VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Znečištění, zpomalení PC..

https://forum.viry.cz:443/viewtopic.php?t=144260

Stránka 1 z 2

Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 15:28
od polisak1
Dobrý den, chtěl bych požádat o pomoc s vyčištěním počítače od různé havěti apod., poslední dobou se můj počítač hodně zpomalil a začal místy i sekat... :boxed: :?: :(

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 15:30
od vyosek
Zdravim :)

:arrow: Tak abychom nemuseli vestit z kristalove koule, tak mi dejte log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100 a mrknem na to

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 15:42
od polisak1
Děkuji za rychlou odpověď, zde je log z FRSTu:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-05-2015
Ran by polis_000 (administrator) on HP-ONDRA on 04-05-2015 16:38:33
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Loaded Profiles: polis_000 (Available profiles: polis_000)
Platform: Windows 8 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Hewlett-Packard Company) C:\Windows\SysWOW64\flcdlock.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2014-02-12] (IDT, Inc.)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4352568 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-01-02] (Intel Corporation)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-02-07] (PDF Complete Inc)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BtTray] => c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [379904 2013-01-10] (IVT Corporation)
HKLM-x32\...\Run: [CLWCSM] => c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [249096 2013-02-20] (cyberlink)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [13685464 2013-03-06] (Hewlett-Packard)
HKLM-x32\...\Run: [YouCam Mirage] => c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2013-02-01] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [167488 2013-02-01] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111136 2012-11-21] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [493088 2012-11-21] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe [39792 2008-01-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-10-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [337432 2014-03-11] (Power Software Ltd)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [336672 2014-05-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\polis_000\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\polis_000\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [GarenaPlus] => C:\Garena Plus\GarenaMessenger.exe [9899312 2014-02-26] ()
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Facebook Update] => "C:\Users\polis_000\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [uTorrent] => C:\Users\polis_000\AppData\Roaming\uTorrent\utorrent.exe [899416 2013-12-12] (BitTorrent Inc.)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [37664 2014-03-05] (Overwolf LTD)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3619160 2015-02-01] (Electronic Arts)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\MountPoints2: {9b525a4b-c721-11e3-bea1-c8cbb8c2ad6d} - "H:\LGAutoRun.exe"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\MountPoints2: {a465d466-2959-11e4-bec5-c8cbb8c2ad6d} - "F:\setup.exe"
AppInit_DLLs: C:\Program Files C:\Program Files C:\Program Files => C:\Program Files C:\Program Files C:\Program Files File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2014-08-21]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2014-08-11]
ShortcutTarget: GameRanger.lnk -> C:\Users\polis_000\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2014-02-05]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
Startup: C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk [2014-06-05]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-08-06] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {0AA0A9DA-B740-44DC-87A9-576ED6597F2D} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {1BBC0180-BA98-45C0-9065-E21549A2CB5C} URL = http://www.mapy.cz/?query={searchTerms} ... arch_13415
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {1E69876D-F2DF-48B6-AB96-D302FDD17A7B} URL = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13415
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {4CBC587C-5D96-4531-BD33-39F8897CC92F} URL = http://slovnik.seznam.cz/?q={searchTerm ... arch_13415
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {6148E3A3-8F2B-4E2F-AEEB-4E5E51B8E93E} URL = http://encyklopedie.seznam.cz/search?q= ... arch_13415
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {832BBED3-5E60-44D2-841B-046FB1DFD38B} URL = http://www.firmy.cz/?q={searchTerms}&so ... arch_13415
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {A20D7A9C-B757-4E66-AB0E-CFE2891BD56A} URL = http://www.novinky.cz/hledej?w={searchT ... arch_13415
SearchScopes: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002 -> {C7EB21D9-E46F-413F-9507-CF8F692BA25E} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-01-28] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-06] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Lišta Centrum.cz - pomocný objekt -> {C91BA35D-6516-489F-A203-2992ED9A4132} -> C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho64.dll [2013-01-23] ()
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-28] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25] (Eyeo GmbH)
BHO-x32: No Name -> {038ff0e2-c6a6-4782-b89e-586a3ddf16c7} -> No File
BHO-x32: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO-x32: HP File Sanitizer -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-03-06] (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-30] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-06] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Lišta Centrum.cz - pomocný objekt -> {C91BA35D-6516-489F-A203-2992ED9A4132} -> C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23] ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-30] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25] (Eyeo GmbH)
Toolbar: HKLM - Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho64.dll [2013-01-23] ()
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-02] (Google Inc.)
Toolbar: HKLM-x32 - Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files (x86)\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23] ()
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-01-28] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\SKYPE4~1.DLL [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF DefaultSearchUrl: https://www.google.com/search
FF SearchEngineOrder.1: Google
FF Keyword.URL: https://www.google.com/search
FF Homepage: https://www.google.com/
FF NewTab: about:newtab
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-03-05] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-10-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-10-30] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [2013-12-19] ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-2428774486-1446802013-3078816245-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\polis_000\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF SearchPlugin: C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default\searchplugins\google-avast.xml [2014-11-25]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml [2013-12-06]
FF Extension: SourceApp - C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default\Extensions\firefox@sourceapp.info.xpi [2014-10-27]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-12-25]

Chrome:
=======
CHR HomePage: Default -> www.google.com
CHR StartupUrls: Default -> "www.google.com"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-25]
CHR Extension: (Google Drive) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-25]
CHR Extension: (Seznam Lištička - Email) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2013-12-25]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2013-12-25]
CHR Extension: (YouTube) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-25]
CHR Extension: (Google Search) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-25]
CHR Extension: (Facebook Unseen) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmdhkalcecemojegheiohcghkamlipof [2014-09-23]
CHR Extension: (Bookmark Manager) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (Avast Online Security) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-25]
CHR Extension: (Google Wallet) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-25]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2013-12-25]
CHR Extension: (Gmail) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-25]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-06]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1626872 2013-01-31] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2013-01-10] (IVT Corporation) [File not signed]
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [556856 2013-03-04] (Hewlett-Packard Company)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372920 2013-09-18] (Hewlett-Packard Development Company, L.P.)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [683296 2014-05-16] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2015-02-14] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [130592 2012-10-22] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1855064 2012-11-23] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-02-27] (Electronic Arts)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [99616 2014-03-05] (Overwolf LTD)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1135752 2013-02-07] (PDF Complete Inc)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [75136 2014-04-26] ()
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2013-09-13] (arvato digital services llc)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4352568 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2014-02-12] (IDT, Inc.) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2015-01-17] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)
S2 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36520 2012-09-14] (Advanced Micro Devices, Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\system32\DRIVERS\lgandnetndis64.sys [93184 2012-07-04] (LG Electronics Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg; No ImagePath
U4 BthHFEnum; No ImagePath
U4 bthhfhid; No ImagePath
S3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [49632 2012-12-05] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 clwcsm; C:\Windows\system32\DRIVERS\clwcsm.sys [42944 2013-02-19] (CyberLink Corporation)
R3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [65752 2013-02-18] (Hewlett-Packard Company)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-08-22] (Disc Soft Ltd)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [28768 2014-08-21] (SoftEther VPN Project at University of Tsukuba, Japan.)
R0 PinFile; C:\Windows\System32\DRIVERS\PinFile.sys [49856 2013-08-22] (WinMagic Inc.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-01] (RTS Corporation)
R0 SDDisk2K; C:\Windows\System32\DRIVERS\SDDisk2K.sys [228544 2013-08-22] (WinMagic Inc.)
R0 SDDToki; C:\Windows\System32\DRIVERS\SDDToki.sys [131264 2013-08-22] (WinMagic Inc.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-01-11] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [32496 2013-01-11] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-06-21] (Duplex Secure Ltd.)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1446904 2013-02-22] (Sunplus)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-02-08] (Hewlett-Packard Development Company, L.P.)
U3 a8fj3f7o; C:\Windows\System32\Drivers\a8fj3f7o.sys [0 ] (Intel Corporation) <==== ATTENTION (zero size file/folder)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)
S3 GGSAFERDriver; \??\C:\Garena Plus\Room\safedrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-28 15:33 - 2015-04-28 15:34 - 00000000 ____D () C:\Users\polis_000\Desktop\Skyrim
2015-04-17 20:16 - 2015-04-17 20:16 - 00000000 ___SD () C:\windows\system32\CompatTel
2015-04-17 20:16 - 2015-04-17 20:16 - 00000000 ____D () C:\windows\system32\appraiser
2015-04-15 16:33 - 2015-03-23 07:19 - 00726528 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-04-15 16:33 - 2015-03-23 07:17 - 00957440 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-04-15 16:33 - 2015-03-23 07:17 - 00769024 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-04-15 16:33 - 2015-03-23 07:17 - 00419328 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-04-15 16:33 - 2015-03-23 07:17 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-04-15 16:33 - 2015-03-23 07:17 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-04-15 16:33 - 2015-03-23 00:04 - 01111552 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-04-15 16:33 - 2014-12-03 03:48 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2015-04-15 16:32 - 2015-03-17 09:00 - 06971712 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-04-15 16:32 - 2015-03-17 08:52 - 01822696 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-04-15 16:32 - 2015-03-17 06:45 - 01409496 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2015-04-15 16:32 - 2015-03-10 07:27 - 19292672 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-04-15 16:32 - 2015-03-04 09:29 - 00361280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\clfs.sys
2015-04-15 16:32 - 2015-03-04 08:39 - 00074752 _____ (Microsoft Corporation) C:\windows\system32\clfsw32.dll
2015-04-15 16:32 - 2015-03-04 06:52 - 00057856 _____ (Microsoft Corporation) C:\windows\SysWOW64\clfsw32.dll
2015-04-15 16:32 - 2015-02-24 09:58 - 00861696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2015-04-15 16:31 - 2015-03-10 07:28 - 02237952 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-04-15 16:31 - 2015-03-10 07:28 - 01409024 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-04-15 16:31 - 2015-03-10 07:28 - 00600576 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-04-15 16:31 - 2015-03-10 07:27 - 15409152 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-04-15 16:31 - 2015-03-10 07:27 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-04-15 16:31 - 2015-03-10 07:27 - 00949760 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2015-04-15 16:31 - 2015-03-10 07:27 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-04-15 16:31 - 2015-03-10 07:27 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-04-15 16:31 - 2015-03-10 05:49 - 14373376 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2015-04-15 16:31 - 2015-03-10 05:49 - 02864640 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2015-04-15 16:31 - 2015-03-10 05:49 - 01763328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2015-04-15 16:31 - 2015-03-10 05:49 - 01181696 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2015-04-15 16:31 - 2015-03-10 05:49 - 00737280 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2015-04-15 16:31 - 2015-03-10 05:49 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2015-04-15 16:31 - 2015-03-10 05:49 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2015-04-15 16:31 - 2015-03-10 05:49 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2015-04-15 16:31 - 2015-03-10 05:48 - 13767680 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2015-04-15 16:30 - 2015-03-14 10:07 - 01120256 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2015-04-15 16:30 - 2015-03-14 08:33 - 00891904 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2015-04-11 16:31 - 2015-04-11 16:31 - 00000000 ____D () C:\Users\polis_000\Tracing

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-04 16:38 - 2014-07-12 11:37 - 00000000 ____D () C:\FRST
2015-05-04 16:38 - 2013-12-25 11:24 - 00000000 ____D () C:\Users\polis_000\Desktop\Antivir, Čištění PC
2015-05-04 16:34 - 2013-12-24 21:11 - 00000000 ____D () C:\Users\polis_000\AppData\Roaming\Skype
2015-05-04 16:33 - 2014-05-24 09:34 - 00129752 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-04 16:00 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\system32\sru
2015-05-04 15:58 - 2013-12-25 20:06 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-05-04 15:53 - 2013-12-25 11:06 - 00000978 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-04 15:49 - 2014-03-31 19:50 - 00000000 ____D () C:\ProgramData\Origin
2015-05-04 15:24 - 2014-07-20 16:54 - 01682160 _____ () C:\windows\WindowsUpdate.log
2015-05-04 15:06 - 2014-11-25 15:16 - 00000000 ____D () C:\Users\polis_000\AppData\Roaming\FileAdvisor
2015-05-04 15:04 - 2013-12-25 11:06 - 00000974 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-03 21:01 - 2014-11-24 22:01 - 00003518 _____ () C:\windows\System32\Tasks\FileAdvisorCheck
2015-05-03 21:01 - 2014-11-24 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Type Advisor
2015-05-03 21:01 - 2014-11-24 22:01 - 00000000 ____D () C:\Program Files (x86)\File Type Advisor
2015-05-02 22:38 - 2013-12-25 11:14 - 00004182 _____ () C:\windows\System32\Tasks\avast! Emergency Update
2015-05-02 22:35 - 2013-06-20 21:10 - 00713034 _____ () C:\windows\system32\perfh005.dat
2015-05-02 22:35 - 2013-06-20 21:10 - 00163656 _____ () C:\windows\system32\perfc005.dat
2015-05-02 22:35 - 2012-07-26 09:28 - 01717240 _____ () C:\windows\system32\PerfStringBackup.INI
2015-05-02 22:31 - 2014-08-21 19:09 - 00000000 ____D () C:\Program Files\SoftEther VPN Client
2015-05-02 22:31 - 2013-04-29 07:58 - 00000000 ____D () C:\ProgramData\PDFC
2015-05-02 22:30 - 2014-07-09 17:39 - 00000366 _____ () C:\windows\Tasks\HPCeeScheduleForpolis_000.job
2015-05-02 22:30 - 2013-02-22 14:59 - 00000983 _____ () C:\windows\SysWOW64\bscs.ini
2015-05-02 22:30 - 2012-07-26 09:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-05-02 19:18 - 2013-12-24 21:36 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-01 19:36 - 2014-07-09 17:39 - 00003188 _____ () C:\windows\System32\Tasks\HPCeeScheduleForpolis_000
2015-05-01 19:36 - 2013-12-24 19:55 - 00000000 ____D () C:\Users\polis_000
2015-04-29 15:44 - 2013-12-25 16:18 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2015-04-27 21:35 - 2014-02-03 23:20 - 00000000 ___RD () C:\Users\polis_000\Desktop\Písničky
2015-04-22 15:36 - 2013-12-24 20:05 - 00000000 ___RD () C:\Users\polis_000\Desktop\Programy ke hrám
2015-04-18 16:54 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\rescache
2015-04-18 16:44 - 2012-07-26 10:12 - 00000000 ____D () C:\windows\AppCompat
2015-04-17 20:17 - 2012-07-26 07:26 - 00262144 ___SH () C:\windows\system32\config\BBI
2015-04-17 20:15 - 2012-07-26 09:59 - 00000000 ____D () C:\windows\CbsTemp
2015-04-16 15:57 - 2014-05-29 14:45 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-16 15:57 - 2013-12-31 12:02 - 00000000 ____D () C:\windows\system32\MRT
2015-04-16 15:39 - 2013-12-31 12:02 - 128913832 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-04-14 18:59 - 2013-12-25 20:06 - 00003802 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-04-14 00:07 - 2014-11-14 15:48 - 00791520 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 00:07 - 2014-11-14 15:48 - 00177632 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-11 16:31 - 2014-03-25 07:26 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-04-11 16:31 - 2013-12-24 21:11 - 00000000 ____D () C:\ProgramData\Skype

==================== Files in the root of some directories =======

2014-12-18 16:09 - 2014-12-18 16:09 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\022E937.html
2014-12-12 22:56 - 2014-12-12 22:56 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\0566ECC.html
2014-12-18 17:16 - 2014-12-18 17:16 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\3A9A31C.html
2014-12-28 13:16 - 2014-12-28 13:16 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\7430B90.html
2014-12-28 22:21 - 2014-12-28 22:21 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\956E5A2.html
2014-12-29 20:31 - 2014-12-29 20:31 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\ABF3BD4.html
2014-12-28 23:38 - 2014-12-28 23:38 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\DAE9927.html
2014-12-30 00:01 - 2014-12-30 00:01 - 0000070 _____ () C:\Users\polis_000\AppData\Roaming\ED43F31.html
2013-12-25 15:39 - 2014-03-12 20:16 - 0045270 _____ () C:\Users\polis_000\AppData\Roaming\room_v3.dat
2014-03-30 16:16 - 2014-03-30 16:16 - 0003584 _____ () C:\Users\polis_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-06 18:09 - 2015-02-23 21:41 - 0000058 _____ () C:\Users\polis_000\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat

Some content of TEMP:
====================
C:\Users\polis_000\AppData\Local\Temp\AtpTimerInfo.dll
C:\Users\polis_000\AppData\Local\Temp\comver.dll
C:\Users\polis_000\AppData\Local\Temp\drm_dialogs.dll
C:\Users\polis_000\AppData\Local\Temp\Extract.exe
C:\Users\polis_000\AppData\Local\Temp\i4jdel0.exe
C:\Users\polis_000\AppData\Local\Temp\OnlineBackup.exe
C:\Users\polis_000\AppData\Local\Temp\SkypeSetup.exe
C:\Users\polis_000\AppData\Local\Temp\SP66562.exe
C:\Users\polis_000\AppData\Local\Temp\SP67429.exe
C:\Users\polis_000\AppData\Local\Temp\SP70001.exe
C:\Users\polis_000\AppData\Local\Temp\SP70427.exe
C:\Users\polis_000\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\polis_000\AppData\Local\Temp\UNT61E2.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT61F2.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT6203.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT6204.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT6205.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT6206.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT6207.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT6208.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT96F8.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT96FA.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT96FB.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT96FC.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT96FD.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT96FE.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT96FF.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT9710.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT9711.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT9712.tmp.exe
C:\Users\polis_000\AppData\Local\Temp\UNT9713.tmp.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-02 12:08

==================== End Of Log ============================

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 15:44
od polisak1
Omlouvám se že jsem nepřidal Addition.txt, tak je alespoň zde, pokud je potřeba:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-05-2015
Ran by polis_000 at 2015-05-04 16:40:28
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2428774486-1446802013-3078816245-500 - Administrator - Disabled)
Guest (S-1-5-21-2428774486-1446802013-3078816245-501 - Limited - Disabled)
polis_000 (S-1-5-21-2428774486-1446802013-3078816245-1002 - Administrator - Enabled) => C:\Users\polis_000

