Prosím o kontrolu logu Vyřešeno

[akiller]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016
Ran by Severus (administrator) on SEVERUS-PC (06-02-2016 09:41:47)
Running from C:\Users\Severus\Desktop
Loaded Profiles: Severus (Available Profiles: Severus)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [74752 2015-09-01] ()
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [179624 2016-01-12] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3874216 2016-01-08] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\Run: [Spotify Web Helper] => C:\Users\Severus\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2015-12-30] (Spotify Ltd)
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\Run: [Spotify] => C:\Users\Severus\AppData\Roaming\Spotify\Spotify.exe [8316528 2015-12-30] (Spotify Ltd)
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{568dffb4-7df0-4905-ae6e-b2a3877dcb07}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-4090990958-3542922779-2809278079-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareu ... PIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareu ... TSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareu ... /CTPID.cab

FireFox:
========
FF ProfilePath: C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default
FF Homepage: hxxps://www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-20] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-20] ()
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-23] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\searchplugins\suche-in-wikipedia.xml [2015-09-29]
FF SearchPlugin: C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\searchplugins\wikipedia-english.xml [2015-09-29]
FF Extension: Memory Fox - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} [2015-09-27]
FF Extension: Thumbnail Zoom Plus - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\extensions\thumbnailZoom@dadler.github.com.xpi [2015-09-27]
FF Extension: Save-To-Read - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\extensions\save2read@konstantin.plotnikov.xpi [2015-09-27]
FF Extension: WOT - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-10]
FF Extension: Tab Mix Plus - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2015-12-26]
FF Extension: EPUBReader - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2016-01-20]
FF Extension: Classic Theme Restorer - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2016-02-02]
FF Extension: NoScript - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-02-03]
FF Extension: Český slovník pro kontrolu pravopisu - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-01-11]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\Extensions\elemhidehelper@adblockplus.org.xpi [2016-01-06]
FF Extension: Ghostery - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\Extensions\firefox@ghostery.com.xpi [2016-02-05]
FF Extension: Restart My Fox - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\Extensions\Restart-My-Fox@8pecxstudios.com.xpi [2015-09-27]
FF Extension: uBlock Origin - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\Extensions\uBlock0@raymondhill.net.xpi [2016-01-11]
FF Extension: Flagfox - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2016-01-13]
FF Extension: Adblock Plus - C:\Users\Severus\AppData\Roaming\Mozilla\Firefox\Profiles\vh1hjfen.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-20]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [627544 2016-01-08] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3906568 2016-01-08] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1048488 2016-01-12] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [583936 2016-01-08] (AVG Technologies CZ, s.r.o.)
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2015-09-27] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [307200 2008-11-18] (Creative Technology Ltd) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®) [File not signed]
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2015-09-01] (Ellora Assets Corp.) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [23152 2015-09-09] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [184240 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [315312 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [298416 2015-08-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [284080 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [398256 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [258480 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [42416 2015-12-04] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [315840 2015-12-16] (AVG Technologies CZ, s.r.o.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-06-18] (Realtek )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

[Reklama]

[akiller]

