VIRY.CZ

Zdravím, můj počítač se mi zdá být poslední dobou hodně zpomalený a tak vás prosím o radu jak to zlepšit a jak z něj i odstranit viditelné zavirování... Jaký log mám poskytnout?

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-10-2015 02
Ran by polis_000 (administrator) on HP-ONDRA (03-07-2016 15:41:32)
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Loaded Profiles: polis_000 (Available Profiles: polis_000 & Administrator)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2013-02-04] (IDT, Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-01-02] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLWCSM] => c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [249096 2013-02-20] (cyberlink)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-03-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [13685464 2013-03-06] (Hewlett-Packard)
HKLM-x32\...\Run: [YouCam Mirage] => c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2013-02-01] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [167488 2013-02-01] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111136 2012-11-21] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [493088 2012-11-21] (CyberLink Corp.)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [389368 2014-02-17] (IVT Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7405752 2016-06-11] (AVAST Software)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-07-18] (PDF Complete Inc)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [336672 2014-05-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [454792 2016-06-07] (Power Software Ltd)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [26424448 2016-06-15] (Skype Technologies S.A.)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-07-02] (Electronic Arts)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Policies\Explorer: []
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\MountPoints2: {4ccf7179-6cb1-11e3-be71-806e6f6e6963} - "E:\Setup.exe"
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-05-06] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{73B97BF5-754A-4CE1-8940-0612BB632EE6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7942DDC4-97AF-4CA9-9B31-5B35902F9F76}: [DhcpNameServer] 172.168.0.2

Internet Explorer:
==================
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-05-06] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-02-25] (HP)
BHO-x32: HP File Sanitizer -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-03-06] (Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-05-06] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25] (HP)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-16] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-16] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-13] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll [2015-09-28] (DigitalPersona, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-06]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-06]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome
FF Extension: HP Client Security Manager - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome [2016-01-01] [not signed]

Chrome:
=======
CHR Profile: C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-21]
CHR Extension: (Dokumenty Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-21]
CHR Extension: (Disk Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-21]
CHR Extension: (Vyhledávání Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Tabulky Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-22]
CHR Extension: (AdBlock) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-08]
CHR Extension: (Avast Online Security) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-20]
CHR Extension: (HP Client Security Manager) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab [2016-01-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-06]
CHR Extension: (Gmail) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-05-06]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome.crx [2015-09-28]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-06] (AVAST Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1579880 2014-02-17] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-12-16] (IVT Corporation)
U4 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [37632 2013-06-01] (Microsoft Corporation)
U4 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [51200 2012-07-26] (Microsoft Corporation)
U4 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [29952 2013-04-29] (Microsoft Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [502232 2015-09-28] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [556856 2013-03-04] (Hewlett-Packard Company)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372920 2013-09-18] (Hewlett-Packard Development Company, L.P.)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [683296 2014-05-16] (Hewlett-Packard Company)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2015-12-18] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [130592 2012-10-22] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2904864 2015-06-02] (IObit)
R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-07-02] (Electronic Arts)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2013-02-04] (IDT, Inc.) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [818672 2016-05-11] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36520 2012-09-14] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-05-06] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-05-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-05-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-05-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-05-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-05-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-05-06] (AVAST Software)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [51936 2014-01-20] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 clwcsm; C:\Windows\system32\DRIVERS\clwcsm.sys [42944 2013-02-19] (CyberLink Corporation)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [65752 2013-02-18] (Hewlett-Packard Company)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-10-12] (Broadcom Corporation)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2525840 2014-12-31] (MediaTek Inc.)
R0 PinFile; C:\Windows\System32\DRIVERS\PinFile.sys [49856 2013-03-18] (WinMagic, Inc.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1210480 2014-12-24] (Ralink Technology, Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-01] (RTS Corporation)
R0 SDDisk2K; C:\Windows\System32\DRIVERS\SDDisk2K.sys [212672 2013-03-27] (WinMagic Inc.)
R0 SDDToki; C:\Windows\System32\DRIVERS\SDDToki.sys [131928 2013-01-07] (WinMagic Inc.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-01-11] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [32496 2013-01-11] (Synaptics Incorporated)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1513208 2016-04-12] (Sunplus)
S3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [39464 2016-04-27] (Tunngle.net GmbH)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-02-08] (Hewlett-Packard Development Company, L.P.)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)
R3 gkernel; \??\C:\Users\POLIS_~1\AppData\Local\Temp\gkernel.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-03 15:41 - 2016-07-03 15:41 - 00000000 ____D C:\FRST
2016-07-03 15:16 - 2016-07-03 15:20 - 00001078 _____ C:\windows\system32dbgraw.bmp
2016-07-03 12:15 - 2016-07-03 12:15 - 00003356 _____ C:\windows\System32\Tasks\Garena+ Plugin Host Service
2016-07-03 00:24 - 2016-07-03 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hry
2016-07-02 18:58 - 2016-07-02 18:58 - 00000366 _____ C:\windows\Tasks\HPCeeScheduleForpolis_000.job
2016-07-02 18:48 - 2016-07-02 19:04 - 00000000 ____D C:\Users\polis_000\Downloads\FIFA 14 CZ
2016-06-27 15:06 - 2016-07-03 00:27 - 00037174 _____ C:\windows\DirectX.log
2016-06-27 15:06 - 2016-06-27 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic V [GOG.com]
2016-06-27 15:04 - 2016-06-27 15:04 - 00000000 ____D C:\GOG Games
2016-06-27 14:35 - 2016-06-27 14:52 - 00000000 ____D C:\Users\polis_000\Downloads\Heroes of Might and Magic V Bundle [GOG]
2016-06-27 14:18 - 2016-06-27 14:18 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\uplay
2016-06-27 14:15 - 2016-06-27 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Might and Magic Heroes VII
2016-06-27 12:22 - 2016-06-27 14:15 - 00000000 ____D C:\Program Files (x86)\Might and Magic Heroes VII
2016-06-27 11:32 - 2016-06-27 12:08 - 00000000 ____D C:\Users\polis_000\Downloads\Might & Magic Heroes VII - Deluxe edice v1.6 (CZ.MULTi13) [Repack] by 'Teag
2016-06-27 11:29 - 2016-06-27 11:29 - 00003162 _____ C:\windows\System32\Tasks\{0DC48B8D-5CDF-4274-BE24-007A173593CD}
2016-06-27 11:28 - 2016-06-27 11:28 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\PowerISO
2016-06-27 11:27 - 2016-06-27 11:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2016-06-27 11:27 - 2016-06-27 11:27 - 00000000 ____D C:\Program Files\PowerISO
2016-06-27 11:27 - 2016-05-25 01:06 - 00137280 _____ (Power Software Ltd) C:\windows\system32\Drivers\scdemu.sys
2016-06-27 11:04 - 2016-07-03 00:30 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\uTorrent
2016-06-27 11:04 - 2016-06-27 11:04 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-06-24 12:58 - 2016-07-02 18:58 - 00003188 _____ C:\windows\System32\Tasks\HPCeeScheduleForpolis_000
2016-06-18 08:31 - 2016-06-18 08:31 - 00001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2016-06-18 08:31 - 2016-06-18 08:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2016-06-18 08:30 - 2016-06-18 09:47 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\BSplayer
2016-06-18 08:30 - 2016-06-18 08:30 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\BSplayer Pro
2016-06-18 08:30 - 2016-06-18 08:30 - 00000000 ____D C:\Program Files (x86)\Webteh
2016-06-15 13:27 - 2016-06-04 13:22 - 00050368 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-06-15 13:27 - 2016-06-04 11:42 - 00405504 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 01413120 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00569856 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00544256 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00276480 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-06-15 13:27 - 2016-05-26 15:11 - 01204224 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-06-15 13:27 - 2012-10-25 05:27 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2016-06-15 13:27 - 2012-10-25 05:26 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2016-06-15 13:27 - 2012-10-25 05:04 - 00011776 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2016-06-06 09:39 - 2016-06-06 09:55 - 00051557 _____ C:\Users\polis_000\Desktop\test662016.dwg
2016-06-06 09:39 - 2016-06-06 09:40 - 00065292 _____ C:\Users\polis_000\Desktop\test662016.bak
2016-06-05 15:01 - 2016-06-05 15:01 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-03 15:41 - 2013-12-25 11:24 - 00000000 ____D C:\Users\polis_000\Desktop\Antivir, Čištění PC
2016-07-03 15:40 - 2016-05-13 20:35 - 00000978 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-03 15:15 - 2015-11-17 21:49 - 01379535 _____ C:\windows\WindowsUpdate.log
2016-07-03 15:12 - 2015-12-24 22:45 - 00000000 ____D C:\ProgramData\Origin
2016-07-03 15:02 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\sru
2016-07-03 15:02 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\NDF
2016-07-03 14:23 - 2016-05-06 15:13 - 00004182 _____ C:\windows\System32\Tasks\avast! Emergency Update
2016-07-03 12:15 - 2016-05-13 20:35 - 00000974 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-03 12:15 - 2013-12-24 20:06 - 00000000 ___RD C:\Users\polis_000\Desktop\Hry
2016-07-03 12:14 - 2015-10-23 14:01 - 00003620 _____ C:\windows\SysWOW64\LOCALSERVICE.INI
2016-07-03 12:13 - 2015-10-23 14:01 - 00000043 _____ C:\windows\SysWOW64\LOCALDEVICE.INI
2016-07-03 12:13 - 2015-01-05 15:20 - 00001060 _____ C:\windows\SysWOW64\bscs.ini
2016-07-02 20:12 - 2016-05-14 20:12 - 00015318 _____ C:\windows\SysWOW64\debug.log
2016-07-02 18:58 - 2015-10-20 22:39 - 00000000 ____D C:\Users\polis_000
2016-07-02 18:48 - 2015-11-09 22:32 - 00000000 ____D C:\Users\polis_000\Desktop\Stažené
2016-07-02 18:33 - 2015-12-24 22:42 - 00000000 ____D C:\Program Files (x86)\Origin
2016-07-02 13:49 - 2013-04-29 07:58 - 00000000 ____D C:\ProgramData\PDFC
2016-07-02 13:17 - 2015-12-28 02:09 - 00000000 ____D C:\ProgramData\ProductData
2016-07-01 17:56 - 2014-02-03 23:20 - 00000000 ___RD C:\Users\polis_000\Desktop\Písničky
2016-06-27 15:08 - 2013-12-24 20:12 - 00000000 ____D C:\Users\polis_000\Documents\My Games
2016-06-27 14:22 - 2015-11-27 16:33 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-27 11:27 - 2013-12-24 20:13 - 00000000 ___RD C:\Users\polis_000\Desktop\Různý programy
2016-06-24 13:44 - 2012-07-26 09:59 - 00000000 ____D C:\windows\CbsTemp
2016-06-21 22:20 - 2015-11-13 16:33 - 00003600 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2428774486-1446802013-3078816245-1002
2016-06-21 21:54 - 2012-07-26 09:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-06-21 21:52 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\BBI
2016-06-21 21:49 - 2015-10-23 13:53 - 00000000 ____D C:\windows\system32\appraiser
2016-06-18 12:16 - 2012-07-26 10:12 - 00000000 ____D C:\windows\AUInstallAgent
2016-06-18 08:41 - 2015-10-21 14:17 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 08:32 - 2015-10-21 14:18 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\Skype
2016-06-18 08:31 - 2015-10-21 14:18 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-18 08:31 - 2015-10-21 14:18 - 00000000 ____D C:\ProgramData\Skype
2016-06-17 12:56 - 2015-10-22 15:12 - 00000052 _____ C:\windows\SysWOW64\DOErrors.log
2016-06-16 20:24 - 2015-11-12 22:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-06-16 20:24 - 2015-11-12 22:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-06-16 20:23 - 2012-07-26 07:26 - 00000167 _____ C:\windows\win.ini
2016-06-16 20:13 - 2015-10-22 18:09 - 00000000 ____D C:\windows\system32\MRT
2016-06-16 20:13 - 2013-06-20 21:10 - 00713034 _____ C:\windows\system32\perfh005.dat
2016-06-16 20:13 - 2013-06-20 21:10 - 00163656 _____ C:\windows\system32\perfc005.dat
2016-06-16 20:13 - 2012-07-26 09:28 - 01717240 _____ C:\windows\system32\PerfStringBackup.INI
2016-06-16 17:38 - 2015-10-22 18:09 - 142482544 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe

==================== Files in the root of some directories =======

2016-01-29 20:31 - 2016-01-29 20:31 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-30 17:40 - 2016-01-01 19:14 - 11942094 _____ () C:\ProgramData\hpcsmmsilogs.log
2015-11-09 11:00 - 2015-11-09 11:00 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-03 12:30

==================== End of FRST.txt ============================

Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:25-10-2015 02
Ran by polis_000 (2016-07-03 15:43:28)
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Windows 8 (X64) (2015-10-20 20:42:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2428774486-1446802013-3078816245-500 - Administrator - Disabled) => C:\Users\Administrator
Guest (S-1-5-21-2428774486-1446802013-3078816245-501 - Limited - Disabled)
polis_000 (S-1-5-21-2428774486-1446802013-3078816245-1002 - Administrator - Enabled) => C:\Users\polis_000

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk)
ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{5B136AD7-384E-C2CC-6D1A-70B0C6216C25}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AutoCAD 2016 – Čeština (Czech) (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack – Čeština (Czech) (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk AutoCAD 2016 – Čeština (Czech) (HKLM\...\AutoCAD 2016 – Čeština (Czech)) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk CAD Manager Tools (HKLM\...\{5783F2D7-0111-0409-0110-0060B0CE6BBA}) (Version: 16.0.0.65 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.12.0 - Autodesk)
Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk)
Autodesk ReCap 2016 (Version: 1.5.0.33 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
Company of Heroes (New Steam Version) (HKLM-x32\...\Steam App 228200) (Version: - Relic)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.2106 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.3703 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2321 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2531 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.1.2627 - CyberLink Corp.)
CyberLink Webcam Sharing Manager 4 (HKLM-x32\...\InstallShield_{296F7F3B-C75A-45e9-AD22-CC19DF86E9D3}) (Version: 4.2.1.1419 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.2.1.3801 - CyberLink Corp.)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 4.6 (HKLM-x32\...\{A23AADDA-3DBF-11E2-A6F2-984BE15F174E}) (Version: 4.6.0.7670 - Evernote Corp.)
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.2 - Electronic Arts)
FIFA 14 1.2 (HKLM-x32\...\FIFA 14_is1) (Version: - )
GameRanger (HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\GameRanger) (Version: - GameRanger Technologies)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Heroes of Might and Magic V with Hammers of Fate (HKLM-x32\...\1207661143_is1) (Version: 2.1.0.22 - GOG.com)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{AE2F1669-5B1F-47C5-B639-78D74DD0BCE4}) (Version: 6.0.10.1 - Hewlett-Packard Company)
HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 8.3.17.2042 - HP Inc.)
HP Deskjet 5520 series Nápověda (HKLM-x32\...\{F58F1453-FD7C-4629-BDA3-643E95E2B167}) (Version: 27.0.0 - Hewlett Packard)
HP Device Access Manager (HKLM\...\{274A948D-DD41-4B8F-B66F-0F4AD233200F}) (Version: 8.0.0.4 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{F3F74675-3700-4C55-A9AC-924D4E36DC40}) (Version: 1.1.2.0 - Hewlett-Packard)
HP Drive Encryption (HKLM\...\HPDriveEncryption) (Version: 8.5.1.138 - Hewlett-Packard Company)
HP ESU for Microsoft Windows 8 (HKLM-x32\...\{482FF7A0-EA03-487A-9112-862D3341B76C}) (Version: 1.2.1 - Hewlett-Packard Company)
HP File Sanitizer (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 8.1.1.1 - Hewlett-Packard Company)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP HD Webcam Driver (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.8.33 - SunplusIT)
HP Hotkey Support (HKLM-x32\...\{57FA60DA-585F-456A-B80E-17D1CDD22A30}) (Version: 5.0.27.1 - Hewlett-Packard Company)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP SoftPaq Download Manager (HKLM-x32\...\{3F728815-C7E8-40EA-8D1A-F7B8E2382325}) (Version: 3.4.10.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{D1E7D876-6B86-4B35-A93D-15B0D6C43EAF}) (Version: 8.5.4.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.2.8.25 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{79CA8D8A-8371-4146-8920-C1405318E65E}) (Version: 12.4.18.7 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{357FE1E9-5890-4697-95DD-B15E01B4AA2A}) (Version: 1.3.2 - Hewlett-Packard Company)
HP Theft Recovery (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 8.0.0.6 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HP Wireless Hotspot (HKLM-x32\...\{A161E705-44B9-4B5F-A5F8-8E5847AEA86B}) (Version: 1.0.24.1 - Hewlett-Packard Company)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6454.0 - IDT)
Import souborů SketchUp 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.5.1006 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mediatek Bluetooth (HKLM\...\{75A0F2AE-B80A-BEFD-1BFF-8D1970966C7F}) (Version: 11.0.759.0 - Mediatek)
Microsoft Office 2010 pro studenty a domácnosti (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Might and Magic Heroes VII verzia v1.6 (rev 34396) (HKLM-x32\...\Might and Magic Heroes VII_is1) (Version: v1.6 (rev 34396) - CzTorrent.net)
Origin (HKLM-x32\...\Origin) (Version: 9.11.2.10120 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.1.50 - PDF Complete, Inc)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.53.0 - Mediatek)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.11.201.2013 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.7 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.9 - Rockstar Games)
SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.103 - Skype Technologies S.A.)
Speciální aplikace Autodesk 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Studie vylepšování produktu HP Deskjet 5520 series (HKLM\...\{B01BF72D-02D4-4D0E-BF0F-2AEC0114F0DC}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.9 - Synaptics Incorporated)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.6 - Tunngle.net GmbH)
Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUSR_{9F6B3627-AF9E-40A5-AAD5-3497C4327616}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{BD10518F-3463-429E-8761-0AEDCEEA6297}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUSR_{BD10518F-3463-429E-8761-0AEDCEEA6297}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 32-Bit Edition (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{BD10518F-3463-429E-8761-0AEDCEEA6297}) (Version: - Microsoft)
Validity Fingerprint Sensor Driver (HKLM\...\{ADAA7361-54B8-4FC8-804E-94EC6C11ED68}) (Version: 4.5.133.0 - Validity Sensors, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH)
Worms Revolution (HKLM-x32\...\Steam App 200170) (Version: - Team17 Digital Ltd)
Základní software zařízení HP Deskjet 5520 series (HKLM\...\{CDC570E1-58B0-4FD3-A225-31A8AAABC587}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\cs-CZ\acadficn.dll (Autodesk, Inc.)

==================== Restore Points =========================

18-06-2016 08:26:55 ASU_MSI_TRAN
24-06-2016 13:40:41 Windows Update
27-06-2016 11:29:51 Instalováno Heroes of Might and Magic® IV
03-07-2016 00:24:35 Nainstalováno rozhraní DirectX

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-01-30 11:19 - 2016-01-30 11:19 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {072A333C-51CC-4B0D-B208-194E87F34A7E} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.)
Task: {09FD9FB3-1515-457A-92AC-4F579E2FA411} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {207168BD-DD67-488B-BC82-10591387D75A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.)
Task: {2551B990-0D3B-4393-B0DC-172D1C3D3C70} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {2957F081-AB9E-4E78-9DEC-11CD6666EB9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-21] (Google Inc.)
Task: {2A9917A2-CC03-4F74-805A-E997A6E0DE70} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {2B81A373-4589-4F98-BB8B-EF01464D5A61} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {354EBED9-9F50-4244-A637-71D56C83319B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {3EE3417E-EE1D-4EB0-96B0-CF8CC8DF9714} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-21] (Google Inc.)
Task: {5058981E-7392-43E0-82F2-AE9CA27E1146} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2016-06-16] (Microsoft Corporation)
Task: {6C530DE1-772C-4446-AB93-D524BB58C2B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {7C7568FD-863E-4CB6-9D4C-1E0AB3DDA06E} - System32\Tasks\SafeZone scheduled Autoupdate 1463163108 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software)
Task: {834F2C02-10A8-4AC6-B53F-C485EE3BF387} - System32\Tasks\{0DC48B8D-5CDF-4274-BE24-007A173593CD} => pcalua.exe -a C:\Users\polis_000\Desktop\Heroes\SETUP.EXE -d C:\Users\polis_000\Desktop\Heroes
Task: {8B4B21F6-E7F0-465B-8310-76F66476CD6C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\windows\system32\MRT.exe [2016-06-16] (Microsoft Corporation)
Task: {9A0F09DC-2D5F-47E1-8002-8845493B8BFD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {A25630A0-006A-4879-B303-FFDB2BD04520} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-10-22] (Synaptics Incorporated)
Task: {AC5ACD9A-D97E-4A58-95B1-F77030248B60} - System32\Tasks\SafeZone scheduled Autoupdate 1449667557 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software)
Task: {BE40EDA9-7EA4-43A8-BF13-A13A19EEE081} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {C5CF7ABF-AAA7-4EC4-9BDC-92F99A51F14E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {C985508E-6968-45C5-91A9-D43EB2417EF5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {CD58F5E7-06F5-4724-9F6B-D6EB3CBFE2EA} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {D6CFB6F8-187A-4345-AA96-DE7E7DCCC5F6} - System32\Tasks\HPCeeScheduleForpolis_000 => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {DBFB9825-F7C9-4ECF-B59D-CB665E85AEBB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {E16B2CEA-125B-41AD-ADEC-6E95C0914EED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {EA8B04C6-E21E-45E9-AF4E-5E8C48F3CF3A} - System32\Tasks\HPCustParticipation HP Deskjet 5520 series => C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {EB544DDB-799B-4453-9B5D-B11B0B9E91B2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-05-06] (AVAST Software)
Task: {F15B8B81-9A65-458A-9361-0772C55AD663} - System32\Tasks\Garena+ Plugin Host Service => C:\Garena Plus\ggdllhost.exe [2015-12-08] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForpolis_000.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (Whitelisted) ==============

2014-05-28 10:14 - 2014-05-28 10:14 - 00336056 _____ () C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomainPlugin.dll
2012-10-30 22:05 - 2012-10-30 22:05 - 00607744 _____ () C:\windows\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2013-12-16 15:45 - 2013-12-16 15:45 - 00016632 _____ () C:\windows\system32\BsHelpCSps.dll
2015-10-13 16:07 - 2015-10-13 16:07 - 08901184 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-12-16 15:45 - 2013-12-16 15:45 - 00062200 _____ () C:\windows\system32\BlueSoleilCSps.dll
2014-05-15 15:49 - 2014-05-15 15:50 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2015-09-16 21:33 - 2015-09-16 21:33 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-05-06 15:11 - 2016-05-06 15:11 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-05-06 15:11 - 2016-05-06 15:11 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-21 21:48 - 2016-06-21 21:48 - 02939392 _____ () C:\Program Files\AVAST Software\Avast\defs\16062101\algo.dll
2016-05-06 15:11 - 2016-05-06 15:11 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-05-06 15:11 - 2016-05-06 15:11 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll
2016-07-03 15:02 - 2016-07-03 15:02 - 02996736 _____ () C:\Program Files\AVAST Software\Avast\defs\16070300\algo.dll
2013-12-16 15:46 - 2013-12-16 15:46 - 00029432 _____ () C:\windows\SYSTEM32\BsTrace.dll
2013-12-16 15:45 - 2013-12-16 15:45 - 00016632 _____ () C:\windows\SYSTEM32\BsHelpCSps.dll
2013-12-16 15:45 - 2013-12-16 15:45 - 00062200 _____ () C:\windows\SYSTEM32\BlueSoleilCSps.dll
2013-05-24 10:22 - 2013-05-24 10:22 - 00334648 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll
2011-07-05 10:53 - 2011-07-05 10:53 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll
2015-12-28 02:09 - 2014-10-16 11:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2015-12-22 13:21 - 2015-12-22 13:21 - 00016384 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\PSIClient\cd62420cb4e3198c151817f24dee24b0\PSIClient.ni.dll
2013-06-20 12:52 - 2012-10-22 10:22 - 01199648 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-06-20 13:04 - 2012-06-08 05:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 12:34 - 2012-06-08 12:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2015-12-10 20:49 - 2015-12-10 20:49 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00243200 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll
2016-06-18 08:41 - 2016-06-15 11:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-18 08:41 - 2016-06-15 11:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\polis_000\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\tapeta programu windows prohlížeč fotografií.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "EADM"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8767AEE3-2961-4BF5-8AFD-F49CB17F4ADC}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{CDA11039-C7DC-436C-8F79-ED1088D3BF28}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C3A74E45-13F2-4076-9246-0DF28C9843DB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E5167780-E780-4B87-B699-8DB014615971}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FD9770AA-0FE3-41AF-8966-112C9509A829}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FEC81098-E976-4E83-904C-7487FB6625D9}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{2AC27D41-0311-423B-B460-753CC8D00238}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{035F741C-5F93-4DDF-AAFD-E942A0C47616}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [TCP Query User{2E9B4935-A229-4C24-8F5E-46C3F434E5BE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{5B89BF00-895E-4460-AA48-C0E6DAA732F3}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{586D3F07-489D-47F3-ABD7-C816D184FE64}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{BD406181-22B8-4187-9713-DB683476862D}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [TCP Query User{E690D7DA-7F24-414E-94D7-F2ACC2AE5085}C:\counter-strike 1.6\csko.exe] => (Allow) C:\counter-strike 1.6\csko.exe
FirewallRules: [UDP Query User{16E048F5-EB54-46A0-8750-BAA6B4B6D267}C:\counter-strike 1.6\csko.exe] => (Allow) C:\counter-strike 1.6\csko.exe
FirewallRules: [{80BD888B-9415-42D6-BD04-34EB06FFFB54}] => (Allow) LPort=50248
FirewallRules: [{39B321C1-4730-4934-857E-2BC1F207E97C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3146499B-FB4B-4EE5-9140-8ED2DF1A4B01}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{53F3C167-76C5-43AB-9887-E105D6BD2AD9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{69A746D0-FBFA-45C1-B076-4C1DACC07E6B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{15EED943-081A-4582-AFCB-8C28178FD1DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{181A800D-B4C8-41D6-9D75-9D0C7004CF68}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{924ABCAE-A140-4094-9666-3A55EEB0A781}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{9E21EDCF-E32D-4325-9E5E-3F99723238AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{D2EB56F7-6943-459F-BF07-C687D9FCB212}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe
FirewallRules: [{84B2C720-C635-4859-A234-E754205DBB82}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe
FirewallRules: [{3F9FB757-6680-41C4-B62E-1BBAFF8DFFB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{9D05ACC5-FA0B-4B8A-A5BA-505683060F72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{7673B5D6-3A70-450E-8FC2-EAFA92E6B568}C:\world of tanks\wotlauncher.exe] => (Allow) C:\world of tanks\wotlauncher.exe
FirewallRules: [UDP Query User{9B15A50B-2C69-42B9-A2D2-A63D5A4B5078}C:\world of tanks\wotlauncher.exe] => (Allow) C:\world of tanks\wotlauncher.exe
FirewallRules: [TCP Query User{91BD5ACC-A40D-455C-91C2-8D44ED51D55A}C:\warcraft iii+frozen throne\war3.exe] => (Allow) C:\warcraft iii+frozen throne\war3.exe
FirewallRules: [UDP Query User{1764806A-DB95-4081-95D5-EF56DC2B808D}C:\warcraft iii+frozen throne\war3.exe] => (Allow) C:\warcraft iii+frozen throne\war3.exe
FirewallRules: [{718D2A38-5E94-475B-9FED-96FD9AB9A149}] => (Allow) C:\Garena Plus\ggdllhost.exe
FirewallRules: [{E6B98280-E762-4151-853D-804D9EE24535}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{5F552143-4BD2-4174-A557-87F2B19973D3}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{808286D6-826F-47F9-84DB-8E3AE3214F3D}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{24B8872F-20C8-446F-B764-256FDC5EEC3D}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{E34EDEA0-29FF-436C-B741-62929302448A}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{67F1E294-4BE3-4495-81D2-A17E8D95E547}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{72BBCD91-1EEF-4C70-81E9-189A509A62F2}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{C458C99C-55AA-44B4-9833-9A30780F14BE}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{60CD6498-CA55-4996-9C8F-41658F9C0000}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{1DA1F391-D22B-402B-AA55-9D49E8D4A915}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{5D020A1B-4D18-46CC-9B52-D10BB846D6CD}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{DF152828-AF33-4914-872D-2B2B41959C3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{96A47723-9828-4536-9662-306C205E8DBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{06207A53-BDB9-4663-8124-43B966B3BFEB}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{EA77A5BA-A34D-4A75-BE57-6B8A4681668B}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{AE368D42-9A45-492C-9387-30E33AC970DD}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{01586417-5499-47B6-A58A-6A035D1A75F9}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{0EEF0D45-6B5E-4814-B036-9A9983E0D23E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{8B76CA3F-93C5-42DD-A965-D7D3F8169685}C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{64D718FD-9F23-4998-8555-6517EB5E6712}C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{F49BD38A-CB28-48E4-8A14-89050C7CE429}C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe
FirewallRules: [UDP Query User{EC155A0F-A59A-4BD7-9674-CE7EBDEB3589}C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe
FirewallRules: [{439B1283-03E5-419D-91CA-E2C865E2868B}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe
FirewallRules: [{3457FBD5-0F28-4B0E-B093-7CD392FE3EF2}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe

==================== Faulty Device Manager Devices =============

Name: TAP-Win32 Adapter V9 (Tunngle)
Description: TAP-Win32 Adapter V9 (Tunngle)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9 (Tunngle)
Service: tap0901t
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (07/03/2016 03:04:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x12584b66
ID chybujícího procesu: 0x12f0
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 03:04:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x17cf7d3f
ID chybujícího procesu: 0x12f0
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:32:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: ntdll.dll, verze: 6.2.9200.17581, časové razítko: 0x5644f0df
Kód výjimky: 0xc0000005
Posun chyby: 0x0002db60
ID chybujícího procesu: 0x1488
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:32:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x17cf7d3f
ID chybujícího procesu: 0x1488
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:30:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: ntdll.dll, verze: 6.2.9200.17581, časové razítko: 0x5644f0df
Kód výjimky: 0xc0000005
Posun chyby: 0x0002db60
ID chybujícího procesu: 0x9a4
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:30:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x17cf7d3f
ID chybujícího procesu: 0x9a4
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:30:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: ntdll.dll, verze: 6.2.9200.17581, časové razítko: 0x5644f0df
Kód výjimky: 0xc0000005
Posun chyby: 0x0002db60
ID chybujícího procesu: 0x28
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:30:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x17cf7d3f
ID chybujícího procesu: 0x28
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:02:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_SysMain, verze: 6.2.9200.16420, časové razítko: 0x505a9a4e
Název chybujícího modulu: sysmain.dll, verze: 6.2.9200.17436, časové razítko: 0x55a05ea7
Kód výjimky: 0xc0000305
Posun chyby: 0x000000000001df56
ID chybujícího procesu: 0x49c
Čas spuštění chybující aplikace: 0xsvchost.exe_SysMain0
Cesta k chybující aplikaci: svchost.exe_SysMain1
Cesta k chybujícímu modulu: svchost.exe_SysMain2
ID zprávy: svchost.exe_SysMain3
Úplný název chybujícího balíčku: svchost.exe_SysMain4
ID aplikace související s chybujícím balíčkem: svchost.exe_SysMain5

Error: (07/03/2016 12:24:56 PM) (Source: MsiInstaller) (EventID: 1002) (User: HP-ONDRA)
Description: Neočekávaná nebo chybějící hodnota (název: PackageName, hodnota: ) v klíči HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList


System errors:
=============
Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Platforma WDF (Windows Driver Foundation) – platforma ovladače v uživatelském režimu byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Automatická konfigurace sítě WLAN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Klient služby Sledování distribuovaných odkazů byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Superfetch byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Program Compatibility Assistant Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Síťová připojení byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 100 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba přidružování zařízení byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Koncové vytváření služby Windows Audio byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/02/2016 10:57:46 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (07/01/2016 04:35:38 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 31%
Total physical RAM: 8042.56 MB
Available physical RAM: 5538.64 MB
Total Virtual: 12612.56 MB
Available Virtual: 9335.92 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:915.99 GB) (Free:558.33 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Recovery Image) (Fixed) (Total:14.04 GB) (Free:1.36 GB) NTFS
Drive e: (Disk1) (CDROM) (Total:7.95 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)

Partition: GPT.

==================== End of Addition.txt ============================

Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:25-10-2015 02
Ran by polis_000 (2016-07-03 15:43:28)
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Windows 8 (X64) (2015-10-20 20:42:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2428774486-1446802013-3078816245-500 - Administrator - Disabled) => C:\Users\Administrator
Guest (S-1-5-21-2428774486-1446802013-3078816245-501 - Limited - Disabled)
polis_000 (S-1-5-21-2428774486-1446802013-3078816245-1002 - Administrator - Enabled) => C:\Users\polis_000

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk)
ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{5B136AD7-384E-C2CC-6D1A-70B0C6216C25}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AutoCAD 2016 – Čeština (Czech) (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack – Čeština (Czech) (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk AutoCAD 2016 – Čeština (Czech) (HKLM\...\AutoCAD 2016 – Čeština (Czech)) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk CAD Manager Tools (HKLM\...\{5783F2D7-0111-0409-0110-0060B0CE6BBA}) (Version: 16.0.0.65 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.12.0 - Autodesk)
Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk)
Autodesk ReCap 2016 (Version: 1.5.0.33 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.10 - Piriform)
Company of Heroes (New Steam Version) (HKLM-x32\...\Steam App 228200) (Version: - Relic)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.2106 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.3703 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2321 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2531 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.1.2627 - CyberLink Corp.)
CyberLink Webcam Sharing Manager 4 (HKLM-x32\...\InstallShield_{296F7F3B-C75A-45e9-AD22-CC19DF86E9D3}) (Version: 4.2.1.1419 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.2.1.3801 - CyberLink Corp.)
EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 4.6 (HKLM-x32\...\{A23AADDA-3DBF-11E2-A6F2-984BE15F174E}) (Version: 4.6.0.7670 - Evernote Corp.)
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.2 - Electronic Arts)
FIFA 14 1.2 (HKLM-x32\...\FIFA 14_is1) (Version: - )
GameRanger (HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\GameRanger) (Version: - GameRanger Technologies)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Heroes of Might and Magic V with Hammers of Fate (HKLM-x32\...\1207661143_is1) (Version: 2.1.0.22 - GOG.com)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{AE2F1669-5B1F-47C5-B639-78D74DD0BCE4}) (Version: 6.0.10.1 - Hewlett-Packard Company)
HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 8.3.17.2042 - HP Inc.)
HP Deskjet 5520 series Nápověda (HKLM-x32\...\{F58F1453-FD7C-4629-BDA3-643E95E2B167}) (Version: 27.0.0 - Hewlett Packard)
HP Device Access Manager (HKLM\...\{274A948D-DD41-4B8F-B66F-0F4AD233200F}) (Version: 8.0.0.4 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{F3F74675-3700-4C55-A9AC-924D4E36DC40}) (Version: 1.1.2.0 - Hewlett-Packard)
HP Drive Encryption (HKLM\...\HPDriveEncryption) (Version: 8.5.1.138 - Hewlett-Packard Company)
HP ESU for Microsoft Windows 8 (HKLM-x32\...\{482FF7A0-EA03-487A-9112-862D3341B76C}) (Version: 1.2.1 - Hewlett-Packard Company)
HP File Sanitizer (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 8.1.1.1 - Hewlett-Packard Company)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP HD Webcam Driver (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.8.33 - SunplusIT)
HP Hotkey Support (HKLM-x32\...\{57FA60DA-585F-456A-B80E-17D1CDD22A30}) (Version: 5.0.27.1 - Hewlett-Packard Company)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP SoftPaq Download Manager (HKLM-x32\...\{3F728815-C7E8-40EA-8D1A-F7B8E2382325}) (Version: 3.4.10.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{D1E7D876-6B86-4B35-A93D-15B0D6C43EAF}) (Version: 8.5.4.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.2.8.25 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{79CA8D8A-8371-4146-8920-C1405318E65E}) (Version: 12.4.18.7 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{357FE1E9-5890-4697-95DD-B15E01B4AA2A}) (Version: 1.3.2 - Hewlett-Packard Company)
HP Theft Recovery (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 8.0.0.6 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HP Wireless Hotspot (HKLM-x32\...\{A161E705-44B9-4B5F-A5F8-8E5847AEA86B}) (Version: 1.0.24.1 - Hewlett-Packard Company)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6454.0 - IDT)
Import souborů SketchUp 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3993 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.5.1006 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mediatek Bluetooth (HKLM\...\{75A0F2AE-B80A-BEFD-1BFF-8D1970966C7F}) (Version: 11.0.759.0 - Mediatek)
Microsoft Office 2010 pro studenty a domácnosti (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Might and Magic Heroes VII verzia v1.6 (rev 34396) (HKLM-x32\...\Might and Magic Heroes VII_is1) (Version: v1.6 (rev 34396) - CzTorrent.net)
Origin (HKLM-x32\...\Origin) (Version: 9.11.2.10120 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.1.50 - PDF Complete, Inc)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.53.0 - Mediatek)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.11.201.2013 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.7 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.9 - Rockstar Games)
SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.103 - Skype Technologies S.A.)
Speciální aplikace Autodesk 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Studie vylepšování produktu HP Deskjet 5520 series (HKLM\...\{B01BF72D-02D4-4D0E-BF0F-2AEC0114F0DC}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.9 - Synaptics Incorporated)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.6 - Tunngle.net GmbH)
Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUSR_{9F6B3627-AF9E-40A5-AAD5-3497C4327616}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{BD10518F-3463-429E-8761-0AEDCEEA6297}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUSR_{BD10518F-3463-429E-8761-0AEDCEEA6297}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 32-Bit Edition (HKLM-x32\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{BD10518F-3463-429E-8761-0AEDCEEA6297}) (Version: - Microsoft)
Validity Fingerprint Sensor Driver (HKLM\...\{ADAA7361-54B8-4FC8-804E-94EC6C11ED68}) (Version: 4.5.133.0 - Validity Sensors, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH)
Worms Revolution (HKLM-x32\...\Steam App 200170) (Version: - Team17 Digital Ltd)
Základní software zařízení HP Deskjet 5520 series (HKLM\...\{CDC570E1-58B0-4FD3-A225-31A8AAABC587}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\cs-CZ\acadficn.dll (Autodesk, Inc.)

==================== Restore Points =========================

18-06-2016 08:26:55 ASU_MSI_TRAN
24-06-2016 13:40:41 Windows Update
27-06-2016 11:29:51 Instalováno Heroes of Might and Magic® IV
03-07-2016 00:24:35 Nainstalováno rozhraní DirectX

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-01-30 11:19 - 2016-01-30 11:19 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {072A333C-51CC-4B0D-B208-194E87F34A7E} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.)
Task: {09FD9FB3-1515-457A-92AC-4F579E2FA411} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {207168BD-DD67-488B-BC82-10591387D75A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.)
Task: {2551B990-0D3B-4393-B0DC-172D1C3D3C70} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {2957F081-AB9E-4E78-9DEC-11CD6666EB9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-21] (Google Inc.)
Task: {2A9917A2-CC03-4F74-805A-E997A6E0DE70} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {2B81A373-4589-4F98-BB8B-EF01464D5A61} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {354EBED9-9F50-4244-A637-71D56C83319B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {3EE3417E-EE1D-4EB0-96B0-CF8CC8DF9714} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-21] (Google Inc.)
Task: {5058981E-7392-43E0-82F2-AE9CA27E1146} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2016-06-16] (Microsoft Corporation)
Task: {6C530DE1-772C-4446-AB93-D524BB58C2B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {7C7568FD-863E-4CB6-9D4C-1E0AB3DDA06E} - System32\Tasks\SafeZone scheduled Autoupdate 1463163108 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software)
Task: {834F2C02-10A8-4AC6-B53F-C485EE3BF387} - System32\Tasks\{0DC48B8D-5CDF-4274-BE24-007A173593CD} => pcalua.exe -a C:\Users\polis_000\Desktop\Heroes\SETUP.EXE -d C:\Users\polis_000\Desktop\Heroes
Task: {8B4B21F6-E7F0-465B-8310-76F66476CD6C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\windows\system32\MRT.exe [2016-06-16] (Microsoft Corporation)
Task: {9A0F09DC-2D5F-47E1-8002-8845493B8BFD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {A25630A0-006A-4879-B303-FFDB2BD04520} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-10-22] (Synaptics Incorporated)
Task: {AC5ACD9A-D97E-4A58-95B1-F77030248B60} - System32\Tasks\SafeZone scheduled Autoupdate 1449667557 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software)
Task: {BE40EDA9-7EA4-43A8-BF13-A13A19EEE081} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {C5CF7ABF-AAA7-4EC4-9BDC-92F99A51F14E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-09-16] (Piriform Ltd)
Task: {C985508E-6968-45C5-91A9-D43EB2417EF5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company)
Task: {CD58F5E7-06F5-4724-9F6B-D6EB3CBFE2EA} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {D6CFB6F8-187A-4345-AA96-DE7E7DCCC5F6} - System32\Tasks\HPCeeScheduleForpolis_000 => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {DBFB9825-F7C9-4ECF-B59D-CB665E85AEBB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard)
Task: {E16B2CEA-125B-41AD-ADEC-6E95C0914EED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {EA8B04C6-E21E-45E9-AF4E-5E8C48F3CF3A} - System32\Tasks\HPCustParticipation HP Deskjet 5520 series => C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {EB544DDB-799B-4453-9B5D-B11B0B9E91B2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-05-06] (AVAST Software)
Task: {F15B8B81-9A65-458A-9361-0772C55AD663} - System32\Tasks\Garena+ Plugin Host Service => C:\Garena Plus\ggdllhost.exe [2015-12-08] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForpolis_000.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (Whitelisted) ==============

2014-05-28 10:14 - 2014-05-28 10:14 - 00336056 _____ () C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomainPlugin.dll
2012-10-30 22:05 - 2012-10-30 22:05 - 00607744 _____ () C:\windows\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2013-12-16 15:45 - 2013-12-16 15:45 - 00016632 _____ () C:\windows\system32\BsHelpCSps.dll
2015-10-13 16:07 - 2015-10-13 16:07 - 08901184 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-12-16 15:45 - 2013-12-16 15:45 - 00062200 _____ () C:\windows\system32\BlueSoleilCSps.dll
2014-05-15 15:49 - 2014-05-15 15:50 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2015-09-16 21:33 - 2015-09-16 21:33 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-05-06 15:11 - 2016-05-06 15:11 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-05-06 15:11 - 2016-05-06 15:11 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-21 21:48 - 2016-06-21 21:48 - 02939392 _____ () C:\Program Files\AVAST Software\Avast\defs\16062101\algo.dll
2016-05-06 15:11 - 2016-05-06 15:11 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-05-06 15:11 - 2016-05-06 15:11 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll
2016-07-03 15:02 - 2016-07-03 15:02 - 02996736 _____ () C:\Program Files\AVAST Software\Avast\defs\16070300\algo.dll
2013-12-16 15:46 - 2013-12-16 15:46 - 00029432 _____ () C:\windows\SYSTEM32\BsTrace.dll
2013-12-16 15:45 - 2013-12-16 15:45 - 00016632 _____ () C:\windows\SYSTEM32\BsHelpCSps.dll
2013-12-16 15:45 - 2013-12-16 15:45 - 00062200 _____ () C:\windows\SYSTEM32\BlueSoleilCSps.dll
2013-05-24 10:22 - 2013-05-24 10:22 - 00334648 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll
2011-07-05 10:53 - 2011-07-05 10:53 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll
2015-12-28 02:09 - 2014-10-16 11:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2015-12-22 13:21 - 2015-12-22 13:21 - 00016384 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\PSIClient\cd62420cb4e3198c151817f24dee24b0\PSIClient.ni.dll
2013-06-20 12:52 - 2012-10-22 10:22 - 01199648 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-06-20 13:04 - 2012-06-08 05:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 12:34 - 2012-06-08 12:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2015-12-10 20:49 - 2015-12-10 20:49 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2016-07-02 18:33 - 2016-07-02 18:32 - 00243200 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll
2016-06-18 08:41 - 2016-06-15 11:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-18 08:41 - 2016-06-15 11:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\polis_000\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\tapeta programu windows prohlížeč fotografií.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "Autodesk Sync"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\StartupApproved\Run: => "EADM"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8767AEE3-2961-4BF5-8AFD-F49CB17F4ADC}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{CDA11039-C7DC-436C-8F79-ED1088D3BF28}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C3A74E45-13F2-4076-9246-0DF28C9843DB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E5167780-E780-4B87-B699-8DB014615971}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FD9770AA-0FE3-41AF-8966-112C9509A829}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FEC81098-E976-4E83-904C-7487FB6625D9}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{2AC27D41-0311-423B-B460-753CC8D00238}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{035F741C-5F93-4DDF-AAFD-E942A0C47616}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [TCP Query User{2E9B4935-A229-4C24-8F5E-46C3F434E5BE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{5B89BF00-895E-4460-AA48-C0E6DAA732F3}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{586D3F07-489D-47F3-ABD7-C816D184FE64}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [{BD406181-22B8-4187-9713-DB683476862D}] => (Allow) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
FirewallRules: [TCP Query User{E690D7DA-7F24-414E-94D7-F2ACC2AE5085}C:\counter-strike 1.6\csko.exe] => (Allow) C:\counter-strike 1.6\csko.exe
FirewallRules: [UDP Query User{16E048F5-EB54-46A0-8750-BAA6B4B6D267}C:\counter-strike 1.6\csko.exe] => (Allow) C:\counter-strike 1.6\csko.exe
FirewallRules: [{80BD888B-9415-42D6-BD04-34EB06FFFB54}] => (Allow) LPort=50248
FirewallRules: [{39B321C1-4730-4934-857E-2BC1F207E97C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3146499B-FB4B-4EE5-9140-8ED2DF1A4B01}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{53F3C167-76C5-43AB-9887-E105D6BD2AD9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{69A746D0-FBFA-45C1-B076-4C1DACC07E6B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{15EED943-081A-4582-AFCB-8C28178FD1DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{181A800D-B4C8-41D6-9D75-9D0C7004CF68}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{924ABCAE-A140-4094-9666-3A55EEB0A781}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{9E21EDCF-E32D-4325-9E5E-3F99723238AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{D2EB56F7-6943-459F-BF07-C687D9FCB212}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe
FirewallRules: [{84B2C720-C635-4859-A234-E754205DBB82}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe
FirewallRules: [{3F9FB757-6680-41C4-B62E-1BBAFF8DFFB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{9D05ACC5-FA0B-4B8A-A5BA-505683060F72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{7673B5D6-3A70-450E-8FC2-EAFA92E6B568}C:\world of tanks\wotlauncher.exe] => (Allow) C:\world of tanks\wotlauncher.exe
FirewallRules: [UDP Query User{9B15A50B-2C69-42B9-A2D2-A63D5A4B5078}C:\world of tanks\wotlauncher.exe] => (Allow) C:\world of tanks\wotlauncher.exe
FirewallRules: [TCP Query User{91BD5ACC-A40D-455C-91C2-8D44ED51D55A}C:\warcraft iii+frozen throne\war3.exe] => (Allow) C:\warcraft iii+frozen throne\war3.exe
FirewallRules: [UDP Query User{1764806A-DB95-4081-95D5-EF56DC2B808D}C:\warcraft iii+frozen throne\war3.exe] => (Allow) C:\warcraft iii+frozen throne\war3.exe
FirewallRules: [{718D2A38-5E94-475B-9FED-96FD9AB9A149}] => (Allow) C:\Garena Plus\ggdllhost.exe
FirewallRules: [{E6B98280-E762-4151-853D-804D9EE24535}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{5F552143-4BD2-4174-A557-87F2B19973D3}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
FirewallRules: [{808286D6-826F-47F9-84DB-8E3AE3214F3D}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{24B8872F-20C8-446F-B764-256FDC5EEC3D}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{E34EDEA0-29FF-436C-B741-62929302448A}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{67F1E294-4BE3-4495-81D2-A17E8D95E547}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{72BBCD91-1EEF-4C70-81E9-189A509A62F2}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{C458C99C-55AA-44B4-9833-9A30780F14BE}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{60CD6498-CA55-4996-9C8F-41658F9C0000}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{1DA1F391-D22B-402B-AA55-9D49E8D4A915}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{5D020A1B-4D18-46CC-9B52-D10BB846D6CD}] => (Allow) C:\Program Files\HP\HP Deskjet 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{DF152828-AF33-4914-872D-2B2B41959C3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{96A47723-9828-4536-9662-306C205E8DBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{06207A53-BDB9-4663-8124-43B966B3BFEB}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{EA77A5BA-A34D-4A75-BE57-6B8A4681668B}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{AE368D42-9A45-492C-9387-30E33AC970DD}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{01586417-5499-47B6-A58A-6A035D1A75F9}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{0EEF0D45-6B5E-4814-B036-9A9983E0D23E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{8B76CA3F-93C5-42DD-A965-D7D3F8169685}C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{64D718FD-9F23-4998-8555-6517EB5E6712}C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\polis_000\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{F49BD38A-CB28-48E4-8A14-89050C7CE429}C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe
FirewallRules: [UDP Query User{EC155A0F-A59A-4BD7-9674-CE7EBDEB3589}C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe
FirewallRules: [{439B1283-03E5-419D-91CA-E2C865E2868B}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe
FirewallRules: [{3457FBD5-0F28-4B0E-B093-7CD392FE3EF2}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe

==================== Faulty Device Manager Devices =============

Name: TAP-Win32 Adapter V9 (Tunngle)
Description: TAP-Win32 Adapter V9 (Tunngle)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9 (Tunngle)
Service: tap0901t
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (07/03/2016 03:04:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x12584b66
ID chybujícího procesu: 0x12f0
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 03:04:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x17cf7d3f
ID chybujícího procesu: 0x12f0
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:32:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: ntdll.dll, verze: 6.2.9200.17581, časové razítko: 0x5644f0df
Kód výjimky: 0xc0000005
Posun chyby: 0x0002db60
ID chybujícího procesu: 0x1488
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:32:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x17cf7d3f
ID chybujícího procesu: 0x1488
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:30:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: ntdll.dll, verze: 6.2.9200.17581, časové razítko: 0x5644f0df
Kód výjimky: 0xc0000005
Posun chyby: 0x0002db60
ID chybujícího procesu: 0x9a4
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:30:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x17cf7d3f
ID chybujícího procesu: 0x9a4
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:30:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: ntdll.dll, verze: 6.2.9200.17581, časové razítko: 0x5644f0df
Kód výjimky: 0xc0000005
Posun chyby: 0x0002db60
ID chybujícího procesu: 0x28
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:30:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa14-3dm.exe, verze: 1.2.0.0, časové razítko: 0x03f40040
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x17cf7d3f
ID chybujícího procesu: 0x28
Čas spuštění chybující aplikace: 0xfifa14-3dm.exe0
Cesta k chybující aplikaci: fifa14-3dm.exe1
Cesta k chybujícímu modulu: fifa14-3dm.exe2
ID zprávy: fifa14-3dm.exe3
Úplný název chybujícího balíčku: fifa14-3dm.exe4
ID aplikace související s chybujícím balíčkem: fifa14-3dm.exe5

Error: (07/03/2016 02:02:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_SysMain, verze: 6.2.9200.16420, časové razítko: 0x505a9a4e
Název chybujícího modulu: sysmain.dll, verze: 6.2.9200.17436, časové razítko: 0x55a05ea7
Kód výjimky: 0xc0000305
Posun chyby: 0x000000000001df56
ID chybujícího procesu: 0x49c
Čas spuštění chybující aplikace: 0xsvchost.exe_SysMain0
Cesta k chybující aplikaci: svchost.exe_SysMain1
Cesta k chybujícímu modulu: svchost.exe_SysMain2
ID zprávy: svchost.exe_SysMain3
Úplný název chybujícího balíčku: svchost.exe_SysMain4
ID aplikace související s chybujícím balíčkem: svchost.exe_SysMain5

Error: (07/03/2016 12:24:56 PM) (Source: MsiInstaller) (EventID: 1002) (User: HP-ONDRA)
Description: Neočekávaná nebo chybějící hodnota (název: PackageName, hodnota: ) v klíči HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList


System errors:
=============
Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Platforma WDF (Windows Driver Foundation) – platforma ovladače v uživatelském režimu byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Automatická konfigurace sítě WLAN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Klient služby Sledování distribuovaných odkazů byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Superfetch byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Program Compatibility Assistant Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Síťová připojení byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 100 milisekund: Restartovat službu.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba přidružování zařízení byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/03/2016 02:02:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Koncové vytváření služby Windows Audio byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/02/2016 10:57:46 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (07/01/2016 04:35:38 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 31%
Total physical RAM: 8042.56 MB
Available physical RAM: 5538.64 MB
Total Virtual: 12612.56 MB
Available Virtual: 9335.92 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:915.99 GB) (Free:558.33 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Recovery Image) (Fixed) (Total:14.04 GB) (Free:1.36 GB) NTFS
Drive e: (Disk1) (CDROM) (Total:7.95 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)

Partition: GPT.

==================== End of Addition.txt ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.201 - Log vytvořen 03/07/2016 v 20:48:38
# Aktualizováno 30/06/2016 by ToolsLib
# Databáze : 2016-07-01.1 [Server]
# Operační system : Windows 8 (X64)
# Uživatelské jméno : polis_000 - HP-ONDRA
# Spuštěno z : C:\Users\polis_000\Desktop\Stažené\adwcleaner_5.201.exe
# Nastavení : Čištění
# Podpora : https://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****


***** [ Soubory ] *****


***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úlohy ] *****


***** [ Registry ] *****

[-] Klíč Smazáno : HKCU\Software\Conduit
[-] Klíč Smazáno : HKLM\SOFTWARE\Conduit

***** [ Prohlížeče ] *****


*************************

:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [863 bytů] - [03/07/2016 20:48:38]
C:\AdwCleaner\AdwCleaner[S1].txt - [814 bytů] - [26/05/2016 21:08:41]
C:\AdwCleaner\AdwCleaner[S2].txt - [1058 bytů] - [03/07/2016 20:45:43]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1080 bytů] ##########

Dejte nový log FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-10-2015 02
Ran by polis_000 (administrator) on HP-ONDRA (05-07-2016 19:41:51)
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Loaded Profiles: polis_000 (Available Profiles: polis_000 & Administrator)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts Canada) C:\Program Files (x86)\Origin Games\FIFA 15\fifasetup\fifaconfig.exe
() C:\Garena Plus\ggdllhost.exe
() C:\Garena Plus\ggdllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2013-02-04] (IDT, Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2013-01-02] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLWCSM] => c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [249096 2013-02-20] (cyberlink)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-03-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [File Sanitizer] => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [13685464 2013-03-06] (Hewlett-Packard)
HKLM-x32\...\Run: [YouCam Mirage] => c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2013-02-01] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [167488 2013-02-01] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111136 2012-11-21] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [493088 2012-11-21] (CyberLink Corp.)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [389368 2014-02-17] (IVT Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7408312 2016-06-27] (AVAST Software)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-07-18] (PDF Complete Inc)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [336672 2014-05-16] (Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [454792 2016-06-07] (Power Software Ltd)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [26424960 2016-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-07-02] (Electronic Arts)
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Policies\Explorer: []
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\MountPoints2: {4ccf7179-6cb1-11e3-be71-806e6f6e6963} - "E:\Setup.exe"
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-05-06] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{73B97BF5-754A-4CE1-8940-0612BB632EE6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7942DDC4-97AF-4CA9-9B31-5B35902F9F76}: [DhcpNameServer] 172.168.0.2

Internet Explorer:
==================
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-05-06] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-02-25] (HP)
BHO-x32: HP File Sanitizer -> {3134413B-49B4-425C-98A5-893C1F195601} -> c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-03-06] (Hewlett-Packard)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-05-06] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25] (HP)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-16] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-16] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-13] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll [2015-09-28] (DigitalPersona, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-06]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-06]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome
FF Extension: HP Client Security Manager - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome [2016-01-01] [not signed]

Chrome:
=======
CHR Profile: C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-21]
CHR Extension: (Dokumenty Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-21]
CHR Extension: (Disk Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-21]
CHR Extension: (Vyhledávání Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Tabulky Google) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-22]
CHR Extension: (AdBlock) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-08]
CHR Extension: (Avast Online Security) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-20]
CHR Extension: (HP Client Security Manager) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab [2016-01-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-06]
CHR Extension: (Gmail) - C:\Users\polis_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-05-06]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome.crx [2015-09-28]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-06] (AVAST Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1579880 2014-02-17] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-12-16] (IVT Corporation)
U4 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [37632 2013-06-01] (Microsoft Corporation)
U4 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [51200 2012-07-26] (Microsoft Corporation)
U4 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [29952 2013-04-29] (Microsoft Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [502232 2015-09-28] (DigitalPersona, Inc.)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [556856 2013-03-04] (Hewlett-Packard Company)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372920 2013-09-18] (Hewlett-Packard Development Company, L.P.)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [683296 2014-05-16] (Hewlett-Packard Company)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2015-12-18] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [130592 2012-10-22] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166432 2012-10-22] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2904864 2015-06-02] (IObit)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-07-02] (Electronic Arts)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2013-02-04] (IDT, Inc.) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [818672 2016-05-11] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36520 2012-09-14] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-05-06] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-05-06] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-05-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-05-06] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-05-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-05-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-05-06] (AVAST Software)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [51936 2014-01-20] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 clwcsm; C:\Windows\system32\DRIVERS\clwcsm.sys [42944 2013-02-19] (CyberLink Corporation)
S3 DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [65752 2013-02-18] (Hewlett-Packard Company)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-10-12] (Broadcom Corporation)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2525840 2014-12-31] (MediaTek Inc.)
R0 PinFile; C:\Windows\System32\DRIVERS\PinFile.sys [49856 2013-03-18] (WinMagic, Inc.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-23] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1210480 2014-12-24] (Ralink Technology, Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-01] (RTS Corporation)
R0 SDDisk2K; C:\Windows\System32\DRIVERS\SDDisk2K.sys [212672 2013-03-27] (WinMagic Inc.)
R0 SDDToki; C:\Windows\System32\DRIVERS\SDDToki.sys [131928 2013-01-07] (WinMagic Inc.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-01-11] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [32496 2013-01-11] (Synaptics Incorporated)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1513208 2016-04-12] (Sunplus)
S3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [39464 2016-04-27] (Tunngle.net GmbH)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-02-08] (Hewlett-Packard Development Company, L.P.)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [33968 2012-12-19] (IVT Corporation)
R3 gkernel; \??\C:\Users\POLIS_~1\AppData\Local\Temp\gkernel.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-05 19:42 - 2016-07-05 19:42 - 00001078 _____ C:\windows\system32dbgraw.bmp
2016-07-05 19:34 - 2016-07-05 19:34 - 00003356 _____ C:\windows\System32\Tasks\Garena+ Plugin Host Service
2016-07-03 20:50 - 2016-07-03 20:50 - 00002296 _____ C:\windows\PFRO.log
2016-07-03 15:41 - 2016-07-05 19:41 - 00000000 ____D C:\FRST
2016-07-03 00:24 - 2016-07-03 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hry
2016-07-02 18:58 - 2016-07-03 20:51 - 00000366 _____ C:\windows\Tasks\HPCeeScheduleForpolis_000.job
2016-07-02 18:48 - 2016-07-02 19:04 - 00000000 ____D C:\Users\polis_000\Downloads\FIFA 14 CZ
2016-06-27 15:06 - 2016-07-03 00:27 - 00037174 _____ C:\windows\DirectX.log
2016-06-27 15:06 - 2016-06-27 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic V [GOG.com]
2016-06-27 15:04 - 2016-06-27 15:04 - 00000000 ____D C:\GOG Games
2016-06-27 14:35 - 2016-06-27 14:52 - 00000000 ____D C:\Users\polis_000\Downloads\Heroes of Might and Magic V Bundle [GOG]
2016-06-27 14:18 - 2016-06-27 14:18 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\uplay
2016-06-27 14:15 - 2016-06-27 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Might and Magic Heroes VII
2016-06-27 12:22 - 2016-06-27 14:15 - 00000000 ____D C:\Program Files (x86)\Might and Magic Heroes VII
2016-06-27 11:32 - 2016-06-27 12:08 - 00000000 ____D C:\Users\polis_000\Downloads\Might & Magic Heroes VII - Deluxe edice v1.6 (CZ.MULTi13) [Repack] by 'Teag
2016-06-27 11:29 - 2016-06-27 11:29 - 00003162 _____ C:\windows\System32\Tasks\{0DC48B8D-5CDF-4274-BE24-007A173593CD}
2016-06-27 11:28 - 2016-06-27 11:28 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\PowerISO
2016-06-27 11:27 - 2016-06-27 11:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2016-06-27 11:27 - 2016-06-27 11:27 - 00000000 ____D C:\Program Files\PowerISO
2016-06-27 11:27 - 2016-05-25 01:06 - 00137280 _____ (Power Software Ltd) C:\windows\system32\Drivers\scdemu.sys
2016-06-27 11:04 - 2016-07-03 00:30 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\uTorrent
2016-06-27 11:04 - 2016-06-27 11:04 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-06-24 12:58 - 2016-07-02 18:58 - 00003188 _____ C:\windows\System32\Tasks\HPCeeScheduleForpolis_000
2016-06-18 08:31 - 2016-06-18 08:31 - 00001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2016-06-18 08:31 - 2016-06-18 08:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2016-06-18 08:30 - 2016-06-18 09:47 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\BSplayer
2016-06-18 08:30 - 2016-06-18 08:30 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\BSplayer Pro
2016-06-18 08:30 - 2016-06-18 08:30 - 00000000 ____D C:\Program Files (x86)\Webteh
2016-06-15 13:27 - 2016-06-04 13:22 - 00050368 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-06-15 13:27 - 2016-06-04 11:42 - 00405504 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 01413120 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00569856 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00544256 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00276480 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-06-15 13:27 - 2016-06-04 11:41 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-06-15 13:27 - 2016-05-26 15:11 - 01204224 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-06-15 13:27 - 2012-10-25 05:27 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2016-06-15 13:27 - 2012-10-25 05:26 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2016-06-15 13:27 - 2012-10-25 05:04 - 00011776 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2016-06-06 09:39 - 2016-06-06 09:55 - 00051557 _____ C:\Users\polis_000\Desktop\test662016.dwg
2016-06-06 09:39 - 2016-06-06 09:40 - 00065292 _____ C:\Users\polis_000\Desktop\test662016.bak
2016-06-05 15:01 - 2016-06-05 15:01 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-05 19:40 - 2016-05-13 20:35 - 00000978 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-05 19:36 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\sru
2016-07-05 19:34 - 2015-10-23 14:01 - 00000043 _____ C:\windows\SysWOW64\LOCALDEVICE.INI
2016-07-05 19:34 - 2015-01-05 15:20 - 00001060 _____ C:\windows\SysWOW64\bscs.ini
2016-07-05 19:33 - 2015-10-23 14:01 - 00003620 _____ C:\windows\SysWOW64\LOCALSERVICE.INI
2016-07-05 16:09 - 2015-11-17 21:49 - 01882608 _____ C:\windows\WindowsUpdate.log
2016-07-05 14:56 - 2015-10-21 14:18 - 00000000 ____D C:\Users\polis_000\AppData\Roaming\Skype
2016-07-05 14:53 - 2015-10-21 14:18 - 00000000 ____D C:\ProgramData\Skype
2016-07-05 14:52 - 2016-05-14 20:12 - 00016303 _____ C:\windows\SysWOW64\debug.log
2016-07-05 14:52 - 2015-12-24 22:45 - 00000000 ____D C:\ProgramData\Origin
2016-07-05 14:47 - 2016-05-13 20:35 - 00000974 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-05 14:47 - 2016-05-06 15:13 - 00004182 _____ C:\windows\System32\Tasks\avast! Emergency Update
2016-07-03 20:54 - 2013-04-29 07:58 - 00000000 ____D C:\ProgramData\PDFC
2016-07-03 20:51 - 2012-07-26 09:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-07-03 20:50 - 2012-07-26 07:26 - 00262144 ___SH C:\windows\system32\config\BBI
2016-07-03 20:48 - 2016-05-26 21:08 - 00000000 ____D C:\AdwCleaner
2016-07-03 20:45 - 2015-11-09 22:32 - 00000000 ____D C:\Users\polis_000\Desktop\Stažené
2016-07-03 20:45 - 2013-12-25 11:24 - 00000000 ____D C:\Users\polis_000\Desktop\Antivir, Čištění PC
2016-07-03 15:02 - 2012-07-26 10:12 - 00000000 ____D C:\windows\system32\NDF
2016-07-03 12:15 - 2013-12-24 20:06 - 00000000 ___RD C:\Users\polis_000\Desktop\Hry
2016-07-02 18:58 - 2015-10-20 22:39 - 00000000 ____D C:\Users\polis_000
2016-07-02 18:33 - 2015-12-24 22:42 - 00000000 ____D C:\Program Files (x86)\Origin
2016-07-02 13:17 - 2015-12-28 02:09 - 00000000 ____D C:\ProgramData\ProductData
2016-07-01 17:56 - 2014-02-03 23:20 - 00000000 ___RD C:\Users\polis_000\Desktop\Písničky
2016-06-27 15:08 - 2013-12-24 20:12 - 00000000 ____D C:\Users\polis_000\Documents\My Games
2016-06-27 14:22 - 2015-11-27 16:33 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-27 11:27 - 2013-12-24 20:13 - 00000000 ___RD C:\Users\polis_000\Desktop\Různý programy
2016-06-24 13:44 - 2012-07-26 09:59 - 00000000 ____D C:\windows\CbsTemp
2016-06-21 22:20 - 2015-11-13 16:33 - 00003600 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2428774486-1446802013-3078816245-1002
2016-06-21 21:49 - 2015-10-23 13:53 - 00000000 ____D C:\windows\system32\appraiser
2016-06-18 12:16 - 2012-07-26 10:12 - 00000000 ____D C:\windows\AUInstallAgent
2016-06-18 08:41 - 2015-10-21 14:17 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 08:31 - 2015-10-21 14:18 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-17 12:56 - 2015-10-22 15:12 - 00000052 _____ C:\windows\SysWOW64\DOErrors.log
2016-06-16 20:24 - 2015-11-12 22:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-06-16 20:24 - 2015-11-12 22:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-06-16 20:23 - 2012-07-26 07:26 - 00000167 _____ C:\windows\win.ini
2016-06-16 20:13 - 2015-10-22 18:09 - 00000000 ____D C:\windows\system32\MRT
2016-06-16 20:13 - 2013-06-20 21:10 - 00713034 _____ C:\windows\system32\perfh005.dat
2016-06-16 20:13 - 2013-06-20 21:10 - 00163656 _____ C:\windows\system32\perfc005.dat
2016-06-16 20:13 - 2012-07-26 09:28 - 01717240 _____ C:\windows\system32\PerfStringBackup.INI
2016-06-16 17:38 - 2015-10-22 18:09 - 142482544 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe

==================== Files in the root of some directories =======

2016-01-29 20:31 - 2016-01-29 20:31 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-30 17:40 - 2016-01-01 19:14 - 11942094 _____ () C:\ProgramData\hpcsmmsilogs.log
2015-11-09 11:00 - 2015-11-09 11:00 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

Some files in TEMP:
====================
C:\Users\polis_000\AppData\Local\Temp\libeay32.dll
C:\Users\polis_000\AppData\Local\Temp\msvcr120.dll
C:\Users\polis_000\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-03 12:30

==================== End of FRST.txt ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Policies\Explorer: []
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\MountPoints2: {4ccf7179-6cb1-11e3-be71-806e6f6e6963} - "E:\Setup.exe"
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
R3 gkernel; \??\C:\Users\POLIS_~1\AppData\Local\Temp\gkernel.sys [X]
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\polis_000\AppData\Local\Temp
End

Uložte do C:\Users\polis_000\Desktop\Antivir, Čištění PC jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version:25-10-2015 02
Ran by polis_000 (2016-07-05 22:36:25) Run:1
Running from C:\Users\polis_000\Desktop\Antivir, Čištění PC
Loaded Profiles: polis_000 (Available Profiles: polis_000 & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\Policies\Explorer: []
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\...\MountPoints2: {4ccf7179-6cb1-11e3-be71-806e6f6e6963} - "E:\Setup.exe"
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
R3 gkernel; \??\C:\Users\POLIS_~1\AppData\Local\Temp\gkernel.sys [X]
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\polis_000\AppData\Local\Temp
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value removed successfully
"HKU\S-1-5-21-2428774486-1446802013-3078816245-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4ccf7179-6cb1-11e3-be71-806e6f6e6963}" => key removed successfully
HKCR\CLSID\{4ccf7179-6cb1-11e3-be71-806e6f6e6963} => key not found.
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
gkernel => Unable to stop service.
gkernel => service removed successfully
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Users\polis_000\AppData\Local\Temp => moved successfully


The system needed a reboot.

==== End of Fixlog 22:36:31 ====

Smazáno. Nastala nějaká změna?

Počítač mi přijde o něco rychlejší ale ještě mi to nepřijde úplně ono :/

Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 12. 7. 2016
Čas skenování: 16:51
Protokol: ....txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2016.07.12.07
Databáze rootkitů: v2016.05.27.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8
CPU: x64
Souborový systém: NTFS
Uživatel: polis_000

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 347760
Uplynulý čas: 15 min, 16 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)