainstalovano\filezilla ftp client\filezilla.exe] => (Allow) C:\nainstalovano\filezilla ftp client\filezilla.exe
FirewallRules: [UDP Query User{64C1A521-0942-435A-BA08-ABAF2B2C536F}C:\nainstalovano\filezilla ftp client\filezilla.exe] => (Allow) C:\nainstalovano\filezilla ftp client\filezilla.exe
FirewallRules: [TCP Query User{59BF052A-8A8A-402F-8005-50C99DF753BE}D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [UDP Query User{361719EC-240D-481A-8BB0-A45735A0E00B}D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe] => (Allow) D:\hry\mortal kombat komplete edition\disccontentpc\mkke.exe
FirewallRules: [{D6FA0C13-5CB1-4953-A891-2647936CB998}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{578D0F63-3AF7-4897-94F7-46A8933EF93D}] => (Allow) C:\Nainstalovano\Mozilla Firefox\firefox.exe
FirewallRules: [{3F1596EC-8D8B-45B8-B7D0-A661585CD205}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0390F6E7-CBB5-46E3-AFDB-8611C62EFF4C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{EA3DF2FD-6A2D-4902-8A93-EA7468D34538}] => (Allow) C:\Nainstalovano\Itunes\iTunes.exe
FirewallRules: [{D54F1D65-DABC-43F4-82FC-8513ABFA7169}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{9C77410F-4E75-458B-B369-B710A204E8AB}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{728E93F6-3DB8-4A7E-ADC5-B1FD0882525F}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{F53F47A2-8241-4613-BBC4-5F4362575D2A}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{E1B657D0-8459-4DCB-AA5F-A7ADED2D2AE2}] => (Allow) C:\Nainstalovano\Video Download Capture\Video Download Capture.exe
FirewallRules: [{87256B0C-4F7D-4D8E-93D3-1A5721B90307}] => (Allow) C:\Nainstalovano\Video Download Capture\Video Download Capture.exe
FirewallRules: [{C275FEB4-D930-4302-A396-70D2AA229A01}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{8FB66D5A-E292-44FA-8851-58DB54711213}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftSrv.dll
FirewallRules: [{6A2A0450-4110-436E-B9D2-3421C68DAD26}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{5A686B6F-7B31-4AD7-B3EB-4B8C79E82F8A}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDump.dll
FirewallRules: [{3AC1205C-2F01-4AC4-84BA-813E422BC3D2}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{D1B50CF9-5737-4475-BC21-EB15BC801912}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftAC.dll
FirewallRules: [{1FA20D28-B7AB-4BCF-B5CD-38CBAE07C642}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{AE5324D4-9E38-46E8-A9E3-0EF9D3764744}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftPlayer.dll
FirewallRules: [{6E181540-DEF6-4904-ABC0-C60C7BCA3B5D}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{D002448B-77F7-45C2-9350-692C64084DDD}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftDownloaderHelp.dll
FirewallRules: [{041E05C7-363F-4DDA-AE89-C0314DD77C39}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{0084348E-86E7-40F6-B058-49DD7D553E1A}] => (Allow) C:\Nainstalovano\Video Download Capture\ApowersoftHDSDump.dll
FirewallRules: [{B44BE1F4-94AE-491A-AB1B-D1E6B8BF8F3C}] => (Allow) C:\Users\Paja\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe
FirewallRules: [{E2BECB5F-4E14-4C97-A431-5E2D6BC3454E}] => (Allow) C:\Users\Paja\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe
FirewallRules: [{193DD11A-FAD3-4B4E-8050-EA94916F1321}] => (Allow) C:\Nainstalovano\Video Download Capture 6\Video Download Capture 6.exe
FirewallRules: [{9D76169F-78B4-4E08-A790-CEC4C9CCE54F}] => (Allow) C:\Nainstalovano\Video Download Capture 6\Video Download Capture 6.exe
FirewallRules: [{B3295ED0-85A8-4713-8CC9-E4C1D18137E9}] => (Allow) C:\Nainstalovano\Video Download Capture 6\rtmpsrv.exe
FirewallRules: [{0EB61236-97E3-4BD1-9C0E-CE1952191393}] => (Allow) C:\Nainstalovano\Video Download Capture 6\rtmpsrv.exe
FirewallRules: [{2D7406D9-9A70-4DED-8801-F7B09AAE728A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{C75B04B2-A39E-4BC7-BACE-0009A6FCB055}] => (Allow) C:\Nainstalovano\Opera\46.0.2597.46\opera.exe
FirewallRules: [{21D2E44D-57A8-4BE4-BEDE-8457BD65CB3A}] => (Allow) C:\Nainstalovano\Opera\46.0.2597.57\opera.exe
StandardProfile\AuthorizedApplications: [C:\Nainstalovano\Facebook Video Downloader\FacebookVideoDownloader.exe] => Enabled:Facebook Video Downloader

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter #3
Description: Adaptér miniportu Microsoft Virtual WiFi
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/05/2017 08:59:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/05/2017 08:58:04 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (08/05/2017 08:58:04 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (08/05/2017 08:58:04 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (08/04/2017 08:49:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/04/2017 08:47:48 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (08/04/2017 08:47:48 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=25, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (08/04/2017 08:47:48 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=17, ID autora=9, ID dodavatele=0, typ dodavatele=0

Error: (08/04/2017 08:42:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/04/2017 08:40:58 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path name se nezdařilo. Chyba: ID typu=43, ID autora=9, ID dodavatele=0, typ dodavatele=0


System errors:
=============
Error: (08/05/2017 09:00:57 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: Přidělování DHCP bylo automaticky vypnuto u IP adresy 192.168.1.103, protože tato adresa nepatří do oboru 192.168.137.0/255.255.255.0, ze kterého jsou přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této IP adresy zapnout, změňte obor tak, aby tuto IP adresu zahrnoval, nebo změňte IP adresu tak, aby patřila do oboru.

Error: (08/05/2017 09:00:56 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: Službě ICS_IPV6 se nepodařilo nakonfigurovat zásobník IPv6.

Error: (08/05/2017 08:58:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) PROSet/Wireless Registry Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (08/05/2017 08:58:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) PROSet/Wireless Event Log neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (08/05/2017 08:58:02 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 22) (User: NT AUTHORITY)
Description: Služba protokolování událostí zjistila při inicializaci publikačních prostředků chybu v kanálu AirSpaceChannel. V případě analytického nebo ladicího typu kanálu to může znamenat, že došlo také k chybě při inicializaci přihlašovacích prostředků.

Error: (08/05/2017 08:58:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Virtualizace souborů nástroje Řízení uživatelských účtů neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (08/05/2017 08:58:02 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (0:57:27, ‎5.‎8.‎2017) bylo neočekávané.

Error: (08/05/2017 12:47:51 AM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: Agent serveru proxy služby DNS nemohl přidělit 0 bajtů paměti. To může znamenat, že tento systém má nedostatek virtuální paměti nebo že správce paměti zjistil vnitřní chybu.

Error: (08/04/2017 11:47:51 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: Agent serveru proxy služby DNS nemohl přidělit 0 bajtů paměti. To může znamenat, že tento systém má nedostatek virtuální paměti nebo že správce paměti zjistil vnitřní chybu.

Error: (08/04/2017 08:50:10 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: Přidělování DHCP bylo automaticky vypnuto u IP adresy 192.168.1.100, protože tato adresa nepatří do oboru 192.168.137.0/255.255.255.0, ze kterého jsou přidělovány adresy klientům DHCP. Chcete-li přidělování DHCP u této IP adresy zapnout, změňte obor tak, aby tuto IP adresu zahrnoval, nebo změňte IP adresu tak, aby patřila do oboru.


CodeIntegrity:
===================================
Date: 2017-06-17 15:51:32.750
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-06-10 14:55:18.642
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-25 22:12:03.212
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-25 22:12:01.418
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 20:57:58.820
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 18:31:12.693
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-04-24 18:31:12.123
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-27 01:06:56.054
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-01 22:50:41.635
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-02-19 20:09:05.772
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T6400 @ 2.00GHz
Percentage of memory in use: 53%
Total physical RAM: 3066.87 MB
Available physical RAM: 1431.47 MB
Total Virtual: 3867.12 MB
Available Virtual: 1957.18 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:1.82 GB) NTFS
Drive d: () (Fixed) (Total:368.1 GB) (Free:1.25 GB) NTFS
Drive g: (Elements) (Fixed) (Total:1863.01 GB) (Free:1.35 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 0002F734)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

dj-paja
Návštěvník
Návštěvník
Příspěvky: 412
Registrován: 16 úno 2012 12:30

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#12 Příspěvek od dj-paja »

Jen doplním,že se to sekání hudby děje čím dál tím víc viz intervaly,tak to bude asi grafická karta fuč,přehřívá se viz teploty? co myslíte.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#13 Příspěvek od Rudy »

Snad zv. karta, ne? Při vadě gr. karty byste měl problém se zobrazením, nikoli se zvukem. Jaké jsou ty teploty? Zkuste přeinstalovat ovladač.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

dj-paja
Návštěvník
Návštěvník
Příspěvky: 412
Registrován: 16 úno 2012 12:30

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#14 Příspěvek od dj-paja »

Jasně špatně napsáno,zvukovka ve správci zařízení mne to píše,že ovladač je aktuální.Pokud to program ukázal správně 70 c viz teplota.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: RE: občasné sekání hudby a aplikací,myši v os 7

#15 Příspěvek od Rudy »

Pak můžete zkusit už jen 2 věci. Buď přeinstalovat systém, nebo zkusit nějakou externí zvukovku, např: https://www.czc.cz/axagon-ada-10-usb2-0/152168/produkt . Tu integrovanou v tom případě musíte v biosu zakázat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět