﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-07-2015 01
Ran by Erutan at 2015-07-19 16:06:42
Running from C:\Users\Erutan\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-903978575-4257623838-1407856821-500 - Administrator - Disabled)
Erutan (S-1-5-21-903978575-4257623838-1407856821-1000 - Administrator - Enabled) => C:\Users\Erutan
Guest (S-1-5-21-903978575-4257623838-1407856821-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.14.3 - Mirillis)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
AIDA64 Extreme v4.70 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.70 - FinalWire Ltd.)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
CCleaner (HKLM-x32\...\CCleaner) (Version:  - Piriform)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Gears of War (HKLM-x32\...\Gears of War_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Gears of War (HKLM-x32\...\InstallShield_{1170D24F-42B7-40CF-AA1B-6395CE562354}) (Version: 1.00.0000 - Microsoft Game Studios)
Gears of War (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
GRID Autosport (HKLM-x32\...\Steam App 255220) (Version:  - Codemasters Racing)
Malwarebytes Anti-Malware verze 2.00.0.1000 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.00.0.1000 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (Partnernet) (HKLM-x32\...\{57672BEC-E777-4D4B-944A-719414E84D3F}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Mozilla Firefox 39.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 cs)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 2.0.0.9 - MSI)
NVIDIA PhysX (HKLM-x32\...\{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}) (Version: 9.10.0514 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Platform (x32 Version: 1.42 - VIA Technologies, Inc.) Hidden
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7245 - Realtek Semiconductor Corp.)
Resident Evil Revelations 2 (HKLM-x32\...\Resident Evil Revelations 2_is1) (Version:  - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.06 - Creative Technology Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Evil Within verze 1.05 (HKLM-x32\...\The Evil Within_is1) (Version: 1.05 - Bethesda Softworks)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.5.0.81 - KMP Media co., Ltd)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UmmyVideoDownloader (HKLM-x32\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: 1.3.0.4 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR (HKLM-x32\...\WinRAR archiver) (Version:  - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

06-07-2015 15:21:45 Naplánovaný kontrolní bod
13-07-2015 00:53:05 Nainstalováno rozhraní DirectX
19-07-2015 13:48:30 ComboFix created restore point
19-07-2015 15:09:56 Nainstalováno rozhraní DirectX

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-07-19 15:17 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {33E137EB-FCE7-43D4-B64B-F76BBDB657E3} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2009-07-14] (Microsoft Corporation)
Task: {372CCD86-42F3-41AF-A912-C1B9A4BFA9E5} - System32\Tasks\AIDA64 AutoStart => C:\Program Files (x86)\FinalWire\AIDA64 Extreme\aida64.exe [2014-10-06] (FinalWire Ltd.)
Task: {4FD3F766-6B10-40CC-B23E-446F1CE3544B} - System32\Tasks\{9F8B2E6C-E314-4AD4-B040-7B636E99A7C1} => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
Task: {76D2F2C4-7E39-4ED9-B1EB-6FC6BBC74069} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\Program Files (x86)\TuneUp Utilities 2010\OneClick.exe
Task: {81E21A70-287C-4CC6-A501-65FEA24C9756} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-14] (Adobe Systems Incorporated)
Task: {C05BAE2C-A77C-4329-BF2E-50ED2E7D6254} - System32\Tasks\{38ACE069-47D8-4E93-863E-A942E53FE185} => Firefox.exe http://ui.skype.com/ui/0/7.4.85.102/cs/abandoninstall?page=tsProgressBar
Task: {FC215AA1-DC7E-4872-AA7D-2F2464BEDA11} - System32\Tasks\{A611F877-AAC5-4108-B0EC-43B41DF6C4D7} => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2014-11-20 22:23 - 2014-11-20 22:23 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2014-12-30 18:07 - 2015-02-07 15:30 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-01-21 20:22 - 2014-02-21 12:21 - 00089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2015-01-21 20:22 - 2014-02-21 12:19 - 00366080 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2014-12-20 22:02 - 2008-06-20 01:41 - 00062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:DocumentSummaryInformation
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:SummaryInformation

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-903978575-4257623838-1407856821-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Erutan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{CB3BDAF0-1FB6-4D6B-9A35-BAFFE29F43AE}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{EEE512F9-96C4-45ED-8407-2E48AC11428A}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{CD1660E5-459D-4BE7-997C-462CCC4F8526}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{61B0FC14-4420-4DF6-8DF3-DE4B5CC5F944}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{A39767E0-4634-45E8-894A-779D213636A8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{31EAAAD2-6ADC-4B8E-8F62-97946CE99A26}] => (Allow) G:\Steam\Steam.exe
FirewallRules: [{38454230-0C9F-43C2-A584-07A4A5EDD12F}] => (Allow) G:\Steam\Steam.exe
FirewallRules: [TCP Query User{B7730615-87DD-4E20-9F70-DCF87E986124}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [UDP Query User{395D5C1C-BD42-4A11-AD4F-49ADDB5DA9EB}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [{C535F7BA-1289-4641-9B08-C2FB5BFE6DB4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B7BD8046-9A35-450F-B6FB-773EFE747ABB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1B4F2CFA-78FD-4690-A481-B4435AD5A036}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{B83B0A36-B60F-4F9B-9018-170CDAD6EEC9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{4BE01CF2-883C-44BB-A7F2-A4BD78343551}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D805DB54-D0B7-442C-A060-BEF6F5F9C8C5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{34A56C5B-D89A-4158-8D18-DCAE7AB57DFC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{05FABA08-6D46-4498-B9D6-5520442BEFC3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{4A138A6C-2289-41B5-96A9-2793B6FDF4C9}G:\evolve\bin64_steamretail\evolve.exe] => (Allow) G:\evolve\bin64_steamretail\evolve.exe
FirewallRules: [UDP Query User{FAD66D85-14A4-4885-A41E-A8E160D5064D}G:\evolve\bin64_steamretail\evolve.exe] => (Allow) G:\evolve\bin64_steamretail\evolve.exe
FirewallRules: [{98C79CB8-C47E-4481-99CE-828352F81AEF}] => (Allow) G:\Steam\steamapps\common\GRID Autosport\GRIDAutosport.exe
FirewallRules: [{7879A3B6-2071-4631-A171-5263E7C88620}] => (Allow) G:\Steam\steamapps\common\GRID Autosport\GRIDAutosport.exe
FirewallRules: [TCP Query User{F6F9F152-8183-4EE1-AAAB-1284B667991A}C:\games\dying light\dyinglightgame.exe] => (Allow) C:\games\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{C9E29B0D-3853-4A20-9150-6BBD207E81D9}C:\games\dying light\dyinglightgame.exe] => (Allow) C:\games\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{2334DAD6-4689-411E-B257-27A213DDAF77}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{B6739335-F11F-466C-885A-D36BD41053D7}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{290E2E26-BE7D-4846-BCE8-8EAE99271B2B}C:\gog games\oddworld - new 'n' tasty\nnt.exe] => (Allow) C:\gog games\oddworld - new 'n' tasty\nnt.exe
FirewallRules: [UDP Query User{E81BF0E5-2FBF-4475-A962-8CD7F5852500}C:\gog games\oddworld - new 'n' tasty\nnt.exe] => (Allow) C:\gog games\oddworld - new 'n' tasty\nnt.exe
FirewallRules: [TCP Query User{77DF68CB-8153-420F-A15A-30A54ED33F07}C:\users\erutan\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\erutan\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{F3F5EB1F-EAC6-4850-82DE-D60582FAC509}C:\users\erutan\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\erutan\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{B6088D0F-B39A-4CDD-BE8F-C2A9773E8FE2}C:\program files (x86)\windows sidebar\sidebar.exe] => (Block) C:\program files (x86)\windows sidebar\sidebar.exe
FirewallRules: [UDP Query User{6A578385-948A-41D7-96F7-D50DABEAE59A}C:\program files (x86)\windows sidebar\sidebar.exe] => (Block) C:\program files (x86)\windows sidebar\sidebar.exe
FirewallRules: [TCP Query User{47AFA9CD-26D8-4736-BA03-8C32E9B0E1AE}G:\woolfe - the red hood diaries\binaries\win64\woolfegame.exe] => (Allow) G:\woolfe - the red hood diaries\binaries\win64\woolfegame.exe
FirewallRules: [UDP Query User{C13C856C-9A0D-4118-AC89-835CC6E6D379}G:\woolfe - the red hood diaries\binaries\win64\woolfegame.exe] => (Allow) G:\woolfe - the red hood diaries\binaries\win64\woolfegame.exe
FirewallRules: [TCP Query User{69B72A37-8BA3-41A9-B3EF-DD9BB87E1CE2}G:\gta v\gta5.exe] => (Allow) G:\gta v\gta5.exe
FirewallRules: [UDP Query User{0AE7D922-11C6-45A9-ABCF-7E0CD0787604}G:\gta v\gta5.exe] => (Allow) G:\gta v\gta5.exe
FirewallRules: [{A393C1A2-8F07-42F4-9BC0-268E21ABDE9F}] => (Block) %ProgramFiles%\Rockstar Games\Social Club\subprocess.exe
FirewallRules: [TCP Query User{BC7FFE9F-B1BE-4092-AFCF-7F9D37E84388}G:\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe] => (Allow) G:\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe
FirewallRules: [UDP Query User{2BF48C9A-33AD-4D9D-ABE4-C78CC8F99B19}G:\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe] => (Allow) G:\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe
FirewallRules: [TCP Query User{B9D52EF0-F68F-4E88-A7F2-10D75DB2F867}G:\grand theft auto v\gta5.exe] => (Allow) G:\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{3C8A26C7-9335-470C-AF92-2CA300B75ACE}G:\grand theft auto v\gta5.exe] => (Allow) G:\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{F6995BF4-23BD-4563-8B0D-923C60938A5F}G:\mxgp\mxgp.exe] => (Allow) G:\mxgp\mxgp.exe
FirewallRules: [UDP Query User{0D85A6A4-3A0D-4983-B692-36B052343807}G:\mxgp\mxgp.exe] => (Allow) G:\mxgp\mxgp.exe
FirewallRules: [TCP Query User{95CA3B48-E997-4C65-B648-D97ADC0A9B11}G:\shiftlings\shiftlings.exe] => (Allow) G:\shiftlings\shiftlings.exe
FirewallRules: [UDP Query User{39A0C923-5E62-45C0-BEFC-312E4C19EEA3}G:\shiftlings\shiftlings.exe] => (Allow) G:\shiftlings\shiftlings.exe
FirewallRules: [TCP Query User{0AE37DBB-D318-46AA-A700-18BB7D9F0777}G:\gears of war\binaries\wargame-g4wlive.exe] => (Allow) G:\gears of war\binaries\wargame-g4wlive.exe
FirewallRules: [UDP Query User{62E3EDA0-C456-422B-AF77-6E782BF54A33}G:\gears of war\binaries\wargame-g4wlive.exe] => (Allow) G:\gears of war\binaries\wargame-g4wlive.exe
FirewallRules: [TCP Query User{5993A8A0-D0A2-4D46-90BF-A9FB85F4A843}G:\portal 2\portal2.exe] => (Allow) G:\portal 2\portal2.exe
FirewallRules: [UDP Query User{F496E591-64A8-48BE-934E-FEBA1106F18B}G:\portal 2\portal2.exe] => (Allow) G:\portal 2\portal2.exe
FirewallRules: [{4ABD054E-5F1C-4A39-B7F8-8D5EB84254C5}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{FE01DD26-B75B-4A8C-A627-570EAC1680B3}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{BDEFFFE5-535C-4E5D-8EE1-80C856B6BC47}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{F73ED91C-3A3B-4417-B802-5502314DA007}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{40A860ED-B4B9-45F0-9307-2F749A403F0B}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{D2576C42-20FD-4FFE-AD37-8F4B28E97153}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{C7B6790E-E4E5-41B5-8019-908AF5F9DCEE}] => (Allow) C:\Users\Erutan\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{05502257-CDB6-4357-B755-78A4B9608AD5}] => (Allow) C:\Users\Erutan\AppData\Roaming\uTorrent\utorrent.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/18/2015 07:53:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: F1_2015.exe, verze: 1.0.18.9327, časové razítko: 0x559fca97
Název chybujícího modulu: F1_2015.exe, verze: 1.0.18.9327, časové razítko: 0x559fca97
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000046f00c
ID chybujícího procesu: 0xf0
Čas spuštění chybující aplikace: 0xF1_2015.exe0
Cesta k chybující aplikaci: F1_2015.exe1
Cesta k chybujícímu modulu: F1_2015.exe2
ID zprávy: F1_2015.exe3

