﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-05-2015 01
Ran by Ursula at 2015-05-24 21:11:05
Running from C:\Users\Ursula\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1397978681-3351892613-811615854-500 - Administrator - Enabled) => C:\Users\Administrator
Guest (S-1-5-21-1397978681-3351892613-811615854-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Endpoint Security 5.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Endpoint Security 5.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET personal firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acronis Disk Director (HKLM-x32\...\{AE372858-B1BD-49EF-8308-648322846008}) (Version: 12.0.3223 - Acronis)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-1883950164-2898250952-991467129-1841\...\Akamai) (Version:  - Akamai Technologies, Inc)
Altap Salamander 2.54 (HKLM-x32\...\Altap Salamander 2.54) (Version: 2.54 - ALTAP)
Autodesk Download Manager (HKLM-x32\...\{C897D9EC-13C6-4A22-ABF7-33F2126A7DB6}) (Version: 3.0.8.0 - Autodesk, Inc.)
Creative Pack Volume 1 (HKLM\...\{3D1688AB-3440-4C7A-8CBB-5D77CD3C02D7}) (Version: 3.1 - Corel Corporation)
Dazzle Video Capture DVC100 X64 Driver 1.07 (HKLM-x32\...\{631D71FD-237F-4D74-B090-88E66FBC5A10}) (Version: 1.07.0000 - Pinnacle)
ESET Endpoint Security (HKLM\...\{990F90A3-CE27-47C8-8794-363048315104}) (Version: 5.0.2237.1 - ESET, spol. s r.o.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Folder Size 3.4.0.0 (HKLM-x32\...\{2DFA85ED-588F-4CE3-A175-29E52C3804A8}_is1) (Version: 3.4.0.0 - MindGems, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.65 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Hollywood FX Volumes 1-3 (HKLM\...\{94F26E3B-100E-4C7B-B1F1-2F395128E848}) (Version: 2.1 - Corel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.1.1399 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{538B98C3-773F-4F20-9C66-802D104DCBE2}) (Version: 1.23.219.2 - Intel Corporation)
iZotope Music & Speech Cleaner (HKLM-x32\...\iZotope Music & Speech Cleaner_is1) (Version: 1.00 - iZotope, Inc.)
Java 3D 1.4.0_01 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-80B0D0140000}) (Version: 1.4.0_01 - Sun Microsystems, Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
LibreOffice 4.3.4.1 (HKLM-x32\...\{7D983A32-F645-48AB-8E38-4ACD234F40BC}) (Version: 4.3.4.1 - The Document Foundation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 38.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 cs)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NewBlue Effects (HKLM\...\{C0C7CFFB-C0EF-4CB5-A83D-33626D67BAA7}) (Version: 1.0 - Corel Corporation)
PC výkaznictví JASU (HKLM-x32\...\{058CD805-6C9F-4913-9ED7-55B4766FD767}_is1) (Version:  - MÚZO Praha s.r.o.)
Pinnacle Studio 18 - Install Manager (HKLM\...\{39B53CC2-EE72-44E6-800D-C61A6465BF1A}) (Version: 18.0.225 - Corel Corporation)
Pinnacle Studio 18 - Standard Content Pack (HKLM\...\{DDBFA6BC-5756-465F-902A-5659F4EFBC6F}) (Version: 18.0 - Corel Corporation)
Pinnacle Studio 18 (HKLM\...\{11FB47FB-B341-4FD8-A505-E4C0CC0536C1}) (Version: 18.0.0.225 - Corel Corporation)
Podpora XML/CSÚIS pro produkty MÚZO v. 1.0.2.68 (HKLM-x32\...\{3305F52C-2C85-4874-AD3F-806B2650D70A}) (Version: 1.000.2068 - MÚZO Praha s.r.o.)
Premium Pack Volumes 1-2 (HKLM\...\{4BB25E0F-7689-48CF-B240-D8567FBDACFD}) (Version: 2.1 - Corel Corporation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.50.1123.2011 - Realtek)
ScoreFitter Volumes 1-2 (HKLM\...\{DAD8BCAC-30E7-4D1A-91F2-F3712F0E2555}) (Version: 2.1 - Corel Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Title Extreme (HKLM\...\{C202FA8F-552B-4F7A-AB57-0B5B888E6BB5}) (Version: 2.1 - Corel Corporation)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Zoner Photo Studio 16 - Obálky a šablony (HKLM\...\ZonerPhotoStudio16_Templates_CZ_is1) (Version: 16.0.1.2 - ZONER software)
Zoner Photo Studio 16 (HKLM\...\ZonerPhotoStudio16_CZ_is1) (Version:  - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1883950164-2898250952-991467129-1841_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 16\Program64\SHELLEXT.DLL (ZONER software)

==================== Restore Points =========================

08-05-2015 20:33:05 Windows Update
13-05-2015 04:58:47 Windows Update
14-05-2015 03:00:18 Windows Update
19-05-2015 19:47:52 Windows Update
21-05-2015 03:00:11 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-03-29 19:40 - 00000914 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0204907A-2000-45C0-9473-78F1E38C17CD} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {2493EAE4-253B-4E87-9B02-7540B239E66A} - System32\Tasks\GoogleUpdateTaskMachineUA1d08f07f1ef8229 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-01] (Google Inc.)
Task: {24E76EF5-C220-4146-B0E0-7578D1B3974B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {81D251CC-0706-4B34-AD71-BD65203DE7B5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-01] (Google Inc.)
Task: {9BDB511F-B1E8-491C-97EF-783AAC073E8F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-01] (Google Inc.)
Task: {9C4FACA9-9588-4B73-829A-FF6FDCC2404C} - System32\Tasks\gg_uac_daemon_Administrator => C:\Program Files (x86)\Garena Plus\ggdllhost.exe
Task: {C9A05D78-2159-4EFE-906C-691972C0EEF8} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {F52A8585-D368-4DE1-93B0-20A93447CD4E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f07f1ef8229.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2012-07-02 10:40 - 2012-07-02 09:40 - 00015360 _____ () C:\Windows\System32\KOAZ8A_L.DLL
2014-04-22 06:59 - 2015-04-07 13:23 - 00013824 ____R () C:\Program Files (x86)\OA11\oaSas.exe
2014-04-22 06:59 - 2015-04-07 13:23 - 00457216 ____R () C:\Program Files (x86)\OA11\oaSysStart.exe
2014-04-22 06:59 - 2015-04-07 13:23 - 01252864 ____R () C:\Program Files (x86)\OA11\FileExt.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-12-01 18:17 - 2012-03-26 18:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-04-22 06:59 - 2015-04-07 13:23 - 00186368 ____R () C:\Program Files (x86)\OA11\UIAComWrapper.dll
2014-04-22 06:59 - 2015-04-07 13:23 - 00071168 ____R () C:\Program Files (x86)\OA11\Interop.UIAutomationClient.dll
2013-12-01 17:34 - 2013-10-13 15:26 - 05438976 _____ () C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\PROGRAM64\OgreMain.dll
2013-12-01 17:34 - 2013-10-13 15:26 - 00673792 _____ () C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\PROGRAM64\RenderSystem_Direct3D9.dll
2013-12-01 17:34 - 2010-05-26 15:36 - 02393088 _____ () C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\PROGRAM64\js64.dll
2013-12-01 18:13 - 2012-01-21 04:23 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-12-01 17:36 - 2010-09-02 13:06 - 00242176 _____ () C:\Program Files (x86)\Altap Salamander\lang\czech.slg
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2015-05-20 11:16 - 2015-05-13 18:48 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\libglesv2.dll
2015-05-20 11:16 - 2015-05-13 18:48 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1883950164-2898250952-991467129-1841\Control Panel\Desktop\\Wallpaper -> C:\Users\Ursula\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.30.10 - 8.8.8.8

==================== MSCONFIG/TASK MANAGER Error getting ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Ursula\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: WeatherBug => C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [OArcclientIN] => (Allow) C:\Program Files\OA10\rcclient.exe
FirewallRules: [OArcclientOUT] => (Allow) C:\Program Files\OA10\rcclient.exe
FirewallRules: [OaserverNTOUT] => (Allow) C:\Program Files\OA10\oaServerNt.exe
FirewallRules: [OaserverNTIN] => (Allow) C:\Program Files\OA10\oaServerNt.exe
FirewallRules: [{91CAD40D-1FB3-4D7B-814E-45F29B690877}] => (Allow) C:\Program Files (x86)\OA11\rcClient.exe
FirewallRules: [{11988171-30A0-4EDD-917B-8FE9A9F8A910}] => (Allow) C:\Program Files (x86)\OA11\rcClient.exe
FirewallRules: [{C76504C6-30DA-45A0-8CBE-ED6235C221D5}] => (Allow) C:\Program Files (x86)\OA11\oaServerNt.exe
FirewallRules: [{073F644E-FC9F-4024-A3A7-60D3FA21A691}] => (Allow) C:\Program Files (x86)\OA11\oaServerNt.exe
FirewallRules: [TCP Query User{332E12E9-1ED2-4C2A-BE4B-FAFBBC1E20A9}C:\users\Ursula\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\Ursula\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{CA1F8835-E8FA-46D8-9A3A-1069214EB980}C:\users\Ursula\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\Ursula\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{4693AD0C-B212-47E9-8D63-EB4574A667CD}C:\program files (x86)\altap salamander\salamand.exe] => (Allow) C:\program files (x86)\altap salamander\salamand.exe
FirewallRules: [UDP Query User{65FC7C4E-A1EB-4ACD-93ED-F44B2060076E}C:\program files (x86)\altap salamander\salamand.exe] => (Allow) C:\program files (x86)\altap salamander\salamand.exe
FirewallRules: [{489555D6-AC3A-4777-94EE-BEAF9289BDBC}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\RM.exe
FirewallRules: [{4257C86A-5952-4A6A-9EC6-D6D313C120A6}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\RM.exe
FirewallRules: [{2FE44AFA-EC25-411B-8127-AB49CA4D65C2}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\NGStudio.exe
FirewallRules: [{62F0D235-0A0A-4895-A809-5E96C65D1268}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\NGStudio.exe
FirewallRules: [{0A9DFF18-A4A8-40F7-A993-EF26872AC571}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\UMI.exe
FirewallRules: [{44197766-00D0-4195-9BF1-66970ED900E2}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\UMI.exe
FirewallRules: [{B5AC9BDD-F304-4B84-BA1C-3F4CA822ACF3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2FC48214-FCDF-46C2-AA3F-BFABB29E8B67}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{69A520FA-88AE-42D5-947C-FE9FB39BA503}] => (Allow) C:\Program Files (x86)\Garena Plus\ggdllhost.exe
FirewallRules: [{C2AC3EA0-A15C-429C-8EEE-3030207F4187}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
DomainProfile\GloballyOpenPorts: [5529:TCP] => Enabled:oa_nh29
DomainProfile\GloballyOpenPorts: [5528:TCP] => Enabled:oa_nh28
DomainProfile\GloballyOpenPorts: [5527:TCP] => Enabled:oa_nh27
DomainProfile\GloballyOpenPorts: [5526:TCP] => Enabled:oa_nh26
DomainProfile\GloballyOpenPorts: [5525:TCP] => Enabled:oa_nh25
DomainProfile\GloballyOpenPorts: [5524:TCP] => Enabled:oa_nh24
DomainProfile\GloballyOpenPorts: [5523:TCP] => Enabled:oa_nh23
DomainProfile\GloballyOpenPorts: [5522:TCP] => Enabled:oa_nh22
DomainProfile\GloballyOpenPorts: [5521:TCP] => Enabled:oa_nh21
DomainProfile\GloballyOpenPorts: [5520:TCP] => Enabled:oa_nh20
DomainProfile\GloballyOpenPorts: [5519:TCP] => Enabled:oa_nh19
DomainProfile\GloballyOpenPorts: [5518:TCP] => Enabled:oa_nh18
DomainProfile\GloballyOpenPorts: [5517:TCP] => Enabled:oa_nh17
DomainProfile\GloballyOpenPorts: [5516:TCP] => Enabled:oa_nh16
DomainProfile\GloballyOpenPorts: [5515:TCP] => Enabled:oa_nh15
DomainProfile\GloballyOpenPorts: [5514:TCP] => Enabled:oa_nh14
DomainProfile\GloballyOpenPorts: [5513:TCP] => Enabled:oa_nh13
DomainProfile\GloballyOpenPorts: [5512:TCP] => Enabled:oa_nh12
DomainProfile\GloballyOpenPorts: [5511:TCP] => Enabled:oa_nh11
DomainProfile\GloballyOpenPorts: [5510:TCP] => Enabled:oa_nh10
DomainProfile\GloballyOpenPorts: [5509:TCP] => Enabled:oa_nh9
DomainProfile\GloballyOpenPorts: [5508:TCP] => Enabled:oa_nh8
DomainProfile\GloballyOpenPorts: [5507:TCP] => Enabled:oa_nh7
DomainProfile\GloballyOpenPorts: [5506:TCP] => Enabled:oa_nh6
DomainProfile\GloballyOpenPorts: [5505:TCP] => Enabled:oa_nh5
DomainProfile\GloballyOpenPorts: [5504:TCP] => Enabled:oa_nh4
DomainProfile\GloballyOpenPorts: [5503:TCP] => Enabled:oa_nh3
DomainProfile\GloballyOpenPorts: [5502:TCP] => Enabled:oa_nh2
DomainProfile\GloballyOpenPorts: [5501:TCP] => Enabled:oa_nh1
DomainProfile\GloballyOpenPorts: [5500:TCP] => Enabled:oa_nh0
DomainProfile\GloballyOpenPorts: [5020:TCP] => Enabled:oa_rcclient
StandardProfile\GloballyOpenPorts: [5529:TCP] => Enabled:oa_nh29
StandardProfile\GloballyOpenPorts: [5528:TCP] => Enabled:oa_nh28
StandardProfile\GloballyOpenPorts: [5527:TCP] => Enabled:oa_nh27
StandardProfile\GloballyOpenPorts: [5526:TCP] => Enabled:oa_nh26
StandardProfile\GloballyOpenPorts: [5525:TCP] => Enabled:oa_nh25
StandardProfile\GloballyOpenPorts: [5524:TCP] => Enabled:oa_nh24
StandardProfile\GloballyOpenPorts: [5523:TCP] => Enabled:oa_nh23
StandardProfile\GloballyOpenPorts: [5522:TCP] => Enabled:oa_nh22
StandardProfile\GloballyOpenPorts: [5521:TCP] => Enabled:oa_nh21
StandardProfile\GloballyOpenPorts: [5520:TCP] => Enabled:oa_nh20
StandardProfile\GloballyOpenPorts: [5519:TCP] => Enabled:oa_nh19
StandardProfile\GloballyOpenPorts: [5518:TCP] => Enabled:oa_nh18
StandardProfile\GloballyOpenPorts: [5517:TCP] => Enabled:oa_nh17
StandardProfile\GloballyOpenPorts: [5516:TCP] => Enabled:oa_nh16
StandardProfile\GloballyOpenPorts: [5515:TCP] => Enabled:oa_nh15
StandardProfile\GloballyOpenPorts: [5514:TCP] => Enabled:oa_nh14
StandardProfile\GloballyOpenPorts: [5513:TCP] => Enabled:oa_nh13
StandardProfile\GloballyOpenPorts: [5512:TCP] => Enabled:oa_nh12
StandardProfile\GloballyOpenPorts: [5511:TCP] => Enabled:oa_nh11
StandardProfile\GloballyOpenPorts: [5510:TCP] => Enabled:oa_nh10
StandardProfile\GloballyOpenPorts: [5509:TCP] => Enabled:oa_nh9
StandardProfile\GloballyOpenPorts: [5508:TCP] => Enabled:oa_nh8
StandardProfile\GloballyOpenPorts: [5507:TCP] => Enabled:oa_nh7
StandardProfile\GloballyOpenPorts: [5506:TCP] => Enabled:oa_nh6
StandardProfile\GloballyOpenPorts: [5505:TCP] => Enabled:oa_nh5
StandardProfile\GloballyOpenPorts: [5504:TCP] => Enabled:oa_nh4
StandardProfile\GloballyOpenPorts: [5503:TCP] => Enabled:oa_nh3
StandardProfile\GloballyOpenPorts: [5502:TCP] => Enabled:oa_nh2
StandardProfile\GloballyOpenPorts: [5501:TCP] => Enabled:oa_nh1
StandardProfile\GloballyOpenPorts: [5500:TCP] => Enabled:oa_nh0
StandardProfile\GloballyOpenPorts: [5020:TCP] => Enabled:oa_rcclient

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/24/2015 07:33:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/24/2015 04:29:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/24/2015 04:03:21 PM) (Source: Winlogon) (EventID: 4005) (User: )
Description: Proces přihlášení do systému Windows byl neočekávaně ukončen.

Error: (05/24/2015 04:45:02 AM) (Source: Winlogon) (EventID: 4005) (User: )
Description: Proces přihlášení do systému Windows byl neočekávaně ukončen.

Error: (05/24/2015 03:13:28 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro Avid.vfcore,type="Win32",version="1.0.0.0"1 se nezdařilo. Chyba v souboru manifestu nebo zásady Avid.vfcore,type="Win32",version="1.0.0.0"2 na řádku Avid.vfcore,type="Win32",version="1.0.0.0"3.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je Avid.vfcore,type="Win32",version="1.0.0.0".
Definice je Avid.vfcore,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (05/24/2015 03:13:05 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Generování kontextu aktivace pro C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest2 na řádku C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest.
Součást 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifest.

Error: (05/23/2015 09:42:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/22/2015 11:37:45 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro Avid.vfcore,type="Win32",version="1.0.0.0"1 se nezdařilo. Chyba v souboru manifestu nebo zásady Avid.vfcore,type="Win32",version="1.0.0.0"2 na řádku Avid.vfcore,type="Win32",version="1.0.0.0"3.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je Avid.vfcore,type="Win32",version="1.0.0.0".
Definice je Avid.vfcore,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (05/22/2015 07:22:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program WINWORD.EXE verze 14.0.7149.5000 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 3a4

Čas spuštění: 01d09462417c93c2

Čas ukončení: 0

Cesta k aplikaci: C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE

ID hlášení: 0d965d80-00a7-11e5-a498-1c3e845e3c7a

Error: (05/22/2015 09:33:00 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (05/24/2015 07:35:36 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: SDOMAIN)
Description: Zpracování zásad skupiny selhalo v důsledku toho, že se nebylo v síti možné připojit k řadiči domény. Může se jednat o přechodný stav. Po připojení počítače k řadiči domény a úspěšném zpracování zásad skupiny bude odeslána zpráva o úspěšné provedení těchto akcí. Pokud se tato zpráva nezobrazí během několika hodin, obraťte se na správce.

Error: (05/24/2015 07:32:08 PM) (Source: TermService) (EventID: 1067) (User: )
Description: Terminálový server nemohl pro používání k ověření serveru zaregistrovat hlavní název služby TERMSRV. Došlo k následující chybě: Zadaná doména neexistuje nebo není k dispozici.
.

Error: (05/24/2015 07:31:52 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: NT AUTHORITY)
Description: Zpracování zásad skupiny selhalo v důsledku toho, že se nebylo v síti možné připojit k řadiči domény. Může se jednat o přechodný stav. Po připojení počítače k řadiči domény a úspěšném zpracování zásad skupiny bude odeslána zpráva o úspěšné provedení těchto akcí. Pokud se tato zpráva nezobrazí během několika hodin, obraťte se na správce.

Error: (05/24/2015 07:31:45 PM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: Tento počítač nemohl nastavit zabezpečenou relaci s řadičem
domény v doméně SDOMAIN z následujícího důvodu: 
%%1311

To může vést k potížím při ověřování. Přesvědčte se, zda je tento
počítač připojen k síti. Pokud potíže trvají,
obraťte se na správce domény.



DALŠÍ INFORMACE

Pokud je tento počítač řadičem domény pro určenou doménu,
nastaví zabezpečenou relaci s emulátorem primárního řadiče domény v určené
doméně. V opačném případě tento počítač nastaví zabezpečenou relaci s libovolným řadičem domény
v určené doméně.

Error: (05/24/2015 07:19:29 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1053) (User: SDOMAIN)
Description: Zpracování zásad skupiny selhalo. Systém Windows nerozpoznal uživatelské jméno. Může to být způsobeno jedním nebo více z následujících důvodů:
a) Selhal překlad IP adres v aktuálním řadiči domény.
b) Čekací doba replikace služby Active Directory (účet vytvořený na jiném řadiči domény nebyl replikován na aktuální řadič domény).