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\uTorrent) (Version: 3.3.2.30303 - BitTorrent Inc.)
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{26D488C3-89E9-455C-B96A-1ADF65A26C54}) (Version: 1.4 - Eyeo GmbH)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader 8 - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-A81200000003}) (Version: 8.1.2 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{5B136AD7-384E-C2CC-6D1A-70B0C6216C25}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Assassin's Creed Brotherhood (HKLM-x32\...\{BE4BA698-8533-4F77-9559-C7F3F78C0B05}) (Version: 1.00 - Ubisoft)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.4272 - DsNET Corp)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.5.1 - EA Digital Illusions CE AB)
Beach Volleyball (HKLM-x32\...\{2225F5C5-E738-4132-B8AB-428046BE7534}) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.66.1075 - AB Team, d.o.o.)
Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version: - Criterion Games)
Bus Driver (HKLM-x32\...\{7369806D-A4EC-47D2-AD2E-77632F52A663}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.1 - Comodo)
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version: - Relic Entertainment)
Company of Heroes: Tales of Valor (HKLM-x32\...\Steam App 20540) (Version: - Relic Entertainment)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{B865FDD4-E96E-4166-BB69-6E8C207E3E29}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - EN (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x32 Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (HKLM-x32\...\_{C5D9CECB-A66F-473F-B406-5C8C2DCA4DF0}) (Version: 17.0.0.491 - Corel Corporation)
CorelDRAW Graphics Suite X7 (x32 Version: 17.0 - Corel Corporation) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.2106 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.3703 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2321 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2531 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.1.2627 - CyberLink Corp.)
CyberLink Webcam Sharing Manager 4 (HKLM-x32\...\InstallShield_{296F7F3B-C75A-45e9-AD22-CC19DF86E9D3}) (Version: 4.2.1.1419 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.2.1.3801 - CyberLink Corp.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.6.0.0 - Electronic Arts)
EA SPORTS™ FIFA 15 Demo (HKLM-x32\...\{108C0C19-6316-4944-A62F-C744488F8639}) (Version: 1.0.0.0 - Electronic Arts)
EA Sports™ FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 7.0.0.49004 - Electronic Arts, Inc.)
Eastern Front (HKLM-x32\...\Eastern Front) (Version: 2.2.2.0 - )
EAX Unified (HKLM-x32\...\EAX Unified) (Version: - )
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
Evernote v. 4.6 (HKLM-x32\...\{A23AADDA-3DBF-11E2-A6F2-984BE15F174E}) (Version: 4.6.0.7670 - Evernote Corp.)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Farming Simulator 2013 (HKLM-x32\...\FarmingSimulator2013CZ_is1) (Version: 1.0 - GIANTS Software)
FIFA 11 (HKLM-x32\...\{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}) (Version: 1.0.0.0 - Electronic Arts)
File Type Advisor 1.6 (HKLM-x32\...\File Type Advisor_is1) (Version: - )
Free YouTube to MP3 Converter Studio 8.4 (HKLM-x32\...\Free YouTube to MP3 Converter Studio_is1) (Version: - mediaprolab.com)
GameRanger (HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\GameRanger) (Version: - GameRanger Technologies)
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - )
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Goat Simulator (HKLM-x32\...\R29hdFNpbXVsYXRvcg==_is1) (Version: 1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Hama Black Force Pad (HKLM-x32\...\{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}) (Version: 2007.01.01 - )
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{84663FDA-1374-4048-9869-DD4A8784785A}) (Version: 6.0.16.1 - Hewlett-Packard Company)
HP Device Access Manager (HKLM\...\{274A948D-DD41-4B8F-B66F-0F4AD233200F}) (Version: 8.0.0.4 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{F3F74675-3700-4C55-A9AC-924D4E36DC40}) (Version: 1.1.2.0 - Hewlett-Packard)
HP Drive Encryption (HKLM\...\HPDriveEncryption) (Version: 8.6.4.82 - Společnost Hewlett-Packard Company)
HP ESU for Microsoft Windows 8 (HKLM-x32\...\{482FF7A0-EA03-487A-9112-862D3341B76C}) (Version: 1.2.1 - Hewlett-Packard Company)
HP File Sanitizer (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 8.1.1.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.8.25 - SunplusIT)
HP Hotkey Support (HKLM-x32\...\{57FA60DA-585F-456A-B80E-17D1CDD22A30}) (Version: 5.0.27.1 - Hewlett-Packard Company)
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP SoftPaq Download Manager (HKLM-x32\...\{3F728815-C7E8-40EA-8D1A-F7B8E2382325}) (Version: 3.4.10.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{D1E7D876-6B86-4B35-A93D-15B0D6C43EAF}) (Version: 8.5.4.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP System Default Settings (HKLM-x32\...\{357FE1E9-5890-4697-95DD-B15E01B4AA2A}) (Version: 1.3.2 - Hewlett-Packard Company)
HP Theft Recovery (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 8.0.0.6 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HP Wireless Hotspot (HKLM-x32\...\{A161E705-44B9-4B5F-A5F8-8E5847AEA86B}) (Version: 1.0.24.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6496.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.5.1006 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Johanka z Arku (HKLM-x32\...\{F2AFB780-FF87-4E4B-8097-451152CDD321}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Keltští králové (HKLM-x32\...\Celtic kings) (Version: - )
Křižáci - Království nebeské (HKLM-x32\...\Křižáci - Království nebeské_is1) (Version: 1.0 - US-Action, s.r.o.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
LG United Mobile Drivers (HKLM-x32\...\{5DB849D6-9392-4FB7-9ABB-87ED433152E5}) (Version: 3.8.1 - LG Electronics)
Lišta Centrum.cz (HKLM-x32\...\{6533CC5B-8474-4E6E-A5DB-CAC502DA7C86}) (Version: 1.1.2.0 - Centrum Holdings s.r.o.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.328 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Medieval II Total War (HKLM-x32\...\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}) (Version: 1.00.0000 - SEGA)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 2010 pro studenty a domácnosti (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office 365 Home Premium - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 15.0.4454.1004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{901B8EBE-9919-4EED-96E9-F318EDA09BF6}) (Version: - )
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version: - TaleWorlds Entertainment)
Mozilla Firefox 26.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 26.0 (x86 cs)) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 26.0 - Mozilla)
MP3 Free Downloader (HKLM-x32\...\MP3FreeDownloader) (Version: 2.9.5.8 - )
Need For Speed™ World (HKLM-x32\...\{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1) (Version: 1.0.0.1599 - Electronic Arts)
NHCmod v2.700b (HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\NHCmod v2.700b) (Version: - )
NHL™ 09 (HKLM-x32\...\{827B97A9-B347-4110-9F89-37AF2B758F94}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4454.1004 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenTTD 1.4.2 (HKLM-x32\...\OpenTTD) (Version: 1.4.2 - OpenTTD)
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
ORION: Prelude (HKLM-x32\...\Steam App 104900) (Version: - Spiral Game Studios)
Overwolf (HKLM-x32\...\{FB83467F-D8EB-43E6-8B3D-860B045C1C52}) (Version: 0.51.325 - Overwolf)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version: - OVERKILL Software)
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.1.33 - PDF Complete, Inc)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Pet Soccer (HKLM-x32\...\Pet Soccer) (Version: 1.0 - Techland)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version: - Sony Online Entertainment)
Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.9 - Power Software Ltd)
Psi Ops (HKLM-x32\...\{f168afc5-b8c9-4165-a23e-e3ea1be5531e}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Ralink Bluetooth Stack64 (HKLM\...\{9041BE08-21DA-4916-EC0B-9375C5B624D9}) (Version: 11.0.737.1 - Mediatek)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.45.0 - Mediatek)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.11.201.2013 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.7 - Realtek Semiconductor Corp.)
Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version: - Tripwire Interactive)
Screenshot Captor 4.8 (HKLM-x32\...\ScreenshotCaptor_is1) (Version: - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Seznam Software (HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version: - United Front Games)
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.10.9473 - SoftEther VPN Project)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stronghold Crusader HD (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.30.0003 - Firefly Studios)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.8 - Synaptics Incorporated)
TeamSpeak 3 Client (HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.25942 - TeamViewer)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Trine 2 (HKLM-x32\...\Steam App 35720) (Version: - Frozenbyte)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Validity Fingerprint Sensor Driver (HKLM\...\{ADAA7361-54B8-4FC8-804E-94EC6C11ED68}) (Version: 4.5.133.0 - Validity Sensors, Inc.)
Virtua Tennis 4™ (HKLM-x32\...\GFWL_{53450FA2-E900-456E-9715-501000008200}) (Version: 1.0.0000.130 - SEGA)
Virtua Tennis 4™ (x32 Version: 1.0.0000.130 - SEGA) Hidden
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
Wars & Warriors: Joan of Arc (HKLM-x32\...\{B030A4CE-0FB9-4AC6-BB57-3F733115C8AB}) (Version: - )
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\polis_000\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\polis_000\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\polis_000\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\polis_000\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

17-04-2015 20:13:56 Windows Update
25-04-2015 15:31:38 Naplánovaný kontrolní bod
26-04-2015 22:38:01 HPSF Applying updates

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00DEEF22-6365-4B60-94F3-6FAE3781144E} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {018A3D0E-0F22-4C6C-BA51-D15AC5F93D9E} - System32\Tasks\{3233DC04-A1F2-4652-918D-E3A5BB651A4D} => pcalua.exe -a "C:\The Battle for Middle-earth (tm)\ea_uninst.exe" -d "C:\The Battle for Middle-earth (tm)"
Task: {0F464187-76B4-4085-AF7D-B4849EE44F6F} - System32\Tasks\{2FBEBF0B-2526-421C-A136-337D16AAFC93} => pcalua.exe -a "C:\Users\polis_000\Desktop\Joan Of Arc\JoanofArc.exe" -d "C:\Users\polis_000\Desktop\Joan Of Arc"
Task: {0FE08DB3-0ACF-4117-8F06-F69AF8000D19} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {113CBA09-B354-4DD4-9EE0-E62BDE2ECE26} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2015-04-16] (Microsoft Corporation)
Task: {246FADFC-C1E2-48BA-9A1E-978BF6282EB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-25] (Google Inc.)
Task: {313F4296-98DE-4B0D-A21C-4D414DF405CA} - System32\Tasks\FileAdvisorCheck => C:\Program Files (x86)\File Type Advisor\file-type-advisor.exe [2014-02-24] ( )
Task: {342A6778-1ECB-4423-93C4-9F53F5A04358} - System32\Tasks\{C3478A00-E3A6-4781-9A6C-8334E1BAFFF5} => pcalua.exe -a "C:\Users\polis_000\Desktop\Joan Of Arc\Setup.exe" -d "C:\Users\polis_000\Desktop\Joan Of Arc"
Task: {3B35F0BB-97AB-4AD1-82A8-75F4AB76CE22} - System32\Tasks\{C07142AE-7368-40DA-8AFA-22A765F04A47} => Chrome.exe http://ui.skype.com/ui/0/6.21.0.104/cs/ ... rogressBar
Task: {3FEC699C-033D-412A-86E1-BF3CE3AE97A5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {4E08C790-DD0C-4922-9994-BDD8309ACBC6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {5CEF3C66-FE08-4FEF-B053-37F14DA4B45B} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30] (Synaptics Incorporated)
Task: {7AC07001-B482-460D-BE00-74C8598C97F3} - System32\Tasks\{EA963DF9-2E45-440A-9DB7-3E03073F70A4} => pcalua.exe -a "C:\Users\polis_000\Desktop\MAFIA 1\MafiaGame\MafiaSetup.exe" -d "C:\Users\polis_000\Desktop\MAFIA 1\MafiaGame"
Task: {8014E20D-8926-442B-BC01-777731D98497} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-25] (Google Inc.)
Task: {83FAD9E5-5FC4-4097-9B0D-94042DDBE41B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2012-11-23] (Microsoft Corporation)
Task: {8F5ABFC3-3AB9-4948-999B-26A70ABBEB2B} - System32\Tasks\Microsoft\Windows\Setup\Windows Upgrade Notification Task => C:\windows\System32\NotificationUI.exe [2015-03-04] (Microsoft Corporation)
Task: {9422C81F-7987-4D23-AE68-8DB147981CDD} - System32\Tasks\{923EC0CD-D8AB-4429-B9FE-DF79BFB8A286} => pcalua.exe -a C:\RollCoasterTycoon\rct.exe -d C:\RollCoasterTycoon
Task: {9D19D5A7-B427-45B9-B2B2-9B0FF1F71B1E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {A8908B45-295A-4A19-AF68-846577A5FAF1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {B2651DFF-F5CE-404D-92EA-205FBB601ECA} - System32\Tasks\{F6EC6528-0276-448B-A93E-B47E1845C8FE} => pcalua.exe -a "C:\Users\polis_000\Desktop\Stronghold Crusader +Cestina\Cestina\strongholdcrusader_cz.exe" -d "C:\Users\polis_000\Desktop\Stronghold Crusader +Cestina\Cestina"
Task: {B8650EAE-ECA6-4340-9336-5BD84BD8F6A9} - System32\Tasks\{EB2A3381-AD33-4F65-A7B7-C36AB392BD8A} => pcalua.exe -a "C:\Users\polis_000\Desktop\Stronghold Crusader CZ\Čeština !.exe" -d "C:\Users\polis_000\Desktop\Stronghold Crusader CZ"
Task: {C3AE9FD3-DF34-43B9-8373-93D7FF05989D} - System32\Tasks\FileAdvisorUpdate => C:\Program Files (x86)\File Type Advisor\fileadvisor.exe [2014-02-24] (File Type Advisor)
Task: {C94A1CC7-B645-43EA-BFD3-149DECFB1048} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2428774486-1446802013-3078816245-1002UA => C:\Users\polis_000\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {C94F0213-C06F-41FD-8E1B-7FDEAE8A843A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2428774486-1446802013-3078816245-1002Core => C:\Users\polis_000\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {D6E479CA-86DF-4CE4-B706-5315E772D53B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-06] (AVAST Software)
Task: {D71F0E1B-0B4A-4A85-A905-22C7365997DA} - System32\Tasks\HPCeeScheduleForpolis_000 => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {ED3A6C3A-F3AE-40F0-B77A-D05C8B493FB7} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-01-28] (Microsoft Corporation)
Task: {F1ADB049-5D74-46DF-9588-7D8616217F33} - System32\Tasks\Microsoft\Office\Office First Run Task => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2012-11-23] (Microsoft Corporation)
Task: {F9DA7464-4AA3-4C95-A4F1-3EA34E2C38BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForpolis_000.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (whitelisted) ==============

2014-01-28 19:49 - 2012-11-10 11:27 - 00373824 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll
2014-01-28 19:49 - 2012-11-23 19:07 - 00513600 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll
2014-01-28 19:49 - 2012-11-23 19:07 - 00607296 _____ () C:\Program Files\Microsoft Office 15\ClientX64\StreamServer.dll
2014-04-26 15:29 - 2014-04-26 15:29 - 00075136 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2013-01-10 14:35 - 2013-01-10 14:35 - 00009728 _____ () C:\windows\system32\BsHelpCSps.dll
2013-01-10 14:30 - 2013-01-10 14:30 - 00022528 _____ () C:\windows\system32\BsTrace.dll
2013-03-06 15:38 - 2013-03-06 15:38 - 03020504 _____ () c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\ShredContextMenu.dll
2013-01-10 12:25 - 2013-01-10 12:25 - 00364544 _____ () C:\windows\system32\BsExtendFunc.dll
2013-01-10 14:35 - 2013-01-10 14:35 - 00055296 _____ () C:\windows\system32\BlueSoleilCSps.dll
2014-05-15 15:49 - 2014-05-15 15:50 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2014-08-06 16:12 - 2014-08-06 16:12 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2015-05-02 20:21 - 2015-05-02 20:21 - 02926592 _____ () C:\Program Files\AVAST Software\Avast\defs\15050202\algo.dll
2015-05-04 16:18 - 2015-05-04 16:18 - 02926592 _____ () C:\Program Files\AVAST Software\Avast\defs\15050400\algo.dll
2013-01-10 14:30 - 2013-01-10 14:30 - 00022528 _____ () C:\windows\SYSTEM32\BsTrace.dll
2013-01-10 14:35 - 2013-01-10 14:35 - 00009728 _____ () C:\windows\SYSTEM32\BsHelpCSps.dll
2013-01-10 14:35 - 2013-01-10 14:35 - 00055296 _____ () C:\windows\SYSTEM32\BlueSoleilCSps.dll
2014-10-19 20:25 - 2014-10-19 20:25 - 00017920 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\PSIClient\306244474623207c1f22c75cb27f3481\PSIClient.ni.dll
2013-06-20 12:52 - 2012-10-22 10:22 - 01199648 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-01-31 18:04 - 2013-01-31 18:04 - 00080120 _____ () C:\windows\SYSTEM32\BsProfilefunc.dll
2013-01-10 12:25 - 2013-01-10 12:25 - 00364544 _____ () C:\windows\SYSTEM32\BsExtendFunc.dll
2013-06-20 13:04 - 2012-06-08 05:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 12:34 - 2012-06-08 12:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-08-06 16:12 - 2014-08-06 16:12 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-05-01 18:54 - 2015-04-28 04:07 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libglesv2.dll
2015-05-01 18:54 - 2015-04-28 04:07 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libegl.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\sony.com -> sony.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\polis_000\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\StartupFolder: => "MyPC Backup.lnk"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\StartupFolder: => "Odeslat do OneNote.lnk"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\StartupFolder: => "Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\StartupFolder: => "GameRanger.lnk"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "GarenaPlus"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "EADM"

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8767AEE3-2961-4BF5-8AFD-F49CB17F4ADC}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{CDA11039-C7DC-436C-8F79-ED1088D3BF28}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C3A74E45-13F2-4076-9246-0DF28C9843DB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E5167780-E780-4B87-B699-8DB014615971}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FD9770AA-0FE3-41AF-8966-112C9509A829}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FEC81098-E976-4E83-904C-7487FB6625D9}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{29E32F04-6B2A-40A4-BB7F-1949322E9247}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{B8EBDA67-27C2-44E9-94C5-C0BA52D77942}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{83C80220-E85A-44C9-B901-1DBA08DBCF61}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{2AC27D41-0311-423B-B460-753CC8D00238}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{035F741C-5F93-4DDF-AAFD-E942A0C47616}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{6305A726-CFD6-452B-BFF6-71A089393AB0}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{EE532F67-D9AA-444E-8AB4-833465DD0A46}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{488544CB-4276-426C-A38B-85091F3E92BF}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013.exe
FirewallRules: [{4B4399A5-86DA-4AFC-9A82-1729F2AA357C}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013.exe
FirewallRules: [{65C26D4B-3C22-4E57-8B81-B5DB36E3F528}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
FirewallRules: [{AD8230C6-425B-45A8-A74B-7ED31A263006}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
FirewallRules: [TCP Query User{78BDBD8B-C0F4-45DF-80A4-589184DAF4F9}C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{88B0D2B4-493C-4E74-BD79-3F52689E56B1}C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{79EDF782-EA75-4243-8269-A7BDCAB8CD29}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{90A163F1-064F-4803-90A0-80047FCB2F89}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{66C8FD17-DE54-4AAC-B503-1F5E26123C52}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B0447E20-A2E0-4233-B91B-E51CE824D0C8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Company of Heroes\RelicCOH.exe
FirewallRules: [{BB9E5BF6-34E1-4416-98E3-74FE941F8676}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Company of Heroes\RelicCOH.exe
FirewallRules: [{7C6D68AE-E605-438F-BECD-A2CC86119DCF}] => (Allow) C:\Garena Plus\ggdllhost.exe
FirewallRules: [{2AB8C4B5-E555-483E-9A48-443BDBBA2402}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\x64\FarmingSimulator2013Game.exe
FirewallRules: [{D09AA1C1-F7D5-4946-BA41-2597987D69B9}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\x64\FarmingSimulator2013Game.exe
FirewallRules: [{E671F4E2-D38A-4BD9-826D-C6FD2CE3E5B8}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\x86\FarmingSimulator2013Game.exe
FirewallRules: [{4391A92C-D65E-4CC5-B9A2-9B277A0ECF30}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\x86\FarmingSimulator2013Game.exe
FirewallRules: [{599EDE0C-0D4C-43AB-9FB0-A52BB0E6EAF3}] => (Allow) C:\Garena Plus\Room\garena_room.exe
FirewallRules: [TCP Query User{74A2CE79-EEDE-4545-88E2-31BDFFDE4196}C:\warcraft iii+frozen throne\war3.exe] => (Allow) C:\warcraft iii+frozen throne\war3.exe
FirewallRules: [UDP Query User{CD242B60-749E-4EE6-921C-38063C98186D}C:\warcraft iii+frozen throne\war3.exe] => (Allow) C:\warcraft iii+frozen throne\war3.exe
FirewallRules: [{614445B2-0729-4B57-A564-9AD61F40D3F0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{9F13D752-250A-42A8-84D9-F677D5BDC0E9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{D72E6CD9-C180-4EF4-8C5B-D8CAE61D1D7A}C:\world of tanks\wotlauncher.exe] => (Allow) C:\world of tanks\wotlauncher.exe
FirewallRules: [UDP Query User{33BC9CE7-09D8-49D2-B436-D948F464A673}C:\world of tanks\wotlauncher.exe] => (Allow) C:\world of tanks\wotlauncher.exe
FirewallRules: [TCP Query User{F782F3A6-D1A3-4671-A455-185C06A51926}C:\gameranger\gameranger\gameranger.exe] => (Allow) C:\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{152B2D84-C2DD-4C93-8177-7FCE1024509D}C:\gameranger\gameranger\gameranger.exe] => (Allow) C:\gameranger\gameranger\gameranger.exe
FirewallRules: [TCP Query User{66B7B3A2-230C-4EFD-AFE7-C0E15C2B7E65}C:\fifa 13\fifa 13\game\fifa13.exe] => (Allow) C:\fifa 13\fifa 13\game\fifa13.exe
FirewallRules: [UDP Query User{D4CDAC06-4917-4406-8C7D-279EC883B0D4}C:\fifa 13\fifa 13\game\fifa13.exe] => (Allow) C:\fifa 13\fifa 13\game\fifa13.exe
FirewallRules: [{8813CB34-7857-45D6-8E44-3135EF74A0AA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [TCP Query User{BE08BE5F-64BE-4C3C-81C5-33870D420906}C:\world of tanks\worldoftanks.exe] => (Allow) C:\world of tanks\worldoftanks.exe
FirewallRules: [UDP Query User{A6951C90-C4EE-4631-8FD6-4AD27868C5B1}C:\world of tanks\worldoftanks.exe] => (Allow) C:\world of tanks\worldoftanks.exe
FirewallRules: [{2207EF7B-0263-49C0-8098-AE9C4EEA26B6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{3E28F563-3D11-4201-8663-372D00E04635}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{89B1B89C-ADC8-4079-A54F-A8E806F08BF9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{80A74E9D-1ECA-41BF-AEF7-5F698F8EFADF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{F0FCEE26-94E0-4D81-949A-7943EA538F78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{F9EFEEA5-8CC3-4C04-9F54-4271CF4D5303}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{6379B484-B3E8-4094-B55C-B98FA1AE9EA8}] => (Allow) C:\Program Files (x86)\GoforFiles\goforfilesdl.exe
FirewallRules: [{FC7C76AF-19C7-4C1C-A44D-8E2D6A42F137}] => (Allow) C:\Program Files (x86)\GoforFiles\goforfilesdl.exe
FirewallRules: [{E279BEDD-A659-43E5-AC96-10632FDBB16F}] => (Allow) C:\Program Files (x86)\GoforFiles\GoforFiles.exe
FirewallRules: [{499EEDF5-F6C5-4493-A187-268E36DA3240}] => (Allow) C:\Program Files (x86)\GoforFiles\GoforFiles.exe
FirewallRules: [TCP Query User{8D32793B-D5ED-44AA-8ECE-433E21018D26}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{C8EDCDFA-940A-4D29-849F-404DBF8B5691}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{E66EB070-3AEF-4209-995E-57C98E0DA8A1}C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{5BF9410C-6636-4FAA-84A9-622C46DFA9BD}C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{0DD48292-3FC1-4B36-8580-C88A89F3ACCC}] => (Allow) C:\Program Files (x86)\ZAV\zavvyuka.exe
FirewallRules: [{44505D35-4710-4BD6-9D57-5232B1D42ED7}] => (Allow) C:\Program Files (x86)\ZAV\zavvyuka.exe
FirewallRules: [{049231AD-2203-44F7-BD2D-DC78C6F877F7}] => (Allow) C:\Program Files (x86)\ZAV\zavvyuka.exe
FirewallRules: [{40307738-BF55-4123-AB1A-942E55F02E17}] => (Allow) C:\Program Files (x86)\ZAV\zavvyuka.exe
FirewallRules: [{7F14E574-247D-4151-9E79-0B59B70B0BF1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{E188D7CF-3CBB-41B9-8472-421A23D2F670}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [TCP Query User{40964232-5A92-464E-812E-6FAF8C055BD7}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [UDP Query User{F5A9FD98-EE07-40DC-A249-CA20B6A8D7A8}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [{F1C4E0D1-F94E-4272-AF37-A71EFC6B89AC}] => (Allow) C:\Users\polis_000\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [TCP Query User{B450DFDE-1762-4E75-9443-2898CF22FC82}C:\program files (x86)\7daystodie-alpha\7daystodie.exe] => (Allow) C:\program files (x86)\7daystodie-alpha\7daystodie.exe
FirewallRules: [UDP Query User{6B1897B6-AE13-4C35-B941-2F4C720FF87F}C:\program files (x86)\7daystodie-alpha\7daystodie.exe] => (Allow) C:\program files (x86)\7daystodie-alpha\7daystodie.exe
FirewallRules: [{C978C064-D7AE-43E3-837C-9F2E2FE3BEAB}] => (Block) C:\program files (x86)\7daystodie-alpha\7daystodie.exe
FirewallRules: [{FEAC4E55-356B-404B-8E7E-574EDA7E9BC1}] => (Block) C:\program files (x86)\7daystodie-alpha\7daystodie.exe
FirewallRules: [{C655C30B-34EE-4E00-BE4D-44914E4E5342}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [TCP Query User{7916732E-B514-4B37-BFFC-1A774E85A271}C:\world of tanks\worldoftanks.exe] => (Allow) C:\world of tanks\worldoftanks.exe
FirewallRules: [UDP Query User{EF5D0A3D-3E1D-4867-8A47-9FC54A065767}C:\world of tanks\worldoftanks.exe] => (Allow) C:\world of tanks\worldoftanks.exe
FirewallRules: [TCP Query User{B0ACC277-7F02-4075-AF2E-B777CFFB9B8B}C:\metin 2 world\wolrdofextinction.exe] => (Allow) C:\metin 2 world\wolrdofextinction.exe
FirewallRules: [UDP Query User{3F6A47AC-B5F6-4846-B9D7-D94F0B7B6734}C:\metin 2 world\wolrdofextinction.exe] => (Allow) C:\metin 2 world\wolrdofextinction.exe
FirewallRules: [TCP Query User{86D04B95-6979-480A-A15C-4874677F1BE9}C:\users\polis_000\desktop\metin\worldofextinction\wolrdofextinction.exe] => (Allow) C:\users\polis_000\desktop\metin\worldofextinction\wolrdofextinction.exe
FirewallRules: [UDP Query User{7D2BAB44-04EC-4B9C-B375-318583D2B2A5}C:\users\polis_000\desktop\metin\worldofextinction\wolrdofextinction.exe] => (Allow) C:\users\polis_000\desktop\metin\worldofextinction\wolrdofextinction.exe
FirewallRules: [TCP Query User{517E3A31-B55E-4F9D-823A-A6B023C8BDEF}C:\the settlers - dědictví králů\bin\settlershok.exe] => (Allow) C:\the settlers - dědictví králů\bin\settlershok.exe
FirewallRules: [UDP Query User{C9DAF700-0AFC-460D-9C5D-89873034F0CF}C:\the settlers - dědictví králů\bin\settlershok.exe] => (Allow) C:\the settlers - dědictví králů\bin\settlershok.exe
FirewallRules: [TCP Query User{8549A58E-B970-482A-A3F7-19502B31042C}C:\gameranger\gameranger\gameranger.exe] => (Allow) C:\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{70FD4601-E579-4361-A81A-8A63CB614C1A}C:\gameranger\gameranger\gameranger.exe] => (Allow) C:\gameranger\gameranger\gameranger.exe
FirewallRules: [TCP Query User{B670E580-09F0-4E73-A98F-8E5BD58045BD}C:\call of duty 4\iw3mp.exe] => (Allow) C:\call of duty 4\iw3mp.exe
FirewallRules: [UDP Query User{D9A954DE-9347-4C38-9299-9A5FB48E4964}C:\call of duty 4\iw3mp.exe] => (Allow) C:\call of duty 4\iw3mp.exe
FirewallRules: [TCP Query User{2CE40628-B5D5-47E4-BA4B-63D7570B90C3}C:\users\polis_000\appdata\roaming\utorrent\updates\3.3.2_30488.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\updates\3.3.2_30488.exe
FirewallRules: [UDP Query User{46C9CFFC-04B6-49C6-BCDB-F1C61348501A}C:\users\polis_000\appdata\roaming\utorrent\updates\3.3.2_30488.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\updates\3.3.2_30488.exe
FirewallRules: [TCP Query User{7C3F7E7A-18B2-4559-9BAB-424A96629595}C:\warcraft iii+frozen throne\war3.exe] => (Allow) C:\warcraft iii+frozen throne\war3.exe
FirewallRules: [UDP Query User{1B30177C-3AB6-4741-8EA4-83358B079122}C:\warcraft iii+frozen throne\war3.exe] => (Allow) C:\warcraft iii+frozen throne\war3.exe
FirewallRules: [TCP Query User{3A3A5596-EEFD-4285-B8B5-23C0ED967915}C:\world of tanks\wotlauncher.exe] => (Allow) C:\world of tanks\wotlauncher.exe
FirewallRules: [UDP Query User{BE2CE782-FE5E-4F60-BBC1-2DDCBB6C39CF}C:\world of tanks\wotlauncher.exe] => (Allow) C:\world of tanks\wotlauncher.exe
FirewallRules: [{95935192-EFF7-4158-BEAE-EE567DDEE94B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{652DC420-6E74-42CE-95F2-E39C7735B3F2}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{D5454D2D-367D-4485-8D97-53269D100C93}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{900E76DA-5798-405C-A39C-93A49529C31A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{D172200F-D5EF-479E-9686-FBE92F1B2660}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{4251BA42-A3EE-4568-9FD8-E90D583B527B}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [TCP Query User{BE3EE541-34CD-454B-99BF-6E9F385EC84A}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{9B1C4982-AD3E-4B1D-9FB5-04AC880BBC3E}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{03F22264-84A2-4C31-BA00-A0EAFA7DCB10}C:\program files (x86)\goat simulator\binaries\win32\goatgame-win32-shipping.exe] => (Allow) C:\program files (x86)\goat simulator\binaries\win32\goatgame-win32-shipping.exe
FirewallRules: [UDP Query User{D47C8CED-F6EF-4535-A0D3-35E0E5BEB10C}C:\program files (x86)\goat simulator\binaries\win32\goatgame-win32-shipping.exe] => (Allow) C:\program files (x86)\goat simulator\binaries\win32\goatgame-win32-shipping.exe
FirewallRules: [TCP Query User{4BEF827C-D564-49B3-A319-4A03BE37141C}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [UDP Query User{EC8AA57A-C24A-4701-91A4-7E3C6FBDF1F9}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [{194222CC-47D3-4FC8-8E19-54DDCACB578B}] => (Block) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [{1BBFB7E6-719E-46E9-9436-CCA551E3513E}] => (Block) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [{C4513409-4624-4E7D-9BBB-2B6B8A0B00BE}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{F6CAC628-BAE0-478A-B9CE-BF09C6BCD079}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{7B9C1C34-EFE8-4537-B5E6-A24DCEDD00D5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CFABBE5D-C98D-4573-A499-CC6AD23C2461}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B3535F12-93EA-4E97-917B-6D5DA676EF9B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8B9BA468-4723-4C63-8D8E-190C32C99C71}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FF6F3E62-F24D-4266-AE65-E23DF213577F}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBSP.exe
FirewallRules: [{E898600A-45FB-444E-8F65-26A8B67F3B28}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBSP.exe
FirewallRules: [{3042A019-20B3-4A7B-B1E7-4ED12F5755F2}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{03A8B871-47E5-4E13-98B7-CFEFD594D8D0}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ACBMP.exe
FirewallRules: [{A0BC3733-9D86-4631-9FA7-F9454A5984E8}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe
FirewallRules: [{B8DC4C6E-54AC-40D8-83C8-EABEA157EBFB}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\AssassinsCreedBrotherhood.exe
FirewallRules: [{03021469-4D52-46AA-96DF-3FFBBB2D2542}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\UPlayBrowser.exe
FirewallRules: [{14E6D578-E5CE-4DB9-8D92-2E062D8F5485}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\UPlayBrowser.exe
FirewallRules: [{BDF918D4-36C5-467C-8A37-BFEE1130CD2B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{A78C7580-84EE-46DC-9268-6AC18D7EC14A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{EF24D2AE-05D2-49EE-A55B-F1E170772E78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SleepingDogs\HKShip.exe
FirewallRules: [{4FEB4AAE-60F9-4301-8C8A-C2701C595ED1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SleepingDogs\HKShip.exe
FirewallRules: [{235C7D3A-6422-4B75-BBCE-61AA6A1070DE}] => (Allow) C:\Users\polis_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OR3RGCUC\VideoPerformerSetup.exe
FirewallRules: [{B3C4DA36-AC8E-4754-9BB8-3B1AFD429472}] => (Allow) C:\Users\polis_000\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OR3RGCUC\VideoPerformerSetup.exe
FirewallRules: [{33B428DE-4A8F-4DFE-9A7D-6B1AED59FBF5}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.EXE
FirewallRules: [{8A8F7C69-C5D7-44E9-91C4-E1759ED33814}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.EXE
FirewallRules: [{3487F70E-6B04-474E-AF0D-A097B4D19D76}] => (Block) c:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X7\Programs\CorelDrw.exe
FirewallRules: [{711DEB9B-4E0E-496E-930A-EEA109704854}] => (Block) c:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X7\Programs\CorelPP.exe
FirewallRules: [{AC4D7F32-155B-4DC2-8531-7E59AD47A895}] => (Allow) C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{21758A07-0FFB-4DF4-9296-577B624630A3}] => (Allow) C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{305EE993-9302-4922-B342-86C628D01658}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{32DD41B0-E8DF-444F-B9C6-0C5A0D391FA8}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [TCP Query User{054F131E-F521-48DF-91F0-0CC480F6B802}C:\rollcoastertycoon\rct.exe] => (Allow) C:\rollcoastertycoon\rct.exe
FirewallRules: [UDP Query User{EFC50DFF-1F93-4332-A34E-C061D0F50557}C:\rollcoastertycoon\rct.exe] => (Allow) C:\rollcoastertycoon\rct.exe
FirewallRules: [{7988185A-FFF3-42BD-B1B9-902EEC71B004}] => (Allow) C:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{318223F2-29CD-41FB-8C37-5093CFC78FF2}] => (Allow) C:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [TCP Query User{5A7C127B-0E3B-4CAF-8E0D-5A8F05C82746}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [UDP Query User{67C1FACC-CCA9-4962-B18D-DEB7F45168C5}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [{518A2F7E-FD81-4229-9AFF-DFD5F048C395}] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [{147FE67D-EA67-4F9C-97BC-6F1AEC7E8060}] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [{E9F46D34-E4AC-441C-9209-6323D6D19843}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\x64\FarmingSimulator2013Game.exe
FirewallRules: [{4F6AF2B5-72CC-42C0-953F-E06F545FD23E}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\x64\FarmingSimulator2013Game.exe
FirewallRules: [{DA5A2D4E-BFD2-4C64-8EF1-AF39922163E3}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\x86\FarmingSimulator2013Game.exe
FirewallRules: [{F93A537A-CB63-4C5E-AF99-FD7798829B3D}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\x86\FarmingSimulator2013Game.exe
FirewallRules: [TCP Query User{6531A559-16CC-4B1F-8B38-298835CE431F}C:\hry\fifa 14\game\fifa14.exe] => (Allow) C:\hry\fifa 14\game\fifa14.exe
FirewallRules: [UDP Query User{3881650D-E1BB-412E-8FE8-1BD6B1B6B78E}C:\hry\fifa 14\game\fifa14.exe] => (Allow) C:\hry\fifa 14\game\fifa14.exe
FirewallRules: [TCP Query User{0C38FE31-059B-410B-BDE1-F1D806D3B6A2}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{9EDAD818-55D9-4252-B271-EBE11637BA87}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{5D56AB89-4578-446B-A3F8-428A770C85AB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{CD11AE49-1677-459A-93F4-225B38884370}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{2F1FF338-433B-41A6-8EF9-FA9F3FB5CFA4}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\stronghold crusader.exe
FirewallRules: [TCP Query User{F14E3AC5-7E76-4ACC-82E4-187AF02C4C0F}C:\users\polis_000\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\polis_000\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{9FFC8B1F-9BF0-4921-ACEF-69E0E572BC1D}C:\users\polis_000\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\polis_000\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{79D730A7-00F2-4BAF-8A77-65C5E1E0D5C4}] => (Block) C:\users\polis_000\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{9B034137-FAB6-4816-9A21-0FD202EEF5A9}] => (Block) C:\users\polis_000\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{DB1EA154-69DE-40D5-A0CA-B0E8DEB1A1D6}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe
FirewallRules: [{E2D43F42-957E-479D-987C-F5E5A12E6B11}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe
FirewallRules: [{D22E26EF-6272-4231-8F9A-1B830C724542}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe
FirewallRules: [{90968B6F-B708-414E-98BB-3A1D948F6B7E}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
FirewallRules: [{1BDD6989-4FE8-4EAE-876F-FF2D1C3967DB}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
FirewallRules: [{11C6581D-E840-451A-AF09-5E3B2C6B52F6}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe
FirewallRules: [TCP Query User{AEEE22DE-3ED4-4437-828A-DE601E75E016}C:\program files (x86)\haemimont games\celtic kings\celtic kings.exe] => (Block) C:\program files (x86)\haemimont games\celtic kings\celtic kings.exe
FirewallRules: [UDP Query User{C90036F2-5D72-4F8A-90BA-8CF56B83424D}C:\program files (x86)\haemimont games\celtic kings\celtic kings.exe] => (Block) C:\program files (x86)\haemimont games\celtic kings\celtic kings.exe
FirewallRules: [{217BFE3F-7B29-4068-8F9A-8C0C6EE39527}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{A57D8E74-CFAA-48F8-BC0F-7EE9F988A00E}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{2AD0D886-9EE4-45A3-B986-203B8043CF1F}] => (Allow) C:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{DC00905E-C575-4C4F-B3A3-8B068083D034}] => (Allow) C:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{4F4EA9A8-14FF-451F-9F24-175EE90C6D45}] => (Allow) C:\Program Files (x86)\SEGA\Virtua Tennis 4\VT4.exe
FirewallRules: [{516D9CE6-44A1-4C66-85EF-7F9E8B12B809}] => (Allow) C:\Program Files (x86)\SEGA\Virtua Tennis 4\VT4.exe
FirewallRules: [{A71F36E0-7232-402B-9323-A02E954BCF51}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [{31656CCC-F6FA-4FF1-8686-260A0A5B06D1}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{F0922A97-2353-42B3-A16F-0DA3493E1B2F}C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe
FirewallRules: [UDP Query User{BB5147BE-076A-4076-9007-3E6A11892D2C}C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe
FirewallRules: [{8C25CADF-DD8C-4D3B-9ACF-4413137ED8FB}] => (Block) C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe
FirewallRules: [{91BA9D02-0C3F-4B46-AF85-7A9AEE96106D}] => (Block) C:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe
FirewallRules: [{FB40082A-F63B-476A-8EB6-0CA4719F087A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1EA4C0E1-04F8-4A96-B4B6-60F9C26BACBF}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{040A90BC-A60F-4B4F-93FE-7A5EF02287C6}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [UDP Query User{FD8C9252-294D-4580-B555-306C52EE840A}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [{44A4D75C-9A80-4D26-9B20-2F189147342E}] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [{62102511-E0F2-4812-AEED-33FAE456F1F5}] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [{FAC5DA22-5D33-46C7-8586-F07DD4096020}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{77939CAC-67C4-4D88-87BF-34769BA3DB24}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{A0E1ED35-3197-405B-B76D-B2DC5CB2AA72}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{F9DAA959-1F32-438E-959C-F93B0180217A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{8C2AFC40-12E9-499D-8F9E-5188142099D6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Trine 2\trine2_launcher.exe
FirewallRules: [{B464C2BA-1E33-438F-97D7-57A2405C39ED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Trine 2\trine2_launcher.exe
FirewallRules: [TCP Query User{D0190FCB-5C51-43A0-B368-D6F084022F40}C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [UDP Query User{F27DF963-C4AA-4E3D-9359-F5D54495C1C9}C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [{3A0E5A5C-7D54-4001-87A1-F28A532073D1}] => (Block) C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [{89D2DA5E-C9EF-4E96-9E9A-30F2FA5817F4}] => (Block) C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [TCP Query User{53C81166-6B15-4B9C-BB1E-49727C87F783}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{EECDEBC3-740D-4402-A15D-A10685FBE7D8}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{56BA889E-8A6E-4627-8697-76CDF018F85D}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{7C803B33-6213-4844-8AA2-62F5F65B2BB2}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{C72652C0-3ABB-4724-9231-96C2DAEEB629}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{F32C41CC-C5E8-4B58-B77C-AE330845EB83}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{0A4A5BF5-58F5-422F-AA69-210382E9C02F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{25083556-1E09-41A5-9989-BE6B4D2627D1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{657E747A-7539-49D4-82EB-62772520B835}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{653F07FF-C10A-436B-98A1-C72B588006FF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{B72C8E65-FC29-401F-B293-58A0AE9F6BE6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{A69DB3A4-B85F-4314-A1A8-588033600C5D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{1D5B6D0B-C06D-4B06-AF67-01453FE8FF7C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{E4CD669B-E597-4A68-96B8-A2DF548B0763}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{23E8559D-680E-45DA-AAE9-6571EDE12D75}C:\program files (x86)\ea sports\fifa 11\game\fifa.exe] => (Allow) C:\program files (x86)\ea sports\fifa 11\game\fifa.exe
FirewallRules: [UDP Query User{3092A303-5B66-468F-B1B4-72B39852DDCA}C:\program files (x86)\ea sports\fifa 11\game\fifa.exe] => (Allow) C:\program files (x86)\ea sports\fifa 11\game\fifa.exe
FirewallRules: [{F03EF092-7C65-45AB-98AD-E1067C8A8D31}] => (Block) C:\program files (x86)\ea sports\fifa 11\game\fifa.exe
FirewallRules: [{E7679147-DF1F-4104-980B-676455CA4FC0}] => (Block) C:\program files (x86)\ea sports\fifa 11\game\fifa.exe
FirewallRules: [{65DE340E-B978-4F18-9813-F03D23536A52}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{C12849E2-C64B-4D38-A1B3-2413788D1384}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{DF0CC562-3056-44EE-8939-B528E5E0D7F3}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{AB7B37F2-C0FC-4C4B-8666-F5386280E24D}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{1B5BF3C2-3BC2-4DE7-BFDE-1238957F409C}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{2776A3CE-1660-4BC0-9225-2B728ED4CC44}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{A1FD347B-7961-407E-B385-909B7DC0C593}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{9BA462B5-EB60-4A3E-BA6C-B5F3897B2A78}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{00384720-5119-4C89-98CC-742ED0098355}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{93C5EB81-74C3-4899-B6B4-8E0F5581E55D}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{020F88F0-3744-4434-9C2D-1C1DB421538F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Adaptér tunelového režimu Microsoft Teredo
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/04/2015 03:12:12 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest2 na řádku C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
Součást 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Error: (05/03/2015 09:58:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: atieclxx.exe, verze: 6.14.11.1143, časové razítko: 0x512bf39a
Název chybujícího modulu: atieclxx.exe, verze: 6.14.11.1143, časové razítko: 0x512bf39a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002e629
ID chybujícího procesu: 0xf78
Čas spuštění chybující aplikace: 0xatieclxx.exe0
Cesta k chybující aplikaci: atieclxx.exe1
Cesta k chybujícímu modulu: atieclxx.exe2
ID zprávy: atieclxx.exe3
Úplný název chybujícího balíčku: atieclxx.exe4
ID aplikace související s chybujícím balíčkem: atieclxx.exe5