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-06 09:41 - 2016-02-06 09:42 - 00013749 _____ C:\Users\Severus\Desktop\FRST.txt
2016-02-06 09:41 - 2016-02-06 09:41 - 00000000 ____D C:\FRST
2016-02-06 09:39 - 2016-02-06 09:39 - 00016148 _____ C:\WINDOWS\system32\SEVERUS-PC_Severus_HistoryPrediction.bin
2016-02-05 23:52 - 2016-02-05 23:52 - 00008538 _____ C:\Users\Severus\Desktop\zoek-results.txt
2016-02-05 23:50 - 2016-02-05 23:34 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-02-05 23:34 - 2016-02-05 23:48 - 00000000 ____D C:\zoek_backup
2016-02-05 23:34 - 2016-02-05 23:34 - 00005022 _____ C:\Users\Severus\Desktop\rogue2.txt
2016-02-05 22:09 - 2016-02-06 09:41 - 02370560 _____ (Farbar) C:\Users\Severus\Desktop\FRST64.exe
2016-02-05 22:08 - 2016-02-05 23:34 - 01309184 _____ C:\Users\Severus\Desktop\zoek.exe
2016-02-05 19:04 - 2016-02-05 23:16 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-02-05 19:04 - 2016-02-05 19:41 - 00000000 ____D C:\ProgramData\RogueKiller
2016-02-05 16:45 - 2016-02-05 19:04 - 25147464 _____ C:\Users\Severus\Desktop\RogueKillerX64.exe
2016-02-05 16:45 - 2016-02-05 17:12 - 01609032 _____ (Malwarebytes) C:\Users\Severus\Desktop\JRT.exe
2016-02-05 16:43 - 2016-02-05 16:43 - 00000000 ____D C:\Users\Severus\Desktop\Manu Chao
2016-02-05 12:02 - 2016-02-05 12:02 - 00000000 ____D C:\Users\Severus\AppData\Local\Adobe
2016-02-05 10:52 - 2016-02-05 17:10 - 00000000 ____D C:\AdwCleaner
2016-02-05 10:09 - 2016-02-05 10:52 - 01508352 _____ C:\Users\Severus\Desktop\AdwCleaner.exe
2016-02-03 15:44 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-02-03 15:44 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-02-03 15:44 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-02-03 15:44 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-02-03 15:44 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2016-02-03 15:44 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-02-03 15:44 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-02-03 15:44 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2016-02-03 15:44 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-02-03 15:30 - 2016-02-03 23:35 - 00000000 ____D C:\Users\Severus\AppData\Roaming\Origin
2016-02-03 15:29 - 2016-02-03 23:42 - 00000000 ____D C:\ProgramData\Origin
2016-02-03 15:29 - 2016-02-03 23:42 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-01-30 22:33 - 2016-01-23 01:47 - 00110016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-01-30 22:31 - 2016-01-23 04:31 - 42983992 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 37615040 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 31115712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 24941112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 21202488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 20741880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 17632544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 17224664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 17174032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 17116616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 02543160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 02187712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 01924152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436175.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436175.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00948672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00882232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00745408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00689600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00632336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00601752 _____ C:\WINDOWS\system32\nvmcumd.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00541184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00445912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00423360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00378784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00377792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00348216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00316960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00175368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00153208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00151184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-01-30 22:31 - 2016-01-23 04:31 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-01-30 22:24 - 2016-01-30 22:32 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-01-30 22:24 - 2015-12-18 07:10 - 00099472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-01-30 22:24 - 2015-12-18 07:10 - 00090768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-01-26 19:52 - 2016-02-05 17:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-25 08:19 - 2016-01-30 22:23 - 00000000 ____D C:\WINDOWS\Minidump
2016-01-20 22:02 - 2016-01-20 22:02 - 00000028 _____ C:\WINDOWS\Robota.INI
2016-01-20 20:27 - 2016-01-20 20:27 - 00000000 ____D C:\Users\Severus\AppData\Roaming\MAGIX
2016-01-20 20:25 - 2016-01-30 22:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2016-01-20 20:25 - 2016-01-20 20:25 - 00000000 ____D C:\ProgramData\MAGIX
2016-01-20 20:25 - 2007-04-18 22:07 - 00053248 _____ C:\WINDOWS\SysWOW64\mgxasio2.dll
2016-01-20 20:25 - 2006-10-02 17:24 - 00487424 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLAV32.dll
2016-01-20 20:25 - 2006-10-02 17:24 - 00188416 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLRES32.dll
2016-01-20 20:25 - 2006-10-02 17:24 - 00163840 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLDEV32.dll
2016-01-20 20:25 - 2006-10-02 17:24 - 00151552 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLDRV32.dll
2016-01-20 20:25 - 2006-10-02 17:24 - 00094208 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLCPY32.dll
2016-01-20 20:25 - 2006-10-02 17:24 - 00053248 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLIO32.dll
2016-01-20 20:25 - 2006-10-02 17:24 - 00036864 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLPNT32.dll
2016-01-20 20:25 - 2006-10-02 17:24 - 00032768 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\STRING32.dll
2016-01-20 20:25 - 2006-03-31 14:57 - 00430080 _____ (MAGIX AG) C:\WINDOWS\SysWOW64\MXRestore.exe
2016-01-20 20:25 - 2005-04-09 21:05 - 00027807 _____ C:\WINDOWS\SysWOW64\mgxcdr.txt
2016-01-20 20:25 - 2004-03-11 15:49 - 00014182 _____ C:\WINDOWS\SysWOW64\DLLAV32.lib
2016-01-20 20:25 - 2003-04-18 15:46 - 01233920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4.dll
2016-01-20 20:25 - 2003-04-18 15:29 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4r.dll
2016-01-20 20:25 - 2003-04-18 15:29 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4a.dll
2016-01-20 20:25 - 2003-03-14 10:35 - 00040960 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLRD32.dll
2016-01-20 20:25 - 2003-03-14 10:33 - 00114688 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLCDA32.dll
2016-01-20 20:25 - 2003-03-14 10:33 - 00061440 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLCDF32.dll
2016-01-20 20:25 - 2003-03-14 10:33 - 00053248 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLPRJ32.dll
2016-01-20 20:25 - 2003-03-14 10:33 - 00045056 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLIMG32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00065536 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLPTL32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00057344 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLTPO32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00049152 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLPRF32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00032768 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLMSC32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00032768 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLISO32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00032768 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLDIR32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00024576 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\TTIC32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00024576 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\TTI32.dll
2016-01-20 20:25 - 2003-03-14 10:32 - 00024576 _____ (PoINT Software & Systems GmbH) C:\WINDOWS\SysWOW64\DLLIX.dll
2016-01-20 20:24 - 2016-01-30 22:05 - 00000000 ____D C:\WINDOWS\SysWOW64\MAGIX
2016-01-20 20:24 - 2016-01-30 22:05 - 00000000 ____D C:\Program Files (x86)\MAGIX
2016-01-20 20:24 - 2016-01-28 22:31 - 00006211 _____ C:\WINDOWS\mgxoschk.ini
2016-01-20 20:24 - 2008-04-15 15:14 - 00700416 _____ (MAGIX AG) C:\WINDOWS\SysWOW64\mgxoschk.dll
2016-01-20 20:24 - 2007-04-27 09:43 - 00120200 _____ () C:\WINDOWS\SysWOW64\DLLDEV32i.dll
