Výkyvy rychlosti PC

Zpráva

Chiefko · #1 Příspěvek od **Chiefko** » 18 dub 2016 20:58

Zdravím, přiznám se, že jsem se zaregistroval jen proto, že o virech moc nevím a ani si nejsem jist zda v PC opravdu virus je. ( ale přeci jen i-7, 8gb, Gtx960 )
A počítač po nějakém tom roce pociťuji začíná blbnout ( stream se se občas laguje, výkyvy FPS ) ve správci úloh zabíra svchost nejvíc. Projel jsem PC AVG, pak jsem zkusil Avast. Projel MBAM ( podle toho co jsem se dočetl různě na forum, googlu. Nyní projíždím Hijackt log:

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 21:47:40, on 18.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)

Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Rigin\AppData\Local\Akamai\netsession_win.exe
C:\Users\Rigin\AppData\Local\Akamai\netsession_win.exe
C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Users\Rigin\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=s ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Rigin\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Rigin\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (User 'Default user')
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP4c\RpcAgentSrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11776 bytes

#2 Příspěvek od **Rudy** » 18 dub 2016 21:09

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Chiefko · #3 Příspěvek od **Chiefko** » 18 dub 2016 21:28

Zapomněl jsem, že už jsem to AdwCleanerem jednou zkoušel ( snad jsem to tím nepokazil )

# AdwCleaner v5.112 - Log soubor vytvořen 18/04/2016 o 22:22:55
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-17.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Jméno uživatele : Rigin - RIGIN-PC
# Spuštěno z : C:\Users\Rigin\Downloads\adwcleaner_5.112 (1).exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****

***** [ Složky ] *****

[-] Složka smazáno : C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf

***** [ Soubory ] *****

***** [ DLLs ] *****

***** [ Zástupci ] *****

***** [ Naplánované úkoly ] *****

***** [ Registr ] *****

***** [ Webové prohlížeče ] *****

*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [12456 bytes] - [17/04/2016 22:25:04]
C:\AdwCleaner\AdwCleaner[C2].txt - [975 bytes] - [18/04/2016 22:22:55]
C:\AdwCleaner\AdwCleaner[S1].txt - [13012 bytes] - [17/04/2016 22:23:08]
C:\AdwCleaner\AdwCleaner[S2].txt - [1089 bytes] - [18/04/2016 22:21:38]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1194 bytes] ##########

#4 Příspěvek od **Rudy** » 18 dub 2016 21:31

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Chiefko · #5 Příspěvek od **Chiefko** » 18 dub 2016 21:48

Bohužel obnova systému není možná problém se vyskytl postupně a obnova systému nesáhá s datumem tak daleko.
log:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-04-2016
Ran by Rigin (2016-04-18 22:37:53)
Running from C:\Users\Rigin\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2013-09-24 15:01:46)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3790502155-2551764370-1862606806-500 - Administrator - Disabled)
Guest (S-1-5-21-3790502155-2551764370-1862606806-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3790502155-2551764370-1862606806-1384 - Limited - Enabled)
Rigin (S-1-5-21-3790502155-2551764370-1862606806-1000 - Administrator - Enabled) => C:\Users\Rigin