Error: (07/18/2015 07:12:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program fifa15.exe verze 1.8.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: de4

Čas spuštění: 01d0c17cc7556b44

Čas ukončení: 3

Cesta k aplikaci: C:\Program Files (x86)\Origin Games\FIFA 15\fifa15.exe

ID hlášení: 2ec90fd8-2d70-11e5-86a3-d8cb8a13fb9f

Error: (07/16/2015 10:52:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: F1_2015.exe, verze: 1.0.18.9327, časové razítko: 0x559fca97
Název chybujícího modulu: F1_2015.exe, verze: 1.0.18.9327, časové razítko: 0x559fca97
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000046f00c
ID chybujícího procesu: 0x5dc
Čas spuštění chybující aplikace: 0xF1_2015.exe0
Cesta k chybující aplikaci: F1_2015.exe1
Cesta k chybujícímu modulu: F1_2015.exe2
ID zprávy: F1_2015.exe3

Error: (07/14/2015 06:19:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FlashPlayerPlugin_18_0_0_203.exe, verze: 18.0.0.203, časové razítko: 0x55971885
Název chybujícího modulu: FlashPlayerPlugin_18_0_0_203.exe, verze: 18.0.0.203, časové razítko: 0x55971885
Kód výjimky: 0x40000015
Posun chyby: 0x00017b90
ID chybujícího procesu: 0x1668
Čas spuštění chybující aplikace: 0xFlashPlayerPlugin_18_0_0_203.exe0
Cesta k chybující aplikaci: FlashPlayerPlugin_18_0_0_203.exe1
Cesta k chybujícímu modulu: FlashPlayerPlugin_18_0_0_203.exe2
ID zprávy: FlashPlayerPlugin_18_0_0_203.exe3

Error: (07/14/2015 03:54:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: F1_2015.exe, verze: 1.0.18.9143, časové razítko: 0x559ed00c
Název chybujícího modulu: F1_2015.exe, verze: 1.0.18.9143, časové razítko: 0x559ed00c
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000046d3cc
ID chybujícího procesu: 0xff0
Čas spuštění chybující aplikace: 0xF1_2015.exe0
Cesta k chybující aplikaci: F1_2015.exe1
Cesta k chybujícímu modulu: F1_2015.exe2
ID zprávy: F1_2015.exe3

Error: (07/14/2015 03:33:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vlc.exe, verze: 2.1.5.0, časové razítko: 0x00000004
Název chybujícího modulu: vlc.exe, verze: 2.1.5.0, časové razítko: 0x00000004
Kód výjimky: 0xc0000005
Posun chyby: 0x000018c5
ID chybujícího procesu: 0x11dc
Čas spuštění chybující aplikace: 0xvlc.exe0
Cesta k chybující aplikaci: vlc.exe1
Cesta k chybujícímu modulu: vlc.exe2
ID zprávy: vlc.exe3

Error: (07/13/2015 10:31:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: F1_2015.exe, verze: 1.0.18.9143, časové razítko: 0x559ed00c
Název chybujícího modulu: msvcrt.dll, verze: 7.0.7600.16385, časové razítko: 0x4a5bdfbe
Kód výjimky: 0xc000041d
Posun chyby: 0x00000000000044b8
ID chybujícího procesu: 0x1344
Čas spuštění chybující aplikace: 0xF1_2015.exe0
Cesta k chybující aplikaci: F1_2015.exe1
Cesta k chybujícímu modulu: F1_2015.exe2
ID zprávy: F1_2015.exe3

Error: (07/13/2015 06:31:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: F1_2015.exe, verze: 1.0.18.9143, časové razítko: 0x559ed00c
Název chybujícího modulu: F1_2015.exe, verze: 1.0.18.9143, časové razítko: 0x559ed00c
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000046d3cc
ID chybujícího procesu: 0x12e4
Čas spuštění chybující aplikace: 0xF1_2015.exe0
Cesta k chybující aplikaci: F1_2015.exe1
Cesta k chybujícímu modulu: F1_2015.exe2
ID zprávy: F1_2015.exe3

Error: (07/13/2015 05:58:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: F1_2015.exe, verze: 1.0.18.9143, časové razítko: 0x559ed00c
Název chybujícího modulu: F1_2015.exe, verze: 1.0.18.9143, časové razítko: 0x559ed00c
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000046d3cc
ID chybujícího procesu: 0xee8
Čas spuštění chybující aplikace: 0xF1_2015.exe0
Cesta k chybující aplikaci: F1_2015.exe1
Cesta k chybujícímu modulu: F1_2015.exe2
ID zprávy: F1_2015.exe3

Error: (07/13/2015 05:57:51 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
	Katalog indexu obsahu je poškozený.   0xc0041801 (0xc0041801)


System errors:
=============
Error: (07/19/2015 03:51:38 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (07/19/2015 03:16:50 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/19/2015 03:16:47 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/19/2015 03:15:15 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/19/2015 03:13:53 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \??\C:\ComboFix\catchme.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (07/19/2015 01:52:11 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/19/2015 01:50:40 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/19/2015 12:34:57 PM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.

Error: (07/17/2015 09:45:47 AM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.

Error: (07/16/2015 10:10:42 AM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.


Microsoft Office:
=========================

CodeIntegrity Errors:
===================================
  Date: 2015-07-19 15:13:53.110
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-07-19 15:13:53.110
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-02-07 22:33:55.157
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-02-07 22:33:55.157
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: AMD FX(tm)-6300 Six-Core Processor 
Percentage of memory in use: 23%
Total physical RAM: 8140.34 MB
Available physical RAM: 6266.16 MB
Total Virtual: 16278.83 MB
Available Virtual: 14254.92 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:64.18 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Datovy) (Fixed) (Total:931.41 GB) (Free:368.52 GB) NTFS
Drive f: (Video) (Fixed) (Total:1863.01 GB) (Free:375.82 GB) NTFS
Drive g: (Hry) (Fixed) (Total:233.76 GB) (Free:121.43 GB) NTFS ==>[system with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: EB571E53)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 60F765CF)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5BD7BB9E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 233.8 GB) (Disk ID: EF16D7A0)
Partition 1: (Active) - (Size=233.8 GB) - (Type=07 NTFS)

==================== End of log ============================