2016-01-13 08:25 - 2016-01-05 03:18 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-13 08:25 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-13 08:25 - 2016-01-05 02:43 - 19324928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-13 08:25 - 2016-01-05 02:30 - 18802176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-01-13 08:25 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-13 08:24 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-13 08:24 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-13 08:24 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 08:24 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-13 08:24 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 08:24 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-13 08:24 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 08:24 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-13 08:24 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 08:24 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-01-13 08:24 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-13 08:24 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-13 08:24 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-13 08:24 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-01-13 08:24 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-01-13 08:24 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-01-13 08:24 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-13 08:24 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 08:24 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-13 08:24 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-13 08:24 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-13 08:24 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-01-13 08:24 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-01-13 08:24 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-13 08:24 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-01-13 08:24 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-01-13 08:24 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-13 08:24 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-13 08:24 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-01-13 08:24 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-01-13 08:24 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-01-13 08:24 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-13 08:24 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-01-13 08:24 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-01-13 08:24 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-13 08:24 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-01-13 08:24 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-13 08:24 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-13 08:24 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-13 08:24 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-13 08:24 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-01-13 08:24 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-13 08:24 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-01-13 08:24 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-01-13 08:24 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-01-13 08:24 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-01-13 08:24 - 2016-01-05 03:15 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-13 08:24 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-13 08:24 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 08:24 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 08:24 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2016-01-13 08:24 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-01-13 08:24 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-01-13 08:24 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-01-13 08:24 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-01-13 08:24 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-13 08:24 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-13 08:24 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-13 08:24 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-13 08:24 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-13 08:24 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-13 08:24 - 2016-01-05 03:00 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-01-13 08:24 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-13 08:24 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-13 08:24 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-13 08:24 - 2016-01-05 02:56 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-01-13 08:24 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 08:24 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 08:24 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-13 08:24 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-13 08:24 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-13 08:24 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-01-13 08:24 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-01-13 08:24 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-01-13 08:24 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2016-01-13 08:24 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-13 08:24 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-13 08:24 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-13 08:24 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-13 08:24 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-13 08:24 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-13 08:24 - 2016-01-05 02:24 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-01-13 08:24 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-13 08:24 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-13 08:24 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-01-13 08:24 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-01-13 08:24 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-06 09:25 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-05 23:58 - 2015-09-27 18:16 - 01762290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-05 23:58 - 2015-09-10 06:05 - 00745406 _____ C:\WINDOWS\system32\perfh005.dat
2016-02-05 23:58 - 2015-09-10 06:05 - 00149344 _____ C:\WINDOWS\system32\perfc005.dat
2016-02-05 23:58 - 2015-07-30 23:40 - 00000000 ____D C:\WINDOWS\INF
2016-02-05 23:52 - 2015-09-28 10:59 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-05 23:52 - 2015-07-30 22:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-05 23:51 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-02-05 23:33 - 2015-11-21 13:28 - 00000000 ____D C:\Program Files (x86)\PSPad editor
2016-02-05 23:14 - 2015-12-04 10:27 - 00000092 _____ C:\Users\Severus\Desktop\Nový textový dokument.txt
2016-02-05 23:10 - 2015-09-27 15:39 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-02-05 21:50 - 2015-09-27 15:46 - 00000000 ____D C:\ProgramData\MFAData
2016-02-05 17:11 - 2015-09-27 15:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-05 10:55 - 2015-09-27 18:55 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-02-05 09:44 - 2015-07-30 23:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-04 23:24 - 2015-09-27 18:48 - 00000000 ____D C:\Program Files (x86)\Parom.TV
2016-02-04 23:21 - 2015-09-27 15:46 - 00000000 ____D C:\Users\Severus\AppData\Local\Avg
2016-02-03 20:29 - 2015-09-27 18:47 - 00000000 ____D C:\Users\Severus\AppData\Roaming\vlc
2016-02-03 18:45 - 2015-09-27 18:49 - 00000000 ____D C:\Users\Severus\TapinRadio
2016-02-03 15:29 - 2015-07-30 23:42 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-02-01 05:41 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-01-30 22:34 - 2015-09-27 20:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-01-30 22:33 - 2015-09-28 10:59 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-01-30 22:32 - 2015-09-28 10:59 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-01-30 22:25 - 2015-09-27 20:09 - 00000000 ____D C:\Users\Severus\AppData\Local\NVIDIA
2016-01-26 13:48 - 2015-09-27 15:46 - 00049072 _____ C:\Users\Severus\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-25 22:50 - 2015-09-28 11:00 - 00000000 ____D C:\Users\Severus
2016-01-25 18:34 - 2014-08-19 21:14 - 12474312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-01-23 04:31 - 2015-10-31 12:52 - 14114944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-01-23 04:31 - 2015-10-31 12:52 - 03230824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-01-23 04:31 - 2015-09-27 20:14 - 00035832 _____ C:\WINDOWS\system32\nvinfo.pb
2016-01-23 04:31 - 2014-08-19 21:15 - 19778944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-01-23 04:31 - 2014-08-19 21:14 - 03648552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-01-23 02:01 - 2015-12-25 09:32 - 00530368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-01-23 02:01 - 2015-12-25 09:32 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-01-23 02:01 - 2015-09-28 10:59 - 06366656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-01-23 02:01 - 2015-09-28 10:59 - 02992064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-01-23 02:01 - 2015-09-28 10:59 - 02563128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-01-23 02:01 - 2015-09-28 10:59 - 01263040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-01-23 02:01 - 2015-09-28 10:59 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-01-23 02:01 - 2015-09-28 10:59 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-01-22 15:04 - 2015-11-01 08:10 - 00001014 _____ C:\Users\Public\Desktop\AVG Protection.lnk
2016-01-22 15:04 - 2015-11-01 08:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-01-22 15:03 - 2015-07-30 22:49 - 00232616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-22 03:06 - 2015-09-28 10:59 - 06125650 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-01-21 09:45 - 2015-07-30 23:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-20 20:25 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\Help
2016-01-16 08:50 - 2015-09-29 07:03 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-16 08:49 - 2015-10-14 17:44 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-13 08:31 - 2015-09-27 17:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-13 08:27 - 2015-09-27 17:31 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-12 05:41 - 2015-09-27 20:16 - 01542600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-01-12 05:41 - 2015-09-27 20:16 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-01-12 05:40 - 2015-12-14 23:12 - 00112032 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-01-12 05:40 - 2015-09-27 20:16 - 01860120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-01-12 05:40 - 2015-09-27 20:16 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-02-04 09:56

==================== End of FRST.txt ============================

[akiller]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-01-2016
Ran by Severus (2016-02-06 09:42:29)
Running from C:\Users\Severus\Desktop
Windows 10 Home (X64) (2015-09-28 10:08:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4090990958-3542922779-2809278079-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4090990958-3542922779-2809278079-503 - Limited - Disabled)
Guest (S-1-5-21-4090990958-3542922779-2809278079-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4090990958-3542922779-2809278079-1002 - Limited - Enabled)
Severus (S-1-5-21-4090990958-3542922779-2809278079-1000 - Administrator - Enabled) => C:\Users\Severus

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.9.1.22 (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AVG (Version: 16.31.7357 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4522 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.31.7357 - AVG Technologies)
calibre 64bit (HKLM\...\{0F675D48-5FF3-48FC-B07F-B6EB91A440E5}) (Version: 2.44.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 2.56 - Creative Technology Limited)
Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: - )
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited)
DjVu Viewer version 1.0 (HKLM-x32\...\{3A959BCB-643A-462F-A692-5B7FE4CE35AC}_is1) (Version: 1.0 - djvuviewer.com)
DjVuLibre+DjView (HKLM-x32\...\DjVuLibre+DjView) (Version: 3.5.22+4.5 - DjVuZone)
EvilLyrics (HKLM-x32\...\EvilLyrics) (Version: - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\Firebird SQL Server UK) (Version: 2.0.1.13 - MAGIX AG)
FMW 1 (Version: 1.52.1 - AVG Technologies) Hidden
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.5 - Ellora Assets Corporation)
Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version: - )
MAGIX Screenshare 4.3.6.1987 (UK) (HKLM-x32\...\MAGIX Screenshare UK) (Version: 4.3.6.1987 - MAGIX AG)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mobi File Reader (HKLM-x32\...\{FFA8548C-9BC2-427F-9F81-E64F620A30CB}_is1) (Version: - mobifilereader.com)
Mozilla Firefox 44.0 (x64 cs) (HKLM\...\Mozilla Firefox 44.0 (x64 cs)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5866 - Mozilla)
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.75 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.75 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Ovládací panel NVIDIA 361.75 (Version: 361.75 - NVIDIA Corporation) Hidden
Palm Reader (HKLM-x32\...\{ED8BB1CA-535A-408D-85C9-ED1986D2B85E}) (Version: - )
Parom.TV player (HKLM-x32\...\Parom.TV) (Version: - )
PatchBeam v1.10 (HKLM-x32\...\PatchBeam_is1) (Version: 1.00 - ConeXware, Inc.)
PowerArchiver 2010 (HKLM-x32\...\{789495D8-AF08-4B7C-9022-5F624F3CFB0B}) (Version: 11.71.03 - ConeXware, Inc.)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: - Jan Fiala)
RAR Repair Tool v.4.0 (HKLM-x32\...\RAR Repair Tool_is1) (Version: - ZRT Labs)
Scorpions WinCheater (HKLM-x32\...\Scorpions WinCheater 2.07 (s databází 173)_is1) (Version: - )
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Smart Tests (HKLM-x32\...\Smart Tests) (Version: 1.0.165.0 - Vitware)
Spotify (HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
TapinRadio 1.18 (HKLM-x32\...\TapinRadio_is1) (Version: - TapinRadio)
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VisiPics V1.30 (HKLM-x32\...\VisiPics_is1) (Version: - Ozone)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Word Manager (HKLM-x32\...\Word Manager) (Version: 1.1.280.0 - Vitware.cz)
yBook (HKLM-x32\...\yBook_is1) (Version: - Spacejock Software)
Zoner Photo Studio 12 (HKLM-x32\...\ZonerPhotoStudio12_CZ_is1) (Version: 12.0.1.7 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4090990958-3542922779-2809278079-1000_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL (ZONER software)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0CC51C74-3C6B-4118-8E86-65E4C71FB0F7} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {0CFB09CB-40C0-49A1-8666-3E730F79FF0B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {14E98FB6-2CE9-4E8B-9FB3-A044080E2CE7} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {1F8C93FB-FE2B-4DD5-9A10-A04EAD531F69} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {21EE6A6C-306D-46A0-92C9-53A93B24A2F8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {2582E231-E49D-4636-9C79-CEC4907F1D5B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-13] (Microsoft Corporation)
Task: {25E51B54-56A5-4461-8057-997835E1BBFB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {34728B22-89E5-495A-8E2B-823DF324FE33} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4EEB3EAC-ED90-4BB3-9C18-789A122AD3EB} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {575C7590-2C1C-4908-87C3-9382247C42F6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {5CDECD88-AFF0-4909-9050-C59553330C06} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {622F07D0-64C5-468F-BDAB-C1AFB2A26184} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {64863392-9A46-4762-A5C6-211E3638BFCB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {746DBFCF-B1C4-40E3-BA7C-7030A16F31FE} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {8BC6B43B-C012-437E-8A51-9DDA5AB8F6EE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A38945CE-C9A9-4C51-8E72-B220BFD1A2AF} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {A40983E5-D365-4FD9-BAAF-07918754B0DB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {B0AC8D58-97E4-40F6-B077-B7242E81FF32} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {B2268EA3-2078-4561-B3B0-31EE2485588E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {BBCCA65E-5122-4818-AE50-8C8223F62098} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {C2F6342E-B20B-48CD-86D0-D5EF023C0297} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {CDD4C906-14A2-48F7-B762-1C7B32590805} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {D3AE6F47-8569-4611-A89D-E3FB6BA808B9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {D49F8202-E640-4C1A-BA25-B9DCCA20D56A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {E39A71E4-E173-41CA-AD9E-3AD732FB5EB4} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {E740B2D2-DD65-40BA-93FE-08274BFECE97} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {F3695C5D-FB3E-46A3-A627-34276279107F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {F64BE300-F5D0-4646-84CB-D0B18CFD1392} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-09-10 06:08 - 2015-09-10 06:08 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-10 06:08 - 2015-09-10 06:08 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-12-25 09:13 - 2016-01-12 05:43 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-09-28 10:59 - 2016-01-23 02:01 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-02 07:49 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-02 07:49 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-02 07:49 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-09 17:43 - 2015-11-25 05:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-09 17:43 - 2015-11-25 05:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-09 17:43 - 2015-11-25 05:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-02 07:49 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-31 12:54 - 2016-01-12 05:43 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\Drivers\lv302a64.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lvrs64.sys:$CmdTcID

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2016-02-05 23:35 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Severus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKLM\...\StartupApproved\Run32: => "StereoLinksInstall"
HKLM\...\StartupApproved\Run32: => "AvgUi"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Uninstall C:\Users\Severus\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Uninstall C:\Users\Severus\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{1EECD968-DF0D-48CE-BD06-E07E1A3C635B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5D0F08A5-E7E3-455D-AC37-4DD21F748424}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{D820A8B0-74E0-45F6-8962-4282DDAE6F52}C:\program files (x86)\tapinradio\tapinradio.exe] => (Allow) C:\program files (x86)\tapinradio\tapinradio.exe
FirewallRules: [TCP Query User{75E2936E-446B-44ED-9906-57B187F44790}C:\program files (x86)\tapinradio\tapinradio.exe] => (Allow) C:\program files (x86)\tapinradio\tapinradio.exe
FirewallRules: [UDP Query User{FED9F0DF-C833-490F-ADA8-C3D783BEC527}C:\users\severus\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\severus\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{ED17BFF6-E055-4D65-8A6F-0B21D7EF6BD7}C:\users\severus\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\severus\appdata\roaming\spotify\spotify.exe
FirewallRules: [{848A0772-94F3-453D-806F-2C49EE13EA4B}] => (Allow) C:\Program Files (x86)\Parom.TV\paromplayer.exe
FirewallRules: [{DEFF0EA0-B74E-40A2-89E9-5C4D294A15D7}] => (Allow) C:\Program Files (x86)\Parom.TV\paromplayer.exe
FirewallRules: [{B98EDBD3-9811-423E-AD48-5A1308B1DBC3}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{99C87623-6B3D-4296-AD6B-6216B79C038C}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{33F2E826-77C4-41EC-9491-5ABD19A3428E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{11821411-8901-4724-BBA1-B1C3DB370028}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D06BC14F-6E46-437F-9923-64B02B8968BB}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{CF5A9DE5-3722-41B9-B652-0FFEB9A9927B}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{7A802A21-F5B7-4FC6-8BCF-4F6418C5E0B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6EEDA8B2-663D-482E-BFBB-ABB8DFC17935}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9C184415-8A03-4294-8853-02E304446107}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{67DFFEA2-773D-4483-8790-2A05E2616F14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4AAE3E6F-4FAA-4E30-9D98-B201CE712229}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{86951916-00AD-4E3C-B472-BC18A99E62EA}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{5F1ADDB6-6555-461B-BF0E-0DE6295BDE21}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{FC115FB4-4651-44DA-8B40-3083AC500D0D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{52D3FB33-2C4C-4489-9F36-57BB9F3C74D9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{283A3C30-27EF-45F5-9750-215C02C64C6F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{6A5E0432-66F4-45A5-8379-2894D312D4F7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{E88A5960-50EF-4B5F-A9E5-07F366BEBD57}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{FEAB9C84-3857-46BC-A9A6-A2054FB5078A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{EA56A941-0BAE-42B5-973D-5612812F9BE2}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{CBC3D7ED-B027-471F-92A5-44F0DD45FDBD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe

==================== Restore Points =========================

05-02-2016 23:35:09 zoek.exe restore point

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/05/2016 11:35:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (02/05/2016 07:42:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x8b4
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

Error: (02/05/2016 03:38:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x1030
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

Error: (02/05/2016 03:38:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program winamp.exe verze 5.6.6.3516 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 290

Čas spuštění: 01d1601e677fbab9

Čas ukončení: 5319

Cesta k aplikaci: C:\Program Files (x86)\Winamp\winamp.exe

ID hlášení: 131a597f-cc16-11e5-8d9d-001d7daf29d4

Úplný název balíčku s chybou:

ID aplikace související s balíčkem s chybou:

Error: (02/05/2016 02:07:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x1bac
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

Error: (02/04/2016 01:56:04 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/04/2016 12:07:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/03/2016 12:45:43 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2147024865. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/03/2016 12:45:43 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/01/2016 05:07:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (02/06/2016 12:05:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (02/05/2016 11:51:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (02/05/2016 11:48:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz
Percentage of memory in use: 24%
Total physical RAM: 6142.49 MB
Available physical RAM: 4639.61 MB
Total Virtual: 12286.49 MB
Available Virtual: 10921.73 MB

==================== Drives ================================

Drive c: (Win10) (Fixed) (Total:111.35 GB) (Free:45.29 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:292.46 GB) NTFS
Drive e: (boot win10) (Fixed) (Total:146.48 GB) (Free:141.3 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (Win7) (Fixed) (Total:151.61 GB) (Free:116.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 000E1397)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or (Size: 298.1 GB) (Disk ID: 4310430F)
Partition 1: (Active) - (Size=146.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=151.6 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or (Size: 111.8 GB) (Disk ID: E3BB742E)
Partition 1: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

[akiller]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-01-2016
Ran by Severus (2016-02-06 09:42:29)
Running from C:\Users\Severus\Desktop
Windows 10 Home (X64) (2015-09-28 10:08:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4090990958-3542922779-2809278079-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4090990958-3542922779-2809278079-503 - Limited - Disabled)
Guest (S-1-5-21-4090990958-3542922779-2809278079-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4090990958-3542922779-2809278079-1002 - Limited - Enabled)
Severus (S-1-5-21-4090990958-3542922779-2809278079-1000 - Administrator - Enabled) => C:\Users\Severus

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.9.1.22 (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AVG (Version: 16.31.7357 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4522 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.31.7357 - AVG Technologies)
calibre 64bit (HKLM\...\{0F675D48-5FF3-48FC-B07F-B6EB91A440E5}) (Version: 2.44.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 2.56 - Creative Technology Limited)
Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: - )
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited)
DjVu Viewer version 1.0 (HKLM-x32\...\{3A959BCB-643A-462F-A692-5B7FE4CE35AC}_is1) (Version: 1.0 - djvuviewer.com)
DjVuLibre+DjView (HKLM-x32\...\DjVuLibre+DjView) (Version: 3.5.22+4.5 - DjVuZone)
EvilLyrics (HKLM-x32\...\EvilLyrics) (Version: - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\Firebird SQL Server UK) (Version: 2.0.1.13 - MAGIX AG)
FMW 1 (Version: 1.52.1 - AVG Technologies) Hidden
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.5 - Ellora Assets Corporation)
Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version: - )
MAGIX Screenshare 4.3.6.1987 (UK) (HKLM-x32\...\MAGIX Screenshare UK) (Version: 4.3.6.1987 - MAGIX AG)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mobi File Reader (HKLM-x32\...\{FFA8548C-9BC2-427F-9F81-E64F620A30CB}_is1) (Version: - mobifilereader.com)
Mozilla Firefox 44.0 (x64 cs) (HKLM\...\Mozilla Firefox 44.0 (x64 cs)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5866 - Mozilla)
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.75 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.75 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Ovládací panel NVIDIA 361.75 (Version: 361.75 - NVIDIA Corporation) Hidden
Palm Reader (HKLM-x32\...\{ED8BB1CA-535A-408D-85C9-ED1986D2B85E}) (Version: - )
Parom.TV player (HKLM-x32\...\Parom.TV) (Version: - )
PatchBeam v1.10 (HKLM-x32\...\PatchBeam_is1) (Version: 1.00 - ConeXware, Inc.)
PowerArchiver 2010 (HKLM-x32\...\{789495D8-AF08-4B7C-9022-5F624F3CFB0B}) (Version: 11.71.03 - ConeXware, Inc.)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: - Jan Fiala)
RAR Repair Tool v.4.0 (HKLM-x32\...\RAR Repair Tool_is1) (Version: - ZRT Labs)
Scorpions WinCheater (HKLM-x32\...\Scorpions WinCheater 2.07 (s databází 173)_is1) (Version: - )
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Smart Tests (HKLM-x32\...\Smart Tests) (Version: 1.0.165.0 - Vitware)
Spotify (HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
TapinRadio 1.18 (HKLM-x32\...\TapinRadio_is1) (Version: - TapinRadio)
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VisiPics V1.30 (HKLM-x32\...\VisiPics_is1) (Version: - Ozone)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Word Manager (HKLM-x32\...\Word Manager) (Version: 1.1.280.0 - Vitware.cz)
yBook (HKLM-x32\...\yBook_is1) (Version: - Spacejock Software)
Zoner Photo Studio 12 (HKLM-x32\...\ZonerPhotoStudio12_CZ_is1) (Version: 12.0.1.7 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4090990958-3542922779-2809278079-1000_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL (ZONER software)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0CC51C74-3C6B-4118-8E86-65E4C71FB0F7} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {0CFB09CB-40C0-49A1-8666-3E730F79FF0B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {14E98FB6-2CE9-4E8B-9FB3-A044080E2CE7} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {1F8C93FB-FE2B-4DD5-9A10-A04EAD531F69} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {21EE6A6C-306D-46A0-92C9-53A93B24A2F8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {2582E231-E49D-4636-9C79-CEC4907F1D5B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-13] (Microsoft Corporation)
Task: {25E51B54-56A5-4461-8057-997835E1BBFB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {34728B22-89E5-495A-8E2B-823DF324FE33} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4EEB3EAC-ED90-4BB3-9C18-789A122AD3EB} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {575C7590-2C1C-4908-87C3-9382247C42F6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {5CDECD88-AFF0-4909-9050-C59553330C06} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {622F07D0-64C5-468F-BDAB-C1AFB2A26184} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {64863392-9A46-4762-A5C6-211E3638BFCB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {746DBFCF-B1C4-40E3-BA7C-7030A16F31FE} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {8BC6B43B-C012-437E-8A51-9DDA5AB8F6EE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A38945CE-C9A9-4C51-8E72-B220BFD1A2AF} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {A40983E5-D365-4FD9-BAAF-07918754B0DB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {B0AC8D58-97E4-40F6-B077-B7242E81FF32} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {B2268EA3-2078-4561-B3B0-31EE2485588E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {BBCCA65E-5122-4818-AE50-8C8223F62098} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {C2F6342E-B20B-48CD-86D0-D5EF023C0297} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {CDD4C906-14A2-48F7-B762-1C7B32590805} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {D3AE6F47-8569-4611-A89D-E3FB6BA808B9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {D49F8202-E640-4C1A-BA25-B9DCCA20D56A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {E39A71E4-E173-41CA-AD9E-3AD732FB5EB4} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {E740B2D2-DD65-40BA-93FE-08274BFECE97} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {F3695C5D-FB3E-46A3-A627-34276279107F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {F64BE300-F5D0-4646-84CB-D0B18CFD1392} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-09-10 06:08 - 2015-09-10 06:08 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-10 06:08 - 2015-09-10 06:08 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-12-25 09:13 - 2016-01-12 05:43 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-09-28 10:59 - 2016-01-23 02:01 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-02 07:49 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-02 07:49 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-02 07:49 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-09 17:43 - 2015-11-25 05:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-09 17:43 - 2015-11-25 05:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-09 17:43 - 2015-11-25 05:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-02 07:49 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-31 12:54 - 2016-01-12 05:43 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\Drivers\lv302a64.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lvrs64.sys:$CmdTcID

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

[akiller]

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2016-02-05 23:35 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Severus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKLM\...\StartupApproved\Run32: => "StereoLinksInstall"
HKLM\...\StartupApproved\Run32: => "AvgUi"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Uninstall C:\Users\Severus\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Uninstall C:\Users\Severus\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{1EECD968-DF0D-48CE-BD06-E07E1A3C635B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5D0F08A5-E7E3-455D-AC37-4DD21F748424}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{D820A8B0-74E0-45F6-8962-4282DDAE6F52}C:\program files (x86)\tapinradio\tapinradio.exe] => (Allow) C:\program files (x86)\tapinradio\tapinradio.exe
FirewallRules: [TCP Query User{75E2936E-446B-44ED-9906-57B187F44790}C:\program files (x86)\tapinradio\tapinradio.exe] => (Allow) C:\program files (x86)\tapinradio\tapinradio.exe
FirewallRules: [UDP Query User{FED9F0DF-C833-490F-ADA8-C3D783BEC527}C:\users\severus\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\severus\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{ED17BFF6-E055-4D65-8A6F-0B21D7EF6BD7}C:\users\severus\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\severus\appdata\roaming\spotify\spotify.exe
FirewallRules: [{848A0772-94F3-453D-806F-2C49EE13EA4B}] => (Allow) C:\Program Files (x86)\Parom.TV\paromplayer.exe
FirewallRules: [{DEFF0EA0-B74E-40A2-89E9-5C4D294A15D7}] => (Allow) C:\Program Files (x86)\Parom.TV\paromplayer.exe
FirewallRules: [{B98EDBD3-9811-423E-AD48-5A1308B1DBC3}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{99C87623-6B3D-4296-AD6B-6216B79C038C}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{33F2E826-77C4-41EC-9491-5ABD19A3428E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{11821411-8901-4724-BBA1-B1C3DB370028}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D06BC14F-6E46-437F-9923-64B02B8968BB}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{CF5A9DE5-3722-41B9-B652-0FFEB9A9927B}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{7A802A21-F5B7-4FC6-8BCF-4F6418C5E0B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6EEDA8B2-663D-482E-BFBB-ABB8DFC17935}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9C184415-8A03-4294-8853-02E304446107}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{67DFFEA2-773D-4483-8790-2A05E2616F14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4AAE3E6F-4FAA-4E30-9D98-B201CE712229}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{86951916-00AD-4E3C-B472-BC18A99E62EA}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{5F1ADDB6-6555-461B-BF0E-0DE6295BDE21}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{FC115FB4-4651-44DA-8B40-3083AC500D0D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{52D3FB33-2C4C-4489-9F36-57BB9F3C74D9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{283A3C30-27EF-45F5-9750-215C02C64C6F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{6A5E0432-66F4-45A5-8379-2894D312D4F7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{E88A5960-50EF-4B5F-A9E5-07F366BEBD57}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{FEAB9C84-3857-46BC-A9A6-A2054FB5078A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{EA56A941-0BAE-42B5-973D-5612812F9BE2}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{CBC3D7ED-B027-471F-92A5-44F0DD45FDBD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe

==================== Restore Points =========================

05-02-2016 23:35:09 zoek.exe restore point

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/05/2016 11:35:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (02/05/2016 07:42:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x8b4
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

Error: (02/05/2016 03:38:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x1030
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

Error: (02/05/2016 03:38:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program winamp.exe verze 5.6.6.3516 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 290

Čas spuštění: 01d1601e677fbab9

Čas ukončení: 5319

Cesta k aplikaci: C:\Program Files (x86)\Winamp\winamp.exe

ID hlášení: 131a597f-cc16-11e5-8d9d-001d7daf29d4

Úplný název balíčku s chybou:

ID aplikace související s balíčkem s chybou:

Error: (02/05/2016 02:07:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x1bac
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

Error: (02/04/2016 01:56:04 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/04/2016 12:07:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/03/2016 12:45:43 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2147024865. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/03/2016 12:45:43 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/01/2016 05:07:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (02/06/2016 12:05:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (02/05/2016 11:51:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (02/05/2016 11:48:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz
Percentage of memory in use: 24%
Total physical RAM: 6142.49 MB
Available physical RAM: 4639.61 MB
Total Virtual: 12286.49 MB
Available Virtual: 10921.73 MB

==================== Drives ================================

Drive c: (Win10) (Fixed) (Total:111.35 GB) (Free:45.29 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:292.46 GB) NTFS
Drive e: (boot win10) (Fixed) (Total:146.48 GB) (Free:141.3 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (Win7) (Fixed) (Total:151.61 GB) (Free:116.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 000E1397)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or (Size: 298.1 GB) (Disk ID: 4310430F)
Partition 1: (Active) - (Size=146.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=151.6 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or (Size: 111.8 GB) (Disk ID: E3BB742E)
Partition 1: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

[akiller]

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2016-02-05 23:35 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Severus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKLM\...\StartupApproved\Run32: => "StereoLinksInstall"
HKLM\...\StartupApproved\Run32: => "AvgUi"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Uninstall C:\Users\Severus\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\...\StartupApproved\Run: => "Uninstall C:\Users\Severus\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{1EECD968-DF0D-48CE-BD06-E07E1A3C635B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5D0F08A5-E7E3-455D-AC37-4DD21F748424}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{D820A8B0-74E0-45F6-8962-4282DDAE6F52}C:\program files (x86)\tapinradio\tapinradio.exe] => (Allow) C:\program files (x86)\tapinradio\tapinradio.exe
FirewallRules: [TCP Query User{75E2936E-446B-44ED-9906-57B187F44790}C:\program files (x86)\tapinradio\tapinradio.exe] => (Allow) C:\program files (x86)\tapinradio\tapinradio.exe
FirewallRules: [UDP Query User{FED9F0DF-C833-490F-ADA8-C3D783BEC527}C:\users\severus\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\severus\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{ED17BFF6-E055-4D65-8A6F-0B21D7EF6BD7}C:\users\severus\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\severus\appdata\roaming\spotify\spotify.exe
FirewallRules: [{848A0772-94F3-453D-806F-2C49EE13EA4B}] => (Allow) C:\Program Files (x86)\Parom.TV\paromplayer.exe
FirewallRules: [{DEFF0EA0-B74E-40A2-89E9-5C4D294A15D7}] => (Allow) C:\Program Files (x86)\Parom.TV\paromplayer.exe
FirewallRules: [{B98EDBD3-9811-423E-AD48-5A1308B1DBC3}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{99C87623-6B3D-4296-AD6B-6216B79C038C}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{33F2E826-77C4-41EC-9491-5ABD19A3428E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{11821411-8901-4724-BBA1-B1C3DB370028}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D06BC14F-6E46-437F-9923-64B02B8968BB}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{CF5A9DE5-3722-41B9-B652-0FFEB9A9927B}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{7A802A21-F5B7-4FC6-8BCF-4F6418C5E0B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6EEDA8B2-663D-482E-BFBB-ABB8DFC17935}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9C184415-8A03-4294-8853-02E304446107}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{67DFFEA2-773D-4483-8790-2A05E2616F14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4AAE3E6F-4FAA-4E30-9D98-B201CE712229}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{86951916-00AD-4E3C-B472-BC18A99E62EA}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{5F1ADDB6-6555-461B-BF0E-0DE6295BDE21}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{FC115FB4-4651-44DA-8B40-3083AC500D0D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{52D3FB33-2C4C-4489-9F36-57BB9F3C74D9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{283A3C30-27EF-45F5-9750-215C02C64C6F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{6A5E0432-66F4-45A5-8379-2894D312D4F7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{E88A5960-50EF-4B5F-A9E5-07F366BEBD57}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{FEAB9C84-3857-46BC-A9A6-A2054FB5078A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{EA56A941-0BAE-42B5-973D-5612812F9BE2}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{CBC3D7ED-B027-471F-92A5-44F0DD45FDBD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe

==================== Restore Points =========================

05-02-2016 23:35:09 zoek.exe restore point

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/05/2016 11:35:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (02/05/2016 07:42:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x8b4
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

[akiller]

Error: (02/05/2016 03:38:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x1030
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

Error: (02/05/2016 03:38:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program winamp.exe verze 5.6.6.3516 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 290

Čas spuštění: 01d1601e677fbab9

Čas ukončení: 5319

Cesta k aplikaci: C:\Program Files (x86)\Winamp\winamp.exe

ID hlášení: 131a597f-cc16-11e5-8d9d-001d7daf29d4

Úplný název balíčku s chybou:

ID aplikace související s balíčkem s chybou:

Error: (02/05/2016 02:07:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.10240.16384, časové razítko: 0x559f3a8d
Název chybujícího modulu: P17APO64.dll, verze: 1.0.6.0, časové razítko: 0x49de11ad
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000020b7a
ID chybujícího procesu: 0x1bac
Čas spuštění chybující aplikace: 0xAUDIODG.EXE0
Cesta k chybující aplikaci: AUDIODG.EXE1
Cesta k chybujícímu modulu: AUDIODG.EXE2
ID zprávy: AUDIODG.EXE3
Úplný název chybujícího balíčku: AUDIODG.EXE4
ID aplikace související s chybujícím balíčkem: AUDIODG.EXE5

Error: (02/04/2016 01:56:04 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/04/2016 12:07:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/03/2016 12:45:43 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2147024865. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/03/2016 12:45:43 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/01/2016 05:07:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Severus-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (02/06/2016 12:05:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (02/05/2016 11:51:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (02/05/2016 11:48:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (02/05/2016 11:48:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz
Percentage of memory in use: 24%
Total physical RAM: 6142.49 MB
Available physical RAM: 4639.61 MB
Total Virtual: 12286.49 MB
Available Virtual: 10921.73 MB

==================== Drives ================================

Drive c: (Win10) (Fixed) (Total:111.35 GB) (Free:45.29 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:292.46 GB) NTFS
Drive e: (boot win10) (Fixed) (Total:146.48 GB) (Free:141.3 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (Win7) (Fixed) (Total:151.61 GB) (Free:116.51 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 000E1397)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or (Size: 298.1 GB) (Disk ID: 4310430F)
Partition 1: (Active) - (Size=146.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=151.6 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or (Size: 111.8 GB) (Disk ID: E3BB742E)
Partition 1: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

[akiller]

Doufám, že jsem logy frst.txt a addition.txt vložil správně

A nerad bych to zakřiknul, ale myslím, že jsem zůstal přihlášen

[Orcus]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-4090990958-3542922779-2809278079-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareu ... PIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareu ... TSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareu ... /CTPID.cab
FF Homepage: hxxps://www.seznam.cz
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
Task: {21EE6A6C-306D-46A0-92C9-53A93B24A2F8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {622F07D0-64C5-468F-BDAB-C1AFB2A26184} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {F3695C5D-FB3E-46A3-A627-34276279107F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe


(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusť FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[akiller]

Fix result of Farbar Recovery Scan Tool (x64) Version:27-01-2016
Ran by Severus (2016-02-06 14:03:33) Run:1
Running from C:\Users\Severus\Desktop
Loaded Profiles: Severus (Available Profiles: Severus)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-4090990958-3542922779-2809278079-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareu ... PIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareu ... TSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareu ... /CTPID.cab
FF Homepage: hxxps://www.seznam.cz
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
Task: {21EE6A6C-306D-46A0-92C9-53A93B24A2F8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {622F07D0-64C5-468F-BDAB-C1AFB2A26184} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {F3695C5D-FB3E-46A3-A627-34276279107F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\P17RunE => value removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
"HKU\S-1-5-21-4090990958-3542922779-2809278079-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{D4B68B83-8710-488B-A692-D74B50BA558E}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{D4B68B83-8710-488B-A692-D74B50BA558E}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{E705A591-DA3C-4228-B0D5-A356DBA42FBF}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{E705A591-DA3C-4228-B0D5-A356DBA42FBF}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{F6ACF75C-C32C-447B-9BEF-46B766368D29}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{F6ACF75C-C32C-447B-9BEF-46B766368D29}" => key removed successfully
Firefox "homepage" removed successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{21EE6A6C-306D-46A0-92C9-53A93B24A2F8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21EE6A6C-306D-46A0-92C9-53A93B24A2F8}" => key removed successfully
C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{622F07D0-64C5-468F-BDAB-C1AFB2A26184}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{622F07D0-64C5-468F-BDAB-C1AFB2A26184}" => key removed successfully
C:\WINDOWS\System32\Tasks\CCleanerSkipUAC => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F3695C5D-FB3E-46A3-A627-34276279107F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3695C5D-FB3E-46A3-A627-34276279107F}" => key removed successfully
C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => key removed successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => not found.


The system needed a reboot.

==== End of Fixlog 14:03:40 ====

[jerabina]

Co problémy?

[akiller]

Jak jsem psal předevčírem, problémy zmizely a stále je neeviduji
Pánové, co já bych bez vás dělal

Mohu dát fajfčičku?