SVChost.exe Virus

[SkyWolfy]

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{985D9EB6-2C5D-4F3E-8C2A-287B8C356D30}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{A89473AE-45FC-4441-A7C8-6B4548E3F03C}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{736617F6-872F-4F0A-9421-8F2921513B27}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{4D8D7A32-BE05-4BEA-AE7A-4A5E3F0FE161}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{69B6DCC8-0FDF-44B5-A11C-FC772735F508}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6815CFF3-9959-4D26-875C-13EB69044322}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6403AE41-AEBE-4AC0-9CB2-5B2E02F0F6DC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{00B8A5C3-556D-45E9-AD5D-AA3F0AFAE4E0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{53538BA0-9EBF-43B1-B219-1E0DFE6F44E7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F6F6FFF9-9FB4-4F13-89A8-58072FC3E8FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5039D12C-2CE8-4195-BA3C-6DF0E52216A1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{409615CD-7A1C-48E1-A7E8-26E3621F9714}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6ADC9E4C-52F5-4F46-85F5-3B862BEEBD4B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3AE0315C-F035-4590-9001-3A87525015A3}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7627F1EB-150B-4E74-BEDA-0547B41D7E04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{A417FDD5-712B-40A6-96F4-93DA59926DD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B0FF3F08-8262-4186-AB73-AC044C1C40AB}] => (Allow) C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{58C6B6E0-9B44-437B-B551-D58264481F57}] => (Allow) C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{80800A79-ECF0-4E99-9144-CB6ED6C0ADB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{6C848674-F5E3-47D2-8E7E-ED88AE74667C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{2D44DB72-CD4B-4EEC-B5EC-FFE354B71570}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Making History II\MH2.exe
FirewallRules: [{F1BE0288-9A74-432B-935A-0E9D872A1195}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Making History II\MH2.exe
FirewallRules: [{28117B24-CF3B-4D50-A310-273BB839E9A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{FEE5C24E-C49C-439E-A128-BD15AFF3FD04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{0E48FD6B-9FE3-4E3B-8430-F50BC52236FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{7F8A42CE-6090-4C15-A4FC-982B51338CE1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{DEE1F6EF-386D-4292-811C-2D8CD5B1A9C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad\mow_assault_squad.exe
FirewallRules: [{324F2BB8-6AE4-4ED5-B558-5D7D79414233}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad\mow_assault_squad.exe
FirewallRules: [{307293D3-84EB-406F-ABB1-0BD1D187DA0C}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{7F61039E-0253-470B-B4F5-9B2067014574}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{C59A36D2-91D5-48C2-85C6-37E1360E07A4}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{DDFC8257-39AA-4C85-872A-B57FF1FBB118}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{338958AF-4476-437A-A96E-19C95EB8A7CF}] => (Allow) C:\Users\Tobiáš\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EB0EC973-37A2-4AEA-ACC0-F6BA07E12803}] => (Allow) C:\Users\Tobiáš\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{42DE9996-D3BB-4FBA-BD83-0B3750AC1389}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [{959A32DF-E453-42AB-9827-8E69709D048A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [TCP Query User{1AF77D47-0E21-43C1-90B4-F6737031A0F2}C:\users\tobiáš\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\tobiáš\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{9740184A-B368-429E-A333-423129B9AFCA}C:\users\tobiáš\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\tobiáš\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{F352C9E1-A0FC-4EFC-9B6D-28BB1C8C5C29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{F5E2FDC9-845E-46A4-8326-454ADF6E653C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{1F0F07EF-E723-4790-8BB7-AFF188C71234}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{7F7E3E54-878D-4388-BCFE-FE694C3511C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{D7AEFA8B-0F28-4700-89BC-C27C6DB05D57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{B62149A0-3845-44A5-BE93-D86769D19BE6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{B01DB974-2F6D-4EBF-B767-F2F09FC35646}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{83D84F6B-1195-4CC6-A5B1-3F34CB4D67FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{3F2CF8B0-476E-470F-B109-C5002241CEF3}] => (Allow) C:\Games\Need for Speed Rivals\NFS14_x86.exe
FirewallRules: [{CCB730A7-4FFD-4E3B-9963-E246A409E574}] => (Allow) C:\Games\Need for Speed Rivals\NFS14_x86.exe
FirewallRules: [{A4CFC2B3-AD52-491B-8E10-8618C6CEF3F7}] => (Allow) C:\Games\Need for Speed Rivals\NFS14.exe
FirewallRules: [{221B8B6D-8585-4915-879A-4DE18D815B87}] => (Allow) C:\Games\Need for Speed Rivals\NFS14.exe
FirewallRules: [{4400D2E8-4B03-4ABA-9F87-51187FB0DA5F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{24554892-3E0E-4349-9DB4-83DF1840B27A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [TCP Query User{402BAB61-0EA3-4A1F-9CC4-1B06C0C532F5}C:\program files (x86)\blitzkrieg 2\exe\bin\game.exe] => (Block) C:\program files (x86)\blitzkrieg 2\exe\bin\game.exe
FirewallRules: [UDP Query User{208D0CB5-455A-45ED-95C0-878F6CD7F5A2}C:\program files (x86)\blitzkrieg 2\exe\bin\game.exe] => (Block) C:\program files (x86)\blitzkrieg 2\exe\bin\game.exe
FirewallRules: [TCP Query User{03166801-B3A9-4C07-B4A4-295D5B37E6B5}C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{2CBBB3FB-0B19-4855-9953-08DEFE016DD7}C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{F0FB3A9F-B246-418E-948F-9044CB104F12}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
FirewallRules: [UDP Query User{4B1E68BA-8D86-42F2-976F-8C17C154EBE9}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
FirewallRules: [{2620E76D-59D0-4D56-9183-55AC8DD18CD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{A05D8E38-5EFE-4FD5-A7FA-84F8AF173289}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [TCP Query User{D70E7DB0-323A-41DB-A3DD-67A732A7A88C}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [UDP Query User{CC292EB8-E2EB-4C48-A726-E6A5C6323311}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [{4EC0237D-8A95-45A4-945B-0F25F6F311C9}] => (Allow) C:\Program Files (x86)\Microsoft Games\Rise of Nations\thrones.exe
FirewallRules: [{611FCB3F-E70C-4B77-9994-B347C6D31DD0}] => (Allow) C:\Program Files (x86)\Microsoft Games\Rise of Nations\thrones.exe
FirewallRules: [TCP Query User{45CFEDD9-031D-4148-9A20-6DA5CE2BB16F}C:\program files (x86)\hearts of iron 3\hearts of iron 3\hoi3game.exe] => (Allow) C:\program files (x86)\hearts of iron 3\hearts of iron 3\hoi3game.exe
FirewallRules: [UDP Query User{B4B8C57D-B0CF-4550-8554-CAB8A064FD7A}C:\program files (x86)\hearts of iron 3\hearts of iron 3\hoi3game.exe] => (Allow) C:\program files (x86)\hearts of iron 3\hearts of iron 3\hoi3game.exe
FirewallRules: [TCP Query User{D35D7F09-FBFE-4B3D-9284-EDBF4083A99C}C:\program files (x86)\hearts of iron iii collection\hearts of iron iii collection-bi panzeroo\hoi3game.exe] => (Block) C:\program files (x86)\hearts of iron iii collection\hearts of iron iii collection-bi panzeroo\hoi3game.exe
FirewallRules: [UDP Query User{40AA4AA0-B81C-4893-A868-40FD8FB06B49}C:\program files (x86)\hearts of iron iii collection\hearts of iron iii collection-bi panzeroo\hoi3game.exe] => (Block) C:\program files (x86)\hearts of iron iii collection\hearts of iron iii collection-bi panzeroo\hoi3game.exe
FirewallRules: [{DB7AD184-1808-4C1D-A485-858AF8ABB7E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{6C2C7613-808A-4AEF-B053-E7227572F6AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{B75E4EB8-FDB6-4CA4-A566-31C3A1D3CFD5}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{BF0C9C9A-7EDB-404F-9271-0502E2238AAD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{EB1A5E28-64ED-411A-B1D6-6824E67C9D54}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{C7A7236E-3C8B-4786-A597-1EE551410118}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{788F11A9-4F3B-4B2B-8BA9-2B3EC8F3C0DB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{02358E77-6AA4-4DFF-8852-664C78085BE7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{517A23AC-6EF6-44C4-9384-6A90EC4A5C88}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Block) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{B82A2DD9-B8C0-4C56-BA2B-95BE48C9CC39}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Block) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [{B205AA50-5842-4867-9AD9-09343C34CB90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{867B5701-EB7E-4970-A816-3D8C7FDCE936}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{820655C4-8937-45AD-AC74-7600121F1C4C}C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{0EA8DDE5-1C6B-45C5-83A5-FD88DA738AA6}C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{A7AF2404-AC12-4948-9C6D-E8384BD97F62}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{A1E22CD6-E6AB-4857-B120-4E873F468D9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [TCP Query User{DCC72861-2388-48AC-9803-D3919AD306BC}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Block) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [UDP Query User{50701CD4-35E8-4FED-B358-71E2A2ED5603}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Block) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [TCP Query User{8321C2B7-705E-4BDC-8DB7-80FE1001E1C2}C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [UDP Query User{6AA11BCE-13BA-454E-9649-C4F4D42C6419}C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [{7DAC58C5-C828-44B3-81F4-800BD6531FD8}] => (Block) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [{9F2C1B90-8984-4607-92F8-86CB117B96EA}] => (Block) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [TCP Query User{3D0CEFE1-C213-4D7D-902D-C2BA617410AA}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe
FirewallRules: [UDP Query User{3DD562F5-50F4-4005-8096-789E60095BDD}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe
FirewallRules: [TCP Query User{FF12513F-B0A3-4D9E-8FF6-46F85D1E1E5C}C:\games\arma 3\arma3.exe] => (Allow) C:\games\arma 3\arma3.exe
FirewallRules: [UDP Query User{D151D3D8-CB06-4409-A5AE-72CB7D4501E1}C:\games\arma 3\arma3.exe] => (Allow) C:\games\arma 3\arma3.exe
FirewallRules: [{94DAD804-72A3-4F57-BE89-2DDEAE6C6A44}] => (Block) C:\games\arma 3\arma3.exe
FirewallRules: [{CC44B812-8822-4407-9802-A6A16DFC2E44}] => (Block) C:\games\arma 3\arma3.exe
FirewallRules: [{DB1EC445-DD8C-471F-AB6E-336980AC5CFF}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{CE2EDF0A-45F8-4FDA-AEB5-A08FA48CD28A}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{44C8839E-41D7-40E0-9446-BBAB947A2289}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age of Conquest IV\app_main.exe
FirewallRules: [{C9AC4C5B-1DF6-4FAC-803C-361838D47D54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age of Conquest IV\app_main.exe
FirewallRules: [{1E3FD11C-5DE6-40ED-B665-046FA5C681D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7A1A844B-E844-4B42-921C-805046DEB556}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{45E7C495-E3AD-410A-8444-AA358200D4FE}C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe] => (Allow) C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe
FirewallRules: [UDP Query User{BB0752A6-F8D0-457D-B838-69A44E00DAE1}C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe] => (Allow) C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe
FirewallRules: [{82830B21-5D44-41DD-AF9A-98B418662800}] => (Block) C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe
FirewallRules: [{404C8312-341F-401B-A505-F907D8ED781E}] => (Block) C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe
FirewallRules: [TCP Query User{BE0A32DC-38C6-41EA-B052-E28EF066C5A6}C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe] => (Allow) C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe
FirewallRules: [UDP Query User{1E9421E6-784E-4232-9FC2-0FBB0F7DC005}C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe] => (Allow) C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe
FirewallRules: [{3ACE8707-E02C-45C6-BB3F-6D617C217A3C}] => (Block) C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe
FirewallRules: [{354F9CAE-5A02-48EF-835C-BB0FE042A027}] => (Block) C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe
FirewallRules: [TCP Query User{05243E8B-0A34-41E0-9767-F31585BAEF07}C:\program files (x86)\far cry 3\bin\farcry3.exe] => (Block) C:\program files (x86)\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{E2DFBE02-7D76-4881-A1E3-75DD2B40FD11}C:\program files (x86)\far cry 3\bin\farcry3.exe] => (Block) C:\program files (x86)\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{5C024921-8F9F-498C-8BF0-614ABFD1FFE9}C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [UDP Query User{99718E90-C045-4CF2-B66C-6BE74B36282F}C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [{8497299D-A461-426B-8C92-9399CF812DD9}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{7AB4BC0D-DBC2-4728-8B2F-6A893D4A44BF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{B1E5989B-6771-497C-BD24-BE7DF205FC5E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{E862AA82-E27A-405A-81C5-78A582A9814E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{0DF82D01-1FA9-4657-B00A-1DD3370093B7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{8E68D956-1DBA-44E7-9B9E-453DB4273B14}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{654CFD02-821B-4912-87D5-FC6834E99776}] => (Allow) LPort=8317
FirewallRules: [{12F99F07-244E-40D3-A81F-1547468A443A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

05-06-2016 10:07:04 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918
14-06-2016 16:33:42 Installed Crashday
16-06-2016 16:23:25 zoek.exe restore point
17-06-2016 14:09:21 Installed Camtasia Studio 8

==================== Faulty Device Manager Devices =============

[Reklama]

[SkyWolfy]

==================== Event log errors: =========================

Application errors:
==================
Error: (06/19/2016 07:06:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/19/2016 07:06:20 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/19/2016 07:05:40 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: .NETFrameworkC:\WINDOWS\system32\mscoree.dll8

Error: (06/19/2016 06:39:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/19/2016 06:39:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/19/2016 06:09:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/19/2016 06:09:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/19/2016 05:39:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/19/2016 05:39:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/19/2016 05:09:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147024894. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (06/19/2016 07:06:15 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (06/19/2016 07:06:15 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (06/19/2016 07:04:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070003): Microsoft.WindowsReadingList.

Error: (06/19/2016 06:39:12 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (06/19/2016 06:39:12 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (06/19/2016 06:09:12 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (06/19/2016 06:09:12 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (06/19/2016 05:39:12 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (06/19/2016 05:39:12 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (06/19/2016 05:09:12 PM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici


CodeIntegrity:
===================================
Date: 2016-06-19 19:19:34.298
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 19:19:34.104
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 19:19:33.398
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 19:19:33.171
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 13:48:41.332
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 13:48:41.107
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 12:46:55.575
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 12:46:55.349
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 10:57:52.932
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-06-19 10:57:52.731
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: AMD A10-7800 Radeon R7, 12 Compute Cores 4C+8G
Percentage of memory in use: 66%
Total physical RAM: 7092.77 MB
Available physical RAM: 2393.29 MB
Total Virtual: 8633.23 MB
Available Virtual: 2509.25 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:917.5 GB) (Free:175.32 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Recovery Image) (Fixed) (Total:12.53 GB) (Free:1.58 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive i: (CivilizationV) (CDROM) (Total:5.74 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 402199E8)

Partition: GPT.

==================== End of Addition.txt ====================

[jaro3]

AVG a Avira , jeden odinstaluj , tímto:

AVG
Remove AVG: http://download.avg.com/filedir/util/av ... 3_3341.exe


http://www.avg.com/eu-en/utilities


Verze pro 32 bit OS:
http://download.avg.com/filedir/util/av ... 3_2706.exe

Verze pro 64 bit OS:
http://download.avg.com/filedir/util/av ... 3_2706.exe


http://www.avg.com/cz-cs/stahnout-nastroje

http://www.avg.com/filedir/util/avg_arm ... emover.exe

http://www.grisoft.cz/36

Avira
Avira uninstall
http://www.raymond.cc/blog/archives/200 ... are/#more-
Download Avira RegCleaner
http://dl.antivir.de/down/windows/registrycleaner.zip

pak nový FRST.

[SkyWolfy]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-07-2016
Ran by Tobiáš (administrator) on TOBI (03-07-2016 08:07:40)
Running from C:\Users\Tobiáš\Desktop
Loaded Profiles: Tobiáš (Available Profiles: Tobiáš)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(AMD) C:\WINDOWS\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\WINDOWS\System32\SkyDrive.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(BitTorrent Inc.) C:\Users\Tobiáš\AppData\Roaming\uTorrent\uTorrent.exe
(MY.COM B.V.) C:\Users\Tobiáš\AppData\Local\MyComGames\MyComGames.exe
(© 2015 Microsoft Corporation) C:\Users\Tobiáš\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(BitTorrent Inc.) C:\Users\Tobiáš\AppData\Roaming\uTorrent\updates\3.4.5_41865\utorrentie.exe
(BitTorrent Inc.) C:\Users\Tobiáš\AppData\Roaming\uTorrent\updates\3.4.5_41865\utorrentie.exe
(Echobit LLC) C:\Program Files\Echobit\Evolve\EvolveClient.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\WINDOWS\System32\GWX\GWX.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Echobit LLC) C:\Program Files\Echobit\Evolve\EvoSvc.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Echobit, LLC) C:\Program Files\Echobit\Evolve\Drivers\EvolveTracker_32.exe
(Echobit, LLC) C:\Program Files\Echobit\Evolve\Drivers\EvolveTracker_64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Echobit, LLC) C:\Program Files\Echobit\Evolve\EvolveUI.exe
(Echobit, LLC) C:\Program Files\Echobit\Evolve\EvolveUI.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Relic Entertainment Inc.) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2014-03-28] (Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2014-03-28] (IDT, Inc.)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-05-29] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-06-21] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [6570256 2016-06-09] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-06-08] (LogMeIn Inc.)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2917456 2016-06-15] (Valve Corporation)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [uTorrent] => C:\Users\Tobiáš\AppData\Roaming\uTorrent\uTorrent.exe [2094080 2016-03-11] (BitTorrent Inc.)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [MyComGames] => C:\Users\Tobiáš\AppData\Local\MyComGames\MyComGames.exe [4939664 2016-06-16] (MY.COM B.V.)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [BingSvc] => C:\Users\Tobiáš\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-03-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-06-19] (Electronic Arts)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3334528 2016-05-17] (Echobit LLC)
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b67f26-bbdb-11e5-825b-a0d3c147bc1c} - "F:\setup.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b687be-bbdb-11e5-825b-a0d3c147bc1c} - "G:\setup.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b6912e-bbdb-11e5-825b-a0d3c147bc1c} - "H:\Autorun.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {a6f15267-bb9a-11e5-8259-a0d3c147bc1c} - "I:\setup.exe"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
Startup: C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2016-01-15]
ShortcutTarget: GameRanger.lnk -> C:\Users\Tobiáš\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{9BBE1697-962E-41DF-AABF-8627D899FB6C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {1C546DF4-E0D1-423B-A311-9CBC3CE8AE8B} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2346423795-1808065523-688302191-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2346423795-1808065523-688302191-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-03-11] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-04-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-03-11] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)

FireFox:
========
FF ProfilePath: C:\Users\Tobiáš\AppData\Roaming\Mozilla\Firefox\Profiles\htcuxdlb.default-1466703800326
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-03-11] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-03-11] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2346423795-1808065523-688302191-1001: @my.com/Games -> C:\Users\Tobiáš\AppData\Local\MyComGames\NPMyComDetector.dll [2016-03-09] (MY.COM B.V.)

Chrome:
=======
CHR Profile: C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-19]
CHR Extension: (Dokumenty Google) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-19]
CHR Extension: (Disk Google) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-19]
CHR Extension: (YouTube) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-19]
CHR Extension: (Tabulky Google) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-19]
CHR Extension: (Avira Browser Safety) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-06-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-19]
CHR Extension: (Gmail) - C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-19]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [636312 2016-06-09] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5165824 2016-06-09] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1080080 2016-06-21] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [705528 2016-06-09] (AVG Technologies CZ, s.r.o.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd)
R3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2016-05-17] (Echobit LLC)
S3 LicCtrlService; C:\WINDOWS\runservice.exe [16384 2016-02-25] () [File not signed]
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-14] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [419248 2016-06-07] (LogMeIn, Inc.)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-06-19] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1290480 2016-06-22] (Overwolf LTD)
S2 pr2agmlb; C:\Windows\system32\pr2agmlb.exe [754304 2007-06-04] (Bohemia Interactive)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
S3 SMService; C:\Program Files (x86)\IObit\Classic Start\SMService.exe [1056544 2015-11-06] (IObit)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2014-03-28] (IDT, Inc.) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [4803344 2016-06-01] (AVG Technologies CZ, s.r.o.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\windows\system32\drivers\amdacpksd.sys [297672 2016-02-04] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [102912 2016-02-04] (Advanced Micro Devices)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162592 2016-02-16] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [307456 2016-05-18] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272304 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [260352 2016-05-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [247040 2016-05-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [51968 2016-05-02] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [71936 2016-05-05] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [315840 2015-12-16] (AVG Technologies CZ, s.r.o.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-01-15] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2016-01-15] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 EvolveVirtualAdapter; C:\Windows\system32\DRIVERS\evolve.sys [21656 2016-05-17] (Echobit, LLC)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-06-07] (LogMeIn Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-02-04] (REALiX(tm))
R0 pe3agmlb; C:\Windows\System32\drivers\pe3agmlb.sys [73088 2007-06-04] (Bohemia Interactive)
R0 ps6agmlb; C:\Windows\System32\drivers\ps6agmlb.sys [77704 2007-06-04] (Bohemia Interactive)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2016-03-29] (AVG Netherlands B.V.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-03 08:07 - 2016-07-03 08:08 - 00023751 _____ C:\Users\Tobiáš\Desktop\FRST.txt
2016-07-03 08:07 - 2016-07-03 08:07 - 02390016 _____ (Farbar) C:\Users\Tobiáš\Desktop\FRST64.exe
2016-07-03 08:07 - 2016-07-03 08:07 - 00000000 ____D C:\Users\Tobiáš\Desktop\FRST-OlderVersion
2016-07-03 05:32 - 2016-07-03 05:32 - 00003162 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForTobiáš
2016-07-03 05:32 - 2016-07-03 05:32 - 00000346 _____ C:\WINDOWS\Tasks\HPCeeScheduleForTobiáš.job
2016-07-03 05:24 - 2016-07-03 05:24 - 00000000 ____D C:\Users\Tobiáš\AppData\LocalLow\uTorrent
2016-06-29 16:38 - 2016-06-29 16:38 - 00000882 _____ C:\Users\Public\Desktop\AVG.lnk
2016-06-29 11:52 - 2016-06-29 11:53 - 00000000 ____D C:\Users\Tobiáš\Documents\OpenTTD
2016-06-29 11:48 - 2016-06-29 11:48 - 20484800 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2016-06-29 11:33 - 2016-06-29 11:33 - 00000815 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2016-06-29 11:33 - 2016-06-29 11:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
2016-06-29 11:33 - 2016-06-29 11:33 - 00000000 ____D C:\Program Files\OpenTTD
2016-06-29 11:32 - 2016-06-29 11:32 - 08220271 _____ (OpenTTD Developers) C:\Users\Tobiáš\Downloads\openttd-1.6.1-RC1-windows-win64.exe
2016-06-28 16:30 - 2016-06-28 16:30 - 00000002 _____ C:\END
2016-06-27 15:52 - 2016-06-27 16:16 - 00000000 ____D C:\Users\Tobiáš\Documents\CEAW
2016-06-27 15:50 - 2016-06-27 15:52 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Commander Europe At War
2016-06-27 15:50 - 2016-06-27 15:50 - 00001816 _____ C:\Users\Tobiáš\Desktop\Commander Europe At War Game Menu.lnk
2016-06-27 15:49 - 2016-06-27 15:49 - 00000000 ____D C:\WINDOWS\Commander Europe At War
2016-06-27 15:49 - 2016-06-27 15:49 - 00000000 ____D C:\Matrix Games
2016-06-27 15:48 - 2016-06-27 15:52 - 01523330 _____ C:\WINDOWS\Commander Europe At War Setup Log.txt
2016-06-27 12:44 - 2016-06-27 12:44 - 00002217 _____ C:\Users\Tobiáš\Desktop\Play Commander The Great War (Game Menu).lnk
2016-06-27 12:40 - 2016-06-27 12:40 - 00000000 ____D C:\WINDOWS\Commander The Great War
2016-06-27 12:39 - 2016-06-27 12:46 - 01278531 _____ C:\WINDOWS\Commander The Great War Setup Log.txt
2016-06-24 22:54 - 2016-06-24 22:54 - 00003496 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Tobiaskop@seznam.cz
2016-06-24 17:15 - 2016-07-02 00:11 - 00000000 ____D C:\Users\Tobiáš\Desktop\Nová složka (27)
2016-06-24 16:26 - 2016-06-24 16:26 - 01224240 ____R C:\Users\Tobiáš\Desktop\Enhanced Steam.stskin
2016-06-24 16:25 - 2016-06-24 16:25 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Steam
2016-06-24 16:25 - 2016-06-24 16:25 - 00000000 ____D C:\Users\Tobiáš
2016-06-24 16:23 - 2016-06-24 16:23 - 03688157 _____ (Blumont) C:\Users\Tobiáš\Downloads\setup.exe
2016-06-24 16:23 - 2016-06-24 16:23 - 00001119 _____ C:\Users\Public\Desktop\Steam Customizer.lnk
2016-06-24 16:23 - 2016-06-24 16:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam Customizer
2016-06-24 16:23 - 2016-06-24 16:23 - 00000000 ____D C:\Program Files (x86)\Steam Customizer
2016-06-23 17:36 - 2016-06-23 17:36 - 00001539 _____ C:\Users\Tobiáš\Desktop\hoi3_tfh – zástupce.lnk
2016-06-19 19:20 - 2016-06-19 19:21 - 00056876 _____ C:\Users\Tobiáš\Downloads\Addition.txt
2016-06-19 19:19 - 2016-06-19 19:21 - 00059371 _____ C:\Users\Tobiáš\Downloads\FRST.txt
2016-06-19 19:18 - 2016-07-03 08:07 - 00000000 ____D C:\FRST
2016-06-19 09:14 - 2016-06-19 09:14 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-06-18 19:06 - 2016-06-18 19:06 - 00000000 ____D C:\ProgramData\ProductData
2016-06-18 18:10 - 2016-06-18 18:18 - 00000000 ____D C:\zoek
2016-06-18 17:41 - 2016-06-18 17:41 - 22851472 _____ (Malwarebytes ) C:\Users\Tobiáš\Downloads\mbam-setup-2.2.1.1043(1).exe
2016-06-18 11:59 - 2016-06-26 11:18 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\CrashDumps
2016-06-18 07:04 - 2016-06-18 07:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-06-18 07:04 - 2016-06-18 07:04 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-06-18 07:04 - 2016-06-14 19:13 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-06-18 07:04 - 2016-06-14 19:13 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-17 18:48 - 2016-06-17 18:48 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\LumaEmu_SteamCloud
2016-06-17 16:30 - 2016-06-17 16:30 - 00003728 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2016-06-17 16:30 - 2016-06-17 16:30 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2016-06-17 16:29 - 2016-06-28 22:30 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-06-17 16:29 - 2016-06-17 16:32 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\TS3Client
2016-06-17 16:29 - 2016-06-17 16:30 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Overwolf
2016-06-17 16:29 - 2016-06-17 16:30 - 00000000 ____D C:\ProgramData\Overwolf
2016-06-17 16:29 - 2016-06-17 16:29 - 00001276 _____ C:\Users\Tobiáš\Desktop\TeamSpeak 3 Client.lnk
2016-06-17 16:29 - 2016-06-17 16:29 - 00001234 _____ C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-06-17 16:29 - 2016-06-17 16:29 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\TeamSpeak 3 Client
2016-06-17 16:27 - 2016-06-17 16:27 - 31581784 _____ (TeamSpeak Systems GmbH) C:\Users\Tobiáš\Downloads\TeamSpeak3-Client-win64-3.0.19.1.exe
2016-06-17 15:30 - 2016-06-17 15:30 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-06-17 15:18 - 2016-06-17 15:18 - 00001077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
2016-06-17 15:18 - 2016-06-17 15:18 - 00000000 ____D C:\Users\Tobiáš\Documents\Adobe
2016-06-17 15:15 - 2016-06-17 15:28 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-06-17 15:15 - 2016-06-17 15:21 - 00000000 ____D C:\Program Files\Adobe
2016-06-17 15:08 - 2016-06-20 07:18 - 00000000 ___RD C:\Users\Tobiáš\Creative Cloud Files
2016-06-17 15:08 - 2016-06-18 07:08 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-06-17 14:17 - 2016-06-17 15:07 - 00000000 ____D C:\Users\Tobiáš\Desktop\YT Videos
2016-06-17 14:17 - 2016-06-17 14:17 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-06-17 14:17 - 2016-06-17 14:17 - 00001254 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-06-17 14:12 - 2016-06-17 14:12 - 00000000 ____D C:\Users\Tobiáš\Documents\Camtasia Studio
2016-06-17 14:12 - 2016-06-17 14:12 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\TechSmith
2016-06-17 14:12 - 2016-06-17 14:12 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\TechSmith
2016-06-17 14:11 - 2016-06-17 14:11 - 00001205 _____ C:\Users\Public\Desktop\Camtasia Studio 8.lnk
2016-06-17 14:11 - 2016-06-17 14:11 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2016-06-17 14:11 - 2016-06-17 14:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2016-06-17 14:11 - 2016-06-17 14:11 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-06-17 14:10 - 2016-06-17 14:10 - 00000000 ____D C:\ProgramData\TechSmith
2016-06-17 14:10 - 2016-06-17 14:10 - 00000000 ____D C:\Program Files (x86)\TechSmith
2016-06-17 14:07 - 2016-06-17 14:08 - 00798912 _____ (Adobe Systems Incorporated) C:\Users\Tobiáš\Downloads\CreativeCloudSet-Up.exe
2016-06-17 14:00 - 2016-06-17 14:01 - 262824448 _____ C:\Users\Tobiáš\Downloads\camtasia.msi
2016-06-16 16:21 - 2016-06-18 18:18 - 00003532 _____ C:\runcheck.txt
2016-06-16 16:21 - 2016-06-18 18:13 - 00000000 ____D C:\zoek_backup
2016-06-16 15:46 - 2016-06-16 15:46 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-06-15 18:48 - 2016-06-15 19:21 - 00000000 ____D C:\ProgramData\RogueKiller
2016-06-15 18:47 - 2016-06-15 18:48 - 24206920 _____ C:\Users\Tobiáš\Desktop\RogueKillerX64.exe
2016-06-15 14:01 - 2016-06-03 19:11 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-06-15 14:01 - 2016-06-03 15:38 - 01413120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-15 14:01 - 2016-06-02 19:51 - 00050352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-15 14:01 - 2016-05-29 17:04 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-06-15 14:01 - 2016-05-29 17:04 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-15 14:01 - 2016-05-14 01:09 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-06-15 14:01 - 2016-05-12 20:38 - 00135336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-15 14:01 - 2016-05-12 19:43 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2016-06-15 14:01 - 2016-05-12 18:17 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-15 14:01 - 2016-05-12 18:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-15 14:01 - 2016-05-12 18:07 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-15 14:01 - 2016-05-12 17:59 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-15 14:01 - 2016-05-12 17:43 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-06-15 14:01 - 2016-05-12 17:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-06-15 14:01 - 2016-05-06 17:45 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-15 14:01 - 2016-05-06 17:23 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-06-15 14:01 - 2016-04-12 17:46 - 14467584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-15 14:01 - 2016-04-12 17:30 - 12879872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-06-15 14:00 - 2016-05-21 19:28 - 25802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-15 14:00 - 2016-05-21 18:57 - 20341248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-06-15 14:00 - 2016-05-21 00:09 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-15 14:00 - 2016-05-21 00:08 - 02895360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-15 14:00 - 2016-05-21 00:02 - 06051328 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-15 14:00 - 2016-05-20 23:57 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-06-15 14:00 - 2016-05-20 23:55 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-06-15 14:00 - 2016-05-20 23:54 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-06-15 14:00 - 2016-05-20 23:50 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-06-15 14:00 - 2016-05-20 23:44 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-06-15 14:00 - 2016-05-20 23:29 - 13815808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-06-15 14:00 - 2016-05-20 23:27 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-06-15 14:00 - 2016-05-20 23:25 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-06-15 14:00 - 2016-05-20 23:25 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-06-15 14:00 - 2016-05-20 23:21 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-06-15 14:00 - 2016-05-20 23:21 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-06-15 14:00 - 2016-05-20 23:19 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-06-15 14:00 - 2016-05-20 23:16 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-06-15 14:00 - 2016-05-20 23:14 - 04610048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-06-15 14:00 - 2016-05-20 23:12 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-06-15 14:00 - 2016-05-20 23:11 - 15420928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-15 14:00 - 2016-05-20 23:11 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-06-15 14:00 - 2016-05-20 23:09 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-06-15 14:00 - 2016-05-20 23:09 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-06-15 14:00 - 2016-05-20 23:08 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-06-15 14:00 - 2016-05-20 23:08 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-15 14:00 - 2016-05-20 23:06 - 02131968 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-06-15 14:00 - 2016-05-20 22:46 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-15 14:00 - 2016-05-20 22:42 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-06-15 14:00 - 2016-05-20 22:38 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-06-15 14:00 - 2016-05-20 22:38 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-06-15 14:00 - 2016-05-20 22:34 - 01544192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-15 14:00 - 2016-05-20 22:23 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-06-15 14:00 - 2016-05-19 01:15 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-15 14:00 - 2016-05-18 22:35 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-06-15 14:00 - 2016-05-18 07:31 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-15 14:00 - 2016-05-18 07:31 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-06-15 14:00 - 2016-05-16 23:13 - 00563016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-15 14:00 - 2016-05-16 23:13 - 00397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-15 14:00 - 2016-05-16 23:13 - 00340872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-06-15 14:00 - 2016-05-16 23:13 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-15 14:00 - 2016-05-14 22:01 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-15 14:00 - 2016-05-14 22:01 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-06-15 14:00 - 2016-05-14 01:07 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-15 14:00 - 2016-05-14 01:07 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-15 14:00 - 2016-05-14 01:07 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-15 14:00 - 2016-05-14 01:06 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-15 14:00 - 2016-05-14 01:04 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-15 14:00 - 2016-05-14 00:34 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-06-15 14:00 - 2016-05-14 00:19 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-06-15 14:00 - 2016-05-13 23:58 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-15 14:00 - 2016-05-13 23:58 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-06-15 14:00 - 2016-05-13 23:45 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-15 14:00 - 2016-05-13 23:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-06-15 14:00 - 2016-05-13 23:26 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-06-15 14:00 - 2016-05-09 23:35 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-06-15 14:00 - 2016-05-09 22:56 - 05270016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-06-15 14:00 - 2016-05-09 22:45 - 07793152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-15 14:00 - 2016-05-09 22:23 - 05265920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-06-15 14:00 - 2016-04-14 17:25 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-06-15 14:00 - 2016-04-14 17:11 - 02464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-06-15 14:00 - 2016-01-31 21:17 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-06-15 14:00 - 2016-01-31 20:07 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-06-15 14:00 - 2016-01-31 19:42 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-06-15 14:00 - 2016-01-31 19:14 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-06-14 16:34 - 2016-06-14 16:34 - 00000000 ____D C:\Program Files (x86)\Atari
2016-06-14 16:28 - 2016-06-14 16:29 - 535977984 ____R C:\Users\Tobiáš\Downloads\rld-crashday.iso
2016-06-12 22:19 - 2016-06-18 07:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-07 16:02 - 2016-06-07 16:02 - 00045680 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2016-06-06 19:10 - 2016-06-06 19:11 - 00000000 ____D C:\Users\Tobiáš\Documents\Stronghold Crusader 2
2016-06-06 19:10 - 2016-06-06 19:10 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Steam
2016-06-06 18:54 - 2016-06-06 18:54 - 00001402 _____ C:\Users\Tobiáš\Desktop\Stronghold Crusader 2.lnk
2016-06-06 18:54 - 2016-06-06 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stronghold Crusader 2
2016-06-06 18:50 - 2016-06-06 18:53 - 00000000 ____D C:\Program Files (x86)\Stronghold Crusader 2
2016-06-06 14:02 - 2016-06-06 14:47 - 00000000 ____D C:\Users\Tobiáš\Downloads\Theatre.of.War.2.Kursk.1943-SKIDROW
2016-06-04 12:28 - 2016-06-18 11:06 - 00009985 _____ C:\Users\Tobiáš\AppData\Roaming\.freeciv-client-rc-2.5
2016-06-04 12:27 - 2016-06-18 09:43 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\.freeciv
2016-06-04 12:24 - 2016-06-18 11:06 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Freeciv-2.5.4-gtk2
2016-06-04 12:24 - 2016-06-04 12:24 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freeciv 2.5.4 (GTK+2 client)
2016-06-04 12:20 - 2016-06-04 12:22 - 32134788 _____ C:\Users\Tobiáš\Downloads\Freeciv-2.5.4-win32-gtk2-setup.exe
2016-06-03 14:47 - 2016-06-03 14:47 - 00000000 ____D C:\ProgramData\Gaijin
2016-06-03 14:04 - 2016-06-03 14:04 - 00000000 ____D C:\$SysReset
2016-06-03 13:57 - 2016-06-03 13:57 - 00002151 _____ C:\Users\Public\Desktop\AVG PC TuneUp.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-03 08:05 - 2016-01-17 10:26 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\uTorrent
2016-07-03 08:00 - 2016-01-15 16:56 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-03 07:49 - 2016-05-11 14:44 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-03 07:48 - 2016-01-15 17:10 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-07-03 05:37 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-03 05:29 - 2016-01-15 16:41 - 00003814 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C82BB15F-5BD0-4882-854F-CF9B838811D2}
2016-07-03 05:25 - 2016-05-11 14:44 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-03 05:25 - 2016-03-09 19:09 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\MyComGames
2016-07-03 05:25 - 2016-02-26 19:30 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Adobe
2016-07-03 05:24 - 2016-05-01 16:02 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\LogMeIn Hamachi
2016-07-03 05:24 - 2016-03-12 18:22 - 00000000 ____D C:\ProgramData\Origin
2016-07-03 05:23 - 2016-04-02 17:07 - 00000000 ____D C:\ProgramData\MFAData
2016-07-03 05:23 - 2016-01-15 16:38 - 00000000 __RDO C:\Users\Tobiáš\OneDrive
2016-07-02 19:05 - 2016-01-15 16:40 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2346423795-1808065523-688302191-1001
2016-07-01 13:09 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2016-06-30 17:38 - 2016-01-15 16:32 - 00000000 ____D C:\Users\Tobiáš
2016-06-30 17:38 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-06-30 17:37 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-30 17:36 - 2016-03-12 13:46 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-30 17:36 - 2013-08-22 16:44 - 00351736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-29 16:38 - 2016-04-02 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-06-29 11:48 - 2016-01-15 17:10 - 00003666 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-06-27 15:18 - 2016-03-17 20:39 - 00000000 ____D C:\Users\Tobiáš\Downloads\Commander Europe at War
2016-06-27 12:44 - 2016-03-15 20:14 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slitherine
2016-06-27 12:44 - 2016-01-15 18:51 - 00000000 ____D C:\Users\Tobiáš\Documents\My Games
2016-06-27 12:40 - 2016-03-15 20:10 - 00000000 ____D C:\Program Files (x86)\Slitherine
2016-06-27 12:36 - 2016-03-06 11:44 - 00000000 ____D C:\Users\Tobiáš\Downloads\Commander The Great War
2016-06-27 06:55 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2016-06-26 11:18 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-06-25 21:36 - 2016-03-12 13:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-06-25 21:34 - 2016-03-12 13:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-25 13:48 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-06-25 13:48 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-06-24 22:53 - 2016-01-15 16:55 - 00054784 ___SH C:\Users\Tobiáš\Downloads\Thumbs.db
2016-06-23 19:43 - 2016-03-07 02:33 - 00000000 ____D C:\Users\Tobiáš\Desktop\Původní data aplikace Firefox
2016-06-20 15:17 - 2016-04-18 16:45 - 00111104 ___SH C:\Users\Tobiáš\Desktop\Thumbs.db
2016-06-20 07:23 - 2016-01-15 17:11 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\DAEMON Tools Lite
2016-06-19 09:14 - 2016-03-12 18:21 - 00000000 ____D C:\Program Files (x86)\Origin
2016-06-18 17:42 - 2016-04-02 19:17 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-06-18 12:48 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-18 10:34 - 2016-03-22 17:57 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Battle for Wesnoth 1.12.5
2016-06-18 07:50 - 2016-04-02 17:40 - 00002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 07:50 - 2016-04-02 17:40 - 00002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-18 07:12 - 2016-05-16 17:56 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Arma 3
2016-06-18 07:02 - 2016-01-15 16:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-17 22:01 - 2014-09-18 03:36 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-06-17 21:59 - 2016-01-20 14:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-06-17 21:59 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-06-17 21:58 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-17 15:50 - 2016-01-19 15:34 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-17 15:43 - 2016-01-19 15:34 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-17 15:30 - 2016-01-15 16:34 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Adobe
2016-06-17 15:22 - 2016-02-26 19:33 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-17 15:14 - 2016-02-25 13:43 - 00000000 ____D C:\ProgramData\Adobe
2016-06-14 17:06 - 2016-04-02 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-06-14 16:42 - 2014-09-18 03:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-06-14 16:24 - 2016-05-06 10:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TopCD
2016-06-14 16:24 - 2016-01-15 16:34 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\VirtualStore
2016-06-05 22:00 - 2016-04-02 17:39 - 00000000 ____D C:\Users\Tobiáš\AppData\Local\Google
2016-06-05 20:23 - 2016-02-03 08:31 - 00000047 _____ C:\Users\Tobiáš\Documents\mt-x_hook.txt
2016-06-05 20:23 - 2016-01-15 23:17 - 00000007 _____ C:\Users\Tobiáš\Documents\mt-e_hook.txt
2016-06-05 15:22 - 2016-05-29 17:22 - 00000000 ____D C:\WINDOWS\Panther
2016-06-05 15:17 - 2016-02-13 16:07 - 00000000 ___HD C:\$WINDOWS.~BT
2016-06-03 18:31 - 2016-01-17 17:26 - 00000000 ____D C:\Users\Tobiáš\Desktop\Cheaty
2016-06-03 15:10 - 2016-05-26 18:21 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Launcher
2016-06-03 15:10 - 2016-05-22 17:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Age of Conquest IV
2016-06-03 15:10 - 2016-05-18 16:46 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SIX Networks
2016-06-03 15:10 - 2016-05-11 17:33 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warcraft III
2016-06-03 15:10 - 2016-05-11 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III
2016-06-03 15:10 - 2016-05-11 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2016-06-03 15:10 - 2016-05-11 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-06-03 15:10 - 2016-05-10 13:01 - 00000000 ____D C:\WINDOWS\SysWOW64\AGEIA
2016-06-03 15:10 - 2016-05-10 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-03 15:10 - 2016-05-07 14:23 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Drakensang Online
2016-06-03 15:10 - 2016-04-25 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torchlight II
2016-06-03 15:10 - 2016-04-09 15:59 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2016-06-03 15:10 - 2016-04-02 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-06-03 15:10 - 2016-04-01 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blitzkrieg 2
2016-06-03 15:10 - 2016-03-28 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-06-03 15:10 - 2016-03-22 18:00 - 00000000 ___SD C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Battle for Wesnoth 1.12.5
2016-06-03 15:10 - 2016-03-18 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rust
2016-06-03 15:10 - 2016-03-12 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-06-03 15:10 - 2016-03-11 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-06-03 15:10 - 2016-03-09 19:21 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Armored Warfare MyCom Beta
2016-06-03 15:10 - 2016-03-09 19:09 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2016-06-03 15:10 - 2016-03-02 19:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World Of Warships
2016-06-03 15:10 - 2016-03-02 18:57 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warplanes - Common Test
2016-06-03 15:10 - 2016-02-28 18:41 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks - Common Test
2016-06-03 15:10 - 2016-02-04 09:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8
2016-06-03 15:10 - 2016-02-04 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2016-06-03 15:10 - 2016-02-04 09:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2016-06-03 15:10 - 2016-02-02 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Guild 2
2016-06-03 15:10 - 2016-01-24 17:22 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warplanes
2016-06-03 15:10 - 2016-01-23 19:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blitzkrieg Mod
2016-06-03 15:10 - 2016-01-23 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Far Cry 3
2016-06-03 15:10 - 2016-01-22 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2016-06-03 15:10 - 2016-01-21 20:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Terraria [GOG.com]
2016-06-03 15:10 - 2016-01-17 10:26 - 00000000 ____D C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-06-03 15:10 - 2016-01-16 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Might and Magic Heroes VII
2016-06-03 15:10 - 2016-01-15 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of Might and Magic V Sběratelská Edice
2016-06-03 15:10 - 2016-01-15 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-06-03 15:10 - 2016-01-15 16:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-06-03 15:10 - 2016-01-15 16:25 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-03 15:10 - 2014-09-18 04:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2016-06-03 15:10 - 2014-09-18 04:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2016-06-03 15:10 - 2014-09-18 04:03 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-06-03 15:10 - 2014-09-18 04:02 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-06-03 15:10 - 2014-09-18 04:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2016-06-03 15:10 - 2014-09-18 03:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-06-03 15:10 - 2014-09-18 03:53 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-06-03 15:10 - 2014-09-18 03:36 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-06-03 15:10 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2016-06-03 15:10 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-06-03 15:10 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-06-03 15:10 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-06-03 14:52 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-06-03 14:31 - 2016-04-06 16:06 - 00001436 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2016-06-03 14:31 - 2016-04-02 17:39 - 00003104 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-03 14:31 - 2016-04-02 17:39 - 00002868 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-03 14:31 - 2016-04-02 17:30 - 00002438 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2016-06-03 14:31 - 2016-04-02 17:30 - 00002428 _____ C:\WINDOWS\System32\Tasks\Adobe Reader and Acrobat Manager
2016-06-03 14:31 - 2016-03-28 19:00 - 00001664 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-06-03 14:31 - 2016-02-04 09:11 - 00001878 _____ C:\WINDOWS\System32\Tasks\SmartDefrag4_Update
2016-06-03 14:27 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-06-03 14:24 - 2016-01-15 16:55 - 00000000 ____D C:\Program Files\Common Files\AV

==================== Files in the root of some directories =======

2016-06-04 12:28 - 2016-06-18 11:06 - 0009985 _____ () C:\Users\Tobiáš\AppData\Roaming\.freeciv-client-rc-2.5
2016-02-21 20:45 - 2016-02-21 20:45 - 0007605 _____ () C:\Users\Tobiáš\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-06-22 07:16

==================== End of FRST.txt ============================

[SkyWolfy]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-07-2016
Ran by Tobiáš (2016-07-03 08:09:54)
Running from C:\Users\Tobiáš\Desktop
Windows 8.1 (Update) (X64) (2016-01-15 14:34:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2346423795-1808065523-688302191-500 - Administrator - Disabled)
Guest (S-1-5-21-2346423795-1808065523-688302191-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2346423795-1808065523-688302191-1003 - Limited - Enabled)
Tobiáš (S-1-5-21-2346423795-1808065523-688302191-1001 - Administrator - Enabled) => C:\Users\Tobiáš

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Flash Player 22 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 22.0.0.207 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.2 - Adobe Systems Incorporated)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Age of Conquest IV (HKLM\...\Steam App 314970) (Version: - Noble Master LLC)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
AMD Catalyst Install Manager (HKLM\...\{FE454FF9-854B-B922-29E5-47219C9315CD}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ArmA Uninstall (HKLM-x32\...\ArmA) (Version: - )
Armored Warfare MyCom (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Armored Warfare MyCom) (Version: 1.86 - My.com B.V.)
AVG (HKLM\...\AvgZen) (Version: 1.72.2.24716 - AVG Technologies)
AVG (Version: 16.81.7640 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4627 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.32.2.3320 - AVG Technologies)
AVG PC TuneUp (x32 Version: 16.32.5 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.81.7640 - AVG Technologies)
AVG Zen (Version: 1.72.1 - AVG Technologies) Hidden
Avira Launcher (HKLM-x32\...\{761cd2c4-5249-4346-8318-a499d06d2681}) (Version: 1.1.63.21885 - Avira Operations GmbH & Co. KG)
Battle for Wesnoth 1.12.5 (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Battle for Wesnoth 1.12.5) (Version: 1.12.5 - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Blitzkrieg 2 (HKLM-x32\...\Blitzkrieg 2) (Version: - )
Blitzkrieg Mod version 4.9.5 (HKLM-x32\...\{81EC7B6D-B297-4820-B5BE-5A2373725158}_is1) (Version: 4.9.5 - Blitzkrieg Mod Team)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
com.ageofconquest.app.user.aoc 4.0.96 (HKLM-x32\...\com.ageofconquest.app.user.aoc) (Version: 4.0.96 - Noble Master)
Combat Mission Battle for Normandy (HKLM-x32\...\CMBN10_is1) (Version: - Battlefront.com)
Commander Europe At War (HKLM-x32\...\Commander Europe At War1.00) (Version: 1.00 - Matrix Games)
Commander The Great War (HKLM-x32\...\Commander The Great War1.1.2) (Version: 1.1.2 - Slitherine)
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version: - Relic Entertainment)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.2.5426 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.2.5426 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.1.3004 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.1.3004 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4119 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
DawnOfWar (HKLM-x32\...\InstallShield_{362D5167-9716-44BE-89FD-BF9EB6EF814B}) (Version: 1.00.00000 - THQ)
DawnOfWar (x32 Version: 1.00.00000 - THQ) Hidden
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
Eastern Front (HKLM-x32\...\Eastern Front) (Version: 2.3.0.0 - )
Empire: Total War (HKLM-x32\...\Steam App 10500) (Version: - The Creative Assembly)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.3 (HKLM-x32\...\{E461B1AC-BC3C-11E3-B5B8-00163E98E7D6}) (Version: 5.3.0.3360 - Evernote Corp.)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC)
FMW 1 (Version: 1.102.4 - AVG Technologies) Hidden
FMW 1 (Version: 1.82.3 - AVG Technologies) Hidden
Foxit PhantomPDF (HKLM-x32\...\{00CD7D62-056A-4F0F-9143-44522D44E6DD}) (Version: 6.0.32.507 - Foxit Corporation)
Freeciv 2.5.4 (GTK+2 client) (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Freeciv-2.5.4-gtk2) (Version: - )
Game Launcher (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Game Launcher) (Version: 12345.0.0.0 - Splitscreen Studios GmbH)
GameRanger (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\GameRanger) (Version: - GameRanger Technologies)
GameSpy Arcade (HKLM-x32\...\GameSpy Arcade) (Version: - )
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
Heroes of Might and Magic V Sběratelská Edice (HKLM-x32\...\Heroes of Might and Magic V Sběratelská EdiceVerze: h5 1.0, h5hof 2.1, h5tote 3.0) (Version: Verze: h5 1.0, h5hof 2.1, h5tote 3.0 - Ubisoft By_Etnik23)
Heroes of Might and Magic® IV (HKLM-x32\...\InstallShield_{192E2132-E977-4D3E-90BA-9DBCE1B57F8C}) (Version: 1.00.0000 - 3DO)
Heroes of Might and Magic® IV (x32 Version: 1.00.0000 - 3DO) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
Hired Guns (HKLM-x32\...\Hired Guns_is1) (Version: 1.0 - US-Action, s.r.o.)
HP Documentation (HKLM-x32\...\{4B4EDB7B-4F54-4B86-8A4A-E1C5803CA374}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{7FE016CC-DAA9-4E21-BD2F-98390D1E6F3F}) (Version: 7.6.23.8 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6496.0 - IDT)
Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.1.126 - IObit)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.472 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.472 - LogMeIn, Inc.) Hidden
Making History II: The War of the World (HKLM-x32\...\Steam App 46770) (Version: - Muzzy Lane Software)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Medieval II Total War (HKLM-x32\...\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}) (Version: 1.00.0000 - SEGA)
Men of War: Assault Squad (HKLM-x32\...\Steam App 64000) (Version: - Digitalmindsoft)
Men of War: Assault Squad 2 (HKLM-x32\...\Steam App 244450) (Version: - Digitalmindsoft)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mount & Blade: Warband (HKLM\...\Steam App 48700) (Version: - TaleWorlds Entertainment)
Mozilla Firefox 47.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 cs)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
My.com Game Center (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MyComGames) (Version: 3.172 - My.com B.V.)
Napoleon: Total War (HKLM-x32\...\Steam App 34030) (Version: - The Creative Assembly)
Need for Speed(TM) Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.4.0.0 - Electronic Arts)
Need for Speed™ Most Wanted (HKLM-x32\...\{ADE91A13-434D-4229-00BC-182BAD607303}) (Version: - )
NVIDIA PhysX v8.04.25 (HKLM-x32\...\{74224F8D-4A17-4816-9EDB-7BB854DE532C}) (Version: 8.04.25 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenTTD 1.6.1-RC1 (HKLM-x32\...\OpenTTD) (Version: 1.6.1-RC1 - OpenTTD)
Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.95.134.0 - Overwolf Ltd.)
Panzer Corps Afrika Korps (HKLM-x32\...\Panzer Corps Afrika Korps1.12) (Version: 1.12 - Slitherine)
Play withSIX Windows client (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\PlaywithSIX) (Version: 1.68.1388.1 - SIX Networks GmbH)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.7316 - CyberLink Corp.) Hidden
Rise of Nations (HKLM-x32\...\RiseOfNationsExpansion 1.0) (Version: 1.0 - Microsoft)
Rust (HKLM-x32\...\Rust 1.0.0) (Version: 1.0.0 - Facepunch Studios)
Rust (x32 Version: 1.0.0 - Facepunch Studios) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Sid Meier's Civilization V_is1) (Version: - )
Silent Storm (HKLM-x32\...\{D219BE4E-4B67-4354-AB10-3EF90A0CC883}) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steam Customizer (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\Steam Customizer) (Version: 1.00.00.00 - Blumont)
Stronghold Crusader 2 (HKLM-x32\...\Stronghold Crusader 2_is1) (Version: - )
TeamSpeak 3 Client (HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Guild 2 (HKLM-x32\...\TheGuild2) (Version: - )
Torchlight II v1.25.5.2 (HKLM-x32\...\Torchlight II_is1) (Version: - CzTorrent.net)
TripleA Version 1_8_0_9 (HKLM-x32\...\TripleAVersion1_8_0_9) (Version: - )
Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - )
Warface (HKLM\...\Steam App 291480) (Version: - Crytek)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2346423795-1808065523-688302191-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {0F14DF15-A39B-432E-AEA4-5C07235F44EE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-06-04] (Hewlett-Packard Company)
Task: {0F2FBF35-8C37-401D-A5DF-C43714D10DF4} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2016-06-01] (AVG Technologies CZ, s.r.o.)
Task: {125BDE01-6A24-4FA2-938D-AC8675DDA2DB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-06-17] (Microsoft Corporation)
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {1B164080-E584-4959-BE8E-7F15CE6EAA42} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe [2016-02-18] (Hewlett-Packard)
Task: {36DE4728-03DF-4AA2-BE19-99A00A384FFE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-02] (Google Inc.)
Task: {4C28BDD5-ED21-4506-8795-2A142D01E699} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-06-22] (Overwolf LTD)
Task: {59AC955C-2181-4D68-AA25-37D6400EE448} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-02] (Google Inc.)
Task: {5B683D9F-1C74-44DD-A204-ABE8AC9DC8F5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2016-03-07] (Hewlett-Packard)
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {75FAC4C6-A31D-4232-9CEF-564835769147} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-06-04] (Hewlett-Packard Company)
Task: {99302D22-1242-45F2-A952-C65D10AC4594} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-01-29] (Oracle Corporation)
Task: {AA4432C9-B978-440F-85D7-5B21300ECA19} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-29] (Adobe Systems Incorporated)
Task: {B1A2B055-CFDC-40BD-8DC5-30579875F8D4} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Tobiaskop@seznam.cz => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated)
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {B7C90BA5-C0E4-48CD-8A30-89ECA4F41503} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23] (Adobe Systems Incorporated)
Task: {CF098345-E543-4366-A333-3D4E1AE40155} - System32\Tasks\SmartDefrag4_Update => C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe [2016-01-28] (IObit)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {DF5F461A-AFFF-4F62-866C-2607FD1A2C93} - System32\Tasks\HPCeeScheduleForTobiáš => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {FCB6567E-9D76-4483-A8B2-0B19DA1989D5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForTobiáš.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Tobiáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slitherine\Panzer Corps\Forum & Tech Support.lnk -> hxxp://www.slitherine.com/ (No File)
Shortcut: C:\Users\Public\Desktop\TripAdvisor.lnk -> hxxp://js.redirect.hp.com/jumpstation?b ... &tp=dticon (No File)

==================== Loaded Modules (Whitelisted) ==============

2014-03-28 14:31 - 2014-03-28 14:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-03-28 14:27 - 2014-03-28 14:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-03-28 14:48 - 2014-03-28 14:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2014-09-18 04:08 - 2014-04-14 19:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2014-03-28 14:36 - 2014-03-28 14:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2016-05-22 19:32 - 2016-05-22 19:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-02-04 09:38 - 2015-11-06 13:05 - 00618784 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2016-05-06 06:27 - 2016-04-29 22:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-04-01 12:07 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-06-16 04:08 - 2016-06-15 02:47 - 02387024 _____ () C:\Program Files (x86)\Steam\video.dll
2016-04-01 12:07 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-04-01 12:07 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-04-01 12:07 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-04-01 12:07 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-04-01 12:07 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-04-01 12:07 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-04-01 12:07 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-06-16 04:08 - 2016-06-15 02:47 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-04-01 12:07 - 2016-02-18 00:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-03-09 19:09 - 2016-03-09 19:09 - 00144896 _____ () C:\Users\Tobiáš\AppData\Local\MyComGames\zlib1.dll
2016-03-09 19:09 - 2016-03-09 19:09 - 00062464 _____ () C:\Users\Tobiáš\AppData\Local\MyComGames\pxd.dll
2016-06-16 13:55 - 2016-06-16 13:55 - 00186256 _____ () C:\Users\Tobiáš\AppData\Local\MyComGames\LightUpdate.dll
2016-06-16 13:55 - 2016-06-16 13:55 - 02318224 _____ () C:\Users\Tobiáš\AppData\Local\MyComGames\BigUp2.dll
2016-05-23 20:36 - 2016-05-23 20:36 - 48962048 _____ () C:\Users\Tobiáš\AppData\Local\MyComGames\Chrome\3.2623.1401\libcef.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2016-06-19 09:14 - 2016-06-19 09:14 - 00243200 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00189440 _____ () C:\Program Files\Echobit\Evolve\libidn.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00047616 _____ () C:\Program Files\Echobit\Evolve\boost_thread-vc100-mt-1_46_1.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00044032 _____ () C:\Program Files\Echobit\Evolve\boost_date_time-vc100-mt-1_46_1.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00046592 _____ () C:\Program Files\Echobit\Evolve\boost_signals-vc100-mt-1_46_1.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00135168 _____ () C:\Program Files\Echobit\Evolve\boost_filesystem-vc100-mt-1_46_1.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00015360 _____ () C:\Program Files\Echobit\Evolve\boost_system-vc100-mt-1_46_1.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00611328 _____ () C:\Program Files\Echobit\Evolve\boost_regex-vc100-mt-1_46_1.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00321536 _____ () C:\Program Files\Echobit\Evolve\boost_program_options-vc100-mt-1_46_1.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00086400 _____ () C:\Program Files\Echobit\Evolve\EvolveEasyHook_32.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 38599680 _____ () C:\Program Files\Echobit\Evolve\libcef.DLL
2016-05-17 20:22 - 2016-05-17 20:22 - 00710430 _____ () C:\Program Files\Echobit\Evolve\swscale-2-evo.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00481201 _____ () C:\Program Files\Echobit\Evolve\avutil-51-evo.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 01166303 _____ () C:\Program Files\Echobit\Evolve\avformat-53-evo.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 05033711 _____ () C:\Program Files\Echobit\Evolve\avcodec-53-evo.dll
2016-04-07 20:39 - 2016-04-07 20:39 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
2016-06-03 03:36 - 2016-06-03 03:36 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-02-04 09:09 - 2015-12-23 19:32 - 00355616 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2016-02-04 09:09 - 2015-12-23 19:32 - 00190240 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2016-02-04 09:09 - 2015-12-23 19:32 - 00057632 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2016-06-16 04:08 - 2016-06-14 21:14 - 49826080 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-06-08 00:10 - 2016-06-08 00:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-06-08 00:10 - 2016-06-08 00:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-06-08 00:10 - 2016-06-08 00:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-06-08 00:10 - 2016-06-08 00:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-06-08 00:41 - 2016-06-08 00:41 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-06-08 00:10 - 2016-06-08 00:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-04-01 12:07 - 2015-09-25 01:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 38599680 _____ () C:\Program Files\Echobit\Evolve\libcef.dll
2016-05-17 20:22 - 2016-05-17 20:22 - 00874496 _____ () C:\Program Files\Echobit\Evolve\ffmpegsumo.dll
2016-01-15 17:07 - 2016-01-15 18:37 - 00620544 _____ () C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\twitchsdk_32_release.dll
2016-01-15 17:07 - 2016-01-15 18:37 - 00394810 _____ () C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\libmp3lame-ttv.dll
2016-01-15 18:30 - 2016-01-15 18:30 - 00113171 _____ () C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\swresample-ttv-0.dll
2016-01-15 18:19 - 2016-01-15 18:19 - 00246332 _____ () C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\avutil-ttv-51.dll
2016-06-16 04:08 - 2016-06-15 02:47 - 00368208 _____ () C:\Program Files (x86)\Steam\steam.dll
2016-01-15 18:30 - 2016-01-15 18:30 - 00071680 _____ () C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\MilesRedist\mssmp3.asi

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

[SkyWolfy]

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-06-18 17:50 - 2016-06-18 17:50 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2346423795-1808065523-688302191-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tobiáš\Pictures\lc6WnlY.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{985D9EB6-2C5D-4F3E-8C2A-287B8C356D30}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{A89473AE-45FC-4441-A7C8-6B4548E3F03C}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{736617F6-872F-4F0A-9421-8F2921513B27}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{4D8D7A32-BE05-4BEA-AE7A-4A5E3F0FE161}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{69B6DCC8-0FDF-44B5-A11C-FC772735F508}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6815CFF3-9959-4D26-875C-13EB69044322}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6403AE41-AEBE-4AC0-9CB2-5B2E02F0F6DC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{00B8A5C3-556D-45E9-AD5D-AA3F0AFAE4E0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{53538BA0-9EBF-43B1-B219-1E0DFE6F44E7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F6F6FFF9-9FB4-4F13-89A8-58072FC3E8FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5039D12C-2CE8-4195-BA3C-6DF0E52216A1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{409615CD-7A1C-48E1-A7E8-26E3621F9714}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6ADC9E4C-52F5-4F46-85F5-3B862BEEBD4B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3AE0315C-F035-4590-9001-3A87525015A3}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7627F1EB-150B-4E74-BEDA-0547B41D7E04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{A417FDD5-712B-40A6-96F4-93DA59926DD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B0FF3F08-8262-4186-AB73-AC044C1C40AB}] => (Allow) C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{58C6B6E0-9B44-437B-B551-D58264481F57}] => (Allow) C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{80800A79-ECF0-4E99-9144-CB6ED6C0ADB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{6C848674-F5E3-47D2-8E7E-ED88AE74667C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{2D44DB72-CD4B-4EEC-B5EC-FFE354B71570}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Making History II\MH2.exe
FirewallRules: [{F1BE0288-9A74-432B-935A-0E9D872A1195}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Making History II\MH2.exe
FirewallRules: [{28117B24-CF3B-4D50-A310-273BB839E9A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{FEE5C24E-C49C-439E-A128-BD15AFF3FD04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{0E48FD6B-9FE3-4E3B-8430-F50BC52236FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{7F8A42CE-6090-4C15-A4FC-982B51338CE1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{DEE1F6EF-386D-4292-811C-2D8CD5B1A9C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad\mow_assault_squad.exe
FirewallRules: [{324F2BB8-6AE4-4ED5-B558-5D7D79414233}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad\mow_assault_squad.exe
FirewallRules: [{307293D3-84EB-406F-ABB1-0BD1D187DA0C}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{7F61039E-0253-470B-B4F5-9B2067014574}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{C59A36D2-91D5-48C2-85C6-37E1360E07A4}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{DDFC8257-39AA-4C85-872A-B57FF1FBB118}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{338958AF-4476-437A-A96E-19C95EB8A7CF}] => (Allow) C:\Users\Tobiáš\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EB0EC973-37A2-4AEA-ACC0-F6BA07E12803}] => (Allow) C:\Users\Tobiáš\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{42DE9996-D3BB-4FBA-BD83-0B3750AC1389}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [{959A32DF-E453-42AB-9827-8E69709D048A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [TCP Query User{1AF77D47-0E21-43C1-90B4-F6737031A0F2}C:\users\tobiáš\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\tobiáš\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{9740184A-B368-429E-A333-423129B9AFCA}C:\users\tobiáš\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\tobiáš\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{F352C9E1-A0FC-4EFC-9B6D-28BB1C8C5C29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{F5E2FDC9-845E-46A4-8326-454ADF6E653C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{1F0F07EF-E723-4790-8BB7-AFF188C71234}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{7F7E3E54-878D-4388-BCFE-FE694C3511C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{D7AEFA8B-0F28-4700-89BC-C27C6DB05D57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{B62149A0-3845-44A5-BE93-D86769D19BE6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{B01DB974-2F6D-4EBF-B767-F2F09FC35646}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{83D84F6B-1195-4CC6-A5B1-3F34CB4D67FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{3F2CF8B0-476E-470F-B109-C5002241CEF3}] => (Allow) C:\Games\Need for Speed Rivals\NFS14_x86.exe
FirewallRules: [{CCB730A7-4FFD-4E3B-9963-E246A409E574}] => (Allow) C:\Games\Need for Speed Rivals\NFS14_x86.exe
FirewallRules: [{A4CFC2B3-AD52-491B-8E10-8618C6CEF3F7}] => (Allow) C:\Games\Need for Speed Rivals\NFS14.exe
FirewallRules: [{221B8B6D-8585-4915-879A-4DE18D815B87}] => (Allow) C:\Games\Need for Speed Rivals\NFS14.exe
FirewallRules: [{4400D2E8-4B03-4ABA-9F87-51187FB0DA5F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{24554892-3E0E-4349-9DB4-83DF1840B27A}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [TCP Query User{402BAB61-0EA3-4A1F-9CC4-1B06C0C532F5}C:\program files (x86)\blitzkrieg 2\exe\bin\game.exe] => (Block) C:\program files (x86)\blitzkrieg 2\exe\bin\game.exe
FirewallRules: [UDP Query User{208D0CB5-455A-45ED-95C0-878F6CD7F5A2}C:\program files (x86)\blitzkrieg 2\exe\bin\game.exe] => (Block) C:\program files (x86)\blitzkrieg 2\exe\bin\game.exe
FirewallRules: [TCP Query User{03166801-B3A9-4C07-B4A4-295D5B37E6B5}C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{2CBBB3FB-0B19-4855-9953-08DEFE016DD7}C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{F0FB3A9F-B246-418E-948F-9044CB104F12}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
FirewallRules: [UDP Query User{4B1E68BA-8D86-42F2-976F-8C17C154EBE9}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
FirewallRules: [{2620E76D-59D0-4D56-9183-55AC8DD18CD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{A05D8E38-5EFE-4FD5-A7FA-84F8AF173289}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [TCP Query User{D70E7DB0-323A-41DB-A3DD-67A732A7A88C}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [UDP Query User{CC292EB8-E2EB-4C48-A726-E6A5C6323311}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [{4EC0237D-8A95-45A4-945B-0F25F6F311C9}] => (Allow) C:\Program Files (x86)\Microsoft Games\Rise of Nations\thrones.exe
FirewallRules: [{611FCB3F-E70C-4B77-9994-B347C6D31DD0}] => (Allow) C:\Program Files (x86)\Microsoft Games\Rise of Nations\thrones.exe
FirewallRules: [TCP Query User{45CFEDD9-031D-4148-9A20-6DA5CE2BB16F}C:\program files (x86)\hearts of iron 3\hearts of iron 3\hoi3game.exe] => (Allow) C:\program files (x86)\hearts of iron 3\hearts of iron 3\hoi3game.exe
FirewallRules: [UDP Query User{B4B8C57D-B0CF-4550-8554-CAB8A064FD7A}C:\program files (x86)\hearts of iron 3\hearts of iron 3\hoi3game.exe] => (Allow) C:\program files (x86)\hearts of iron 3\hearts of iron 3\hoi3game.exe
FirewallRules: [TCP Query User{D35D7F09-FBFE-4B3D-9284-EDBF4083A99C}C:\program files (x86)\hearts of iron iii collection\hearts of iron iii collection-bi panzeroo\hoi3game.exe] => (Block) C:\program files (x86)\hearts of iron iii collection\hearts of iron iii collection-bi panzeroo\hoi3game.exe
FirewallRules: [UDP Query User{40AA4AA0-B81C-4893-A868-40FD8FB06B49}C:\program files (x86)\hearts of iron iii collection\hearts of iron iii collection-bi panzeroo\hoi3game.exe] => (Block) C:\program files (x86)\hearts of iron iii collection\hearts of iron iii collection-bi panzeroo\hoi3game.exe
FirewallRules: [{DB7AD184-1808-4C1D-A485-858AF8ABB7E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{6C2C7613-808A-4AEF-B053-E7227572F6AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{B75E4EB8-FDB6-4CA4-A566-31C3A1D3CFD5}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{BF0C9C9A-7EDB-404F-9271-0502E2238AAD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{EB1A5E28-64ED-411A-B1D6-6824E67C9D54}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{C7A7236E-3C8B-4786-A597-1EE551410118}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{788F11A9-4F3B-4B2B-8BA9-2B3EC8F3C0DB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{02358E77-6AA4-4DFF-8852-664C78085BE7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{517A23AC-6EF6-44C4-9384-6A90EC4A5C88}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Block) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{B82A2DD9-B8C0-4C56-BA2B-95BE48C9CC39}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Block) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [{B205AA50-5842-4867-9AD9-09343C34CB90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{867B5701-EB7E-4970-A816-3D8C7FDCE936}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{820655C4-8937-45AD-AC74-7600121F1C4C}C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{0EA8DDE5-1C6B-45C5-83A5-FD88DA738AA6}C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe] => (Block) C:\users\tobiáš\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{DCC72861-2388-48AC-9803-D3919AD306BC}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Block) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [UDP Query User{50701CD4-35E8-4FED-B358-71E2A2ED5603}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Block) C:\games\world_of_tanks_ct\wotlauncher.exe
FirewallRules: [TCP Query User{8321C2B7-705E-4BDC-8DB7-80FE1001E1C2}C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [UDP Query User{6AA11BCE-13BA-454E-9649-C4F4D42C6419}C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [{7DAC58C5-C828-44B3-81F4-800BD6531FD8}] => (Block) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [{9F2C1B90-8984-4607-92F8-86CB117B96EA}] => (Block) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [TCP Query User{3D0CEFE1-C213-4D7D-902D-C2BA617410AA}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe
FirewallRules: [UDP Query User{3DD562F5-50F4-4005-8096-789E60095BDD}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe
FirewallRules: [TCP Query User{FF12513F-B0A3-4D9E-8FF6-46F85D1E1E5C}C:\games\arma 3\arma3.exe] => (Allow) C:\games\arma 3\arma3.exe
FirewallRules: [UDP Query User{D151D3D8-CB06-4409-A5AE-72CB7D4501E1}C:\games\arma 3\arma3.exe] => (Allow) C:\games\arma 3\arma3.exe
FirewallRules: [{94DAD804-72A3-4F57-BE89-2DDEAE6C6A44}] => (Block) C:\games\arma 3\arma3.exe
FirewallRules: [{CC44B812-8822-4407-9802-A6A16DFC2E44}] => (Block) C:\games\arma 3\arma3.exe
FirewallRules: [{DB1EC445-DD8C-471F-AB6E-336980AC5CFF}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{CE2EDF0A-45F8-4FDA-AEB5-A08FA48CD28A}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{44C8839E-41D7-40E0-9446-BBAB947A2289}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age of Conquest IV\app_main.exe
FirewallRules: [{C9AC4C5B-1DF6-4FAC-803C-361838D47D54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age of Conquest IV\app_main.exe
FirewallRules: [{1E3FD11C-5DE6-40ED-B665-046FA5C681D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7A1A844B-E844-4B42-921C-805046DEB556}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{45E7C495-E3AD-410A-8444-AA358200D4FE}C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe] => (Allow) C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe
FirewallRules: [UDP Query User{BB0752A6-F8D0-457D-B838-69A44E00DAE1}C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe] => (Allow) C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe
FirewallRules: [{82830B21-5D44-41DD-AF9A-98B418662800}] => (Block) C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe
FirewallRules: [{404C8312-341F-401B-A505-F907D8ED781E}] => (Block) C:\program files (x86)\r.g. mechanics\total war - rome ii\rome2.exe
FirewallRules: [TCP Query User{BE0A32DC-38C6-41EA-B052-E28EF066C5A6}C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe] => (Allow) C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe
FirewallRules: [UDP Query User{1E9421E6-784E-4232-9FC2-0FBB0F7DC005}C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe] => (Allow) C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe
FirewallRules: [{3ACE8707-E02C-45C6-BB3F-6D617C217A3C}] => (Block) C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe
FirewallRules: [{354F9CAE-5A02-48EF-835C-BB0FE042A027}] => (Block) C:\users\tobiáš\appdata\local\freeciv-2.5.4-gtk2\freeciv-gtk2.exe
FirewallRules: [TCP Query User{05243E8B-0A34-41E0-9767-F31585BAEF07}C:\program files (x86)\far cry 3\bin\farcry3.exe] => (Block) C:\program files (x86)\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{E2DFBE02-7D76-4881-A1E3-75DD2B40FD11}C:\program files (x86)\far cry 3\bin\farcry3.exe] => (Block) C:\program files (x86)\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{5C024921-8F9F-498C-8BF0-614ABFD1FFE9}C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [UDP Query User{99718E90-C045-4CF2-B66C-6BE74B36282F}C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [{8497299D-A461-426B-8C92-9399CF812DD9}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{7AB4BC0D-DBC2-4728-8B2F-6A893D4A44BF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{B1E5989B-6771-497C-BD24-BE7DF205FC5E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{E862AA82-E27A-405A-81C5-78A582A9814E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{0DF82D01-1FA9-4657-B00A-1DD3370093B7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{8E68D956-1DBA-44E7-9B9E-453DB4273B14}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{654CFD02-821B-4912-87D5-FC6834E99776}] => (Allow) LPort=8317
FirewallRules: [{12F99F07-244E-40D3-A81F-1547468A443A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{65BBF88F-CEFA-4575-AA67-6D5407977309}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{73DA5EF0-5AFB-4D39-AEDD-10C4C3936016}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe

==================== Restore Points =========================

27-06-2016 07:05:05 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/03/2016 07:44:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 07:44:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 07:14:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 07:14:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 06:44:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 06:44:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 06:14:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 06:14:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 05:44:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (07/03/2016 05:44:58 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TOBI)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009284. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (07/03/2016 07:44:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 07:44:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 07:14:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 07:14:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 06:44:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 06:44:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 06:14:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 06:14:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 05:44:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici

Error: (07/03/2016 05:44:53 AM) (Source: DCOM) (EventID: 10001) (User: TOBI)
Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server15612Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaNení k dispoziciNení k dispozici


CodeIntegrity:
===================================
Date: 2016-07-03 08:09:16.007
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 08:09:15.791
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 08:09:15.045
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 08:09:14.810
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 05:27:13.520
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Framework\1\avgmsgdispa.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 05:27:13.269
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Framework\1\avgmsgdispa.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 05:27:12.882
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Framework\1\avgmsgdispa.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 05:27:12.533
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Framework\1\avgmsgdispa.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 05:27:12.163
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Framework\1\avgmsgdispa.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-07-03 05:27:11.809
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Framework\1\avgmsgdispa.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: AMD A10-7800 Radeon R7, 12 Compute Cores 4C+8G

[jaro3]

Odinstaluj:
AVG PC TuneUp
Avira Browser Safety

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b67f26-bbdb-11e5-825b-a0d3c147bc1c} - "F:\setup.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b687be-bbdb-11e5-825b-a0d3c147bc1c} - "G:\setup.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {51b6912e-bbdb-11e5-825b-a0d3c147bc1c} - "H:\Autorun.exe"
HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\MountPoints2: {a6f15267-bb9a-11e5-8259-a0d3c147bc1c} - "I:\setup.exe"
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {1C546DF4-E0D1-423B-A311-9CBC3CE8AE8B} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2346423795-1808065523-688302191-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2346423795-1808065523-688302191-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Program Files (x86)\Avira
C:\Users\Tobiáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [285176 2016-05-19] (Avira Operations GmbH & Co. KG)
C:\Users\Tobiáš\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Tobiáš\AppData\Local\Temp\NirCmd.exe
C:\Users\Tobiáš\AppData\Local\Temp\PEVZ.EXE
C:\Users\Tobiáš\AppData\Local\Temp\remove.exe
C:\Users\Tobiáš\AppData\Local\Temp\sed.exe
C:\Users\Tobiáš\AppData\Local\Temp\utils.dll
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {36DE4728-03DF-4AA2-BE19-99A00A384FFE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-02] (Google Inc.)
Task: {59AC955C-2181-4D68-AA25-37D6400EE448} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-02] (Google Inc.)
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2346423795-1808065523-688302191-1001\...\100sexlinks.com -> 100sexlinks.com

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.