Error: (05/03/2015 08:57:36 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: .NETFrameworkC:\windows\system32\mscoree.dll8

Error: (05/03/2015 08:20:26 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073415161

Error: (05/03/2015 07:00:50 PM) (Source: flcdlock) (EventID: 1055) (User: )
Description: Při výčtu zařízení {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}USB Input Device došlo k chybě.


Kód systémové chyby je 0xe000020b:

** The error code could not be translated **

Error: (05/03/2015 07:00:50 PM) (Source: flcdlock) (EventID: 1055) (User: )
Description: Při výčtu zařízení {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}HID-compliant game controller došlo k chybě.


Kód systémové chyby je 0xe000020b:

** The error code could not be translated **

Error: (05/03/2015 07:00:50 PM) (Source: flcdlock) (EventID: 1043) (User: )
Description: Při změně stavu zařízení došlo k chybě.


Kód systémové chyby je 0xe000020b:

** The error code could not be translated **

Error: (05/03/2015 03:02:56 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest2 na řádku C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.
Součást 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.

Error: (05/02/2015 11:33:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: atieclxx.exe, verze: 6.14.11.1143, časové razítko: 0x512bf39a
Název chybujícího modulu: atieclxx.exe, verze: 6.14.11.1143, časové razítko: 0x512bf39a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002e629
ID chybujícího procesu: 0x4d0
Čas spuštění chybující aplikace: 0xatieclxx.exe0
Cesta k chybující aplikaci: atieclxx.exe1
Cesta k chybujícímu modulu: atieclxx.exe2
ID zprávy: atieclxx.exe3
Úplný název chybujícího balíčku: atieclxx.exe4
ID aplikace související s chybujícím balíčkem: atieclxx.exe5

Error: (05/02/2015 10:34:34 PM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: Nelze načíst informace registru o čítači výkonu pro WSearchIdxPi pro instanci z důvodu následující chyby: Operace byla dokončena úspěšně. 0x0.


System errors:
=============
Error: (05/03/2015 07:01:14 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (05/02/2015 11:33:05 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby NlaSvc bylo dosaženo časového limitu (30000 ms).

Error: (05/02/2015 10:30:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba DpHost neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (05/02/2015 10:30:12 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:53:13, ‎2. ‎5. ‎2015) bylo neočekávané.

Error: (05/02/2015 10:29:52 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (05/02/2015 08:48:15 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (05/02/2015 01:23:07 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (05/02/2015 00:10:22 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (05/01/2015 00:17:40 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Inicializace se nezdařila, protože ovladač zařízení nemohl být vytvořen.
K identifikaci rozhraní, jehož inicializace se nezdařila, lze použít
řetězec 7A7919B180A8. Je reprezentován adresou MAC tohoto rozhraní nebo globálně
jedinečným identifikátorem (GUID), pokud nemohlo rozhraní NetBT
získat adresu MAC podle identifikátoru GUID. Pokud nebyla k dispozici adresa MAC
ani identifikátor GUID, je řetězec reprezentován názvem zařízení clusteru.

Error: (05/01/2015 00:17:40 PM) (Source: NetBT) (EventID: 4311) (User: )
Description: Inicializace se nezdařila, protože ovladač zařízení nemohl být vytvořen.
K identifikaci rozhraní, jehož inicializace se nezdařila, lze použít
řetězec 7A7919B180A8. Je reprezentován adresou MAC tohoto rozhraní nebo globálně
jedinečným identifikátorem (GUID), pokud nemohlo rozhraní NetBT
získat adresu MAC podle identifikátoru GUID. Pokud nebyla k dispozici adresa MAC
ani identifikátor GUID, je řetězec reprezentován názvem zařízení clusteru.


Microsoft Office Sessions:
=========================
Error: (05/04/2015 03:12:12 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestc:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsSMSEditor.exe

Error: (05/03/2015 09:58:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: atieclxx.exe6.14.11.1143512bf39aatieclxx.exe6.14.11.1143512bf39ac0000005000000000002e629f7801d085db8ee4ccddC:\windows\system32\atieclxx.exeC:\windows\system32\atieclxx.execd763cb3-f1ce-11e4-beee-c8cbb8c2ad6d

Error: (05/03/2015 08:57:36 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: .NETFrameworkC:\windows\system32\mscoree.dll8

Error: (05/03/2015 08:20:26 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073415161

Error: (05/03/2015 07:00:50 PM) (Source: flcdlock) (EventID: 1055) (User: )
Description: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}USB Input Device0xe000020b** The error code could not be translated **

Error: (05/03/2015 07:00:50 PM) (Source: flcdlock) (EventID: 1055) (User: )
Description: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}HID-compliant game controller0xe000020b** The error code could not be translated **

Error: (05/03/2015 07:00:50 PM) (Source: flcdlock) (EventID: 1043) (User: )
Description: 0xe000020b** The error code could not be translated **

Error: (05/03/2015 03:02:56 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestc:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsSMSEditor.exe

Error: (05/02/2015 11:33:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: atieclxx.exe6.14.11.1143512bf39aatieclxx.exe6.14.11.1143512bf39ac0000005000000000002e6294d001d0851f96716d82C:\windows\system32\atieclxx.exeC:\windows\system32\atieclxx.exed5185cf5-f112-11e4-beee-c8cbb8c2ad6d

Error: (05/02/2015 10:34:34 PM) (Source: Windows Search Service) (EventID: 10021) (User: )
Description: WSearchIdxPiOperace byla dokončena úspěšně. 0x0


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 28%
Total physical RAM: 8042.56 MB
Available physical RAM: 5767.9 MB
Total Pagefile: 9258.56 MB
Available Pagefile: 6639.66 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:915.99 GB) (Free:519.74 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Recovery Image) (Fixed) (Total:14.04 GB) (Free:1.36 GB) NTFS
Drive e: (FIFA 15 (2 - 2)) (CDROM) (Total:5.35 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)

Partition: GPT Partition Type.

==================== End Of Log ============================

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 16:40
od vyosek
:arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 16:45
od polisak1
Mám na ploše, ale pouze se spustí rychlý černý log v malém oknu, který ihned zmizí.. :?:

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 16:51
od vyosek
Zkuste v nouzovem rezimu

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 20:31
od polisak1
Po asi 3 hodinách mi program stále ukazuje toto:


Zoek.exe v5.0.0.0 Updated 23-04-2015
Tool run by polis_000 on po 04. 05. 2015 at 17:43:58,62.
Microsoft Windows 8 6.2.9200 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\polis_000\Desktop\zoek.exe [Scan all users] [Script inserted]

===== Runcheck 17:58:28,87 =====

--- Create Environment Variables 17:58:35,59
--- Create System Restore Point 17:59:21,40
--- Checking Input 18:00:16,83

Nevím, jestli tedy stále pracuje? :?:

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 20:40
od vyosek
:arrow: Tak jej ukoncete

:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Po spusteni probehne stazeni databaze
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 21:11
od polisak1
# AdwCleaner v4.203 - Log vytvořen 04/05/2015 v 22:04:52
# Aktualizováno 30/04/2015 by Xplode
# Databáze : 2015-05-02.1 [Server]
# Operační system : Windows 8 (x64)
# Uživatelské jméno : polis_000 - HP-ONDRA
# Spuštěno z : C:\Users\polis_000\Desktop\Antivir, Čištění PC\adwcleaner_4.203.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\goforfiles
Složka Smazáno : C:\Program Files (x86)\SourceApp
Složka Smazáno : C:\Users\POLIS_~1\AppData\Local\Temp\SourceApp
Soubor Smazáno : C:\Users\polis_000\AppData\Roaming\Mozilla\Firefox\Profiles\82q5oqbn.default\Extensions\firefox@sourceapp.info.xpi
Soubor Smazáno : C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fjpdnoojnohifgekbkmnfbiobhcbedka_0.localstorage
Soubor Smazáno : C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fjpdnoojnohifgekbkmnfbiobhcbedka
Soubor Smazáno : C:\Users\polis_000\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage
Soubor Smazáno : C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_eliteunzip.dl.tb.ask.com_0.localstorage
Soubor Smazáno : C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_eliteunzip.dl.tb.ask.com_0.localstorage-journal

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Klíč Smazáno : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{37AC0F3B-749F-3B22-811B-5A019EED2E85}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{4392A6CC-7940-310E-8E16-799A8D93A438}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{66DF7821-ED6D-3534-893C-0E89E74B0F91}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{755CAFCC-F016-3B06-8F22-945EAA3AD10D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{76552F88-640C-314D-82B6-0D8A740907F7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{05660A04-00F1-3A04-AB3B-BC1074B84D67}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{903F9872-E87F-3B74-83B0-DBE10073B29D}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{9558EEB4-CDA6-3778-B53B-98076F0A1E90}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{B25AA9BA-FD52-3E5E-BFE3-9B106779DA6E}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{C852CF9F-37DC-35AC-926A-7E6CFFF7C501}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{C9777796-4378-3C90-B52D-7238FFFC2A5C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{DB1BC8B2-FDBF-30E7-BE1C-AFF9160059E6}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{F3D5729C-7DEB-3850-A026-D0E323ECFEF5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Record\{FEC70973-CB8B-351C-8047-CAE1274CE249}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{038FF0E2-C6A6-4782-B89E-586A3DDF16C7}
Klíč Smazáno : HKCU\Software\Conduit
Klíč Smazáno : HKCU\Software\SourceApp
Klíč Smazáno : HKLM\SOFTWARE\SourceApp
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\B696D3C37BD0D6C33A65D38BEC459181
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\B696D3C37BD0D6C33A65D38BEC459181
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B696D3C37BD0D6C33A65D38BEC459181
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com

***** [ Prohlížeče ] *****

-\\ Internet Explorer v10.0.9200.17267


-\\ Mozilla Firefox v26.0 (cs)


-\\ Google Chrome v42.0.2311.135


-\\ Comodo Dragon v33.1.0.1


-\\ Chrome Canary v


*************************

AdwCleaner[R0].txt - [6302 bytů] - [23/05/2014 15:16:16]
AdwCleaner[R10].txt - [2872 bytů] - [02/04/2015 23:46:46]
AdwCleaner[R11].txt - [5018 bytů] - [04/05/2015 21:56:51]
AdwCleaner[R1].txt - [1305 bytů] - [12/07/2014 11:43:17]
AdwCleaner[R2].txt - [8933 bytů] - [20/07/2014 16:49:14]
AdwCleaner[R3].txt - [1985 bytů] - [21/07/2014 11:34:52]
AdwCleaner[R4].txt - [1540 bytů] - [21/08/2014 19:41:19]
AdwCleaner[R5].txt - [2649 bytů] - [29/08/2014 14:24:51]
AdwCleaner[R6].txt - [1660 bytů] - [21/09/2014 11:44:13]
AdwCleaner[R7].txt - [2447 bytů] - [29/10/2014 01:12:09]
AdwCleaner[R8].txt - [5393 bytů] - [26/12/2014 20:06:06]
AdwCleaner[R9].txt - [2608 bytů] - [08/02/2015 00:10:27]
AdwCleaner[S0].txt - [6358 bytů] - [23/05/2014 15:16:40]
AdwCleaner[S1].txt - [1372 bytů] - [12/07/2014 11:43:43]
AdwCleaner[S2].txt - [6347 bytů] - [20/07/2014 16:49:50]
AdwCleaner[S3].txt - [2062 bytů] - [21/07/2014 11:35:20]
AdwCleaner[S4].txt - [2486 bytů] - [29/10/2014 01:14:40]
AdwCleaner[S5].txt - [7319 bytů] - [26/12/2014 20:07:55]
AdwCleaner[S6].txt - [4813 bytů] - [04/05/2015 22:04:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [4871 bytů] ##########

Re: Znečištění, zpomalení PC..

Napsal: 04 kvě 2015 21:16
od vyosek
Udelejte MBAM dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928

Re: Znečištění, zpomalení PC..

Napsal: 05 kvě 2015 05:37
od polisak1
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 4. 5. 2015
Čas skenování: 22:23:52
Protokol:
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2015.05.04.06
Databáze rootkitů: v2015.04.21.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Sebeobrany: Vypnuto

OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: polis_000

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 879900
Uplynulý čas: 4 hod, 5 min, 57 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 0
(Žádné zákerné zjištěny položek)

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 0
(Žádné zákerné zjištěny položek)

Soubory: 24
PUP.Optional.Conduit.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\BS_Player_ControlBar\BS_Player_ControlBarToolbarHelper.exe.vir, , [6f378609068481b55239cf5134cc03fd],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Program Files (x86)\BS_Player_ControlBar\hk64tbBS_P.dll.vir, , [782e1a752b5f9b9b6c614ee3aa568b75],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Program Files (x86)\BS_Player_ControlBar\hktbBS_P.dll.vir, , [0c9afd92a0ea92a42f9e240d0af656aa],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Program Files (x86)\BS_Player_ControlBar\ldrtbBS_P.dll.vir, , [7e28672812782c0a4588df52ae52956b],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll.vir, , [a006335c17739a9c9c31fe33aa56748c],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Program Files (x86)\BS_Player_ControlBar\tbBS_P.dll.vir, , [8d199cf36a2039fd814ce44d8a76956b],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir, , [0c9ac1ce7a10340272fd981f1ae727d9],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface64.dll.vir, , [4660008f771364d296d96e498978847c],
Trojan.Dropper, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\HpUI.exe.vir, , [297dbdd28505a393f33d9daf8e743fc1],
PUP.Optional.SearchProtect, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\Loader32.exe.vir, , [624499f6b6d472c481a3e66606fc4eb2],
PUP.Optional.SearchProtect, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\Loader64.exe.vir, , [e6c0f49b0f7b280e78bb38bee41da45c],
PUP.Optional.IEPluginService.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\RSHP.exe.vir, , [8e18aee18efc0531c7199cfe42bff709],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect32.dll.vir, , [a3030d824d3da096db946354877a728e],
PUP.Optional.Skytech.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SearchProtect64.dll.vir, , [0f970b848dfda88ea4cb882f47ba24dc],
PUP.Optional.IePluginService.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupIePluginServiceUpdate.exe.vir, , [cfd7513eb0dacb6be275d1b7f60b7d83],
PUP.Optional.SupTab.A, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupTab.dll.vir, , [8521c0cf7e0c69cd7c1cf93ef60adc24],
PUP.Optional.SearchProtect, C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\WindowsSupportDll32.dll.vir, , [485eafe0fb8f64d281b1b25262a46799],
PUP.Optional.IePluginService.A, C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir, , [3472503f84061620c2955b2dbe43a15f],
PUP.Optional.Conduit.A, C:\AdwCleaner\Quarantine\C\Users\polis_000\AppData\Local\Conduit\CT1750559\BS_Player_ControlBarAutoUpdateHelper.exe.vir, , [485ebad528629c9ad0bb110ff40c7f81],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Users\polis_000\AppData\LocalLow\BS_Player_ControlBar\hk64tbBS_P.dll.vir, , [9412e6a994f6ca6c478686abc63a6799],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Users\polis_000\AppData\LocalLow\BS_Player_ControlBar\hktbBS_P.dll.vir, , [2680454a098151e5e1ec59d85fa1946c],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Users\polis_000\AppData\LocalLow\BS_Player_ControlBar\ldrtbBS_P.dll.vir, , [81251f703753181ef1dc0b2602fe956b],
PUP.Optional.Conduit, C:\AdwCleaner\Quarantine\C\Users\polis_000\AppData\LocalLow\BS_Player_ControlBar\tbBS_P.dll.vir, , [f9ad147bcfbb88ae2ca17cb521df9868],
PUP.Optional.MyPCBackup.A, C:\Users\polis_000\AppData\Local\Temp\OnlineBackup.exe, , [a8fe533c315964d2639b6a8b11f0bb45],

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)


(end)

Re: Znečištění, zpomalení PC..

Napsal: 05 kvě 2015 19:07
od polisak1
Co tedy s detekovanými soubory? :) :?:

Re: Znečištění, zpomalení PC..

Napsal: 07 kvě 2015 07:46
od vyosek
Nalezy smazte

Dejte novy log z FRST

Re: Znečištění, zpomalení PC..

Napsal: 08 kvě 2015 07:41
od polisak1
Prosil bych o radu ještě, pokud jsem program Mbam vypnul a nyní když dám záložku sken, nejsou tam detekované soubory a nejsou ani v karanténě, kde je mohu najít a smazat? :( :?:
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz