VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu

https://forum.viry.cz:443/viewtopic.php?t=144463

Stránka 1 z 1

Prosím o kontrolu

Napsal: 18 kvě 2015 16:30
od zdenek72
Prosím o kontrolu logu. Děkuji moc!
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-05-2015 02
Ran by Blanka at 2015-05-18 17:17:52
Running from C:\Users\Blanka\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-412466861-1309505891-1087973670-500 - Administrator - Disabled)
Blanka (S-1-5-21-412466861-1309505891-1087973670-1000 - Administrator - Enabled) => C:\Users\Blanka
Guest (S-1-5-21-412466861-1309505891-1087973670-501 - Administrator - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-412466861-1309505891-1087973670-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 3.2.0 - )
µTorrent (HKU\S-1-5-21-412466861-1309505891-1087973670-1000\...\uTorrent) (Version: 3.4.3.40097 - BitTorrent Inc.)
AdmWin 2.47 (HKLM-x32\...\AdmWin_is1) (Version: - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.8.1.451 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version: - Reloaded Productions)
ATI Catalyst Install Manager (HKLM\...\{95808236-DE32-EC77-0D88-11AF9C7CF80D}) (Version: 3.0.820.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2215 - AVAST Software)
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.2.740 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Belltech Photo Editor Max 2.0 (HKLM-x32\...\Belltech Photo Editor Max 2.0_is1) (Version: 2.0.0.0 - Belltech Systems)
Call of Juarez (HKLM-x32\...\InstallShield_{07119BED-86AE-4AE3-97A5-45A118A3F06A}) (Version: 1.1.1.0 - Techland)
Call of Juarez (x32 Version: 1.1.1.0 - Techland) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
Counter-Strike 1.6 v36 protokol 48 (HKLM-x32\...\Counter-Strike 1.6 v36 protokol 48) (Version: - )
Counter-Strike 1.6 v42 (HKU\S-1-5-21-412466861-1309505891-1087973670-1000\...\Counter-Strike 1.6_is1) (Version: - Valve)
CPU & Ram Meter (HKLM-x32\...\CPU & Ram Meter2.1) (Version: 2.1 - Nikola Vukovic)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (HKLM-x32\...\{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}) (Version: 1.5.201.0 - Fingertapps)
Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.1.3 - Dell Inc.)
Dell Stage (HKLM-x32\...\{E2EBA7C0-8072-447F-856D-FFEE8D15B23B}) (Version: 1.5.201.0 - Fingertapps)
Dell Stage Remote (HKLM-x32\...\{AF4D3C63-009B-4A17-B02E-D395065DD3F0}) (Version: 2.0.0.43 - ArcSoft)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1209.101.204 - ALPS ELECTRIC CO., LTD.)
Dell VideoStage (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)
Dell VideoStage (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.44 - Creative Technology Ltd)
EGR-ShellExtension (HKLM-x32\...\EGR-ShellExtension) (Version: 1.2.0.100 - EasternGraphics)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter verze 4.1.5 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.5 - Ellora Assets Corporation)
Gameforge Live 1.10.1 "Legend" (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.10.1 - Gameforge)
Glary Utilities 5.13 (HKLM-x32\...\Glary Utilities 5) (Version: 5.13.0.26 - Glarysoft Ltd)
Google Drive (HKLM-x32\...\{35574F09-89F9-4B16-B69B-64F3E25901B8}) (Version: 1.21.9226.6034 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.152 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6421.0 - IDT)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{7CE8BE79-ABC3-4B2C-9543-28ED2B0A9EA8}) (Version: 1.2.0.0587 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Intel(R) WiDi (HKLM-x32\...\{781A93CD-1608-427D-B7F0-D05C07795B25}) (Version: 2.1.41.0 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Java 7 Update 75 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217075F0}) (Version: 7.0.750 - Oracle)
Java 7 Update 76 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417076FF}) (Version: 7.0.760 - Oracle)
Java 7 Update 76 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217076FF}) (Version: 7.0.760 - Oracle)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.130 - PandoraTV)
LibreOffice 3.5 (HKLM-x32\...\{EF790F1C-CB0C-4B95-8C54-60783F3B6661}) (Version: 3.5.4.2 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.328 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MC BP-Modpack 1.7.10 (HKLM-x32\...\MC BP-Modpack) (Version: 1.7.10 - Minecraft Building Paradise)
Mc Titan FTB (HKLM-x32\...\Mc Titan FTB 1.0.0) (Version: 1.0.0 - Mc Titan)
Mc Titan FTB (x32 Version: 1.0.0 - Mc Titan) Hidden
MC Titan Minecraft Feed the Beast (HKLM-x32\...\MC Titan Minecraft Feed the Beast) (Version: - )
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 38.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 cs)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.1.0.28 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{DEA314C4-0929-4250-BC92-98E4C105F28D}) (Version: 9.10.0129 - NVIDIA Corporation)
Opera Stable 29.0.1795.47 (HKLM-x32\...\Opera 29.0.1795.47) (Version: 29.0.1795.47 - Opera Software ASA)
osu! (HKLM-x32\...\{a8234307-9aae-461c-a762-009bfd6b049d}) (Version: latest - ppy Pty Ltd)
osu! (HKLM-x32\...\{aaa39a9e-ecdf-4e8a-8658-0ac7f217cbb5}) (Version: latest - ppy Pty Ltd)
osu! (HKLM-x32\...\{e6a7c0a6-4297-4590-924b-011b21f24208}) (Version: latest - ppy Pty Ltd)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.2.1 - Frank Heindörfer, Philip Chinery)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
RAR Password Unlocker 4.2.0.0 (HKLM-x32\...\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1) (Version: - Password Unlocker Studio)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30126 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-412466861-1309505891-1087973670-1000\...\SeznamInstall) (Version: - Seznam.cz)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Software Intel(R) PROSet/Wireless WiFi (HKLM\...\{295AEB79-B53A-4F1B-860F-7800BB7E3681}) (Version: 14.2.1000 - Intel Corporation)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TI USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{B1EB7FFF-6E44-43D8-869D-B78E44CD3E0F}) (Version: 1.12.14.0 - Texas Instruments Inc.)
TI USB3 Host Driver (x32 Version: 1.12.14.0 - Texas Instruments Inc.) Hidden
TmNationsForever (HKLM-x32\...\TmNationsForever_is1) (Version: - Nadeo)
Unity Web Player (HKU\S-1-5-21-412466861-1309505891-1087973670-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Vegas Pro 11.0 (HKLM-x32\...\{B5B98340-0296-11E2-8B8E-F04DA23A5C58}) (Version: 11.0.700 - Sony)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Základní software zařízení HP Deskjet 2050 J510 series (HKLM\...\{F61FD928-A74D-4AF9-9667-BE2BB6F2C386}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)
Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-412466861-1309505891-1087973670-1000_Classes\CLSID\{DEDBE4C9-9E87-40C5-B437-9AAB7EB9C667}\InprocServer32 -> C:\Program Files (x86)\EasternGraphics\EGR-ShellExtension\Win64\egr_se.dll (EasternGraphics)

==================== Restore Points =========================

12-03-2015 04:00:46 Windows Update
14-03-2015 19:21:17 Windows Update
18-03-2015 10:22:06 Windows Update
22-03-2015 16:55:20 Windows Update
23-03-2015 23:45:02 Installed Java 7 Update 75
25-03-2015 19:28:54 Windows Update
28-03-2015 22:24:26 Windows Update
03-04-2015 08:22:30 Windows Update
05-04-2015 08:13:47 Windows Update
08-04-2015 15:12:06 Windows Update
10-04-2015 14:53:26 Removed Základní software zařízení HP Deskjet 2050 J510 series
11-04-2015 20:08:52 Windows Update
12-04-2015 13:30:13 Uniblue PC Mechanic installation
15-04-2015 13:32:51 Windows Update
16-04-2015 03:01:13 Windows Update
20-04-2015 10:45:07 Windows Update
23-04-2015 17:13:54 Windows Update
27-04-2015 17:21:03 avast! antivirus system restore point
27-04-2015 17:37:48 Windows Update
28-04-2015 17:20:43 Removed Zinio Reader 4
28-04-2015 17:24:06 Odstraněno Realtek Ethernet Controller All-In-One Windows Driver™'
03-05-2015 10:10:50 Windows Update
06-05-2015 11:31:48 Windows Update
10-05-2015 17:02:37 Windows Update
13-05-2015 11:25:06 Windows Update
15-05-2015 18:52:09 Removed LogMeIn Hamachi
15-05-2015 18:54:44 Installed LogMeIn Hamachi
17-05-2015 08:50:16 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-02-25 13:19 - 00000840 ____A C:\windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {12F70C16-4D9A-427F-9341-C92FC6F0A9D2} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation)
Task: {22272F5B-34C8-4A72-9D5C-04D572DAA3DD} - System32\Tasks\AdobeAAMUpdater-1.0-Blanka-PC-Hoooonza => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14] (Adobe Systems Incorporated)
Task: {23EFD737-A653-4101-BCCB-E2BD15E7C291} - System32\Tasks\UERRV => C:\Users\Hoooonza\AppData\Roaming\UERRV.exe <==== ATTENTION
Task: {286BBF0A-012B-489D-9308-ABE926995D56} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2014-11-24] (Glarysoft Ltd)
Task: {28C99E85-13FC-4279-98C7-AF9278F26235} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2014-11-24] (Glarysoft Ltd)
Task: {2AC55CA6-47DD-4055-9C67-34379C2E44BA} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {39AF646F-5EC0-4573-962A-B478E10BBADB} - System32\Tasks\Opera scheduled Autoupdate 1420437773 => C:\Program Files (x86)\Opera\launcher.exe [2015-04-17] (Opera Software)
Task: {4B21E8FF-9CC3-4A79-B3F2-C0C2E5C10DBE} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)
Task: {50824701-2E74-4B65-BCFB-CB91D4A6990A} - System32\Tasks\CIIAYI => C:\Users\Hoooonza\AppData\Roaming\CIIAYI.exe <==== ATTENTION
Task: {520AE2AE-C6F8-46C4-93F8-52B47195ABBD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {643E7174-8808-4554-98BF-E3937BC41476} - System32\Tasks\{EEA8F421-702C-4D7C-914F-33ED104F5652} => pcalua.exe -a C:\Users\Hoooonza\Desktop\mctitan_pokemine.exe -d C:\Users\Hoooonza\Desktop
Task: {7C5ACCF7-4BCE-43AC-A6E9-BB7D11FF21F4} - System32\Tasks\avastBCLRestartS-1-5-21-412466861-1309505891-1087973670-1003 => Chrome.exe
Task: {7CAADEC0-6233-43E2-B2A9-9738F9407F7F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-31] (Avast Software s.r.o.)
Task: {83E22831-6D69-411B-B5CA-F6E2FD9B0D7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-05] (Google Inc.)
Task: {95884C8D-1376-42F4-B7BE-7FD381CD1045} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {9DB7BD69-6020-45E0-9218-ECAC1DB860A5} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {A1631A43-C116-4D44-9BAF-63E373E72AE5} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {A1EE0AED-973B-40D4-89D3-A052ED9FD5A3} - System32\Tasks\{DEEF1A05-3A41-4521-B5B6-37C0F95287BC} => pcalua.exe -a C:\Users\Blanka\Desktop\mctitan172.exe -d C:\Users\Blanka\Desktop
Task: {A56AE36A-74EC-447E-BA20-40EA221A4A84} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-05] (Google Inc.)
Task: {B6D3AB4F-B40D-443E-A95F-D22A9768AA66} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {BAB7DB11-9103-4F60-B032-21DBCE8D407B} - System32\Tasks\{048314BC-FED5-4D79-8976-AE33D3EDBB9E} => C:\Users\Hoooonza\Desktop\Minecraft-warez-Launcher-1.7.10.exe
Task: {E5EFAFA6-08E9-4EEA-88CB-06A8B6C83493} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {EBE7BFDA-1DFD-490E-B4F9-9D0E78A8673B} - System32\Tasks\Norton Security Scan for NightCore => C:\Program Files (x86)\Norton Security Scan\Engine\4.1.0.28\Nss.exe [2014-01-27] (Symantec Corporation)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\CIIAYI.job => C:\Users\Hoooonza\AppData\Roaming\CIIAYI.exe <==== ATTENTION
Task: C:\windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Norton Security Scan for NightCore.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe
Task: C:\windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
Task: C:\windows\Tasks\UERRV.job => C:\Users\Hoooonza\AppData\Roaming\UERRV.exe <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2011-09-16 01:46 - 2011-09-16 01:46 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2014-09-26 15:41 - 2014-09-26 15:41 - 01021088 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-01-05 08:40 - 2005-03-12 02:07 - 00087040 _____ () C:\windows\System32\pdfcmnnt.dll
2014-11-22 02:03 - 2014-11-22 02:03 - 00043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2014-03-09 21:34 - 2014-11-04 18:29 - 00076152 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2012-01-21 02:03 - 2011-08-18 17:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
2015-01-02 20:31 - 2000-01-01 02:00 - 00158536 _____ () C:\windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll
2015-03-31 18:14 - 2015-03-31 18:14 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-03-31 18:13 - 2015-03-31 18:13 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-05-18 10:49 - 2015-05-18 10:49 - 02929664 _____ () C:\Program Files\AVAST Software\Avast\defs\15051800\algo.dll
2015-03-31 18:14 - 2015-03-31 18:14 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-05-14 06:31 - 2015-05-05 06:06 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libglesv2.dll
2015-05-14 06:31 - 2015-05-05 06:06 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libegl.dll
2014-10-16 03:45 - 2014-10-16 03:45 - 00169472 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\93182e9779b8be0f688fd0784df6d7fb\IsdiInterop.ni.dll
2012-01-21 01:37 - 2010-11-06 07:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-412466861-1309505891-1087973670-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Blanka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Apoint => C:\Program Files\DellTPad\Apoint.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\Guest\AppData\Roaming\Seznam.cz\szninstall.exe" -c
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\Guest\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: DellStage => "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
MSCONFIG\startupreg: GoogleChromeAutoLaunch_A947EBE730F005502320B355C64F93AC => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
MSCONFIG\startupreg: IntelPAN => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Stage Remote => C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe -Quiet
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Blanka\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [{BD72EC29-722A-4314-BFB0-3CA131C9D428}] => (Allow) C:\Program Files (x86)\Dell\VideoStage\VideoStage.exe
FirewallRules: [{E8D44EEB-7307-4D9B-97B1-96708CB43D22}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\Controller.exe
FirewallRules: [{44BB6ECB-BAF2-40F6-8DBA-568F3DEA6F7F}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\InstallerHelp.exe
FirewallRules: [{189FE113-EE41-44C2-B849-120C380C7838}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
FirewallRules: [{1457589F-DE28-44D2-9817-EC1199DD7D4D}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\DMR.exe
FirewallRules: [{D8AC315D-3D3C-426E-99CF-CC851078A9E7}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\Controller.exe
FirewallRules: [{C12AD2BC-530B-4C6F-BCE9-CD3E131A84F4}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
FirewallRules: [{948CC97B-95DB-4292-9173-3279575DB7EE}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\InstallerHelp.exe
FirewallRules: [{AE155B28-8D8C-454D-A48D-0E92BEFBA680}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
FirewallRules: [{4DF4C1E2-0391-4464-B182-776DD42B7758}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\DMR.exe
FirewallRules: [{F6424C2F-E301-49B3-AFB2-B884AB6F0500}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
FirewallRules: [{7B00D1E0-A684-438E-9F78-01373709D819}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{0AA18777-196C-4173-ADB8-F53DF8CD2607}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{84D18C85-06B6-4348-9090-9DBE73ACB633}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{47BB0AD6-788F-4645-8042-E99A1A4F4F1D}] => (Allow) LPort=2869
FirewallRules: [{4F043EE9-AD5E-4520-A504-99B55044E593}] => (Allow) LPort=1900
FirewallRules: [{54598034-912D-42F7-A9F9-7CB8F5BA4DEE}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{03CC6078-2262-4F47-987C-0B28314AAD28}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{DC26B69B-41A3-4531-B3D7-61FBBBA62883}C:\program files (x86)\techland\call of juarez\coj.exe] => (Block) C:\program files (x86)\techland\call of juarez\coj.exe
FirewallRules: [UDP Query User{6075FE91-6386-4FDD-B6BD-69CCD3BFBDA3}C:\program files (x86)\techland\call of juarez\coj.exe] => (Block) C:\program files (x86)\techland\call of juarez\coj.exe
FirewallRules: [TCP Query User{AA6C0619-0B80-451B-8997-532D50E0460E}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{C8A31725-D9CB-4E89-8233-6B3351817C04}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{91FDF366-4FBA-494C-8636-876108578DB6}C:\counter-strike 1.6\hl.exe] => (Block) C:\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{DFC0C450-99DD-4DB0-9CA4-50E0C6E767C9}C:\counter-strike 1.6\hl.exe] => (Block) C:\counter-strike 1.6\hl.exe
FirewallRules: [TCP Query User{6AEB1D3F-C9E1-4F55-ADE9-D9D96EE1D04C}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{6CB96CD1-ABCF-422C-B334-7AAE99C5F1B7}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{C8254E1F-C5E1-4B8C-842D-017989230A1E}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{04862EC9-BDCD-47AF-B098-B24BB2A1E5F4}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{8F4C309E-8E41-4E2E-94CE-08F9057F523F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{80240D6C-EFF7-44E3-977E-83D7C804A807}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8B857C2C-037A-4654-9615-DDEDD0AA18BC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{11EC395F-7AF4-4BF6-B932-0EEDC4A10E24}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{99E55A55-816F-4FE4-99AD-5E24F716B4DF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{9BCF4994-788E-4E7C-B27F-BAD671B9B9F0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{18769AA4-874E-45ED-BB04-1409B068147C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{FEBA0460-3241-4D88-A0BA-FAED54DD417D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{366193F9-9F1B-422F-ACB4-5C8DEDE42C33}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{6160A094-3B26-4C34-A9BD-FE8E6643B958}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{9CB71527-0AC4-4FA9-A391-E5BD0DE6BCD4}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [UDP Query User{CA60E531-C561-4566-8338-D72CD76F4C12}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [{84BDEF16-F9D6-4E76-9AEB-2A52186FEF35}] => (Block) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [{3F8F15DE-DB2E-463D-ACA2-232A0901D256}] => (Block) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [TCP Query User{FCFCF93B-33E4-4801-A3D5-4355E9F80C5C}C:\windows\system32\javaw.exe] => (Block) C:\windows\system32\javaw.exe
FirewallRules: [UDP Query User{8E42CA1E-9920-4A27-82F4-4485DD47D5BF}C:\windows\system32\javaw.exe] => (Block) C:\windows\system32\javaw.exe
FirewallRules: [TCP Query User{1453B6D1-559A-4E85-BC12-7AE6B4344CD7}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{1AF5304C-7C2A-4703-A2E0-6C311747A1A2}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [{4E334462-02C3-4186-80B5-C1963733932A}] => (Block) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [{DFF9EB10-9AF7-4382-B050-3DEB286D18B3}] => (Block) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [{A872878A-3E1F-470D-9E39-BD42F1E74782}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{1BC59D71-B339-47C1-8006-083AC0A8621C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{317D98A5-4F32-40A2-B7F2-8C189B98A099}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{C6886BC4-599B-4313-A258-CF3F43163CB3}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{DFFC5F7D-056C-4D16-B26B-FAF01E925DCC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{59FC0EC0-31B2-4F7F-86CB-6211680EC7A5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{04AF4192-32E7-47E9-9F71-A17FB6DA2274}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{101FC32A-5B77-433F-9F4F-526D72C3D4F8}C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{97AD66C2-FDB3-44D3-8843-C0251942C427}C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{33A4164D-D57B-41E7-8537-77411091FC9A}] => (Allow) C:\Users\Hoooonza\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{0C28A9E2-1660-4BF5-844F-FC23915BC4AB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AF162763-AB7B-4425-9616-2C3A7D0E7C2C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{ED835CE9-C0CF-4061-9B8A-C094053F8487}C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{608434D9-DBB1-4FB9-9C53-3087DC1E6D73}C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{1126BD41-A46D-43A3-89FF-9D1EBA8FDC4B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1E16C32D-6B3E-4BBF-BA43-879CFA1463C0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5C2AE71F-3C7B-49BE-ABA5-1A085C5A913E}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{D1E732BF-13FD-48C6-A17D-434B45330CB8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{AFBF6381-1989-4B74-A686-6177C532F8CD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{56FC2B74-A1B5-4D5B-B13C-DC9BC3C616E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{7915C538-5ED3-4F60-84B7-8CFADE5F50F5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{87F5F935-5FE3-4FDD-AF2D-415B89E8E537}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3BFFF6B9-08A2-4C51-86D8-FAFA33076950}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F0B83325-E035-4125-A1C4-282039B0BBB6}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [TCP Query User{E814A020-8B84-4437-A876-589E53884BD6}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{0C10BDD1-5CBE-46A1-917C-27A918BC9439}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{5371A65C-CDE7-4253-B1C1-A5C7CF426DDB}C:\users\hoooonza\appdata\roaming\.creativeportal\jre\bin\javaw.exe] => (Block) C:\users\hoooonza\appdata\roaming\.creativeportal\jre\bin\javaw.exe
FirewallRules: [UDP Query User{DBD2FDE1-BD14-4B7F-9193-D8105C9DACD4}C:\users\hoooonza\appdata\roaming\.creativeportal\jre\bin\javaw.exe] => (Block) C:\users\hoooonza\appdata\roaming\.creativeportal\jre\bin\javaw.exe
FirewallRules: [TCP Query User{B8A7F89B-C67B-4D33-9F0D-C4B2C2DF6E77}C:\counter-strike 1.6\hltv.exe] => (Block) C:\counter-strike 1.6\hltv.exe
FirewallRules: [UDP Query User{6F593D59-2532-43EA-A761-62B0E7444F1B}C:\counter-strike 1.6\hltv.exe] => (Block) C:\counter-strike 1.6\hltv.exe
FirewallRules: [TCP Query User{D418DEA6-D378-414C-AC80-D77015FF48C1}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{93493E4D-1082-47B1-A256-FF1E1669B58C}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe
FirewallRules: [{373062A7-1185-4988-935B-C379002E8589}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{099F4FDC-D030-48F7-B852-85C075FA826F}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{7FD1D39F-E80B-4C61-8B3E-710EB0E32AB6}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{71DF35FF-62B5-4B27-8881-C8B27136D6C2}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{60812EF2-0EA9-4849-AC33-B72024F57540}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{7AF70201-8BF2-48A1-93D7-FAA41470CAD1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{94743465-12C2-4946-AF0A-C016D4A7BB70}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{49F912D2-5FBA-4D42-A06B-F47C4A5DF337}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{97046F1C-05B1-4448-99D1-F23BA9A8D1CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/18/2015 04:38:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vyhledávací služby zjistila, že index {id=4700} obsahuje poškozené datové soubory. Služba se pokusí tyto potíže automaticky odstranit vytvořením nového indexu.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: Služba Windows Search neotevřela úložiště vlastností databázového stroje Jet.

Podrobnosti:
0x%08x (0xc0041800 - Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800))


System errors:
=============
Error: (05/18/2015 04:35:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (05/18/2015 04:35:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (05/18/2015 04:35:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (05/18/2015 04:35:35 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (05/18/2015 04:34:50 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
%%1056

Error: (05/18/2015 04:34:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (05/18/2015 04:34:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Search byla neočekávaně ukončena. Tento stav nastal již 3krát.

Error: (05/18/2015 04:34:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (05/18/2015 04:34:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (05/18/2015 04:34:20 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Windows Search ukončena s chybou %%-1073473535, specifickou pro službu.


Microsoft Office Sessions:
=========================
Error: (05/18/2015 04:38:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: Podrobnosti:
0x%08x (0xc0041800 - Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800))


CodeIntegrity Errors:
===================================
Date: 2015-01-05 14:43:15.663
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Blanka\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-05 14:43:15.507
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Blanka\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-05 14:43:15.304
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-05 14:43:15.148
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 52%
Total physical RAM: 4002.05 MB
Available physical RAM: 1919.46 MB
Total Pagefile: 8002.32 MB
Available Pagefile: 5421.72 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:683.89 GB) (Free:315.87 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 8313433C)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=683.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Re: Prosím o kontrolu

Napsal: 18 kvě 2015 16:51
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Prosím o kontrolu

Napsal: 18 kvě 2015 17:43
od zdenek72
# AdwCleaner v4.204 - Log vytvořen 18/05/2015 v 18:36:40
# Aktualizováno 12/05/2015 by Xplode
# Databáze : 2015-05-12.2 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Blanka - BLANKA-PC
# Spuštěno z : C:\Users\Blanka\Desktop\adwcleaner_4.204(1).exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Soubor Smazáno : C:\Users\Blanka\AppData\Roaming\Opera Software\Opera Stable\Local Extension Settings\nhjehbmopbfbomhchfkhbghcehpeiijl
Soubor Smazáno : C:\Users\Blanka\AppData\Roaming\Opera Software\Opera Stable\Local Extension Settings\knlpigpfaognbholppaembpfphilacie

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****


***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17801


-\\ Mozilla Firefox v38.0.1 (x86 cs)


-\\ Google Chrome v42.0.2311.152

[C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Homepage] : hxxp://www.istartsurf.com/?type=hp&ts=14286428 ... XX6WS11HLD

-\\ Opera v29.0.1795.47


*************************

AdwCleaner[R0].txt - [13462 bytů] - [25/02/2015 12:38:29]
AdwCleaner[R1].txt - [13522 bytů] - [25/02/2015 12:47:45]
AdwCleaner[R2].txt - [17866 bytů] - [18/05/2015 16:29:38]
AdwCleaner[R3].txt - [30325 bytů] - [18/05/2015 16:31:34]
AdwCleaner[R4].txt - [1669 bytů] - [18/05/2015 18:34:30]
AdwCleaner[S0].txt - [14676 bytů] - [25/02/2015 13:04:00]
AdwCleaner[S1].txt - [20262 bytů] - [18/05/2015 16:34:18]
AdwCleaner[S2].txt - [1591 bytů] - [18/05/2015 18:36:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1649 bytů] ##########

Re: Prosím o kontrolu

Napsal: 18 kvě 2015 18:32
od Rudy
Dejte nový log FRST.

Re: Prosím o kontrolu

Napsal: 18 kvě 2015 20:09
od zdenek72
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-05-2015 02
Ran by Blanka at 2015-05-18 21:07:52
Running from C:\Users\Blanka\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-412466861-1309505891-1087973670-500 - Administrator - Disabled)
Blanka (S-1-5-21-412466861-1309505891-1087973670-1000 - Administrator - Enabled) => C:\Users\Blanka
Guest (S-1-5-21-412466861-1309505891-1087973670-501 - Administrator - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-412466861-1309505891-1087973670-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 3.2.0 - )
µTorrent (HKU\S-1-5-21-412466861-1309505891-1087973670-1000\...\uTorrent) (Version: 3.4.3.40097 - BitTorrent Inc.)
AdmWin 2.47 (HKLM-x32\...\AdmWin_is1) (Version: - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.8.1.451 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version: - Reloaded Productions)
ATI Catalyst Install Manager (HKLM\...\{95808236-DE32-EC77-0D88-11AF9C7CF80D}) (Version: 3.0.820.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2215 - AVAST Software)
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.2.740 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Belltech Photo Editor Max 2.0 (HKLM-x32\...\Belltech Photo Editor Max 2.0_is1) (Version: 2.0.0.0 - Belltech Systems)
Call of Juarez (HKLM-x32\...\InstallShield_{07119BED-86AE-4AE3-97A5-45A118A3F06A}) (Version: 1.1.1.0 - Techland)
Call of Juarez (x32 Version: 1.1.1.0 - Techland) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
Counter-Strike 1.6 v36 protokol 48 (HKLM-x32\...\Counter-Strike 1.6 v36 protokol 48) (Version: - )
Counter-Strike 1.6 v42 (HKU\S-1-5-21-412466861-1309505891-1087973670-1000\...\Counter-Strike 1.6_is1) (Version: - Valve)
CPU & Ram Meter (HKLM-x32\...\CPU & Ram Meter2.1) (Version: 2.1 - Nikola Vukovic)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (HKLM-x32\...\{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}) (Version: 1.5.201.0 - Fingertapps)
Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.1.3 - Dell Inc.)
Dell Stage (HKLM-x32\...\{E2EBA7C0-8072-447F-856D-FFEE8D15B23B}) (Version: 1.5.201.0 - Fingertapps)
Dell Stage Remote (HKLM-x32\...\{AF4D3C63-009B-4A17-B02E-D395065DD3F0}) (Version: 2.0.0.43 - ArcSoft)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1209.101.204 - ALPS ELECTRIC CO., LTD.)
Dell VideoStage (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)
Dell VideoStage (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.44 - Creative Technology Ltd)
EGR-ShellExtension (HKLM-x32\...\EGR-ShellExtension) (Version: 1.2.0.100 - EasternGraphics)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter verze 4.1.5 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.5 - Ellora Assets Corporation)
Gameforge Live 1.10.1 "Legend" (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.10.1 - Gameforge)
Glary Utilities 5.13 (HKLM-x32\...\Glary Utilities 5) (Version: 5.13.0.26 - Glarysoft Ltd)
Google Drive (HKLM-x32\...\{35574F09-89F9-4B16-B69B-64F3E25901B8}) (Version: 1.21.9226.6034 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.152 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6421.0 - IDT)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{7CE8BE79-ABC3-4B2C-9543-28ED2B0A9EA8}) (Version: 1.2.0.0587 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Intel(R) WiDi (HKLM-x32\...\{781A93CD-1608-427D-B7F0-D05C07795B25}) (Version: 2.1.41.0 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Java 7 Update 75 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217075F0}) (Version: 7.0.750 - Oracle)
Java 7 Update 76 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417076FF}) (Version: 7.0.760 - Oracle)
Java 7 Update 76 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217076FF}) (Version: 7.0.760 - Oracle)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.130 - PandoraTV)
LibreOffice 3.5 (HKLM-x32\...\{EF790F1C-CB0C-4B95-8C54-60783F3B6661}) (Version: 3.5.4.2 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.328 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MC BP-Modpack 1.7.10 (HKLM-x32\...\MC BP-Modpack) (Version: 1.7.10 - Minecraft Building Paradise)
Mc Titan FTB (HKLM-x32\...\Mc Titan FTB 1.0.0) (Version: 1.0.0 - Mc Titan)
Mc Titan FTB (x32 Version: 1.0.0 - Mc Titan) Hidden
MC Titan Minecraft Feed the Beast (HKLM-x32\...\MC Titan Minecraft Feed the Beast) (Version: - )
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 38.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 cs)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.1.0.28 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{DEA314C4-0929-4250-BC92-98E4C105F28D}) (Version: 9.10.0129 - NVIDIA Corporation)
Opera Stable 29.0.1795.47 (HKLM-x32\...\Opera 29.0.1795.47) (Version: 29.0.1795.47 - Opera Software ASA)
osu! (HKLM-x32\...\{a8234307-9aae-461c-a762-009bfd6b049d}) (Version: latest - ppy Pty Ltd)
osu! (HKLM-x32\...\{aaa39a9e-ecdf-4e8a-8658-0ac7f217cbb5}) (Version: latest - ppy Pty Ltd)
osu! (HKLM-x32\...\{e6a7c0a6-4297-4590-924b-011b21f24208}) (Version: latest - ppy Pty Ltd)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}) (Version: 4.0.5 - dotPDN LLC)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.2.1 - Frank Heindörfer, Philip Chinery)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
RAR Password Unlocker 4.2.0.0 (HKLM-x32\...\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1) (Version: - Password Unlocker Studio)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30126 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-412466861-1309505891-1087973670-1000\...\SeznamInstall) (Version: - Seznam.cz)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.1 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Software Intel(R) PROSet/Wireless WiFi (HKLM\...\{295AEB79-B53A-4F1B-860F-7800BB7E3681}) (Version: 14.2.1000 - Intel Corporation)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TI USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{B1EB7FFF-6E44-43D8-869D-B78E44CD3E0F}) (Version: 1.12.14.0 - Texas Instruments Inc.)
TI USB3 Host Driver (x32 Version: 1.12.14.0 - Texas Instruments Inc.) Hidden
TmNationsForever (HKLM-x32\...\TmNationsForever_is1) (Version: - Nadeo)
Unity Web Player (HKU\S-1-5-21-412466861-1309505891-1087973670-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Vegas Pro 11.0 (HKLM-x32\...\{B5B98340-0296-11E2-8B8E-F04DA23A5C58}) (Version: 11.0.700 - Sony)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Základní software zařízení HP Deskjet 2050 J510 series (HKLM\...\{F61FD928-A74D-4AF9-9667-BE2BB6F2C386}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)
Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-412466861-1309505891-1087973670-1000_Classes\CLSID\{DEDBE4C9-9E87-40C5-B437-9AAB7EB9C667}\InprocServer32 -> C:\Program Files (x86)\EasternGraphics\EGR-ShellExtension\Win64\egr_se.dll (EasternGraphics)

==================== Restore Points =========================

12-03-2015 04:00:46 Windows Update
14-03-2015 19:21:17 Windows Update
18-03-2015 10:22:06 Windows Update
22-03-2015 16:55:20 Windows Update
23-03-2015 23:45:02 Installed Java 7 Update 75
25-03-2015 19:28:54 Windows Update
28-03-2015 22:24:26 Windows Update
03-04-2015 08:22:30 Windows Update
05-04-2015 08:13:47 Windows Update
08-04-2015 15:12:06 Windows Update
10-04-2015 14:53:26 Removed Základní software zařízení HP Deskjet 2050 J510 series
11-04-2015 20:08:52 Windows Update
12-04-2015 13:30:13 Uniblue PC Mechanic installation
15-04-2015 13:32:51 Windows Update
16-04-2015 03:01:13 Windows Update
20-04-2015 10:45:07 Windows Update
23-04-2015 17:13:54 Windows Update
27-04-2015 17:21:03 avast! antivirus system restore point
27-04-2015 17:37:48 Windows Update
28-04-2015 17:20:43 Removed Zinio Reader 4
28-04-2015 17:24:06 Odstraněno Realtek Ethernet Controller All-In-One Windows Driver™'
03-05-2015 10:10:50 Windows Update
06-05-2015 11:31:48 Windows Update
10-05-2015 17:02:37 Windows Update
13-05-2015 11:25:06 Windows Update
15-05-2015 18:52:09 Removed LogMeIn Hamachi
15-05-2015 18:54:44 Installed LogMeIn Hamachi
17-05-2015 08:50:16 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-02-25 13:19 - 00000840 ____A C:\windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {12F70C16-4D9A-427F-9341-C92FC6F0A9D2} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation)
Task: {22272F5B-34C8-4A72-9D5C-04D572DAA3DD} - System32\Tasks\AdobeAAMUpdater-1.0-Blanka-PC-Hoooonza => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14] (Adobe Systems Incorporated)
Task: {23EFD737-A653-4101-BCCB-E2BD15E7C291} - System32\Tasks\UERRV => C:\Users\Hoooonza\AppData\Roaming\UERRV.exe <==== ATTENTION
Task: {286BBF0A-012B-489D-9308-ABE926995D56} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2014-11-24] (Glarysoft Ltd)
Task: {28C99E85-13FC-4279-98C7-AF9278F26235} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2014-11-24] (Glarysoft Ltd)
Task: {2AC55CA6-47DD-4055-9C67-34379C2E44BA} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {39AF646F-5EC0-4573-962A-B478E10BBADB} - System32\Tasks\Opera scheduled Autoupdate 1420437773 => C:\Program Files (x86)\Opera\launcher.exe [2015-04-17] (Opera Software)
Task: {4B21E8FF-9CC3-4A79-B3F2-C0C2E5C10DBE} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)
Task: {50824701-2E74-4B65-BCFB-CB91D4A6990A} - System32\Tasks\CIIAYI => C:\Users\Hoooonza\AppData\Roaming\CIIAYI.exe <==== ATTENTION
Task: {520AE2AE-C6F8-46C4-93F8-52B47195ABBD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {643E7174-8808-4554-98BF-E3937BC41476} - System32\Tasks\{EEA8F421-702C-4D7C-914F-33ED104F5652} => pcalua.exe -a C:\Users\Hoooonza\Desktop\mctitan_pokemine.exe -d C:\Users\Hoooonza\Desktop
Task: {7C5ACCF7-4BCE-43AC-A6E9-BB7D11FF21F4} - System32\Tasks\avastBCLRestartS-1-5-21-412466861-1309505891-1087973670-1003 => Chrome.exe
Task: {7CAADEC0-6233-43E2-B2A9-9738F9407F7F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-03-31] (Avast Software s.r.o.)
Task: {83E22831-6D69-411B-B5CA-F6E2FD9B0D7E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-05] (Google Inc.)
Task: {95884C8D-1376-42F4-B7BE-7FD381CD1045} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {9DB7BD69-6020-45E0-9218-ECAC1DB860A5} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {A1631A43-C116-4D44-9BAF-63E373E72AE5} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {A1EE0AED-973B-40D4-89D3-A052ED9FD5A3} - System32\Tasks\{DEEF1A05-3A41-4521-B5B6-37C0F95287BC} => pcalua.exe -a C:\Users\Blanka\Desktop\mctitan172.exe -d C:\Users\Blanka\Desktop
Task: {A56AE36A-74EC-447E-BA20-40EA221A4A84} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-05] (Google Inc.)
Task: {B6D3AB4F-B40D-443E-A95F-D22A9768AA66} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {BAB7DB11-9103-4F60-B032-21DBCE8D407B} - System32\Tasks\{048314BC-FED5-4D79-8976-AE33D3EDBB9E} => C:\Users\Hoooonza\Desktop\Minecraft-warez-Launcher-1.7.10.exe
Task: {E5EFAFA6-08E9-4EEA-88CB-06A8B6C83493} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {EBE7BFDA-1DFD-490E-B4F9-9D0E78A8673B} - System32\Tasks\Norton Security Scan for NightCore => C:\Program Files (x86)\Norton Security Scan\Engine\4.1.0.28\Nss.exe [2014-01-27] (Symantec Corporation)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\CIIAYI.job => C:\Users\Hoooonza\AppData\Roaming\CIIAYI.exe <==== ATTENTION
Task: C:\windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Norton Security Scan for NightCore.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe
Task: C:\windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
Task: C:\windows\Tasks\UERRV.job => C:\Users\Hoooonza\AppData\Roaming\UERRV.exe <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2011-09-16 01:46 - 2011-09-16 01:46 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2014-09-26 15:41 - 2014-09-26 15:41 - 01021088 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2012-01-21 02:03 - 2011-08-18 17:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
2015-01-05 08:40 - 2005-03-12 02:07 - 00087040 _____ () C:\windows\System32\pdfcmnnt.dll
2014-03-09 21:34 - 2014-11-04 18:29 - 00076152 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2014-11-22 02:03 - 2014-11-22 02:03 - 00043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-01-02 20:31 - 2000-01-01 02:00 - 00158536 _____ () C:\windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcc3d64.dll
2015-03-31 18:14 - 2015-03-31 18:14 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-03-31 18:13 - 2015-03-31 18:13 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-05-18 10:49 - 2015-05-18 10:49 - 02929664 _____ () C:\Program Files\AVAST Software\Avast\defs\15051800\algo.dll
2015-05-18 18:41 - 2015-05-18 18:41 - 02929664 _____ () C:\Program Files\AVAST Software\Avast\defs\15051801\algo.dll
2015-03-31 18:14 - 2015-03-31 18:14 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-05-14 06:31 - 2015-05-05 06:06 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libglesv2.dll
2015-05-14 06:31 - 2015-05-05 06:06 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.152\libegl.dll
2014-10-16 03:45 - 2014-10-16 03:45 - 00169472 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\93182e9779b8be0f688fd0784df6d7fb\IsdiInterop.ni.dll
2012-01-21 01:37 - 2010-11-06 07:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-412466861-1309505891-1087973670-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Blanka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Apoint => C:\Program Files\DellTPad\Apoint.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\Guest\AppData\Roaming\Seznam.cz\szninstall.exe" -c
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\Guest\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: DellStage => "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
MSCONFIG\startupreg: GoogleChromeAutoLaunch_A947EBE730F005502320B355C64F93AC => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
MSCONFIG\startupreg: IntelPAN => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Stage Remote => C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe -Quiet
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Blanka\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [{BD72EC29-722A-4314-BFB0-3CA131C9D428}] => (Allow) C:\Program Files (x86)\Dell\VideoStage\VideoStage.exe
FirewallRules: [{E8D44EEB-7307-4D9B-97B1-96708CB43D22}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\Controller.exe
FirewallRules: [{44BB6ECB-BAF2-40F6-8DBA-568F3DEA6F7F}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\InstallerHelp.exe
FirewallRules: [{189FE113-EE41-44C2-B849-120C380C7838}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
FirewallRules: [{1457589F-DE28-44D2-9817-EC1199DD7D4D}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\DMR.exe
FirewallRules: [{D8AC315D-3D3C-426E-99CF-CC851078A9E7}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\Controller.exe
FirewallRules: [{C12AD2BC-530B-4C6F-BCE9-CD3E131A84F4}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
FirewallRules: [{948CC97B-95DB-4292-9173-3279575DB7EE}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\InstallerHelp.exe
FirewallRules: [{AE155B28-8D8C-454D-A48D-0E92BEFBA680}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
FirewallRules: [{4DF4C1E2-0391-4464-B182-776DD42B7758}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\DMR.exe
FirewallRules: [{F6424C2F-E301-49B3-AFB2-B884AB6F0500}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
FirewallRules: [{7B00D1E0-A684-438E-9F78-01373709D819}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{0AA18777-196C-4173-ADB8-F53DF8CD2607}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{84D18C85-06B6-4348-9090-9DBE73ACB633}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{47BB0AD6-788F-4645-8042-E99A1A4F4F1D}] => (Allow) LPort=2869
FirewallRules: [{4F043EE9-AD5E-4520-A504-99B55044E593}] => (Allow) LPort=1900
FirewallRules: [{54598034-912D-42F7-A9F9-7CB8F5BA4DEE}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{03CC6078-2262-4F47-987C-0B28314AAD28}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{DC26B69B-41A3-4531-B3D7-61FBBBA62883}C:\program files (x86)\techland\call of juarez\coj.exe] => (Block) C:\program files (x86)\techland\call of juarez\coj.exe
FirewallRules: [UDP Query User{6075FE91-6386-4FDD-B6BD-69CCD3BFBDA3}C:\program files (x86)\techland\call of juarez\coj.exe] => (Block) C:\program files (x86)\techland\call of juarez\coj.exe
FirewallRules: [TCP Query User{AA6C0619-0B80-451B-8997-532D50E0460E}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{C8A31725-D9CB-4E89-8233-6B3351817C04}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{91FDF366-4FBA-494C-8636-876108578DB6}C:\counter-strike 1.6\hl.exe] => (Block) C:\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{DFC0C450-99DD-4DB0-9CA4-50E0C6E767C9}C:\counter-strike 1.6\hl.exe] => (Block) C:\counter-strike 1.6\hl.exe
FirewallRules: [TCP Query User{6AEB1D3F-C9E1-4F55-ADE9-D9D96EE1D04C}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{6CB96CD1-ABCF-422C-B334-7AAE99C5F1B7}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{C8254E1F-C5E1-4B8C-842D-017989230A1E}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{04862EC9-BDCD-47AF-B098-B24BB2A1E5F4}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{8F4C309E-8E41-4E2E-94CE-08F9057F523F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{80240D6C-EFF7-44E3-977E-83D7C804A807}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8B857C2C-037A-4654-9615-DDEDD0AA18BC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{11EC395F-7AF4-4BF6-B932-0EEDC4A10E24}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{99E55A55-816F-4FE4-99AD-5E24F716B4DF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{9BCF4994-788E-4E7C-B27F-BAD671B9B9F0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{18769AA4-874E-45ED-BB04-1409B068147C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{FEBA0460-3241-4D88-A0BA-FAED54DD417D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{366193F9-9F1B-422F-ACB4-5C8DEDE42C33}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{6160A094-3B26-4C34-A9BD-FE8E6643B958}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{9CB71527-0AC4-4FA9-A391-E5BD0DE6BCD4}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [UDP Query User{CA60E531-C561-4566-8338-D72CD76F4C12}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe] => (Allow) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [{84BDEF16-F9D6-4E76-9AEB-2A52186FEF35}] => (Block) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [{3F8F15DE-DB2E-463D-ACA2-232A0901D256}] => (Block) C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe
FirewallRules: [TCP Query User{FCFCF93B-33E4-4801-A3D5-4355E9F80C5C}C:\windows\system32\javaw.exe] => (Block) C:\windows\system32\javaw.exe
FirewallRules: [UDP Query User{8E42CA1E-9920-4A27-82F4-4485DD47D5BF}C:\windows\system32\javaw.exe] => (Block) C:\windows\system32\javaw.exe
FirewallRules: [TCP Query User{1453B6D1-559A-4E85-BC12-7AE6B4344CD7}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{1AF5304C-7C2A-4703-A2E0-6C311747A1A2}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [{4E334462-02C3-4186-80B5-C1963733932A}] => (Block) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [{DFF9EB10-9AF7-4382-B050-3DEB286D18B3}] => (Block) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [{A872878A-3E1F-470D-9E39-BD42F1E74782}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{1BC59D71-B339-47C1-8006-083AC0A8621C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{317D98A5-4F32-40A2-B7F2-8C189B98A099}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{C6886BC4-599B-4313-A258-CF3F43163CB3}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{DFFC5F7D-056C-4D16-B26B-FAF01E925DCC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{59FC0EC0-31B2-4F7F-86CB-6211680EC7A5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{04AF4192-32E7-47E9-9F71-A17FB6DA2274}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{101FC32A-5B77-433F-9F4F-526D72C3D4F8}C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{97AD66C2-FDB3-44D3-8843-C0251942C427}C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{33A4164D-D57B-41E7-8537-77411091FC9A}] => (Allow) C:\Users\Hoooonza\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{0C28A9E2-1660-4BF5-844F-FC23915BC4AB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AF162763-AB7B-4425-9616-2C3A7D0E7C2C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{ED835CE9-C0CF-4061-9B8A-C094053F8487}C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{608434D9-DBB1-4FB9-9C53-3087DC1E6D73}C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\hoooonza\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{1126BD41-A46D-43A3-89FF-9D1EBA8FDC4B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1E16C32D-6B3E-4BBF-BA43-879CFA1463C0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5C2AE71F-3C7B-49BE-ABA5-1A085C5A913E}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{D1E732BF-13FD-48C6-A17D-434B45330CB8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{AFBF6381-1989-4B74-A686-6177C532F8CD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{56FC2B74-A1B5-4D5B-B13C-DC9BC3C616E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{7915C538-5ED3-4F60-84B7-8CFADE5F50F5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{87F5F935-5FE3-4FDD-AF2D-415B89E8E537}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3BFFF6B9-08A2-4C51-86D8-FAFA33076950}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F0B83325-E035-4125-A1C4-282039B0BBB6}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [TCP Query User{E814A020-8B84-4437-A876-589E53884BD6}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{0C10BDD1-5CBE-46A1-917C-27A918BC9439}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{5371A65C-CDE7-4253-B1C1-A5C7CF426DDB}C:\users\hoooonza\appdata\roaming\.creativeportal\jre\bin\javaw.exe] => (Block) C:\users\hoooonza\appdata\roaming\.creativeportal\jre\bin\javaw.exe
FirewallRules: [UDP Query User{DBD2FDE1-BD14-4B7F-9193-D8105C9DACD4}C:\users\hoooonza\appdata\roaming\.creativeportal\jre\bin\javaw.exe] => (Block) C:\users\hoooonza\appdata\roaming\.creativeportal\jre\bin\javaw.exe
FirewallRules: [TCP Query User{B8A7F89B-C67B-4D33-9F0D-C4B2C2DF6E77}C:\counter-strike 1.6\hltv.exe] => (Block) C:\counter-strike 1.6\hltv.exe
FirewallRules: [UDP Query User{6F593D59-2532-43EA-A761-62B0E7444F1B}C:\counter-strike 1.6\hltv.exe] => (Block) C:\counter-strike 1.6\hltv.exe
FirewallRules: [TCP Query User{D418DEA6-D378-414C-AC80-D77015FF48C1}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{93493E4D-1082-47B1-A256-FF1E1669B58C}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe
FirewallRules: [{373062A7-1185-4988-935B-C379002E8589}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{099F4FDC-D030-48F7-B852-85C075FA826F}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{7FD1D39F-E80B-4C61-8B3E-710EB0E32AB6}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{71DF35FF-62B5-4B27-8881-C8B27136D6C2}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{60812EF2-0EA9-4849-AC33-B72024F57540}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{7AF70201-8BF2-48A1-93D7-FAA41470CAD1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{94743465-12C2-4946-AF0A-C016D4A7BB70}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{49F912D2-5FBA-4D42-A06B-F47C4A5DF337}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{97046F1C-05B1-4448-99D1-F23BA9A8D1CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/18/2015 06:39:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/18/2015 04:38:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vyhledávací služby zjistila, že index {id=4700} obsahuje poškozené datové soubory. Služba se pokusí tyto potíže automaticky odstranit vytvořením nového indexu.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (05/18/2015 06:36:55 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (05/18/2015 06:36:55 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (05/18/2015 06:36:55 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (05/18/2015 06:36:52 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (05/18/2015 06:36:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management and Security Application User Notification Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/18/2015 06:36:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Úložná technologie Intel(R) Rapid byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/18/2015 06:36:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (05/18/2015 06:36:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (05/18/2015 06:36:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LogMeIn Hamachi Tunneling Engine byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/18/2015 06:36:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.