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3D Driving-School (HKLM-x32\...\3D Driving-School) (Version: - )
ABC 3GP/MP4 Converter 3.00 (HKLM-x32\...\ABC 3GP/MP4 Converter) (Version: 3.00 - ABCMedia Studio@VOWSoft,Ltd.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.198 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
AIDA64 Extreme v4.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.00 - FinalWire Ltd.)
Akamai NetSession Interface (HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Aktualizace NVIDIA 2.11.2.55 (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
Assassins Creed - Unity (HKLM-x32\...\{9L5KR86L-0F3I-4HJ7-HKY5-DRTL4V36QG2X}_is1) (Version: 1.1.0.0 - Ubisoft)
AutoCAD 2014 – Čeština (Czech) (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack – Čeština (Czech) (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD Mechanical 2014 - Čeština (Czech) (Version: 18.0.17.0 - Autodesk) Hidden
AutoCAD Mechanical 2014 Language Pack – Čeština (Czech) (Version: 18.0.17.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD 2014 – Čeština (Czech) (HKLM\...\AutoCAD 2014 – Čeština (Czech)) (Version: 19.1.18.0 - Autodesk)
Autodesk AutoCAD Mechanical 2014 - Čeština (Czech) (HKLM\...\AutoCAD Mechanical 2014 - Čeština (Czech)) (Version: 18.0.17.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk)
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Inventor View 2014 - čeština (Czech) (HKLM\...\Autodesk Inventor View 2014) (Version: 18.0.16600.0000 - Autodesk)
Autodesk Inventor View 2014 (Version: 18.0.16600.0000 - Autodesk) Hidden
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.13 - Autodesk)
Autodesk ReCap (Version: 1.0.43.13 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.13 - Autodesk) Hidden
Autodesk Vault Basic 2014 (Client) (HKLM\...\Autodesk Vault Basic 2014 (Client)) (Version: 18.0.86.0 - Autodesk)
Autodesk Vault Basic 2014 (Client) (Version: 18.0.86.0 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2261 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battleborn Open Beta (HKLM\...\Steam App 451070) (Version: - )
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.0.0.0 - Electronic Arts)
BitTorrent (HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\BitTorrent) (Version: 7.9.6.42095 - BitTorrent Inc.)
BLOCKADE 3D (HKLM-x32\...\Steam App 302830) (Version: - Shumkov Dmitriy)
Brick-Force (EU) (HKLM-x32\...\Steam App 335330) (Version: - Exe Games Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.66.1075 - AB Team, d.o.o.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG6400 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6400_series) (Version: 1.01 - Canon Inc.)
Canon MG6400 series On-screen Manual (HKLM-x32\...\Canon MG6400 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID HWMonitor 1.24 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0335 - Disc Soft Ltd)
DWG TrueView 2014 (Version: 19.1.18.0 - Autodesk) Hidden
F.E.A.R. Online (HKLM-x32\...\Steam App 223650) (Version: - InPlay Interactive)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - )
FileZilla Client 3.7.4.1 (HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\FileZilla Client) (Version: 3.7.4.1 - Tim Kosse)
Fotor 2.0.0 (HKLM-x32\...\Fotor) (Version: 2.0.0 - Everimaging Co., Ltd.)
Freemake Video Converter verze 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
Game of Thrones - Ep1 Iron From Ice (2014)(CZ) / Danik1B9 (HKLM-x32\...\Game of Thrones Ep1 Iron From Ice_is1) (Version: - )
Game of Thrones A Telltale Games Series (HKLM-x32\...\Game of Thrones A Telltale Games Series_is1) (Version: - )
GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
Goat Simulator (HKLM-x32\...\R29hdFNpbXVsYXRvcg==_is1) (Version: 1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7210.1528 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.102 - Intel Corporation)
Jazykový balíček Autodesk Inventor View 2014 - čeština (Czech) (Version: 18.0.16600.0000 - Autodesk) Hidden
Jazykový balíček Autodesk Vault Basic 2014 (Client) – čeština (Version: 18.0.86.0 - Autodesk) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
ManiaPlanet (HKLM-x32\...\ManiaPlanet_is1) (Version: - Nadeo)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Minecraft1.7.2 (HKLM-x32\...\Minecraft1.7.2) (Version: - )
Mirror's Edge™ (HKLM-x32\...\{AEDBD563-24BB-4EE3-8366-A654DAC2D988}) (Version: 1.0.1.0 - Electronic Arts)
Motherboard Monitor 5 (HKLM-x32\...\Motherboard Monitor 5_is1) (Version: 5 - Alexander van Kaam)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5 - Notepad++ Team)
NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation)
NVIDIA PhysX v8.10.17 (HKLM-x32\...\{E4D15328-8C89-484B-B9AA-F5BE9EA6D01C}) (Version: 8.10.17 - NVIDIA Corporation)
OpenOffice 4.0.1 (HKLM-x32\...\{220C463A-2890-4C7F-B97C-C49FE175B849}) (Version: 4.01.9714 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 8.4.1.210 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 364.72 (Version: 364.72 - NVIDIA Corporation) Hidden
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Portal 2 1.00 (HKLM-x32\...\Portal 2 1.00) (Version: - )
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.5.7.2450 - Jan Fiala)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Quake Live (HKLM-x32\...\Quake Live) (Version: - id Software)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.28129 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG6400 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG6400 series) (Version: - ‭Canon Inc.)
SafeZone Stable 1.48.2066.98 (x32 Version: 1.48.2066.98 - Avast Software) Hidden
Seznam Software (HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\SeznamInstall) (Version: - Seznam.cz)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
SiSoftware Sandra Lite 2012.SP4c (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 18.52.2012.6 - SiSoftware)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2476.0 - Hi-Rez Studios)
Sothink Logo Maker (HKLM-x32\...\{C8F4904F-51F4-4312-BE64-FF1D23606E86}_is1) (Version: 3.5 - SourceTec Software Co., LTD)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.018 - MSI)
System Explorer 6.3.0 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version: - Mister Group)
System Requirements Lab Detection (HKLM-x32\...\{0558E4C6-5CCC-4052-B9F8-E3F802E5B280}) (Version: 2.0.0.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
Tony Hawk's Pro Skater 3® (HKLM-x32\...\Tony Hawk's Pro Skater 3®) (Version: 1.0 - Activision Publishing, Inc.)
Trove (HKLM-x32\...\Steam App 304050) (Version: - Trion Worlds)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
UmmyVideoDownloader (HKLM-x32\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: 1.5.0.0 - )
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Watch_Dogs (HKLM-x32\...\{9L5FE86L-0D8I-4HJ7-HKY5-DRTKE3G6QG2X}_is1) (Version: 1.00 - Ubisoft)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
X-Mouse Button Control 2.6.2 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.6.2 - Highresolution Enterprises)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor View 2014\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2014\en-US\dwgviewrficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor View 2014\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor View 2014\Bin\RxApprenticeServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor View 2014\Bin\RxInventorUtilities.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\cs-CZ\acadficn.dll (Autodesk, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {3C057840-5955-466E-980A-321619F6CD5C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {47333B3F-62EB-4682-AC08-95EED1C64F1F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-04-17] (AVAST Software)
Task: {7998EBC8-11BC-4B6A-8BCC-C474FB999CAD} - System32\Tasks\{C5569326-9FBB-423F-8D09-FB2FEACFB112} => pcalua.exe -a "C:\Users\Rigin\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe" -c /initurl hxxp://bi.bisrv.com/:affid:/:sid:/:uid:? /affid uninstall /id uninstall /name "Bundled software uninstaller"
Task: {7C3AC311-B9C4-4C8A-8957-738642063F3E} - System32\Tasks\SafeZone scheduled Autoupdate 1460925214 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-03-30] (Avast Software)
Task: {B658DC59-3ECC-465F-8823-D3751F81DCE0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-04-17] (AVAST Software)
Task: {B9AC9541-BBBA-492A-9C08-9AD672CC7C24} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {CCC170EA-12EE-4284-B4D8-FCC621F552E1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-07] (Adobe Systems Incorporated)
Task: {D9332B99-8EE4-4E38-91E0-580E4560F7C1} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET NOD32 Antivirus 8.0\upgrade.exe [2016-03-20] (ESET)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-04-05 12:03 - 2016-03-22 04:25 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-06-05 13:57 - 2015-05-26 13:35 - 00079872 _____ () C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\21934libfoxloader-x64.dll
2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2012-06-18 17:24 - 2012-06-18 17:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2014-02-25 22:53 - 2013-05-14 11:50 - 00140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-04-08 15:26 - 2016-03-30 04:36 - 00368000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-04-08 15:26 - 2016-03-30 04:36 - 01148800 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-04-08 15:26 - 2016-03-30 04:37 - 03613056 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-04-08 15:26 - 2016-03-30 04:37 - 00289664 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2014-02-20 19:06 - 2014-02-20 21:28 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2016-04-08 15:26 - 2016-03-30 04:37 - 02667392 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-08 15:26 - 2016-03-30 04:37 - 01990016 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-08 15:26 - 2016-03-30 04:37 - 01842048 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-04-08 15:26 - 2016-03-30 04:37 - 00208768 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-04-08 15:26 - 2016-03-30 04:36 - 00035712 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-04-08 15:26 - 2016-03-30 04:36 - 00921472 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2013-02-05 00:21 - 2013-02-05 00:21 - 00056352 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2013-02-05 00:21 - 2013-02-05 00:21 - 00937504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2013-02-05 00:21 - 2013-02-05 00:21 - 00124448 _____ () C:\Program Files\Autodesk\Autodesk Sync\QJson.dll
2013-02-05 00:21 - 2013-02-05 00:21 - 00045088 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2014-03-10 19:55 - 2015-05-26 13:38 - 00457384 _____ () C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
2014-03-10 19:55 - 2015-05-26 13:36 - 00073896 _____ () C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
2016-04-17 22:31 - 2016-04-17 22:31 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-04-17 22:31 - 2016-04-17 22:31 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-04-18 22:24 - 2016-04-18 22:24 - 02890240 _____ () C:\Program Files\AVAST Software\Avast\defs\16041801\algo.dll
2016-04-17 22:31 - 2016-04-17 22:31 - 00478144 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-04-08 15:26 - 2016-03-30 04:44 - 00020352 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-06-05 13:57 - 2015-05-26 13:37 - 00078504 _____ () C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\21934libfoxloader.dll
2014-03-10 19:55 - 2015-05-26 13:38 - 00862888 _____ () C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
2016-04-17 22:31 - 2016-04-17 22:31 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-04-12 19:28 - 2016-04-06 12:04 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\libglesv2.dll
2016-04-12 19:28 - 2016-04-06 12:04 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.112\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Rigin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{3B07F504-68DE-4735-BD06-2A6A2216660F}C:\users\rigin\downloads\urbanterror42_full014\urbanterror42\quake3-urt.exe] => (Allow) C:\users\rigin\downloads\urbanterror42_full014\urbanterror42\quake3-urt.exe
FirewallRules: [UDP Query User{239B2746-E586-4AE0-9F8F-9763C0D99BC2}C:\users\rigin\downloads\urbanterror42_full014\urbanterror42\quake3-urt.exe] => (Allow) C:\users\rigin\downloads\urbanterror42_full014\urbanterror42\quake3-urt.exe
FirewallRules: [TCP Query User{240A5BAE-A752-442F-BB3E-E082144E4EE5}C:\users\rigin\downloads\7_days_to_die_alpha_1.1___by_creyplays\7 days to die alpha 1.1 crack_by creyplays\7daystodie.exe] => (Allow) C:\users\rigin\downloads\7_days_to_die_alpha_1.1___by_creyplays\7 days to die alpha 1.1 crack_by creyplays\7daystodie.exe
FirewallRules: [UDP Query User{C178249C-4A70-4346-A384-9F0E66E08106}C:\users\rigin\downloads\7_days_to_die_alpha_1.1___by_creyplays\7 days to die alpha 1.1 crack_by creyplays\7daystodie.exe] => (Allow) C:\users\rigin\downloads\7_days_to_die_alpha_1.1___by_creyplays\7 days to die alpha 1.1 crack_by creyplays\7daystodie.exe
FirewallRules: [TCP Query User{E393FC35-CD73-43B6-9B1F-F663B6BF4FC5}C:\users\rigin\downloads\urt-mapping\netradiant\radiant.exe] => (Allow) C:\users\rigin\downloads\urt-mapping\netradiant\radiant.exe
FirewallRules: [UDP Query User{BC46B200-4AE6-4416-8D05-7B502DC9F216}C:\users\rigin\downloads\urt-mapping\netradiant\radiant.exe] => (Allow) C:\users\rigin\downloads\urt-mapping\netradiant\radiant.exe
FirewallRules: [TCP Query User{3EA337AB-CC66-433D-99E0-A92503734EEA}C:\users\rigin\downloads\urt-mapping\urbanterror42\quake3-urt.exe] => (Block) C:\users\rigin\downloads\urt-mapping\urbanterror42\quake3-urt.exe
FirewallRules: [UDP Query User{5F92F491-B470-405D-8749-ADD88DFBFD43}C:\users\rigin\downloads\urt-mapping\urbanterror42\quake3-urt.exe] => (Block) C:\users\rigin\downloads\urt-mapping\urbanterror42\quake3-urt.exe
FirewallRules: [TCP Query User{013CEB9E-D98E-43CA-B814-C2A2CC12F611}C:\users\rigin\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\rigin\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{853A71DF-7CAC-41B2-8087-3A96A1FDA5F2}C:\users\rigin\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\rigin\appdata\local\akamai\netsession_win.exe
FirewallRules: [{1E5E51FC-DD30-489C-86CC-793FE3F23AA7}] => (Allow) LPort=50248
FirewallRules: [TCP Query User{7E2BFD14-DC1A-4A39-A414-3731DA4D2E14}C:\users\rigin\downloads\wow_cata\wow cata\launcher.patch.exe] => (Allow) C:\users\rigin\downloads\wow_cata\wow cata\launcher.patch.exe
FirewallRules: [UDP Query User{A2B3EA4D-2385-4360-A109-12868E7024B1}C:\users\rigin\downloads\wow_cata\wow cata\launcher.patch.exe] => (Allow) C:\users\rigin\downloads\wow_cata\wow cata\launcher.patch.exe
FirewallRules: [TCP Query User{9F1D973E-40A7-411E-91D2-46BEC828915B}C:\users\rigin\downloads\wow_cata\wow cata\temp\wow-4.2.1.2756-enus-tools-downloader.exe] => (Allow) C:\users\rigin\downloads\wow_cata\wow cata\temp\wow-4.2.1.2756-enus-tools-downloader.exe
FirewallRules: [UDP Query User{E49C2289-4913-4AED-95F1-A8F0DF4A4C9E}C:\users\rigin\downloads\wow_cata\wow cata\temp\wow-4.2.1.2756-enus-tools-downloader.exe] => (Allow) C:\users\rigin\downloads\wow_cata\wow cata\temp\wow-4.2.1.2756-enus-tools-downloader.exe
FirewallRules: [TCP Query User{D05E252C-7B1B-4CAE-9E99-FF5FD057D66C}C:\users\rigin\downloads\wow_cata\wow cata\launcher.exe] => (Allow) C:\users\rigin\downloads\wow_cata\wow cata\launcher.exe
FirewallRules: [UDP Query User{3E5D1B8C-0AE5-4FEC-A315-7C603E28C5E8}C:\users\rigin\downloads\wow_cata\wow cata\launcher.exe] => (Allow) C:\users\rigin\downloads\wow_cata\wow cata\launcher.exe
FirewallRules: [TCP Query User{5CD56DE0-8519-4F43-8EC9-B9A563A7A598}C:\users\rigin\downloads\wow_cata\wow cata\temp\wow-4.3-5.0.15890-enus-downloader.exe] => (Allow) C:\users\rigin\downloads\wow_cata\wow cata\temp\wow-4.3-5.0.15890-enus-downloader.exe
FirewallRules: [UDP Query User{E40C3289-E4D5-46E4-A37A-CD516E5FEB21}C:\users\rigin\downloads\wow_cata\wow cata\temp\wow-4.3-5.0.15890-enus-downloader.exe] => (Allow) C:\users\rigin\downloads\wow_cata\wow cata\temp\wow-4.3-5.0.15890-enus-downloader.exe
FirewallRules: [{50A5B59C-D5CB-4FDB-B7A7-99B654BBD9E8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe
FirewallRules: [{D3315CA8-DEA5-42C6-9316-B11294538984}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe
FirewallRules: [{1ED8ECEC-8F58-4E78-A5CF-04B1980C5B39}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{FF22AFAA-5311-4122-B927-0B35434A259C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{574483F9-75ED-45B3-A957-75929374E290}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{FF4A9AE1-EDCE-4048-B68D-677ABDCBBA98}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{7980F09C-3895-4EFC-8B69-227151A3F08A}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe
FirewallRules: [{A83004E6-DDBD-47D0-924B-82ACFAD63865}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe
FirewallRules: [{C422CA73-9F1B-4DD6-9365-5E39B495F2BC}] => (Allow) C:\Hry\Battlefield 4\bf4.exe
FirewallRules: [{1BCCE2EB-BE95-4162-91D6-5FCDAC030827}] => (Allow) C:\Hry\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{966C6CFA-28E8-45C4-A671-385F0A5F1356}C:\Program Files (x86)\Savage 2 - A Tortured Soul\savage2.exe] => (Allow) C:\Program Files (x86)\Savage 2 - A Tortured Soul\savage2.exe
FirewallRules: [UDP Query User{2AAD4CCD-8883-4E2F-8A50-CC469F3F278C}C:\Program Files (x86)\Savage 2 - A Tortured Soul\savage2.exe] => (Allow) C:\Program Files (x86)\Savage 2 - A Tortured Soul\savage2.exe
FirewallRules: [TCP Query User{EDEF2377-3808-4B89-8CCF-80DC720C2A07}C:\Program Files (x86)\Savage2\savage2.exe] => (Allow) C:\Program Files (x86)\Savage2\savage2.exe
FirewallRules: [UDP Query User{2C534E98-FEC9-48B4-B54D-A5AB9515B647}C:\Program Files (x86)\Savage2\savage2.exe] => (Allow) C:\Program Files (x86)\Savage2\savage2.exe
FirewallRules: [TCP Query User{43668C41-4C5B-4C3D-9536-A7F338F9F5E7}C:\program files (x86)\maniaplanet\maniaplanet.exe] => (Allow) C:\program files (x86)\maniaplanet\maniaplanet.exe
FirewallRules: [UDP Query User{A23DAFE9-9A54-49D9-86A5-6B23BE5BB9F4}C:\program files (x86)\maniaplanet\maniaplanet.exe] => (Allow) C:\program files (x86)\maniaplanet\maniaplanet.exe
FirewallRules: [{5AA547AB-4491-4E21-9476-4B8FC6A8D843}] => (Allow) C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat
FirewallRules: [{90A3507B-6B02-4463-BEFE-DB5A9BBF7D98}] => (Allow) C:\Program Files (x86)\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat
FirewallRules: [{FA970D4E-A09A-4079-9668-EDBA8CF8DD2A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{1996D98E-F5A5-423D-A89E-EDFCDD0F2946}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{88D151C0-34C0-4CB4-BEC3-2A7A846EF047}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe
FirewallRules: [{2C901CCA-A8F6-4693-884B-326B92FC7FC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe
FirewallRules: [{E09586D5-C6BA-4D0D-A1B7-B721010A9568}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{3935BBB7-FFF5-4D83-8A15-C8AC0BDC5509}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{BFC6BF66-33CF-4345-A619-378193D83831}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{40AC76DD-2690-4142-93C7-D847DB00F811}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{5C9D961F-B39E-481E-A7A9-DAB0908A6230}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{88FD6F7B-37A8-4A52-B088-01D2331B3F8A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CEC68E35-900B-47C8-A034-A2C892F68E23}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{007CFBA1-5302-42E3-9CF7-3E10725215F2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{EA3AF5C2-FAA0-47DE-9E63-BE420C768139}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{B6758B59-EB0A-451C-8012-38F10706C52C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{41DD2E23-CE64-49C4-AFD8-0D2A0890DEBA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{DAF00A4A-B752-4A13-80C4-73B5C9867B67}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{4AFC2327-02E8-41A9-96D8-A0DDB9E1EE41}C:\program files (x86)\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\tera\tera-launcher.exe
FirewallRules: [UDP Query User{FDDB6BA3-D8D0-4029-9826-E4BA49F503BA}C:\program files (x86)\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\tera\tera-launcher.exe
FirewallRules: [{E1D56AB0-E143-4094-BF99-C835B7920B38}] => (Allow) C:\Users\Rigin\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{F49C8654-3694-4A0A-9288-6E260C502D11}] => (Allow) C:\Users\Rigin\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [TCP Query User{1471936B-BB88-4D2C-AB0F-059827E75ABF}C:\users\rigin\downloads\7.days.to.die.alpha.6.1.fixed.[derpteam]\7 days to die alpha 6.1\7daystodie.exe] => (Block) C:\users\rigin\downloads\7.days.to.die.alpha.6.1.fixed.[derpteam]\7 days to die alpha 6.1\7daystodie.exe
FirewallRules: [UDP Query User{D45F0BA4-2387-4C2B-9EDA-A8187378E8B3}C:\users\rigin\downloads\7.days.to.die.alpha.6.1.fixed.[derpteam]\7 days to die alpha 6.1\7daystodie.exe] => (Block) C:\users\rigin\downloads\7.days.to.die.alpha.6.1.fixed.[derpteam]\7 days to die alpha 6.1\7daystodie.exe
FirewallRules: [{F4F30925-459E-4AEF-B1D2-80257746D97C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{11224E7C-0ED4-4D9D-ADDB-8974C97026D0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{596CAF83-A439-4230-93DB-9B5CAD82B09B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{40F68427-9B14-4E29-A0AD-CA1B6E2EAE7B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{CE0FCAF5-F087-406D-8DBD-EA9EF00296AF}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Block) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [UDP Query User{E50AEA94-629A-4AEC-83B8-9D7F28885DF8}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Block) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [{446853DF-01E7-4364-969F-16A135B3FCBF}] => (Allow) C:\Program Files (x86)\PCData\minerd.exe
FirewallRules: [{836B0854-340A-4D06-B17A-F6BCE8269ABB}] => (Allow) C:\Program Files (x86)\PCData\minerd.exe
FirewallRules: [{42249940-C3BF-48C0-9F5E-8D2D33615A7A}] => (Allow) C:\Program Files (x86)\PCData\cudaminer.exe
FirewallRules: [{2294D660-7A32-45C6-8017-1B96809EEEC3}] => (Allow) C:\Program Files (x86)\PCData\cudaminer.exe
FirewallRules: [TCP Query User{C4929ADB-9FFA-48D5-8AEE-24E223641D81}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{CAD2079D-E09C-48C5-B93F-A178697793B3}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{1E0AB712-804C-4B7A-BE56-629472CABB1E}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [UDP Query User{2E5F09C2-57DF-48E9-BD2E-A34DB83C2AC5}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{612B34AD-297A-4AA4-9231-58DE98BA17E7}C:\program files (x86)\activision\thps3\skate3.exe] => (Allow) C:\program files (x86)\activision\thps3\skate3.exe
FirewallRules: [UDP Query User{398B60E3-B16B-4ADF-8F0D-26BB7576F5AA}C:\program files (x86)\activision\thps3\skate3.exe] => (Allow) C:\program files (x86)\activision\thps3\skate3.exe
FirewallRules: [{B36B881B-5B51-491D-ADD6-79DC0B8DD2C8}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{CFFC077B-2B65-4B17-A4A7-DEDE820FE42E}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{6D663A50-268B-4385-84FC-B91D471D8C0F}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{8E96B545-B969-4C90-8264-B9AAF1104294}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{FD572FAD-49DB-415D-B188-395D0556AF9C}C:\users\rigin\downloads\3dmgame-7.days.to.die.alpha.7.7.steam.edition.cracked-3dm\3dmgame-7.days.to.die.alpha.7.7.steam.edition.cracked-3dm\7 days to die\7daystodie.exe] => (Allow) C:\users\rigin\downloads\3dmgame-7.days.to.die.alpha.7.7.steam.edition.cracked-3dm\3dmgame-7.days.to.die.alpha.7.7.steam.edition.cracked-3dm\7 days to die\7daystodie.exe
FirewallRules: [UDP Query User{15250AB4-D291-4DE3-B958-3DBC5A4135B4}C:\users\rigin\downloads\3dmgame-7.days.to.die.alpha.7.7.steam.edition.cracked-3dm\3dmgame-7.days.to.die.alpha.7.7.steam.edition.cracked-3dm\7 days to die\7daystodie.exe] => (Allow) C:\users\rigin\downloads\3dmgame-7.days.to.die.alpha.7.7.steam.edition.cracked-3dm\3dmgame-7.days.to.die.alpha.7.7.steam.edition.cracked-3dm\7 days to die\7daystodie.exe
FirewallRules: [TCP Query User{6B0F4161-40BE-46A8-B5D4-E713AA7B8D16}C:\users\rigin\gsplay\counter-strike\hl.exe] => (Allow) C:\users\rigin\gsplay\counter-strike\hl.exe
FirewallRules: [UDP Query User{0D25E5AE-AE51-489C-8A5A-215762226BD7}C:\users\rigin\gsplay\counter-strike\hl.exe] => (Allow) C:\users\rigin\gsplay\counter-strike\hl.exe
FirewallRules: [{78A1A4E4-375B-43A0-95E9-ECF4E71C25E1}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{6A31CA5B-DE48-47C5-89A6-DEA08FC91C1A}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{88427E24-0781-414E-9394-138050ECCEA7}] => (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{604F5DEC-66CE-4FFF-B0C7-268F00B32A2D}] => (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{59531DBD-5288-48BD-8DB6-A70E4ED6CA22}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{E9B87520-4AE2-455A-9003-36B5E7E63458}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{9026293C-60F7-4928-89A3-1DC09CD7C182}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{D88ADFA1-21AC-4256-9A0E-994FC2D74D8B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{88050905-4FC4-4361-B759-81400C4D6444}] => (Allow) C:\Program Files (x86)\EA Games\Mirror's Edge\Binaries\MirrorsEdge.exe
FirewallRules: [{FE4E1AFB-DB24-47FC-A27D-CA345AA414FE}] => (Allow) C:\Program Files (x86)\EA Games\Mirror's Edge\Binaries\MirrorsEdge.exe
FirewallRules: [{F39B7840-AFD4-47A4-83C4-362185FE787D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{047DFDD2-84C3-41EA-AC2A-93421FF4770B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{22A18777-DED0-4CB5-A10A-4B616B40AC41}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5A956A31-CB7C-4DB1-845D-B7E97DCD4C8D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EAA104D1-4A0A-4A87-982C-46A26CE8DFB1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{F5CAF1CB-99EB-4323-A76C-6C976CCC131A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{D05A303C-36A4-446D-951A-B8A8088CAD78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Blockade3d\main.exe
FirewallRules: [{BFB7D2CC-BF26-4B06-8FFA-09B5A6CCB767}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Blockade3d\main.exe
FirewallRules: [{5DF44E9B-5CF1-4978-9492-D2FC56D74300}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Brick-Force ROW\InfernumLogin.exe
FirewallRules: [{F3E8AF58-C889-4114-B9C5-B06F7B7F4E42}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Brick-Force ROW\InfernumLogin.exe
FirewallRules: [{EA6A3F39-9E7D-484C-9DA0-CBC056140DBE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\FEAR Online\Launcher.exe
FirewallRules: [{C523F064-4156-4A44-BEC1-82DF006153FF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\FEAR Online\Launcher.exe
FirewallRules: [{E18E181D-32CC-4CBC-8E39-B142D690B064}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{4F93DCE4-BF72-4DF5-8847-C395E0E71236}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{B3099B60-1D1C-45C0-B478-8D7E3246ED36}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{8F98C98D-9BBD-4FA1-BF2C-C80A348DE5DC}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{0BCEE735-DB59-45CE-8196-19D0CC038BF0}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{50A47F77-B2AD-4772-A563-11E3CBB32BFD}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{5938B10D-4B3F-4F11-8750-E42D748D9605}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{33946095-3A8D-4A27-9C79-50676C39C4E5}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{315AD8D6-7BC3-41EC-A28A-136F793CD256}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP4c\RpcAgentSrv.exe
FirewallRules: [{0F6307AD-0AB9-41B9-8E5F-DC2C6F64E837}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP4c\WNt500x64\RpcSandraSrv.exe
FirewallRules: [TCP Query User{C1F2C56D-B1BE-403E-B730-4CAFDA4778B6}C:\users\rigin\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\rigin\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{0FF65BB8-B15D-4943-A8E3-230A71A5B896}C:\users\rigin\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\rigin\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{9D5B9DE6-A4F7-4AD5-B5A5-A5A5174A8555}C:\users\rigin\downloads\urbanterror42_full023\urbanterror42\quake3-urt.exe] => (Allow) C:\users\rigin\downloads\urbanterror42_full023\urbanterror42\quake3-urt.exe
FirewallRules: [UDP Query User{597BE9FB-C83F-46D9-87EF-0CA18EFA9515}C:\users\rigin\downloads\urbanterror42_full023\urbanterror42\quake3-urt.exe] => (Allow) C:\users\rigin\downloads\urbanterror42_full023\urbanterror42\quake3-urt.exe
FirewallRules: [{AA35F7B3-5FBC-4BE2-95F7-D19B3ECCFD31}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Trove\GlyphClient.exe
FirewallRules: [{DEB91563-973B-49E9-B83A-A655BC777C11}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Trove\GlyphClient.exe
FirewallRules: [{80E61411-DCF1-4825-B338-0DA1FE7ED7A0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{6779B074-A3C3-4DE5-AC86-28863803560B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{99519AB4-7AAF-4512-953D-52DDDD1EE22A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{5121BF6E-C8CF-4D24-9304-534F13CFDB99}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [TCP Query User{93370F6A-8B86-4AFE-9940-8AE49EE7FD47}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{BCDE0494-81A9-42FE-B11A-21E687E4CBC5}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{98491EBA-106A-4F22-859E-3FE929EF1AD9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B37FDCDB-26A0-4F37-A168-9EE44E7BABD4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0B4DCE2F-A7B1-4149-B8EE-5270C831F831}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{1BEABB4C-15E5-41FA-ABA5-9FC5915DAE65}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{2C7B6883-53D3-4FE7-B5F0-B37ACE277FC7}C:\hry\battlefield 4\bf4_x86.exe] => (Allow) C:\hry\battlefield 4\bf4_x86.exe
FirewallRules: [UDP Query User{D94821EA-49AD-4334-951B-FFA33A3422D7}C:\hry\battlefield 4\bf4_x86.exe] => (Allow) C:\hry\battlefield 4\bf4_x86.exe
FirewallRules: [{970D0E62-83F0-439A-808E-E2977E3FFBF2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{EFB6DC12-6792-4C9E-842D-5DA2AAF84CF6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2AB864F3-7183-4591-9C21-EF7FEDDF65C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{4D2344F2-13F4-40C6-B33F-AF1039C9CD77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D355AE88-CCB5-4B28-9798-0F6164B45912}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{37784914-34D6-412C-8398-BF55F03C2D5F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8BFE0C16-2834-4671-9060-E3BB933AC3ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EAE1ED20-8135-4FAA-9D2F-F2FE7C9CB301}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{B22DE07A-85CE-4DD8-8D72-5EF300C3868D}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{3485FD04-F88D-420A-B80F-050D75BC8BC1}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{34A92D3B-AE3D-422D-85C4-F7776AA9E88A}C:\program files (x86)\valve\portal 2\portal2.exe] => (Block) C:\program files (x86)\valve\portal 2\portal2.exe
FirewallRules: [UDP Query User{62391307-AA71-48AE-95EC-C78C898E5867}C:\program files (x86)\valve\portal 2\portal2.exe] => (Block) C:\program files (x86)\valve\portal 2\portal2.exe
FirewallRules: [TCP Query User{69215A82-BB71-4AE2-BFC6-9D244663A4F5}C:\program files (x86)\goat simulator\binaries\win32\goatgame-win32-shipping.exe] => (Allow) C:\program files (x86)\goat simulator\binaries\win32\goatgame-win32-shipping.exe
FirewallRules: [UDP Query User{44D3E09A-F3BB-44A3-8A30-6641BFE75D06}C:\program files (x86)\goat simulator\binaries\win32\goatgame-win32-shipping.exe] => (Allow) C:\program files (x86)\goat simulator\binaries\win32\goatgame-win32-shipping.exe
FirewallRules: [{1A74EF51-7C67-4CE7-91A5-CA98DBEC330F}] => (Allow) C:\Program Files (x86)\EA Games\Mirror's Edge\Binaries\MirrorsEdge.exe
FirewallRules: [{1EA1EB46-D8D8-4AE9-93B4-32F999F6E942}] => (Allow) C:\Program Files (x86)\EA Games\Mirror's Edge\Binaries\MirrorsEdge.exe
FirewallRules: [{0B0745B4-53F0-4A69-B8F7-B63C72D5E8DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battleborn Open Beta\Binaries\Win64\Battleborn.exe
FirewallRules: [{D777286B-81D6-41F6-814F-96FD6C8AA484}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battleborn Open Beta\Binaries\Win64\Battleborn.exe

==================== Restore Points =========================

17-04-2016 12:39:42 Naplánovaný kontrolní bod
17-04-2016 22:09:26 Removed Mirror's Edge™
18-04-2016 06:59:56 Checkpoint by HitmanPro
18-04-2016 07:00:41 Checkpoint by HitmanPro

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (04/18/2016 10:24:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/18/2016 10:24:12 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktivace licence systému Windows se nezdařila. Chyba 0x00000000.

Error: (04/18/2016 10:24:12 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
0x80070005

Error: (04/18/2016 09:42:26 PM) (Source: BugSplat) (EventID: 1) (User: )
Description: lol_beta_riotgames_comLOL_Public142099753

Error: (04/18/2016 11:09:10 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktivace licence systému Windows se nezdařila. Chyba 0x00000000.

Error: (04/18/2016 11:09:10 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
0x80070005

Error: (04/18/2016 11:03:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/18/2016 07:10:00 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/18/2016 07:08:45 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktivace licence systému Windows se nezdařila. Chyba 0x00000000.

Error: (04/18/2016 07:08:45 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
0x80070005

System errors:
=============
Error: (04/18/2016 10:24:29 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
mbmiodrvr

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) ME Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Streamer Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba PnkBstrA byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Streamer Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/18/2016 10:22:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

CodeIntegrity:
===================================
Date: 2016-04-18 22:23:43.019
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-18 22:23:43.003
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-18 09:21:30.317
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-18 09:21:30.301
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-18 07:08:08.298
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-18 07:08:08.282
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-17 22:26:43.568
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-17 22:26:43.552
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-17 21:51:35.660
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-04-17 21:51:35.660
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Percentage of memory in use: 31%
Total physical RAM: 8136.59 MB
Available physical RAM: 5588.52 MB
Total Virtual: 16271.39 MB
Available Virtual: 13406.59 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:82.31 GB) NTFS
Drive d: (Mirror's Edge) (CDROM) (Total:6.09 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C9B20881)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

#6 Příspěvek od **Rudy** » 19 dub 2016 17:30

O obnovu systému jsem vás nežádal. Jinak oba logy, které jste dal, jsou Addition. Potřebuji ještě ještě FRST.

Chiefko · #7 Příspěvek od **Chiefko** » 20 dub 2016 18:02

Tak to se moc omlouvám...koukal jsem nejspíš do jiného threadu. A za postnutí 2x toho samého taky

Tohle byl měl být log z frst:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:18-04-2016
Ran by Rigin (administrator) on RIGIN-PC (18-04-2016 22:37:30)
Running from C:\Users\Rigin\Downloads
Loaded Profiles: Rigin (Available Profiles: Rigin)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Akamai Technologies, Inc.) C:\Users\Rigin\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Rigin\AppData\Local\Akamai\netsession_win.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
() C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Mister Group) C:\Program Files (x86)\System Explorer\SystemExplorer.exe
(Mister Group) C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\wbengine.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7174728 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1171088 2013-10-06] (Highresolution Enterprises)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397568 2016-03-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-11] (Intel Corporation)
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [506864 2013-03-08] (MSI)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM-x32\...\Run: [SystemExplorerAutoStart] => "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [589976 2015-11-16] (Razer Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7390608 2016-04-17] (AVAST Software)
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673184 2013-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Rigin\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Rigin\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Rigin\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [28201096 2012-01-12] (Electronic Arts)
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\MountPoints2: {71a8838e-2698-11e3-afdd-d43d7ed88a52} - D:\Autorun.exe
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-04-17] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{631FAC45-085B-4166-AC2A-24F2F69C281E}: [DhcpNameServer] 10.0.0.138
ManualProxies:

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {1CAB7C62-64CF-4CD3-8E3B-731F358C685A} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_16194
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {1D1B6D60-921D-4684-9EED-6CA48E4F5E1C} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_16194
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {29BC9CE6-F45D-4868-BC65-24FBD13070DE} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_16194
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {2E88F80C-6737-4D27-AC17-30687E590353} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {54BDAEEA-FF7D-452F-AC58-84ABC8F1CEC7} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {7B8F7331-C609-4D10-A8EA-B6AF09AC0056} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {C60BF837-A45D-485D-ABC1-0CFDE6275B29} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {D89ACC6B-1096-4C8B-B852-8D1E7D642DD2} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_16194
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> {F3F64BB4-6C79-4560-8848-F35E60005164} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_16194
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll [2014-01-24] (CANON INC.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-17] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-01-24] (CANON INC.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-17] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-20] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2014-01-24] (CANON INC.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-01-24] (CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2014-01-24] (CANON INC.)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-07] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-07] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-17]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR HomePage: Default -> hxxp://www.search.ask.com/?gct=hp
CHR StartupUrls: Default -> "hxxps://www.google.com/?trackid=sp-006"
CHR DefaultSearchURL: Default -> hxxps://www.google.de/search?q={searchTerms}?trackid=sp-006
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/complete/search?client=c ... earchTerms}
CHR Profile: C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Disk Google) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-02-20]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-02-11]
CHR Extension: (YouTube) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Adblock Plus) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-10]
CHR Extension: (Vyhledávání Google) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Avast Online Security) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-17]
CHR Extension: (Facebook Unseen) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2015-12-31]
CHR Extension: (Skype) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-19]
CHR Extension: (iLivid) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf [2016-04-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-10-27]
CHR Extension: (Gmail) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-17]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-04-17] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [175136 2014-09-04] (EasyAntiCheat Ltd)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-07] (Freemake) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-03-30] (NVIDIA Corporation)
R2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2014-12-15] (Hi-Rez Studios) [File not signed]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161264 2013-02-20] (MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-04-18] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-03-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634048 2016-03-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522496 2016-03-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [338576 2012-01-12] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-02-20] ()
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP4c\RpcAgentSrv.exe [68760 2009-06-13] (SiSoftware) [File not signed]
R3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2015-01-17] (Tunngle.net GmbH) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-04-17] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-04-17] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-04-17] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-04-17] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-04-17] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-04-17] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-04-17] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-04-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-04-17] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-09-26] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-04-16] ()
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [49584 2016-04-18] ()
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46568 2013-02-13] ()
S1 mbmiodrvr; C:\Windows\syswow64\mbmiodrvr.sys [4608 2004-04-10] (cansoft@livewiredev.com) [File not signed]
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S4 NVHDA; system32\drivers\nvhda64v.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-18 22:37 - 2016-04-18 22:37 - 00027593 _____ C:\Users\Rigin\Downloads\FRST.txt
2016-04-18 22:37 - 2016-04-18 22:37 - 00000000 ____D C:\FRST
2016-04-18 22:35 - 2016-04-18 22:35 - 02375680 _____ (Farbar) C:\Users\Rigin\Downloads\FRST64.exe
2016-04-18 22:21 - 2016-04-18 22:21 - 03683904 _____ C:\Users\Rigin\Downloads\adwcleaner_5.112 (1).exe
2016-04-18 21:44 - 2016-04-18 21:44 - 00388608 _____ (Trend Micro Inc.) C:\Users\Rigin\Downloads\HijackThis.exe
2016-04-18 07:08 - 2016-04-18 07:08 - 00049584 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2016-04-18 07:01 - 2016-04-18 07:01 - 00004966 _____ C:\Windows\system32\.crusader
2016-04-17 22:48 - 2016-04-18 07:07 - 00000000 ____D C:\ProgramData\HitmanPro
2016-04-17 22:48 - 2016-04-17 22:48 - 11441744 _____ (SurfRight B.V.) C:\Users\Rigin\Downloads\hitmanpro_x64 (1).exe
2016-04-17 22:47 - 2016-04-17 22:47 - 11441744 _____ (SurfRight B.V.) C:\Users\Rigin\Downloads\hitmanpro_x64.exe
2016-04-17 22:33 - 2016-04-17 22:33 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-04-17 22:33 - 2016-04-17 22:33 - 00003048 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1460925214
2016-04-17 22:33 - 2016-04-17 22:33 - 00001037 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-04-17 22:33 - 2016-04-17 22:33 - 00001037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-04-17 22:32 - 2016-04-17 22:32 - 00287528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-04-17 22:32 - 2016-04-17 22:32 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-04-17 22:32 - 2016-04-17 22:32 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-04-17 22:32 - 2016-04-17 22:32 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-04-17 22:32 - 2016-04-17 22:32 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\AVAST Software
2016-04-17 22:32 - 2016-04-17 22:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-04-17 22:32 - 2016-04-17 22:31 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-04-17 22:32 - 2016-04-17 22:31 - 00465792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-04-17 22:32 - 2016-04-17 22:31 - 00166432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-04-17 22:32 - 2016-04-17 22:31 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-04-17 22:32 - 2016-04-17 22:31 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-04-17 22:32 - 2016-04-17 22:31 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-04-17 22:32 - 2016-04-17 22:31 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-04-17 22:31 - 2016-04-17 22:33 - 00000000 ____D C:\Program Files\AVAST Software
2016-04-17 22:31 - 2016-04-17 22:31 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-04-17 22:31 - 2016-04-17 22:31 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-04-17 22:23 - 2016-04-18 22:31 - 00000000 ____D C:\AdwCleaner
2016-04-17 22:07 - 2016-04-17 22:08 - 05206904 _____ (AVAST Software) C:\Users\Rigin\Downloads\avast_free_antivirus_setup_online.exe
2016-04-17 22:07 - 2016-04-17 22:08 - 05206904 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe
2016-04-17 13:59 - 2016-04-17 13:59 - 00000000 ____D C:\Users\Rigin\Downloads\MirrorsEdge
2016-04-16 20:41 - 2016-04-16 20:41 - 01270466 _____ C:\Users\Rigin\Downloads\ProcessExplorer.zip
2016-04-16 20:41 - 2016-02-05 07:11 - 02694816 ____N (Sysinternals - www.sysinternals.com) C:\Users\Rigin\Downloads\procexp.exe
2016-04-16 20:41 - 2016-02-05 07:03 - 00072154 ____N C:\Users\Rigin\Downloads\procexp.chm
2016-04-16 20:41 - 2015-10-27 07:32 - 00007490 ____N C:\Users\Rigin\Downloads\Eula.txt
2016-04-16 18:25 - 2016-04-16 18:29 - 12946874 _____ C:\Users\Rigin\Downloads\MirrorsEdge.rar
2016-04-16 13:04 - 2016-04-16 13:04 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-04-16 13:03 - 2016-04-16 13:03 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\Rigin\Downloads\SpyHunter-Installer.exe
2016-04-16 12:55 - 2016-04-16 12:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-04-16 12:54 - 2016-04-16 12:55 - 22851472 _____ (Malwarebytes ) C:\Users\Rigin\Downloads\mbam-setup-2.2.1.1043.exe
2016-04-15 17:56 - 2016-04-15 17:56 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\NVIDIA
2016-04-15 17:56 - 2016-04-15 17:56 - 00000000 ____D C:\ProgramData\EA Core
2016-04-15 17:54 - 2016-04-15 17:54 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk
2016-04-15 17:54 - 2016-04-15 17:54 - 00000000 ____D C:\Users\Rigin\AppData\Local\Origin
2016-04-15 17:54 - 2016-04-15 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-04-15 17:54 - 2016-04-15 17:54 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-04-15 17:54 - 2016-04-15 17:54 - 00000000 ____D C:\Program Files (x86)\Origin
2016-04-15 17:50 - 2016-04-15 17:50 - 00002181 _____ C:\Users\Public\Desktop\Mirror's Edge™.lnk
2016-04-15 17:44 - 2016-04-15 17:44 - 00000000 ____D C:\Windows\SysWOW64\AGEIA
2016-04-15 17:44 - 2016-04-15 17:44 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2016-04-15 17:03 - 2016-04-15 17:03 - 07878008 _____ (Microsoft Corporation) C:\Users\Rigin\Downloads\Xbox360_64Eng (2).exe
2016-04-15 16:52 - 2016-04-15 16:52 - 00000000 ____D C:\Program Files (x86)\EA Games
2016-04-15 16:01 - 2016-04-15 16:02 - 00000000 ____D C:\Program Files (x86)\Goat Simulator
2016-04-15 16:01 - 2016-04-15 16:01 - 00001144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Goat Simulator.lnk
2016-04-15 16:01 - 2016-04-15 16:01 - 00001132 _____ C:\Users\Public\Desktop\Goat Simulator.lnk
2016-04-15 15:30 - 2016-04-15 16:01 - 00000000 ____D C:\Users\Rigin\Downloads\Goat.Simulator-DOGE
2016-04-15 15:30 - 2016-04-15 15:30 - 00010812 _____ C:\Users\Rigin\Downloads\[CzT]Goat_Simulator_2014_.torrent
2016-04-15 14:53 - 2016-04-15 14:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2016-04-15 14:53 - 2016-04-15 14:53 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2016-04-15 14:50 - 2016-04-15 14:51 - 00000000 ____D C:\31c48ac92c063bb19d9a
2016-04-15 14:49 - 2016-04-15 14:50 - 07878008 _____ (Microsoft Corporation) C:\Users\Rigin\Downloads\Xbox360_64Eng.exe
2016-04-15 14:49 - 2016-04-15 14:50 - 07878008 _____ (Microsoft Corporation) C:\Users\Rigin\Downloads\Xbox360_64Eng (1).exe
2016-04-15 13:58 - 2016-04-15 14:00 - 00000000 ____D C:\Users\Rigin\Downloads\Mirrors.Edge-RELOADED
2016-04-15 13:57 - 2016-04-15 13:57 - 00016599 _____ C:\Users\Rigin\Downloads\[CzT]Mirror_s_Edge_v1_01_CZ_2009_.torrent
2016-04-08 15:31 - 2016-04-08 15:33 - 00000000 ____D C:\Users\Rigin\Downloads\update
2016-04-08 15:30 - 2016-04-08 15:30 - 00011780 _____ C:\Users\Rigin\Downloads\[CzT]Fallout_4_Update_v1_1_30_2015_.torrent
2016-04-08 15:27 - 2016-04-15 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-04-08 15:27 - 2016-04-08 15:27 - 00001381 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-04-08 15:27 - 2016-03-30 04:21 - 01373680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-04-08 15:27 - 2016-03-30 04:21 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-04-08 15:27 - 2016-03-30 04:20 - 01767248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-04-08 15:27 - 2016-03-30 04:20 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-04-08 15:27 - 2016-03-30 04:20 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-04-08 15:26 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-04-08 15:26 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-04-08 15:26 - 2016-03-21 22:01 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-04-08 15:18 - 2016-04-08 15:20 - 360454008 _____ (NVIDIA Corporation) C:\Users\Rigin\Downloads\364.72-desktop-win8-win7-winvista-64bit-international-whql.exe
2016-04-08 15:18 - 2016-04-08 15:18 - 44960752 _____ (NVIDIA Corporation) C:\Users\Rigin\Downloads\GeForce_Experience_v2.11.2.55.exe
2016-04-07 19:29 - 2016-04-07 19:29 - 05934784 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-04-07 19:06 - 2016-04-07 19:06 - 00000000 ____D C:\Users\Rigin\AppData\Local\Fallout4
2016-04-07 14:26 - 2016-04-08 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fallout 4
2016-04-07 14:04 - 2016-04-08 15:51 - 00000000 ____D C:\Program Files (x86)\Fallout 4
2016-04-07 10:43 - 2016-04-07 19:30 - 00000000 ____D C:\Users\Rigin\Downloads\Fallout.4-CODEX
2016-04-07 10:43 - 2016-04-07 10:43 - 00031857 _____ C:\Users\Rigin\Downloads\[CzT]Fallout_4_2015_.torrent
2016-04-05 12:04 - 2016-04-08 15:11 - 00000000 ____D C:\ProgramData\NVIDIA
2016-04-05 12:03 - 2016-03-22 06:12 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-04-05 12:03 - 2016-03-22 06:12 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-04-05 12:03 - 2016-03-22 04:25 - 06369728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-04-05 12:03 - 2016-03-22 04:25 - 02993088 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-04-05 12:03 - 2016-03-22 04:25 - 02561472 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-04-05 12:03 - 2016-03-22 04:25 - 01264064 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-04-05 12:03 - 2016-03-22 04:25 - 00532536 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-04-05 12:03 - 2016-03-22 04:25 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-04-05 12:03 - 2016-03-22 04:25 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-04-05 12:03 - 2016-03-22 04:25 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-04-05 12:03 - 2016-03-18 20:10 - 06253721 _____ C:\Windows\system32\nvcoproc.bin
2016-04-05 11:52 - 2016-03-22 06:12 - 42923576 _____ C:\Windows\system32\nvcompiler.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 37567424 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 31555008 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 25321408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 21355248 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 20897416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 19004040 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 17748712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 17342392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 17248408 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 16446032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 14128840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 12567608 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-04-05 11:52 - 2016-03-22 06:12 - 10550736 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 08659472 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 03714472 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 03286992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 03235896 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 02809280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436472.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436472.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00959544 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00889400 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00753208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00695864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00678520 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00571912 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00501896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00473592 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00425016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00423080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00391632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00377792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00129208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-04-05 11:52 - 2016-03-22 06:12 - 00037091 _____ C:\Windows\system32\nvinfo.pb
2016-04-05 11:52 - 2016-03-22 06:12 - 00000139 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-04-05 11:52 - 2016-03-22 06:12 - 00000139 _____ C:\Windows\system32\nv-vk64.json
2016-04-02 21:51 - 2016-04-02 22:05 - 1485295596 _____ C:\Users\Rigin\Downloads\mafiani-goodfellas-dvdrip-pres-MultiLoad.cz.avi
2016-04-02 10:40 - 2016-04-02 10:40 - 00000000 ____D C:\Users\Rigin\Downloads\SMACK---SICK-(2015)
2016-04-02 10:40 - 2016-04-02 10:40 - 00000000 ____D C:\Users\Rigin\Downloads\SMACK---2051-(2012)
2016-04-01 22:16 - 2016-04-01 22:23 - 123774783 _____ C:\Users\Rigin\Downloads\SMACK---2051-(2012).rar
2016-04-01 22:11 - 2016-04-01 22:15 - 59518296 _____ C:\Users\Rigin\Downloads\SMACK---SICK-(2015).rar
2016-04-01 22:04 - 2016-04-01 22:04 - 00000000 ____D C:\Users\Rigin\Downloads\Maniak---AK-47-[2016-MP3]
2016-04-01 22:04 - 2016-04-01 22:04 - 00000000 ____D C:\Users\Rigin\Downloads\Dizzee-Rascal---2009---Tongue-n'-Cheek
2016-04-01 22:04 - 2016-04-01 22:04 - 00000000 ____D C:\Users\Rigin\Downloads\Dizzee_Rascal-The_Fifth--WEB-2013
2016-04-01 21:58 - 2016-04-01 22:07 - 1540769792 ____R C:\Users\Rigin\Downloads\Steve.Jobs.2015.BRRip.XviD.CZ-PiRaTE.avi
2016-04-01 21:58 - 2016-04-01 21:58 - 00015183 _____ C:\Users\Rigin\Downloads\[CzT]Steve_Jobs_2015_CZ_.torrent
2016-04-01 21:15 - 2016-04-01 21:22 - 118943238 _____ C:\Users\Rigin\Downloads\Dizzee_Rascal-The_Fifth--WEB-2013.rar
2016-04-01 21:12 - 2016-04-01 21:15 - 48022524 _____ C:\Users\Rigin\Downloads\Dizzee-Rascal---2009---Tongue-n'-Cheek.zip
2016-04-01 21:07 - 2016-04-01 21:12 - 57368486 _____ C:\Users\Rigin\Downloads\Maniak---AK-47-[2016-MP3].7z
2016-04-01 21:02 - 2016-04-01 21:05 - 00000000 ____D C:\Users\Rigin\Downloads\Crimson.Peak.2015.BDRip.x264.CZ-TreZzoR
2016-04-01 21:02 - 2016-04-01 21:02 - 00015458 _____ C:\Users\Rigin\Downloads\[CzT]Purpurovy_vrch_Crimson_Peak_2015_CZ_.torrent
2016-04-01 20:50 - 2016-04-01 20:50 - 00015577 _____ C:\Users\Rigin\Downloads\[CzT]Most_spionu_Bridge_of_Spies_2015_CZ_ (1).torrent
2016-03-27 23:18 - 2016-03-27 23:18 - 00014701 _____ C:\Users\Rigin\Downloads\[CzT]American_Ultra_2015_CZ_.torrent
2016-03-27 23:18 - 2016-03-27 23:18 - 00000000 ____D C:\Users\Rigin\Downloads\American.Ultra.2015.BRRip.XviD.CZ-PiRaTE
2016-03-27 23:17 - 2016-04-01 20:52 - 00000000 ____D C:\Users\Rigin\Downloads\Bridge of Spies 2015 BRRip x264 AC3 CZ -RiSiNG
2016-03-27 23:17 - 2016-03-27 23:17 - 00015577 _____ C:\Users\Rigin\Downloads\[CzT]Most_spionu_Bridge_of_Spies_2015_CZ_.torrent
2016-03-26 19:15 - 2016-03-26 19:23 - 1326241792 ____R C:\Users\Rigin\Downloads\Sicario.2015.AC3.BRRip.XviD.CZ.avi
2016-03-26 19:14 - 2016-03-26 19:15 - 00006816 _____ C:\Users\Rigin\Downloads\[CzT]Sicario_Najemny_vrah_Sicario_2015_CZ_.torrent
2016-03-20 17:11 - 2016-04-17 18:35 - 00003350 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2016-03-20 15:37 - 2016-03-20 15:49 - 00453486 _____ C:\Windows\ntbtlog.txt
2016-03-20 15:34 - 2016-03-20 15:34 - 00000000 ____D C:\Users\Rigin\AppData\Local\ESET
2016-03-20 15:17 - 2016-03-20 23:17 - 00000000 ____D C:\Users\Rigin\Downloads\ESET NOD32 antivirus 8.0.304.1 (x86,x64)(CZ,SK)
2016-03-20 15:17 - 2016-03-20 15:17 - 00012246 _____ C:\Users\Rigin\Downloads\[CzT]ESET_NOD32_antivirus_v8_0_304_1_x86_x64_CZ_SK_.torrent
2016-03-19 22:22 - 2016-03-19 22:32 - 1682085166 ____R C:\Users\Rigin\Downloads\Scouts Guide to the Zombie Apocalypse.avi
2016-03-19 22:21 - 2016-03-19 22:21 - 00016544 _____ C:\Users\Rigin\Downloads\[CzT]Skautuv_pruvodce_zombie_apokalypsou_Scouts_Guide_to_the_Zombie_Apocalypse_2015_CZ_.torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-18 22:29 - 2013-09-26 14:10 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\Seznam.cz
2016-04-18 22:29 - 2013-09-25 19:29 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-18 22:26 - 2013-09-24 17:54 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-18 22:24 - 2013-09-24 17:54 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-18 22:23 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-18 22:22 - 2009-07-14 06:45 - 00016832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-18 22:22 - 2009-07-14 06:45 - 00016832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-18 21:54 - 2014-02-03 22:48 - 00007596 _____ C:\Users\Rigin\AppData\Local\Resmon.ResmonCfg
2016-04-18 21:44 - 2013-09-24 19:22 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\TS3Client
2016-04-18 20:19 - 2015-08-06 18:22 - 00000000 ____D C:\Users\Rigin\Documents\Assassin's Creed Unity
2016-04-17 22:37 - 2014-06-26 17:06 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-04-17 22:33 - 2013-09-26 14:03 - 00000000 ____D C:\ProgramData\AVAST Software
2016-04-17 22:32 - 2015-06-12 11:54 - 00000000 ____D C:\Program Files\Common Files\AV
2016-04-17 22:25 - 2014-03-18 14:13 - 00000000 ____D C:\Windows\system32\log
2016-04-17 22:25 - 2013-09-24 17:01 - 00000000 ____D C:\Users\Rigin
2016-04-17 22:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-04-16 20:47 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-16 20:36 - 2009-07-14 07:08 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-04-16 20:32 - 2011-04-12 10:34 - 00666194 _____ C:\Windows\system32\perfh005.dat
2016-04-16 20:32 - 2011-04-12 10:34 - 00139890 _____ C:\Windows\system32\perfc005.dat
2016-04-16 20:32 - 2009-07-14 07:13 - 01576554 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-16 18:28 - 2013-10-26 16:07 - 00000000 ____D C:\Users\Rigin\Documents\My Games
2016-04-16 18:22 - 2013-11-16 18:52 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-16 18:18 - 2013-09-26 13:13 - 00000000 ____D C:\Users\Rigin\AppData\Local\CrashDumps
2016-04-16 17:18 - 2014-01-02 15:05 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-04-16 15:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\ModemLogs
2016-04-16 13:12 - 2014-03-10 20:07 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\.minecraft
2016-04-15 17:54 - 2014-08-02 14:02 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\Origin
2016-04-15 17:54 - 2014-08-02 14:02 - 00000000 ____D C:\ProgramData\Origin
2016-04-15 17:54 - 2014-08-02 14:01 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-04-15 17:54 - 2014-08-02 14:00 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2016-04-15 17:36 - 2013-09-26 14:09 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\DAEMON Tools Lite
2016-04-15 17:12 - 2013-09-26 13:11 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\BitTorrent
2016-04-15 13:57 - 2013-10-08 16:26 - 00000000 ____D C:\Users\Rigin\AppData\LocalLow\Temp
2016-04-12 19:28 - 2013-09-24 17:54 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-12 19:28 - 2013-09-24 17:54 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-08 15:27 - 2013-12-23 16:14 - 00000000 ____D C:\Users\Rigin\AppData\Local\NVIDIA Corporation
2016-04-08 15:27 - 2013-12-23 16:12 - 00000000 ____D C:\Users\Rigin\AppData\Local\NVIDIA
2016-04-08 15:27 - 2013-09-24 18:27 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-04-08 15:27 - 2013-09-24 18:27 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-04-08 15:27 - 2013-09-24 18:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-04-07 19:29 - 2013-09-25 19:29 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-04-07 19:29 - 2013-09-25 19:29 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-07 19:29 - 2013-09-25 19:29 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-04-07 14:03 - 2013-11-30 19:26 - 00000000 ____D C:\Users\Rigin\Downloads\Films & serials
2016-04-06 10:18 - 2010-11-21 05:27 - 00453280 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-04-05 19:35 - 2013-09-24 19:22 - 00000000 ____D C:\Users\Rigin\AppData\Local\TeamSpeak 3 Client
2016-04-05 12:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2016-04-01 22:27 - 2013-10-08 16:27 - 00000000 ____D C:\Users\Rigin\AppData\Roaming\BSplayer
2016-03-20 15:37 - 2015-02-19 22:41 - 00000000 ____D C:\Program Files (x86)\Razer
2016-03-20 15:29 - 2015-02-22 03:00 - 00000000 ____D C:\ProgramData\AVG2015
2016-03-20 15:29 - 2015-02-22 02:55 - 00000000 ____D C:\ProgramData\MFAData
2016-03-20 15:22 - 2015-02-22 03:10 - 00000000 ___HD C:\$AVG
2016-03-20 15:20 - 2013-09-28 17:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-03-20 15:20 - 2013-09-28 17:03 - 00000000 ____D C:\ProgramData\Skype
2016-03-20 15:14 - 2014-02-25 22:48 - 00000000 ____D C:\ProgramData\CanonIJPLM
2016-03-20 15:11 - 2009-07-14 06:45 - 05051712 _____ C:\Windows\system32\FNTCACHE.DAT

==================== Files in the root of some directories =======

2015-08-08 11:25 - 2012-06-13 01:57 - 11632640 _____ () C:\Users\Rigin\AppData\Roaming\Sandra.mdb
2014-08-06 19:58 - 2014-08-06 19:58 - 0008192 _____ () C:\Users\Rigin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-10-25 20:38 - 2015-10-25 20:38 - 0002706 _____ () C:\Users\Rigin\AppData\Local\recently-used.xbel
2014-02-03 22:48 - 2016-04-18 21:54 - 0007596 _____ () C:\Users\Rigin\AppData\Local\Resmon.ResmonCfg
2013-10-18 18:44 - 2013-10-18 18:44 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\Rigin\AppData\Local\Temp\27fff54a706caf16275619fa9b79269c.dll
C:\Users\Rigin\AppData\Local\Temp\drm_dyndata_7380015.dll
C:\Users\Rigin\AppData\Local\Temp\EADB3F6.exe
C:\Users\Rigin\AppData\Local\Temp\InstHelper.exe
C:\Users\Rigin\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Rigin\AppData\Local\Temp\nvStInst.exe
C:\Users\Rigin\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Rigin\AppData\Local\Temp\Uninstall.exe
C:\Users\Rigin\AppData\Local\Temp\UninstallEADM.dll
C:\Users\Rigin\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Rigin\AppData\Local\Temp\vcredist_x86.exe
C:\Users\Rigin\AppData\Local\Temp\vlc-2.2.1-win32.exe
C:\Users\Rigin\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-04-18 00:37

==================== End of FRST.txt ============================

#8 Příspěvek od **Rudy** » 20 dub 2016 18:14

Díky. Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Rigin\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
C:\Users\Rigin\AppData\Local\Akamai
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\MountPoints2: {71a8838e-2698-11e3-afdd-d43d7ed88a52} - D:\Autorun.exe
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-20] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
C:\Program Files (x86)\Skype\Toolbars
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
CHR HomePage: Default -> hxxp://www.search.ask.com/?gct=hp
CHR StartupUrls: Default -> "hxxps://www.google.com/?trackid=sp-006"
CHR Extension: (Facebook Unseen) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2015-12-31]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Rigin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Rigin\AppData\Local\Temp
Task: {7998EBC8-11BC-4B6A-8BCC-C474FB999CAD} - System32\Tasks\{C5569326-9FBB-423F-8D09-FB2FEACFB112} => pcalua.exe -a "C:\Users\Rigin\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe" -c /initurl hxxp://bi.bisrv.com/:affid:/:sid:/:uid:? /affid uninstall /id uninstall /name "Bundled software uninstaller"
End

Uložte do C:\Users\Rigin\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Chiefko · #9 Příspěvek od **Chiefko** » 20 dub 2016 20:48

Zapomněl jsem vypnout AVG ( vytvořilo si vyjímku - snad to nevadí )

Fix result of Farbar Recovery Scan Tool (x64) Version:18-04-2016
Ran by Rigin (2016-04-20 21:42:28) Run:1
Running from C:\Users\Rigin\Downloads
Loaded Profiles: Rigin (Available Profiles: Rigin)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Rigin\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
C:\Users\Rigin\AppData\Local\Akamai
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\...\MountPoints2: {71a8838e-2698-11e3-afdd-d43d7ed88a52} - D:\Autorun.exe
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-20] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
C:\Program Files (x86)\Skype\Toolbars
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-3790502155-2551764370-1862606806-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-12-20] (Google Inc.)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
CHR HomePage: Default -> hxxp://www.search.ask.com/?gct=hp
CHR StartupUrls: Default -> "hxxps://www.google.com/?trackid=sp-006"
CHR Extension: (Facebook Unseen) - C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2015-12-31]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Rigin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Rigin\AppData\Local\Temp
Task: {7998EBC8-11BC-4B6A-8BCC-C474FB999CAD} - System32\Tasks\{C5569326-9FBB-423F-8D09-FB2FEACFB112} => pcalua.exe -a "C:\Users\Rigin\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe" -c /initurl hxxp://bi.bisrv.com/:affid:/:sid:/:uid:? /affid uninstall /id uninstall /name "Bundled software uninstaller"
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface => value not found.
"C:\Users\Rigin\AppData\Local\Akamai" => not found.
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value removed successfully
"HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{71a8838e-2698-11e3-afdd-d43d7ed88a52}" => key removed successfully
HKCR\CLSID\{71a8838e-2698-11e3-afdd-d43d7ed88a52} => key not found.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Main\\Search Bar => value removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" => key removed successfully
HKCR\Wow6432Node\CLSID\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
"C:\Program Files (x86)\Google\Google Toolbar" => not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => key not found.
HKCR\Wow6432Node\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => key not found.
"C:\Program Files (x86)\Skype\Toolbars" => not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value not found.
HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value not found.
HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => key not found.
HKU\S-1-5-21-3790502155-2551764370-1862606806-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
HKCR\PROTOCOLS\Handler\skypec2c => key not found.
HKCR\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => key not found.
HKCR\Wow6432Node\PROTOCOLS\Handler\skypec2c => key not found.
HKCR\Wow6432Node\CLSID\{91774881-D725-4E58-B298-07617B9B86A8} => key not found.
Chrome HomePage => removed successfully
Chrome StartupUrls => removed successfully
C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop => moved successfully
c2cautoupdatesvc => service not found.
c2cpnrsvc => service not found.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Users\Rigin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

"C:\Users\Rigin\AppData\Local\Temp" folder move:

Could not move "C:\Users\Rigin\AppData\Local\Temp" => Scheduled to move on reboot.

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7998EBC8-11BC-4B6A-8BCC-C474FB999CAD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7998EBC8-11BC-4B6A-8BCC-C474FB999CAD}" => key removed successfully
C:\Windows\System32\Tasks\{C5569326-9FBB-423F-8D09-FB2FEACFB112} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C5569326-9FBB-423F-8D09-FB2FEACFB112}" => key removed successfully

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-04-20 21:45:46)

C:\Users\Rigin\AppData\Local\Temp => moved successfully

==== End of Fixlog 21:45:46 ====

#10 Příspěvek od **Rudy** » 20 dub 2016 21:05

To je OK, při mazání FRST není třeba vypínat AV. Smazáno. Nastala nějaká změna?

Chiefko · #11 Příspěvek od **Chiefko** » 20 dub 2016 21:18

Ano počítač reaguje o dost lépe....moc děkuji, ale při každém restartu a projetí MBA vydetekuje vždy tyto potencionálně nežádoucí programy.
Malwarebytes Anti-Malware
http://www.malwarebytes.org

Datum skenování: 20.4.2016
Čas skenování: 21:52
Protokol: MALWARE.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.04.20.06
Databáze rootkitů: v2016.04.17.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Rigin

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 341322
Uplynulý čas: 7 min, 48 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 3
PUP.Optional.Ilivid, C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf, , [75a108a9d4c5d264fafe8991739012ee],
PUP.Optional.Ilivid, C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf\1.1_0, , [75a108a9d4c5d264fafe8991739012ee],
PUP.Optional.Ilivid, C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf\1.1_0\_metadata, , [75a108a9d4c5d264fafe8991739012ee],

Soubory: 2
PUP.Optional.Ilivid, C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf\1.1_0\_metadata\computed_hashes.json, , [75a108a9d4c5d264fafe8991739012ee],
PUP.Optional.Ilivid, C:\Users\Rigin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf\1.1_0\_metadata\verified_contents.json, , [75a108a9d4c5d264fafe8991739012ee],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#12 Příspěvek od **Rudy** » 20 dub 2016 21:30

Všechny položky, které MBAM nalkezl smažte.

VIRY.CZ

Výkyvy rychlosti PC

Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC

Re: Výkyvy rychlosti PC