Error: (05/24/2015 04:28:06 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: NT AUTHORITY)
Description: Zpracování zásad skupiny selhalo v důsledku toho, že se nebylo v síti možné připojit k řadiči domény. Může se jednat o přechodný stav. Po připojení počítače k řadiči domény a úspěšném zpracování zásad skupiny bude odeslána zpráva o úspěšné provedení těchto akcí. Pokud se tato zpráva nezobrazí během několika hodin, obraťte se na správce.

Error: (05/24/2015 04:27:59 PM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: Tento počítač nemohl nastavit zabezpečenou relaci s řadičem
domény v doméně SDOMAIN z následujícího důvodu: 
%%1311

To může vést k potížím při ověřování. Přesvědčte se, zda je tento
počítač připojen k síti. Pokud potíže trvají,
obraťte se na správce domény.



DALŠÍ INFORMACE

Pokud je tento počítač řadičem domény pro určenou doménu,
nastaví zabezpečenou relaci s emulátorem primárního řadiče domény v určené
doméně. V opačném případě tento počítač nastaví zabezpečenou relaci s libovolným řadičem domény
v určené doméně.

Error: (05/24/2015 04:10:51 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1053) (User: SDOMAIN)
Description: Zpracování zásad skupiny selhalo. Systém Windows nerozpoznal uživatelské jméno. Může to být způsobeno jedním nebo více z následujících důvodů:
a) Selhal překlad IP adres v aktuálním řadiči domény.
b) Čekací doba replikace služby Active Directory (účet vytvořený na jiném řadiči domény nebyl replikován na aktuální řadič domény).

Error: (05/24/2015 04:02:40 PM) (Source: TermDD) (EventID: 56) (User: )
Description: Vrstva zabezpečení Terminálového serveru rozpoznala chybu v datovém proudu protokolu a odpojila klienta.
IP klienta: 91.237.237.217.

Error: (05/24/2015 04:02:40 PM) (Source: TermDD) (EventID: 50) (User: )
Description: Součást X.224 protokolu RDP zjistila chybu v protokolu a klienta odpojila.


Microsoft Office:
=========================
Error: (05/24/2015 07:33:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/24/2015 04:29:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/24/2015 04:03:21 PM) (Source: Winlogon) (EventID: 4005) (User: )
Description: 

Error: (05/24/2015 04:45:02 AM) (Source: Winlogon) (EventID: 4005) (User: )
Description: 

Error: (05/24/2015 03:13:28 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Avid.vfcore,type="Win32",version="1.0.0.0"Avid.vfcore,processorArchitecture="AMD64",type="win32",version="1.0.0.0"C:\Program Files\Pinnacle\Studio 18\programs\NemoCheck.exeC:\Program Files\Pinnacle\Studio 18\programs\Avid.vfcore\Avid.vfcore.MANIFEST4

Error: (05/24/2015 03:13:05 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (05/23/2015 09:42:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/22/2015 11:37:45 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Avid.vfcore,type="Win32",version="1.0.0.0"Avid.vfcore,processorArchitecture="AMD64",type="win32",version="1.0.0.0"C:\Program Files\Pinnacle\Studio 18\programs\NemoCheck.exeC:\Program Files\Pinnacle\Studio 18\programs\Avid.vfcore\Avid.vfcore.MANIFEST4

Error: (05/22/2015 07:22:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: WINWORD.EXE14.0.7149.50003a401d09462417c93c20C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE0d965d80-00a7-11e5-a498-1c3e845e3c7a

Error: (05/22/2015 09:33:00 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2015-05-24 14:56:00.362
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-22 16:05:32.884
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-22 15:52:36.550
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-22 10:22:00.591
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-22 10:02:25.007
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-21 11:13:01.679
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-21 08:30:36.055
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-20 20:42:42.704
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-20 14:57:06.040
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2015-05-19 16:23:57.289
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 48%
Total physical RAM: 3986.45 MB
Available physical RAM: 2067.86 MB
Total Pagefile: 7971.09 MB
Available Pagefile: 5848.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:172.69 GB) (Free:83.91 GB) NTFS
Drive d: () (Fixed) (Total:292.97 GB) (Free:236.41 GB) NTFS
Drive f: (Data_IJJ) (Fixed) (Total:2794.39 GB) (Free:1663.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4588F978)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=172.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=293 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 9DA90C37)

Partition: GPT Partition Type.

==================== End of log ============================