Microsoft Office Sessions:
=========================
Error: (05/18/2015 06:39:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/18/2015 04:38:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (05/18/2015 04:34:20 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (05/18/2015 04:34:19 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
4700


CodeIntegrity Errors:
===================================
Date: 2015-01-05 14:43:15.663
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Blanka\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-05 14:43:15.507
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Blanka\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-05 14:43:15.304
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-01-05 14:43:15.148
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 52%
Total physical RAM: 4002.05 MB
Available physical RAM: 1911.87 MB
Total Pagefile: 8002.32 MB
Available Pagefile: 5723.22 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:683.89 GB) (Free:315.73 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 8313433C)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=683.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Re: Prosím o kontrolu

Napsal: 18 kvě 2015 21:10
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
Task: {23EFD737-A653-4101-BCCB-E2BD15E7C291} - System32\Tasks\UERRV => C:\Users\Hoooonza\AppData\Roaming\UERRV.exe <==== ATTENTION
Task: {50824701-2E74-4B65-BCFB-CB91D4A6990A} - System32\Tasks\CIIAYI => C:\Users\Hoooonza\AppData\Roaming\CIIAYI.exe <==== ATTENTION
C:\Users\Hoooonza\AppData\Roaming\UERRV.exe
C:\Users\Hoooonza\AppData\Roaming\CIIAYI.exe
Task: {A56AE36A-74EC-447E-BA20-40EA221A4A84} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-05] (Google Inc.)
Task: C:\windows\Tasks\CIIAYI.job => C:\Users\Hoooonza\AppData\Roaming\CIIAYI.exe <==== ATTENTION
Task: C:\windows\Tasks\UERRV.job => C:\Users\Hoooonza\AppData\Roaming\UERRV.exe <==== ATTENTION
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz