Kontrola logu Vyřešeno

[skayllerCZ]

Píše mi to že Vaše zpráva obsahuje 60544 znaků. Maximální povolený počet znaků je 60000. co teď ?

[Reklama]

[jerabina]

Rozděl to na více částí.

[skayllerCZ]

FRST 1část:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-05-2015
Ran by OpenGate (administrator) on OPENGATE-ALFA on 27-05-2015 19:40:11
Running from C:\Users\OpenGate\Desktop
Loaded Profiles: OpenGate (Available Profiles: OpenGate & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL$SPZSQL2013\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
() C:\Program Files (x86)\Adobe Arkalis\Adobe_Arkalis.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7509096 2011-10-18] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [4035152 2011-09-22] (ESET)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WindowsDriverScan86] => C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [1501 2014-08-10] ()
HKLM-x32\...\Run: [WindowsDriverScan64] => C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [1419 2014-08-10] ()
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Run: [Google Update] => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-18] (Google Inc.)
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {1b9498aa-1065-11e2-b6a6-8c89a5cb8e55} - J:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {329b8da9-2443-11e2-8fcd-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {329b8e76-2443-11e2-8fcd-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {60a7161f-2825-11e2-95e8-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {7431827b-46f1-11e2-9070-8c89a5cb8e55} - J:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {8722c837-2473-11e4-bdae-8c89a5cb8e55} - "E:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {ffa972b7-405c-11e2-8b1e-8c89a5cb8e55} - E:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {ffa972ce-405c-11e2-8b1e-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
AppInit_DLLs-x32:  => "" File not found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Service Manager.lnk [2013-10-18]
ShortcutTarget: Service Manager.lnk -> C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-03-10] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-04-14] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-04-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-10-27] (Oracle Corporation)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-04-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-27] (Oracle Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {A0D5007C-5BDB-4933-AD5F-54C1A661801C} http://10.0.0.3:5550/PCViewX.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100

FireFox:
========
FF ProfilePath: C:\Users\OpenGate\AppData\Roaming\Mozilla\Firefox\Profiles\jxx7fbbl.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\3.4.22.118\npplugin4game.dll [2015-04-16] (Innova Co S.a r.l.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-10-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-10-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-27] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-11-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-11-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2534689519-1064839547-1167534587-1000: @tools.google.com/Google Update;version=3 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2534689519-1064839547-1167534587-1000: @tools.google.com/Google Update;version=9 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2534689519-1064839547-1167534587-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\OpenGate\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-04-27] (Unity Technologies ApS)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-09-12]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: No Name - C:\Users\OpenGate\AppData\Roaming\Mozilla\Firefox\Profiles\jxx7fbbl.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [not found]

Chrome:
=======
CHR Profile: C:\Users\OpenGate\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Bookmark Manager) - C:\Users\OpenGate\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-17]
CHR Extension: (Google Wallet) - C:\Users\OpenGate\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-13]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 4game-service; C:\Program Files (x86)\4game\3.4.22.118\4game-service.exe [1361544 2015-04-16] (Innova Co S.a r.l.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2736824 2015-04-07] (Microsoft Corporation)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1254400 2015-04-27] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-05-06] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [974944 2011-09-22] (ESET)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
R2 MSSQL$SPZSQL2013; C:\Program Files (x86)\Microsoft SQL Server\MSSQL$SPZSQL2013\Binn\sqlservr.exe [7520337 2002-12-17] (Microsoft Corporation) [File not signed]
S3 MSSQLServerADHelper; C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [66112 2002-12-17] (Microsoft Corporation) [File not signed]
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-05-22] ()
S3 SQLAgent$SPZSQL2013; C:\Program Files (x86)\Microsoft SQL Server\MSSQL$SPZSQL2013\Binn\sqlagent.EXE [311872 2002-12-17] (Microsoft Corporation) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

[skayllerCZ]

frst2 část:

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 DroidCam; C:\Windows\System32\DRIVERS\droidcam.sys [33080 2015-01-27] (Dev47Apps)
R3 DroidCamVideo; C:\Windows\System32\DRIVERS\droidcamvideo.sys [228408 2015-01-27] (Dev47Apps)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-10-13] (Disc Soft Ltd)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202576 2011-08-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [146432 2011-08-04] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [187632 2011-08-04] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [38288 2011-08-04] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62496 2011-08-04] (ESET)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [415744 2011-07-12] (Huawei Technologies Co., Ltd.)
R3 ffusb2audio; C:\Windows\System32\DRIVERS\ffusb2audio.sys [127280 2013-09-25] (Focusrite Audio Engineering Limited.)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [213504 2011-07-12] (Huawei Technologies Co., Ltd.)
S3 IFCoEMP; C:\Windows\system32\drivers\ifM60x64.sys [388368 2011-09-07] (Intel(R) Corporation)
S3 IFCoEVB; C:\Windows\system32\drivers\ifP60X64.sys [77584 2011-09-07] (Intel(R) Corporation)
R0 ioatdma; C:\Windows\System32\Drivers\ioatdma.sys [46792 2009-11-16] (Intel Corporation)
S3 ioatdma2; C:\Windows\System32\Drivers\qd260x64.sys [41168 2009-11-16] (Intel Corporation)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-09-25] (Marvell Semiconductor, Inc.)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 XSplit_Dummy; C:\Windows\System32\drivers\xspltspk.sys [26200 2014-07-02] (SplitmediaLabs Limited)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-27 19:40 - 2015-05-27 19:40 - 00021030 _____ () C:\Users\OpenGate\Desktop\FRST.txt
2015-05-27 19:40 - 2015-05-27 19:40 - 00000000 ____D () C:\FRST
2015-05-27 19:38 - 2015-05-27 19:38 - 02108928 _____ (Farbar) C:\Users\OpenGate\Downloads\FRST64.exe
2015-05-27 19:38 - 2015-05-27 19:38 - 02108928 _____ (Farbar) C:\Users\OpenGate\Desktop\FRST64.exe
2015-05-27 19:01 - 2015-05-27 19:01 - 00011492 _____ () C:\Users\OpenGate\Downloads\hijackthis.log
2015-05-27 18:59 - 2015-05-27 19:00 - 00388608 _____ (Trend Micro Inc.) C:\Users\OpenGate\Downloads\HijackThis.exe
2015-05-27 18:53 - 2015-05-27 18:34 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-05-27 18:36 - 2015-03-12 21:26 - 00010881 _____ () C:\zoek-results2015-03-12-192606.log
2015-05-27 18:34 - 2015-05-27 18:34 - 01308672 _____ () C:\Users\OpenGate\Downloads\zoek.exe
2015-05-27 18:34 - 2015-05-27 18:34 - 01308672 _____ () C:\Users\OpenGate\Desktop\zoek.exe
2015-05-27 18:21 - 2015-05-27 18:53 - 00001657 _____ () C:\Users\OpenGate\Desktop\Nový textový dokument.txt
2015-05-27 18:21 - 2015-05-27 18:21 - 17347943 _____ () C:\Users\OpenGate\Desktop\RogueKillerX64.exe
2015-05-26 19:32 - 2015-05-26 19:32 - 01191992 _____ ( ) C:\Users\OpenGate\Downloads\hwmonitor_1.27.exe
2015-05-26 19:32 - 2015-05-26 19:32 - 00000930 _____ () C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2015-05-26 19:32 - 2015-05-26 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-05-26 19:32 - 2015-05-26 19:32 - 00000000 ____D () C:\Program Files\CPUID
2015-05-26 19:18 - 2015-05-26 19:18 - 03445037 _____ () C:\Users\OpenGate\Desktop\MoRty-nech mě být-01.wma
2015-05-26 19:15 - 2015-05-26 19:15 - 03445037 _____ () C:\Users\OpenGate\Desktop\MoRty-nech mě být.wma
2015-05-26 19:12 - 2015-05-26 19:19 - 00273674 _____ () C:\Users\OpenGate\Desktop\nech mě být.cpr
2015-05-25 14:19 - 2015-05-25 15:32 - 00000000 ____D () C:\Program Files\OBS
2015-05-25 14:19 - 2015-05-25 15:32 - 00000000 ____D () C:\Program Files (x86)\OBS
2015-05-24 19:18 - 2015-05-25 13:50 - 00000000 ____D () C:\Program Files (x86)\Adobe Arkalis
2015-05-24 19:18 - 2015-05-24 19:18 - 00001222 _____ () C:\Users\Public\Desktop\Minecraft Launcher 1.8.lnk
2015-05-24 19:18 - 2015-05-24 19:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 1.8
2015-05-24 19:18 - 2015-05-24 19:18 - 00000000 ____D () C:\ProgramData\Caphyon
2015-05-24 19:18 - 2015-05-24 19:18 - 00000000 ____D () C:\Program Files (x86)\Mojang
2015-05-24 19:17 - 2015-05-24 19:17 - 00000000 ____D () C:\Users\OpenGate\AppData\Roaming\Mojang
2015-05-24 15:52 - 2015-05-24 15:56 - 33323076 _____ () C:\Users\OpenGate\Desktop\MoRty-Mě z toho vynech-vid..mp4
2015-05-24 13:58 - 2015-05-24 13:58 - 00000000 ____D () C:\Users\OpenGate\AppData\Local\LumaEmu_SteamCloud
2015-05-23 16:48 - 2015-05-23 16:48 - 00000784 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nether.lnk
2015-05-23 16:48 - 2015-05-23 16:48 - 00000000 ____D () C:\Program Files\NetherLauncher
2015-05-22 13:02 - 2015-05-22 13:04 - 00000000 ____D () C:\Users\OpenGate\Documents\America's Army
2015-05-22 12:55 - 2015-05-22 12:55 - 00466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2015-05-22 12:55 - 2015-05-22 12:55 - 00444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2015-05-22 12:55 - 2015-05-22 12:55 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2015-05-22 12:55 - 2015-05-22 12:55 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2015-05-22 12:55 - 2015-05-22 12:55 - 00000000 ____D () C:\Program Files (x86)\OpenAL
2015-05-21 19:59 - 2015-05-21 19:59 - 00000000 ____D () C:\Users\OpenGate\AppData\Roaming\Warside
2015-05-17 21:25 - 2015-05-17 21:25 - 00000000 ____D () C:\Users\OpenGate\Documents\Survarium
2015-05-17 13:14 - 2015-05-17 13:17 - 00000000 ____D () C:\Users\OpenGate\Documents\Witcher 2
2015-05-17 13:14 - 2015-05-17 13:14 - 00000000 ____D () C:\Users\OpenGate\AppData\Local\The Witcher 2
2015-05-17 12:35 - 2015-05-17 21:00 - 00000000 ____D () C:\R.G. Catalyst
2015-05-13 15:55 - 2015-05-01 15:17 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 15:55 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 14:03 - 2015-05-05 03:29 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-13 14:03 - 2015-05-05 03:12 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-13 14:03 - 2015-04-22 04:28 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-13 14:03 - 2015-04-22 03:48 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-13 14:03 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-13 14:03 - 2015-04-21 19:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-13 14:03 - 2015-04-21 19:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 14:03 - 2015-04-21 18:51 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-13 14:03 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-13 14:03 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-13 14:03 - 2015-04-21 18:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-05-13 14:03 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-13 14:03 - 2015-04-21 18:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-13 14:03 - 2015-04-21 18:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-13 14:03 - 2015-04-21 18:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-13 14:03 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-13 14:03 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-13 14:03 - 2015-04-21 18:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-13 14:03 - 2015-04-21 18:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-05-13 14:03 - 2015-04-21 18:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-05-13 14:03 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-13 14:03 - 2015-04-21 18:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 14:03 - 2015-04-21 18:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-05-13 14:03 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-13 14:03 - 2015-04-21 18:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-13 14:03 - 2015-04-21 18:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 14:03 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-13 14:03 - 2015-04-21 18:11 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-05-13 14:03 - 2015-04-21 18:10 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-05-13 14:03 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-13 14:03 - 2015-04-21 18:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-13 14:03 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-13 14:03 - 2015-04-21 18:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-05-13 14:03 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-13 14:03 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-13 14:03 - 2015-04-21 18:03 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-05-13 14:03 - 2015-04-21 18:02 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-05-13 14:03 - 2015-04-21 18:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-05-13 14:03 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-13 14:03 - 2015-04-21 17:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-05-13 14:03 - 2015-04-21 17:57 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-05-13 14:03 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-13 14:03 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-13 14:03 - 2015-04-21 17:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-05-13 14:03 - 2015-04-21 17:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-05-13 14:03 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-13 14:03 - 2015-04-21 17:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-05-13 14:03 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-13 14:03 - 2015-04-21 17:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-05-13 14:03 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-13 14:03 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-13 14:03 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-13 14:03 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-13 14:03 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-13 14:03 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-13 14:03 - 2015-04-21 17:24 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-05-13 14:03 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-13 14:03 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-13 14:03 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-13 14:03 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-13 14:03 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-13 14:03 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-13 14:03 - 2015-04-18 05:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-13 14:03 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-13 14:02 - 2015-04-27 21:28 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-13 14:02 - 2015-04-27 21:28 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-13 14:02 - 2015-04-27 21:28 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-05-13 14:02 - 2015-04-27 21:26 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 01254400 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-05-13 14:02 - 2015-04-27 21:23 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-05-13 14:02 - 2015-04-27 21:22 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-13 14:02 - 2015-04-27 21:22 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-05-13 14:02 - 2015-04-27 21:22 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-05-13 14:02 - 2015-04-27 21:22 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-05-13 14:02 - 2015-04-27 21:22 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-05-13 14:02 - 2015-04-27 21:22 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-05-13 14:02 - 2015-04-27 21:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-05-13 14:02 - 2015-04-27 21:22 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-05-13 14:02 - 2015-04-27 21:22 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-05-13 14:02 - 2015-04-27 21:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-05-13 14:02 - 2015-04-27 21:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-13 14:02 - 2015-04-27 21:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 21:11 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-05-13 14:02 - 2015-04-27 21:11 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-05-13 14:02 - 2015-04-27 21:08 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-05-13 14:02 - 2015-04-27 21:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-05-13 14:02 - 2015-04-27 21:04 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-05-13 14:02 - 2015-04-27 21:04 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-05-13 14:02 - 2015-04-27 21:04 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-05-13 14:02 - 2015-04-27 21:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-05-13 14:02 - 2015-04-27 21:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-05-13 14:02 - 2015-04-27 21:04 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-05-13 14:02 - 2015-04-27 21:04 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-05-13 14:02 - 2015-04-27 21:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-05-13 14:02 - 2015-04-27 21:03 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-05-13 14:02 - 2015-04-27 21:03 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-05-13 14:02 - 2015-04-27 21:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-05-13 14:02 - 2015-04-27 21:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-05-13 14:02 - 2015-04-27 21:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-05-13 14:02 - 2015-04-27 21:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-05-13 14:02 - 2015-04-27 21:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-05-13 14:02 - 2015-04-27 21:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 20:06 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-13 14:02 - 2015-04-27 19:57 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-05-13 14:02 - 2015-04-27 19:57 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-05-13 14:02 - 2015-04-27 19:55 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 19:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 19:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 14:02 - 2015-04-27 19:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 14:02 - 2015-04-20 05:17 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-13 14:02 - 2015-04-20 05:17 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-13 14:02 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-13 14:02 - 2015-04-20 04:11 - 03204608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-13 14:02 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-13 14:02 - 2015-04-08 05:29 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-13 14:02 - 2015-04-08 05:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-05-13 14:02 - 2015-04-08 05:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-05-13 14:02 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-13 14:02 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-13 14:02 - 2015-01-29 05:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-13 14:02 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-13 14:01 - 2015-03-04 06:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-13 14:01 - 2015-03-04 06:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-13 14:01 - 2015-03-04 06:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-13 14:01 - 2015-03-04 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-13 14:01 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-05-13 14:01 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-05-13 14:01 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-06 19:09 - 2015-05-06 19:09 - 00000000 ____D () C:\Users\OpenGate\AppData\Roaming\.mono
2015-05-06 19:08 - 2015-05-06 19:07 - 00238376 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2015-05-03 20:53 - 2015-05-25 20:59 - 00000000 ____D () C:\Users\OpenGate\AppData\Local\Seznam.cz
2015-05-03 20:53 - 2015-05-03 20:53 - 00001906 _____ () C:\Users\OpenGate\Desktop\Seznam.cz.lnk
2015-05-03 20:53 - 2015-05-03 20:53 - 00001886 _____ () C:\Users\OpenGate\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2015-04-27 15:48 - 2015-05-22 19:02 - 00000000 ____D () C:\Users\OpenGate\Desktop\Hry

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-27 19:39 - 2014-10-12 20:46 - 00000000 ____D () C:\Users\OpenGate\AppData\Roaming\Skype
2015-05-27 19:39 - 2012-09-12 10:11 - 01889325 _____ () C:\Windows\WindowsUpdate.log
2015-05-27 19:34 - 2014-03-18 19:42 - 00000974 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA.job
2015-05-27 19:19 - 2012-12-16 21:09 - 00000966 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA.job
2015-05-27 19:04 - 2009-07-14 06:45 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-27 19:04 - 2009-07-14 06:45 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-27 18:56 - 2015-03-12 21:14 - 00017319 _____ () C:\zoek-results.log
2015-05-27 18:56 - 2014-12-25 00:02 - 00000442 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-05-27 18:56 - 2013-10-11 23:46 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-27 18:55 - 2014-10-12 20:37 - 00109855 _____ () C:\Windows\setupact.log
2015-05-27 18:55 - 2012-05-31 13:22 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-27 18:55 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-27 18:54 - 2014-10-12 20:36 - 00057650 _____ () C:\Windows\PFRO.log
2015-05-27 18:53 - 2013-10-11 23:46 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-27 18:52 - 2015-03-12 21:13 - 00000000 ____D () C:\zoek_backup
2015-05-27 18:25 - 2015-03-11 21:15 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-05-27 18:23 - 2015-03-12 21:03 - 00000000 ____D () C:\Users\OpenGate\AppData\Local\CrashDumps
2015-05-27 17:55 - 2012-10-07 10:29 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-27 16:58 - 2014-10-27 21:29 - 00000000 ____D () C:\Users\OpenGate\AppData\Roaming\.minecraft
2015-05-27 15:34 - 2014-03-18 19:42 - 00000922 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core.job
2015-05-27 14:40 - 2015-04-05 11:40 - 00000000 ____D () C:\Users\OpenGate\Documents\Assassin's Creed Unity
2015-05-27 07:10 - 2011-04-12 10:34 - 00686974 _____ () C:\Windows\system32\perfh005.dat
2015-05-27 07:10 - 2011-04-12 10:34 - 00149386 _____ () C:\Windows\system32\perfc005.dat
2015-05-27 07:10 - 2009-07-14 07:13 - 01637872 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-26 21:27 - 2015-04-13 21:49 - 00000000 ____D () C:\Users\OpenGate\Documents\Cubase LE AI Elements Projects
2015-05-26 20:19 - 2012-12-16 21:09 - 00000914 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core.job
2015-05-26 16:44 - 2015-03-08 20:38 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2015-05-26 15:22 - 2013-12-30 14:55 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-26 14:28 - 2012-09-27 12:54 - 00000000 ____D () C:\Users\OpenGate
2015-05-26 14:20 - 2014-10-12 21:37 - 00000000 ____D () C:\Users\OpenGate\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2015-05-25 22:10 - 2014-10-12 21:48 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-05-25 21:29 - 2012-09-27 14:14 - 00291512 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2015-05-25 21:29 - 2012-09-27 14:13 - 00291512 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-05-25 17:09 - 2014-12-04 17:17 - 00000000 ____D () C:\Users\OpenGate\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acoustica Mixcraft 6
2015-05-25 17:08 - 2015-04-03 20:02 - 00000000 ____D () C:\Users\OpenGate\Documents\Survarium-Steam
2015-05-25 17:06 - 2014-10-16 21:03 - 00000000 ____D () C:\Fraps
2015-05-25 16:07 - 2012-09-27 14:13 - 00291512 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-05-25 15:32 - 2014-12-14 18:44 - 00000000 ____D () C:\Program Files (x86)\NovaMetin2
2015-05-25 15:23 - 2015-01-03 20:16 - 00000000 ____D () C:\ProgramData\SplitMediaLabs
2015-05-24 15:57 - 2015-04-19 10:16 - 00000000 ____D () C:\Users\OpenGate\Desktop\Cubase uložení
2015-05-24 15:57 - 2014-11-06 20:57 - 00000000 ____D () C:\Users\OpenGate\Desktop\Obrázky
2015-05-24 15:56 - 2014-10-13 21:18 - 00000000 ____D () C:\Users\OpenGate\Desktop\Moje skladby
2015-05-24 13:58 - 2014-10-13 22:10 - 00000000 ____D () C:\Users\OpenGate\Documents\My Games
2015-05-23 14:28 - 2014-10-26 21:19 - 00000000 ____D () C:\Games
2015-05-23 14:28 - 2014-10-14 18:08 - 00000000 ____D () C:\Users\OpenGate\AppData\Local\SKIDROW
2015-05-22 13:05 - 2012-09-27 14:13 - 00000000 ____D () C:\Users\OpenGate\AppData\Local\PunkBuster
2015-05-22 13:02 - 2012-09-27 14:13 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-05-21 19:11 - 2015-04-26 19:25 - 00000000 ____D () C:\Users\OpenGate\AppData\Local\wf-launcher
2015-05-21 18:34 - 2015-04-26 19:25 - 00000000 ____D () C:\ProgramData\GFACE
2015-05-20 13:49 - 2015-04-04 14:08 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-05-20 13:49 - 2015-04-04 14:08 - 00000000 ___SD () C:\Windows\system32\GWX
2015-05-19 15:01 - 2015-01-27 14:17 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-05-16 19:21 - 2014-10-12 21:55 - 00365622 _____ () C:\Windows\DirectX.log
2015-05-16 17:59 - 2014-12-13 15:11 - 00000000 ____D () C:\Users\OpenGate\Documents\Infestation Survivor Stories
2015-05-16 15:45 - 2014-10-12 20:45 - 00000000 ____D () C:\ProgramData\Skype
2015-05-16 15:29 - 2014-03-18 19:42 - 00003950 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA
2015-05-16 15:29 - 2014-03-18 19:42 - 00003554 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core
2015-05-16 08:48 - 2013-10-11 23:46 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-16 08:48 - 2013-10-11 23:46 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-14 14:46 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2015-05-13 21:53 - 2012-12-10 15:28 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-13 18:08 - 2014-10-12 20:37 - 05232976 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-13 18:06 - 2011-04-12 10:45 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-13 18:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-13 16:06 - 2012-12-07 14:18 - 00002117 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-05-13 16:06 - 2012-12-07 14:18 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2015-05-13 16:06 - 2012-12-07 14:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2015-05-13 16:06 - 2012-05-31 15:27 - 00001912 _____ () C:\Windows\epplauncher.mif
2015-05-13 16:05 - 2013-09-09 22:01 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-13 15:57 - 2012-05-31 13:56 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-13 15:55 - 2014-01-07 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-13 15:54 - 2014-01-07 13:58 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-05-13 15:54 - 2014-01-07 13:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-05-12 21:07 - 2015-02-16 20:54 - 00000000 ____D () C:\Users\OpenGate\AppData\Local\Akamai
2015-05-02 20:50 - 2012-09-27 13:10 - 00000000 ____D () C:\Users\OpenGate\AppData\Roaming\vlc
2015-04-27 16:10 - 2015-04-25 14:17 - 00519193 _____ () C:\Users\OpenGate\Desktop\nově.cpr
2015-04-27 15:55 - 2014-11-05 17:52 - 00000000 ____D () C:\Users\OpenGate\Desktop\Písničky

==================== Files in the root of some directories =======

2013-03-26 00:19 - 2014-11-10 20:05 - 0008192 _____ () C:\Users\OpenGate\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-12-31 00:11 - 2014-12-31 00:11 - 0000218 _____ () C:\Users\OpenGate\AppData\Local\recently-used.xbel
2012-10-04 21:42 - 2013-10-17 20:57 - 0007597 _____ () C:\Users\OpenGate\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
C:\Users\OpenGate\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-24 22:41

==================== End of log ============================

[skayllerCZ]

addition 1část:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015
Ran by OpenGate at 2015-05-27 19:40:52
Running from C:\Users\OpenGate\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2534689519-1064839547-1167534587-500 - Administrator - Disabled)
Guest (S-1-5-21-2534689519-1064839547-1167534587-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-2534689519-1064839547-1167534587-1008 - Limited - Enabled)
OpenGate (S-1-5-21-2534689519-1064839547-1167534587-1000 - Administrator - Enabled) => C:\Users\OpenGate

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 5.0 (Enabled - Up to date) {77DEAFED-8149-104B-25A1-21771CA47CD1}
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: ESET Smart Security 5.0 (Enabled - Up to date) {CCBF4E09-A773-1FC5-1F11-1A056723366C}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET personal firewall (Enabled) {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

1.0 (HKLM-x32\...\{18DA6368-9677-4894-B4BD-01FBE542B63E}_is1) (Version: - Tsoft)
4game (HKLM-x32\...\4game) (Version: 3.4.22.118 - Innova Systems)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Aktualizace NVIDIA 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
America's Army: Proving Grounds Beta (HKLM-x32\...\Steam App 203290) (Version: - U.S. Army)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin`s Creed Unity version 1.0.0 (HKLM-x32\...\Assassin`s Creed Unity_is1) (Version: 1.0.0 - Ubisoft)
Balíček ovladače systému Windows - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1) (HKLM\...\CF1FC201D237269A9CD51A3A6B14ADBF67175C32) (Version: 09/25/2013 2.5.128.1 - Focusrite)
Bass Station 2.1 (HKLM-x32\...\{ABAF1232-6213-4062-9D52-04E04A730CEA}_is1) (Version: 2.1 - Novation)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Blacklight: Retribution (HKLM-x32\...\Steam App 209870) (Version: - Hardsuit Labs)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty: Modern Warfare 3 - Dedicated Server (HKLM-x32\...\Steam App 42750) (Version: - Infinity Ward - Sledgehammer Games)
CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dark Souls II ver. 1.10 (HKLM-x32\...\{23643000-22WS-33NM-44T5-66JH8S9876UY}_is1) (Version: 1.10 - FromSoftware, Inc)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dragon Age II (HKLM-x32\...\{F2E23139-3404-4E3C-9855-7724415D62A5}) (Version: 1.00 - Electronic Arts, Inc.)
Dying Light (HKLM-x32\...\Dying Light_is1) (Version: 1.2.1 - Релиз от R.G. Steamgames)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.8.5.1157 - Steinberg Media Technologies GmbH)
ESET Smart Security (HKLM\...\{7A4409F0-1CBF-45C1-95F1-30A830AD9FDB}) (Version: 5.0.95.0 - ESET, spol. s r.o.)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
Focusrite USB 2.0 Audio Driver 2.5.1 (HKLM\...\Focusrite USB 2.0 Audio Driver_is1) (Version: 2.5.1 - Focusrite Audio Engineering Limited.)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freemake Audio Converter verze 1.1.3 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.3 - Ellora Assets Corporation)
Gameforge Live 2.0.6 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.6 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version: - Rockstar North)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Reloaded Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
HP Deskjet 1050 J410 series Nápověda (HKLM-x32\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard)
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - )
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Infestation Survivor Stories version 1.0 (HKLM-x32\...\{BC3051A7-1021-4B57-A3DA-AAC24566FAE7}_is1) (Version: 1.0 - OP Productions LLC)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 15.0.4719.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Desktop Engine (SPZSQL2013) (HKLM-x32\...\{E09B48B5-E141-427A-AB0C-D3605127224A}) (Version: 8.00.761 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft Launcher 1.8 (HKLM-x32\...\Minecraft Launcher 1.8 1.0.0) (Version: 1.0.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 37.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 cs)) (Version: 37.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyPaint 1.0.0 (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MyPaint) (Version: 1.0.0 - Martin Renold & MyPaint Development Team)
Nether Launcher (HKLM\...\{BA92D323-2D01-407D-AA36-285413610376}) (Version: 16.22.0.0 - Nether Productions, LLC.)
NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.82 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.82 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.82 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Oddworld - New 'n' Tasty (HKLM-x32\...\1424782569_is1) (Version: 2.0.0.1 - GOG.com)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.3 (HKLM-x32\...\{D5B94160-4A07-4956-9C73-8C5EEFEF180F}) (Version: 3.3.9567 - OpenOffice.org)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Ovládací panel NVIDIA 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlanetSide 2 (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\SOE-PlanetSide 2) (Version: 1.0.3.183 - Sony Online Entertainment)
Prohlížeč Seznam.cz (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Seznam Browser) (Version: - Seznam.cz a.s.)
ProtectStar(TM) Data Shredder 4 (HKLM-x32\...\{729AC46F-F2BA-457D-A9C7-57AD3FD87379}) (Version: 4.0.1402 - ProtectStar Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
QuickTime (HKLM-x32\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
Rusted.cz Klient 1.7.1 (HKLM-x32\...\Rusted.cz Klient 1.7.1) (Version: 1.7.1 - Rusted.cz)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Scarlett Plug-in Suite 1.7 (HKLM-x32\...\{D7F912D4-C237-4079-966A-5044A5025CBF}}_is1) (Version: 1.7 - Focusrite)
Shards of War (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 62971 - Bigpoint GmbH)
ShaunWhiteSnowboarding (HKLM-x32\...\{2E52FB79-7F60-4AD7-B946-5ED18B4F274E}) (Version: 1.01 - Ubisoft)
SHIELD Streaming (Version: 2.1.214 - NVIDIA Corporation) Hidden
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Ss Data Eraser 2.0 (HKLM-x32\...\Ss Data Eraser_is1) (Version: - Ss-Tools, Inc)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Cubase LE AI Elements 7 64bit (HKLM\...\{67E7C608-D0EA-4273-B374-50ABE42FBE08}) (Version: 7.0.80 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 1.6.3 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE Content for Cubase LE AI Elements (HKLM-x32\...\{CF45002F-2205-4116-BB51-2D015F436CAC}) (Version: 1.6.3 - Steinberg Media Technologies GmbH)
Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH)
Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
The Binding of Isaac Rebirth 1.0 (HKLM-x32\...\The Binding of Isaac Rebirth 1.0) (Version: 1.0 - Games on Cat-A-Cat.Net)
The Vanishing of Ethan Carter (HKLM-x32\...\1207665373_is1) (Version: 2.3.0.5 - GOG.com)
Unity Web Player (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\UnityWebPlayer) (Version: 4.6.5f1 - Unity Technologies ApS)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
Virtual DJ Toolbar (HKLM-x32\...\{56444A2D-5637-006A-76A7-A758B70C1801}) (Version: 12.24.1.290 - APN, LLC)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
War Thunder Launcher 1.0.1.467 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Warface (HKLM-x32\...\Steam App 291480) (Version: - Crytek)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
WinUSB Maker Tool version 1.0 (HKLM-x32\...\WinUSB Maker Tool_is1) (Version: 1.0 - Mohammed Al-Thobiti)
World of Tanks (HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
Základní software zařízení HP Deskjet 1050 J410 series (HKLM\...\{B73AE644-9B30-4BCE-8965-C0CA121A25C7}) (Version: 22.50.231.0 - Hewlett-Packard Co.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\OpenGate\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\ooofilt_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\propertyhdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll (OpenOffice.org)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

==================== Restore Points =========================

24-05-2015 19:17:50 Nainstalováno: Minecraft Launcher 1.8
25-05-2015 15:24:05 Installed XSplit Gamecaster
25-05-2015 17:10:27 Removed iTunes
25-05-2015 17:11:28 Removed XSplit Gamecaster
25-05-2015 17:13:21 Removed XSplit Broadcaster
27-05-2015 14:46:02 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-05-27 18:36 - 00000841 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03EC55B7-B3C6-464F-8498-8372E6AF132E} - System32\Tasks\{F7FBEC2F-FFB5-4F8C-8162-B8EBA48E9794} => pcalua.exe -a "C:\Program Files\HP\HP LaserJet M1210 MFP Series\Uninstall.exe"
Task: {2AA38B6E-605D-403B-B908-E2C3F9B2DFE5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-11] (Google Inc.)
Task: {39F1CC9E-36E2-43FA-B162-5C20855F5424} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [2014-03-18] (Google Inc.)
Task: {59542AEE-1255-48C9-B724-3334E47E61AD} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
Task: {59A618E4-F0F3-4BD9-B03A-022543B845F2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {6328D56C-A6D8-4A78-B0CC-FD69060B512E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
Task: {77A59046-3323-47D8-A79F-9327C1FEC771} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-11] (Google Inc.)
Task: {947503D4-FA9F-45AB-A202-4B5E99C91AE9} - System32\Tasks\{C190CBB6-3B2A-46C1-B90C-48578AE00E4A} => C:\Program Files (x86)\VideoLAN\VLC\vlc.exe [2014-02-05] (VideoLAN)
Task: {9CD8F3C9-EB7D-44FF-A8FC-0D690F1AD9E8} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {A18B27F0-AFEB-4895-A3CD-8511BFD90AB1} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {A62730BF-C09E-439F-9D94-6DF2984B2C9A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core => C:\Users\Sběrna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {AF0FB090-481A-43AE-BBD8-4F539A8E1744} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {BBD9B444-8FBC-4CBB-A837-213B7C10F96F} - System32\Tasks\{B66ADB78-502D-4ED4-A580-6C089F23C450} => pcalua.exe -a D:\Setup.exe -d D:\
Task: {C0AB3A22-E108-4188-A4A6-936394A5EA07} - System32\Tasks\{7791E337-9CC1-4162-B786-1AB62790FF89} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
Task: {DA8AF62C-4EB4-4987-A75F-99DD7A82454F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [2014-03-18] (Google Inc.)
Task: {DEFBC032-B825-4B7B-B223-42B2CEA2A345} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E457F69E-DF2D-4969-B7B1-E69459A73793} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA => C:\Users\Sběrna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {E972F8E4-646A-4A45-9081-CDD7FB3ADD5B} - System32\Tasks\{1B1AEC29-BA71-4541-8642-76AB10146AB5} => pcalua.exe -a E:\DOW2.exe -d E:\
Task: {ED7D9DCA-E48B-4D5B-9C5B-FF6F458A4E79} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core.job => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA.job => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core.job => C:\Users\Sb
rna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA.job => C:\Users\Sb
rna\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2012-05-31 13:21 - 2013-11-11 17:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-12-07 13:09 - 2011-04-02 17:05 - 00290304 _____ () C:\Windows\System32\HP1100LM.DLL
2012-12-17 11:15 - 2010-03-31 12:51 - 00407040 _____ () C:\Windows\System32\HPM1210LM.DLL
2012-12-07 13:10 - 2011-04-02 17:04 - 00074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HP1100PP.DLL
2012-10-07 20:52 - 2010-03-31 12:51 - 00074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HPM1210PP.dll
2015-01-27 14:17 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2012-09-27 14:13 - 2015-05-22 13:02 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2012-12-04 00:40 - 2012-12-04 00:40 - 00024064 _____ () C:\Program Files (x86)\Adobe Arkalis\Adobe_Arkalis.exe
2012-09-20 04:41 - 2012-09-20 04:41 - 01311275 _____ () C:\Program Files (x86)\Adobe Arkalis\numpy.core.multiarray.pyd
2012-09-20 04:41 - 2012-09-20 04:41 - 00410432 _____ () C:\Program Files (x86)\Adobe Arkalis\numpy.core.umath.pyd
2012-09-20 04:41 - 2012-09-20 04:41 - 02222455 _____ () C:\Program Files (x86)\Adobe Arkalis\numpy.core._dotblas.pyd
2012-09-20 04:41 - 2012-09-20 04:41 - 00174793 _____ () C:\Program Files (x86)\Adobe Arkalis\numpy.core.scalarmath.pyd
2012-09-20 04:41 - 2012-09-20 04:41 - 00041019 _____ () C:\Program Files (x86)\Adobe Arkalis\numpy.lib._compiled_base.pyd
2012-09-20 04:42 - 2012-09-20 04:42 - 02382083 _____ () C:\Program Files (x86)\Adobe Arkalis\numpy.linalg.lapack_lite.pyd
2012-09-20 04:41 - 2012-09-20 04:41 - 00046383 _____ () C:\Program Files (x86)\Adobe Arkalis\numpy.fft.fftpack_lite.pyd
2012-09-20 04:42 - 2012-09-20 04:42 - 00515437 _____ () C:\Program Files (x86)\Adobe Arkalis\numpy.random.mtrand.pyd
2012-04-11 04:31 - 2012-04-11 04:31 - 00074240 _____ () C:\Program Files (x86)\Adobe Arkalis\_ctypes.pyd
2012-04-11 04:31 - 2012-04-11 04:31 - 00040960 _____ () C:\Program Files (x86)\Adobe Arkalis\_socket.pyd
2012-04-11 04:31 - 2012-04-11 04:31 - 00285184 _____ () C:\Program Files (x86)\Adobe Arkalis\_hashlib.pyd
2012-04-11 04:31 - 2012-04-11 04:31 - 00009728 _____ () C:\Program Files (x86)\Adobe Arkalis\select.pyd
2012-06-19 18:01 - 2012-06-19 18:01 - 00577536 _____ () C:\Program Files (x86)\Adobe Arkalis\pyopencl._cl.pyd
2012-06-15 14:20 - 2012-06-15 14:20 - 00219648 _____ () C:\Program Files (x86)\Adobe Arkalis\boost_python-vc90-mt-1_48.dll
2012-10-27 16:21 - 2012-10-27 16:21 - 00098816 _____ () C:\Program Files (x86)\Adobe Arkalis\win32api.pyd
2012-10-27 16:20 - 2012-10-27 16:20 - 00110080 _____ () C:\Program Files (x86)\Adobe Arkalis\pywintypes27.dll
2012-05-31 13:14 - 2012-02-07 17:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-11-30 07:32 - 2014-11-30 07:32 - 00151552 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCam.dll
2014-11-30 07:38 - 2014-11-30 07:38 - 00077824 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCamFilter.ax
2014-11-30 21:48 - 2014-11-30 21:48 - 00086016 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCamFilter240p.ax
2015-05-26 15:04 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-26 15:04 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll
2015-05-26 15:04 - 2015-05-22 22:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\sony.com -> sony.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\OpenGate\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100

[skayllerCZ]

addition 2část:

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: 4game-service => 2
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\Services: HPSIService => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\startupfolder: C:^Users^OpenGate^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SkypeChatUpdate.lnk => C:\Windows\pss\SkypeChatUpdate.lnk.Startup
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\OpenGate\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Google+ Auto Backup => "C:\Users\OpenGate\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{932439BC-E5C5-467D-8A0A-882492053278}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{C66A6DC4-569A-4D31-9755-570CF44AE24B}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{A7CDE324-E14F-4B3B-A4BB-E5AF5F4C9C13}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{568515C9-96E6-4155-9134-DBBC5093A85B}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{6A1B8C90-A6FD-488B-A515-9A3D54EC9E73}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{C3474AD4-678B-40D0-94DD-C1C7C7484A97}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{F2A83B50-A77C-451C-858C-39256AD9BFC8}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{37FB82F4-66BD-4B3C-9900-695B1C3C9973}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{E339D49B-874F-4383-880B-9CB042C4307A}] => (Allow) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
FirewallRules: [{9640B9D2-1083-4AB5-9CEB-3D96B710234D}] => (Allow) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
FirewallRules: [{660CFB19-DBA9-40F2-AEF8-929A828390B4}] => (Allow) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
FirewallRules: [{BFF4DCC3-4508-43D5-9569-70C9CF0F428D}] => (Allow) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
FirewallRules: [TCP Query User{E31062DF-7459-4722-A8C9-071A3AFBBEA1}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{4959112F-0F88-48AA-A1F2-1E03A31A51FB}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{B94877EB-0B63-4717-97E6-58A6D5852CD6}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{F7DFE67B-9032-4CD8-89C7-75CF2558525C}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{E05558A9-9270-4C5F-9721-7FA90C8A16CE}C:\users\opengate\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\opengate\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{57275392-EF10-4E15-A8A8-2FF194220C9D}C:\users\opengate\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\opengate\appdata\local\google\chrome\application\chrome.exe
FirewallRules: [{3DC2E43C-EC7B-44F5-8F09-AD2D38AEA4A7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A50217FA-6A06-4983-B92F-66D5265AC027}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{30E43C28-536D-4EA4-B449-68EEBC172289}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{BD98D67A-C853-4A94-A062-DF000D282439}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{90B267C6-615A-472B-92C4-58051316C239}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{1482AF60-C12B-44DF-8E25-1E7B8555D0C9}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{E9031066-B7DF-44BA-829F-15EAD2CDB086}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{C1059FA9-F675-4A05-AEED-CD1A7B2F5080}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{FA2B17D9-15ED-49EA-81FC-4060BBE94BC8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{60750D73-9369-4081-BD17-82F20E5DCC3B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{054C4FDC-35B6-4665-929A-B8CBBD2B88F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C260AFBA-80B0-40F1-9967-FCEA757F5D1C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{6C01842C-6C0C-4882-923C-CA47503E000E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E55220D4-4D67-4FE4-A523-916DD48A6B7A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C81AAEF9-7F00-4A6E-9661-2BC3B0ECC13F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C697D6B3-9899-40EB-84FA-4FF16905EA22}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2AD4D0A6-C9CA-4219-8D2E-6C81E3567902}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3CD7393C-16D8-4BC1-B104-E58898FA1ED8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{0A1083B2-4F1C-4A5C-9BB6-919CF8C69671}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{628B7684-5182-4F75-8453-A69EB41ADCBE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1CCD943B-6EA9-45C3-8D47-59F6A781C5B9}] => (Allow) C:\Users\OpenGate\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C4FE4BA3-D9EB-439B-9FEB-17B7CA018FC8}] => (Allow) C:\Users\OpenGate\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{3E7D6A3F-3E07-42D9-903F-606FEE64D385}D:\easysetupassistant\easysetupassistant.exe] => (Allow) D:\easysetupassistant\easysetupassistant.exe
FirewallRules: [UDP Query User{4AF502DA-7136-4D8B-AF78-C5FAB2CF3A15}D:\easysetupassistant\easysetupassistant.exe] => (Allow) D:\easysetupassistant\easysetupassistant.exe
FirewallRules: [{F069288F-8DA8-4789-9542-D1A41D112D95}] => (Block) D:\easysetupassistant\easysetupassistant.exe
FirewallRules: [{188BE8D8-192B-4819-9043-CEAE9783DA73}] => (Block) D:\easysetupassistant\easysetupassistant.exe
FirewallRules: [{364CDC2B-A410-41DC-84C8-D2E04ABD62D8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9C188B37-3AC7-4147-BA42-4E99346D308D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{35E33971-DD35-4E01-A1DE-9DBF60BCEED0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1CD45C07-1F5A-4EBA-9394-C3277E924687}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BEAFAAB4-34C5-47C0-96D2-6D5CC5CCD555}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{1876AE86-8758-4AA6-919E-948C212E0D28}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{0C489EFB-5E40-4C37-AB18-C36027E0446D}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{44B0B265-0DF4-4E49-88C3-27C67FD930EF}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{EE2B6410-D6C9-4A27-89F0-671AAC46FDCC}] => (Allow) C:\Windows\SysWOW64\ARFC\wrtc.exe
FirewallRules: [{3DB04B14-BDD4-42AF-ADA7-C097E64BCF0C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{1868A4FE-8206-49E4-B887-001ECFD7589D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{506B0627-9FDD-4D16-8069-C3992CFA40F3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F255D3E4-5C7C-4821-82AE-78E044AF4617}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{11874058-0D41-4EA9-95EA-4C89931557EA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D841574E-EA95-4EFA-AAB4-2B2B0E7A790D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{8C9202C3-3738-4A1F-B708-10D78B4FA039}] => (Allow) LPort=2869
FirewallRules: [{F700C82E-E162-4E6E-9A00-D737CD877319}] => (Allow) LPort=1900
FirewallRules: [{645B45CD-C69A-47AD-BF11-54DBD33D1EC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{46C2221D-CE93-4E01-BF75-C4E624CB800D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [TCP Query User{AFE942BD-E8D7-466A-9D48-9D26C80F0AF4}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{4224CC34-DF0F-4CE4-8A06-6D650B148041}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [TCP Query User{1F9A965A-4310-4B89-8E34-5725F2166EF9}C:\program files (x86)\bethesda softworks\dishonored\binaries\win32\dishonored.exe] => (Allow) C:\program files (x86)\bethesda softworks\dishonored\binaries\win32\dishonored.exe
FirewallRules: [UDP Query User{845632AF-41D5-4261-800B-DE7D65212C04}C:\program files (x86)\bethesda softworks\dishonored\binaries\win32\dishonored.exe] => (Allow) C:\program files (x86)\bethesda softworks\dishonored\binaries\win32\dishonored.exe
FirewallRules: [TCP Query User{E605DD83-4369-4C78-9744-028E06363034}C:\users\opengate\desktop\dayz standalone v0.47\dayz.exe] => (Allow) C:\users\opengate\desktop\dayz standalone v0.47\dayz.exe
FirewallRules: [UDP Query User{F5CECB0F-C398-4700-B451-5EE4D9E19FAB}C:\users\opengate\desktop\dayz standalone v0.47\dayz.exe] => (Allow) C:\users\opengate\desktop\dayz standalone v0.47\dayz.exe
FirewallRules: [TCP Query User{D87BA671-6374-495D-BE4E-EF00B4EE4401}C:\dayz\dayz standalone\client.bin] => (Allow) C:\dayz\dayz standalone\client.bin
FirewallRules: [UDP Query User{E06E5B97-F061-4E4F-B6F0-203A9C95464D}C:\dayz\dayz standalone\client.bin] => (Allow) C:\dayz\dayz standalone\client.bin
FirewallRules: [TCP Query User{CD9567A9-998D-417E-86E2-D89F99286053}C:\users\opengate\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\opengate\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A26930DB-C6DD-48BD-B956-53DF5B2E56CE}C:\users\opengate\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\opengate\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C4EE2278-39EE-433F-AC46-F1B1CC80B3D2}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
FirewallRules: [{8D2DCE59-22B3-4649-BEB8-3B56274936A9}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
FirewallRules: [{0924947F-8A7A-4087-A2B3-4735D974545D}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
FirewallRules: [{201DAFB8-FE58-4485-9071-781FFB2D14E4}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
FirewallRules: [{5C10912E-09E3-4881-AA6F-16B9CD7D66D1}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
FirewallRules: [{401CCD57-DA1D-4FE0-8820-D3CF3F2AFB5A}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
FirewallRules: [TCP Query User{A5D828CF-0844-4B43-9EEE-D0C5DA5AB666}C:\users\opengate\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\opengate\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{980AC713-88A7-4BAC-BEC0-BC973A922964}C:\users\opengate\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\opengate\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{0909AE92-87AA-4E6B-AAB2-4A0FC2E49ABB}C:\program files (x86)\call of duty black ops 2\t6sp.exe] => (Block) C:\program files (x86)\call of duty black ops 2\t6sp.exe
FirewallRules: [UDP Query User{3C3F0909-C878-4287-AB31-049B81057679}C:\program files (x86)\call of duty black ops 2\t6sp.exe] => (Block) C:\program files (x86)\call of duty black ops 2\t6sp.exe
FirewallRules: [TCP Query User{74D4312B-96EA-436C-86FC-2D0254FEEA65}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{0B5F575E-5A4B-4FC3-B727-6B219393E6B4}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{D41E00DD-30D7-406C-BAA9-09AD80B08B6B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{094BC836-222B-4233-B2D6-75838BA44868}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{DB22303B-3986-4DE3-AF10-E02954F6AC11}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{026157B7-C3AB-410D-8B00-18D15A95399F}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{C95C4C89-8A9A-454F-9196-1EB6D4386E5B}] => (Allow) C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe
FirewallRules: [{A82ACBAA-A4F6-43E7-9C8B-F819BED1B736}] => (Allow) C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe
FirewallRules: [TCP Query User{9BC8AEE3-2478-4423-BBF4-726457FA1F96}C:\program files (x86)\ghost recon phantoms\ncsa-live\ghostreconphantoms.exe] => (Allow) C:\program files (x86)\ghost recon phantoms\ncsa-live\ghostreconphantoms.exe
FirewallRules: [UDP Query User{7AFCEA43-DE25-4F6A-9901-4E39CD2D5470}C:\program files (x86)\ghost recon phantoms\ncsa-live\ghostreconphantoms.exe] => (Allow) C:\program files (x86)\ghost recon phantoms\ncsa-live\ghostreconphantoms.exe
FirewallRules: [TCP Query User{3CD83BB6-E1F0-41EC-B3B0-8330E3F32B72}C:\users\opengate\appdata\local\apps\2.0\zd5355p5.vo1\z3jjzeoj.dqh\laun...app_59711684aa47878d_0001.0024_f900d26e70bc6690\launcher.exe] => (Allow) C:\users\opengate\appdata\local\apps\2.0\zd5355p5.vo1\z3jjzeoj.dqh\laun...app_59711684aa47878d_0001.0024_f900d26e70bc6690\launcher.exe
FirewallRules: [UDP Query User{25DFF886-809D-4F5C-A47A-17D924591935}C:\users\opengate\appdata\local\apps\2.0\zd5355p5.vo1\z3jjzeoj.dqh\laun...app_59711684aa47878d_0001.0024_f900d26e70bc6690\launcher.exe] => (Allow) C:\users\opengate\appdata\local\apps\2.0\zd5355p5.vo1\z3jjzeoj.dqh\laun...app_59711684aa47878d_0001.0024_f900d26e70bc6690\launcher.exe
FirewallRules: [TCP Query User{C178ACD4-3796-4EDB-9FE7-109A63B3B9CB}C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe] => (Allow) C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe
FirewallRules: [UDP Query User{1599DC8F-200F-44A6-A473-F7D1B2A58371}C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe] => (Allow) C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe
FirewallRules: [TCP Query User{F67B7436-4C60-48E0-BF4B-5E9323E179DC}C:\program files (x86)\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\total war rome ii\rome2.exe
FirewallRules: [UDP Query User{5C3E9140-1C9C-498A-A48B-A7D34EC584E9}C:\program files (x86)\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\total war rome ii\rome2.exe
FirewallRules: [TCP Query User{C4863098-9A80-4432-9BC9-1E1A296C8492}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{551B315D-18ED-403C-AD89-1C107D17C4D5}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe
FirewallRules: [{70E89E2E-2DA9-4B1D-8049-652D609A2A45}] => (Allow) C:\Program Files (x86)\Perfect World Entertainment\APB Reloaded_en\Binaries\APB.exe
FirewallRules: [{3600F61A-AE76-4152-95E4-69486AFC8A16}] => (Allow) C:\Program Files (x86)\Perfect World Entertainment\APB Reloaded_en\Binaries\APB.exe
FirewallRules: [{C1D9DD0C-033A-4C2A-831B-03DD29AAE2E1}] => (Allow) C:\Program Files (x86)\Perfect World Entertainment\APB Reloaded_en\Binaries\VivoxVoiceService.exe
FirewallRules: [{3929473E-BE00-4F6F-83E0-1467252E9CDC}] => (Allow) C:\Program Files (x86)\Perfect World Entertainment\APB Reloaded_en\Binaries\VivoxVoiceService.exe
FirewallRules: [TCP Query User{7813E0AB-D2C8-4E4A-ADF0-9862B2D9C986}C:\users\opengate\desktop\counter strike-global\counter-strike global offensive\csgo.exe] => (Allow) C:\users\opengate\desktop\counter strike-global\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{C15CA891-6916-4B5A-AE69-F26773CF5597}C:\users\opengate\desktop\counter strike-global\counter-strike global offensive\csgo.exe] => (Allow) C:\users\opengate\desktop\counter strike-global\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{C996ADF3-26B8-4218-A28F-F0AFB7CD2FCB}C:\users\opengate\desktop\the-lost-island\metin2.bin] => (Allow) C:\users\opengate\desktop\the-lost-island\metin2.bin
FirewallRules: [UDP Query User{E684738E-9462-4F6E-A2FC-B8B0B7ABBD64}C:\users\opengate\desktop\the-lost-island\metin2.bin] => (Allow) C:\users\opengate\desktop\the-lost-island\metin2.bin
FirewallRules: [TCP Query User{D1552C16-794C-49E5-AB97-AFD2C5331CBA}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{37DA183A-E227-44F7-9F0C-69AEC40CBF81}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{77D3FE61-FB31-4389-8DD1-02FA0E9FBFCC}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{A55CA234-8B10-471C-8AAB-D19757064C7B}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [TCP Query User{6B076B29-52DD-4F7C-9A47-36882EBB1DA2}C:\games\counter-strike global offensive\csgo.exe] => (Allow) C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{4FEC54B6-F371-4D85-BBE3-47C13C7BEDA7}C:\games\counter-strike global offensive\csgo.exe] => (Allow) C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{945B9B9B-5B2E-4713-8EA2-B9529AECD920}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe
FirewallRules: [UDP Query User{90B96FD0-5785-4620-81F2-CE7526461D50}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe
FirewallRules: [TCP Query User{2899806D-12A8-465A-B6AF-78A0C56F653B}C:\users\opengate\desktop\dayz client v0.45 release\dayz client v0.45 release\dayz_v45_server.exe] => (Allow) C:\users\opengate\desktop\dayz client v0.45 release\dayz client v0.45 release\dayz_v45_server.exe
FirewallRules: [UDP Query User{A82FF2CB-9898-4B81-A35B-687FA8A9C078}C:\users\opengate\desktop\dayz client v0.45 release\dayz client v0.45 release\dayz_v45_server.exe] => (Allow) C:\users\opengate\desktop\dayz client v0.45 release\dayz client v0.45 release\dayz_v45_server.exe
FirewallRules: [TCP Query User{690D24C3-1BA5-439D-BF54-4987BC303BC4}C:\users\opengate\desktop\dayz client v0.45 release\dayz client v0.45 release\dayz_v45.exe] => (Allow) C:\users\opengate\desktop\dayz client v0.45 release\dayz client v0.45 release\dayz_v45.exe
FirewallRules: [UDP Query User{2875C9A3-FBF2-4A6A-8FE9-EC594A9B24B6}C:\users\opengate\desktop\dayz client v0.45 release\dayz client v0.45 release\dayz_v45.exe] => (Allow) C:\users\opengate\desktop\dayz client v0.45 release\dayz client v0.45 release\dayz_v45.exe
FirewallRules: [{734FBA2F-BE89-4B18-AAB4-14A31FB6821C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{990A13E1-CD4B-4A88-815F-0AC37795A58B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{5ACB3FC9-5FBF-497F-A17E-7A5F5F63CA3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{A0E4EF3E-94AA-4C0D-8746-4CA08FA33A21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{0DEDEFF6-75E4-4660-A6B9-5FD1697A0319}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{5D504165-8806-452E-A7E3-8EA2B349F4BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{8755F26D-B56C-4879-93F6-2A0E603A9221}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{856B8C92-A420-4A93-9C80-7E588CDFE0BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ECB5ABFA-F45D-4E5D-AE43-7B75B2B8624B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{9B2F7221-4E31-43FB-892C-D8D97336C523}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{7C75C433-ED1B-4635-9D68-A6FF95B3E77A}C:\nový dayz\dayz standalone\client.dll] => (Allow) C:\nový dayz\dayz standalone\client.dll
FirewallRules: [UDP Query User{F9FC2911-B630-4F58-BCFF-7CA64C167E17}C:\nový dayz\dayz standalone\client.dll] => (Allow) C:\nový dayz\dayz standalone\client.dll
FirewallRules: [TCP Query User{B3603B8B-CFD1-4459-828C-F6733206C33A}C:\nový dayz\dayz standalone\kjjs.exe] => (Allow) C:\nový dayz\dayz standalone\kjjs.exe
FirewallRules: [UDP Query User{5151B6A8-DF9D-410F-B6C4-A4E9735BBD72}C:\nový dayz\dayz standalone\kjjs.exe] => (Allow) C:\nový dayz\dayz standalone\kjjs.exe
FirewallRules: [{A6F553E8-067A-419C-936F-F8AF90C54418}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{0AEDAEE6-30EC-44E7-A24C-04693B2BFB37}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [TCP Query User{EDD04C99-1BFE-4F74-87E8-4B362C91FBF9}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [UDP Query User{13E17669-A194-4EAA-9D3F-926F67018F1B}C:\program files (x86)\warthunder\aces.exe] => (Allow) C:\program files (x86)\warthunder\aces.exe
FirewallRules: [{88818EAA-6F7D-4642-BA5A-DC3A8F2CA004}] => (Allow) C:\Program Files (x86)\LucasArts\Star Wars The Force Unleashed 2\SWTFU2.exe
FirewallRules: [{F6EACDA0-9F3F-47CC-8517-79F5707DE594}] => (Allow) C:\Program Files (x86)\LucasArts\Star Wars The Force Unleashed 2\SWTFU2.exe
FirewallRules: [{53071EB2-A003-41FD-BEAE-01B93660202E}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboardingGame.exe
FirewallRules: [{E2DE61F8-07A0-4D11-9F17-FAF6A358730A}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboardingGame.exe
FirewallRules: [{5761E052-C389-40AB-8949-C1934AB75EA9}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboarding.exe
FirewallRules: [{7D83F1B4-C745-449A-A172-C72DACAC1892}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboarding.exe
FirewallRules: [{02550B80-DC5B-424B-86B2-E2DBECED1D2E}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe
FirewallRules: [{DE574FB1-F64D-4CDA-AED1-FB18B2C867B2}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe
FirewallRules: [{786F77D9-AC15-41FB-9980-8A842FA30610}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{DFC79ED6-5E9A-4967-AD3C-323D4EBB4EA5}] => (Allow) C:\Users\OpenGate\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{CB025936-0083-4A56-BD8F-93A3D02D1141}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rise_of_Incarnates\exe\roi.exe
FirewallRules: [{33DF0DF0-63AE-448A-93FD-11946B94D02D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rise_of_Incarnates\exe\roi.exe
FirewallRules: [{EE809444-CE45-48C0-9B68-28A2AA0B43F6}] => (Allow) C:\ProgramData\Turbine\The Lord of the Rings Online\lotroclient.exe
FirewallRules: [{F44481DD-3AD0-482B-A684-5985B5CB8CBA}] => (Allow) C:\ProgramData\Turbine\The Lord of the Rings Online\lotroclient.exe
FirewallRules: [{35E0E384-E808-4E1D-882C-36126276DCFC}] => (Allow) C:\ProgramData\Turbine\The Lord of the Rings Online\TurbineLauncher.exe
FirewallRules: [{D0BA4D99-8AF8-4142-A119-2B5EB2404A90}] => (Allow) C:\ProgramData\Turbine\The Lord of the Rings Online\TurbineLauncher.exe
FirewallRules: [{D3641EAD-BBA2-4829-A9AA-A87DE762CE10}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\HIS (Heroes In the Sky)\HIS.exe
FirewallRules: [{7F284C0B-27D7-4F2C-8A2E-E28233FE6115}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\HIS (Heroes In the Sky)\HIS.exe
FirewallRules: [{0A27EBB9-6CF2-47F0-AD62-FBE14617B174}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp_server.exe
FirewallRules: [{5A497EE8-B4F1-4178-A1C2-5908C545AB39}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp_server.exe
FirewallRules: [{74F17692-D91E-4654-9F3A-02CF1E6BABEC}] => (Allow) C:\Program Files (x86)\Dragon Age 2\bin_ship\DragonAge2.exe
FirewallRules: [{A0030B47-C87C-4224-A300-9F0EE47B9358}] => (Allow) C:\Program Files (x86)\Dragon Age 2\bin_ship\DragonAge2.exe
FirewallRules: [{65B835CE-83C3-4A42-A51E-9F9104DE9579}] => (Allow) C:\Program Files (x86)\Dragon Age 2\DragonAge2Launcher.exe
FirewallRules: [{AFAA9ECE-FC67-4A64-87EC-C24A45942546}] => (Allow) C:\Program Files (x86)\Dragon Age 2\DragonAge2Launcher.exe
FirewallRules: [{E6850257-CFAE-4BA1-8A28-272D49554BF0}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{1036A028-E44B-4714-B939-AE318363F634}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F163583C-1695-42B8-9536-53F322CE9E75}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F3A7A2CA-7489-431F-B4AA-9E32269ED658}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\blacklightretribution\Blacklight Retribution.exe
FirewallRules: [{D9899E2C-F793-4445-8547-7DB97D53ED24}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\blacklightretribution\Blacklight Retribution.exe
FirewallRules: [{1D5A09BB-54EA-4F3E-B0D6-033E7B844A8D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warface\live\nw.exe
FirewallRules: [{F33E8474-F48F-46B5-BB05-C3AA3D82E652}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warface\live\nw.exe
FirewallRules: [{1B702A6D-F315-4A36-AF02-3769AD36F64A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{CD3F184B-E100-4AA8-A0B9-D55DAF7FF2C6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{B8320B25-F71E-4C0F-A0CC-1AA66272C1FB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\America's Army\AAPG\Binaries\AALauncher32.exe
FirewallRules: [{7EF1FC32-2DB8-4936-88DA-3D53AD5DBA56}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\America's Army\AAPG\Binaries\AALauncher32.exe
FirewallRules: [{3E83D194-914E-438E-B27E-B128F528C202}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8E242949-28F4-4C95-868E-4E926F271264}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{85AC71BB-6F87-4F5C-A243-621F1E50FFC5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{0748D3F7-8608-4E11-90D5-ACE661231D04}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{12C96E6E-8641-446F-9713-A7B266B2CAFD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/27/2015 06:56:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2015 06:55:58 PM) (Source: MSSQL$SPZSQL2013) (EventID: 19011) (User: )
Description: FillAddress(TCPIP MSAFD [TCP/IPv6]) : Error 0

Error: (05/27/2015 06:22:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: setupRogueKillerX64.exe, verze: 10.5.7.0, časové razítko: 0x550f29a4
Název chybujícího modulu: setupRogueKillerX64.exe, verze: 10.5.7.0, časové razítko: 0x550f29a4
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000002375fe
ID chybujícího procesu: 0xdb8
Čas spuštění chybující aplikace: 0xsetupRogueKillerX64.exe0
Cesta k chybující aplikaci: setupRogueKillerX64.exe1
Cesta k chybujícímu modulu: setupRogueKillerX64.exe2
ID zprávy: setupRogueKillerX64.exe3

Error: (05/27/2015 02:36:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2015 02:35:23 PM) (Source: MSSQL$SPZSQL2013) (EventID: 19011) (User: )
Description: FillAddress(TCPIP MSAFD [TCP/IPv6]) : Error 0

Error: (05/27/2015 07:05:46 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2015 07:04:18 AM) (Source: MSSQL$SPZSQL2013) (EventID: 19011) (User: )
Description: FillAddress(TCPIP MSAFD [TCP/IPv6]) : Error 0

Error: (05/26/2015 09:59:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2015 09:58:12 PM) (Source: MSSQL$SPZSQL2013) (EventID: 19011) (User: )
Description: FillAddress(TCPIP MSAFD [TCP/IPv6]) : Error 0

Error: (05/26/2015 02:46:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (05/27/2015 06:44:58 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (05/27/2015 06:44:57 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (05/27/2015 06:44:57 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (05/27/2015 06:44:56 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (05/27/2015 06:44:56 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (05/26/2015 09:58:34 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.100.
Počítač s IP adresou 192.168.0.101 nepovolil získání názvu
tímto počítačem.

Error: (05/26/2015 02:45:29 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.100.
Počítač s IP adresou 192.168.0.101 nepovolil získání názvu
tímto počítačem.

Error: (05/26/2015 02:19:12 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 80.

Error: (05/25/2015 04:17:08 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.100.
Počítač s IP adresou 192.168.0.101 nepovolil získání názvu
tímto počítačem.

Error: (05/25/2015 01:49:04 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.100.
Počítač s IP adresou 192.168.0.101 nepovolil získání názvu
tímto počítačem.


Microsoft Office:
=========================
Error: (05/27/2015 06:56:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2015 06:55:58 PM) (Source: MSSQL$SPZSQL2013) (EventID: 19011) (User: )
Description: FillAddress(TCPIP MSAFD [TCP/IPv6]) : Error 0

Error: (05/27/2015 06:22:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: setupRogueKillerX64.exe10.5.7.0550f29a4setupRogueKillerX64.exe10.5.7.0550f29a4c000000500000000002375fedb801d098994b793c28C:\Users\OpenGate\AppData\Local\Temp\nsj2B1B.tmp\setupRogueKillerX64.exeC:\Users\OpenGate\AppData\Local\Temp\nsj2B1B.tmp\setupRogueKillerX64.exea2d43ea2-048c-11e5-b709-8c89a5cb8e55

Error: (05/27/2015 02:36:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2015 02:35:23 PM) (Source: MSSQL$SPZSQL2013) (EventID: 19011) (User: )
Description: FillAddress(TCPIP MSAFD [TCP/IPv6]) : Error 0

Error: (05/27/2015 07:05:46 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2015 07:04:18 AM) (Source: MSSQL$SPZSQL2013) (EventID: 19011) (User: )
Description: FillAddress(TCPIP MSAFD [TCP/IPv6]) : Error 0

Error: (05/26/2015 09:59:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2015 09:58:12 PM) (Source: MSSQL$SPZSQL2013) (EventID: 19011) (User: )
Description: FillAddress(TCPIP MSAFD [TCP/IPv6]) : Error 0

Error: (05/26/2015 02:46:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz
Percentage of memory in use: 41%
Total physical RAM: 8124.8 MB
Available physical RAM: 4779.59 MB
Total Pagefile: 16247.8 MB
Available Pagefile: 12650.79 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:411.42 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 931.5 GB) (Disk ID: 5814E5E1)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of log ============================

[jerabina]

Odinstaluj Microsoft Security Essentials, máš tam už ESET, takže by se mohli prát.

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:

() C:\Program Files (x86)\Adobe Arkalis\Adobe_Arkalis.exe

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WindowsDriverScan86] => C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [1501 2014-08-10] ()
HKLM-x32\...\Run: [WindowsDriverScan64] => C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [1419 2014-08-10] ()
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Run: [Google Update] => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-18] (Google Inc.)
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {1b9498aa-1065-11e2-b6a6-8c89a5cb8e55} - J:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {329b8da9-2443-11e2-8fcd-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {329b8e76-2443-11e2-8fcd-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {60a7161f-2825-11e2-95e8-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {7431827b-46f1-11e2-9070-8c89a5cb8e55} - J:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {8722c837-2473-11e4-bdae-8c89a5cb8e55} - "E:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {ffa972b7-405c-11e2-8b1e-8c89a5cb8e55} - E:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {ffa972ce-405c-11e2-8b1e-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
AppInit_DLLs-x32:  => "" File not found
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {A0D5007C-5BDB-4933-AD5F-54C1A661801C} http://10.0.0.3:5550/PCViewX.cab
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100

FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\3.4.22.118\npplugin4game.dll [2015-04-16] (Innova Co S.a r.l.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2534689519-1064839547-1167534587-1000: @tools.google.com/Google Update;version=3 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2534689519-1064839547-1167534587-1000: @tools.google.com/Google Update;version=9 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Extension: No Name - C:\Users\OpenGate\AppData\Roaming\Mozilla\Firefox\Profiles\jxx7fbbl.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [not found]

C:\Program Files (x86)\Adobe Arkalis\
C:\Users\OpenGate\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\OpenGate\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

Task: {2AA38B6E-605D-403B-B908-E2C3F9B2DFE5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-11] (Google Inc.)
Task: {39F1CC9E-36E2-43FA-B162-5C20855F5424} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [2014-03-18] (Google Inc.)
Task: {77A59046-3323-47D8-A79F-9327C1FEC771} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-11] (Google Inc.)
Task: {A62730BF-C09E-439F-9D94-6DF2984B2C9A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core => C:\Users\Sběrna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {AF0FB090-481A-43AE-BBD8-4F539A8E1744} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {BBD9B444-8FBC-4CBB-A837-213B7C10F96F} - System32\Tasks\{B66ADB78-502D-4ED4-A580-6C089F23C450} => pcalua.exe -a D:\Setup.exe -d D:\
Task: {DA8AF62C-4EB4-4987-A75F-99DD7A82454F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [2014-03-18] (Google Inc.)
Task: {DEFBC032-B825-4B7B-B223-42B2CEA2A345} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E457F69E-DF2D-4969-B7B1-E69459A73793} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA => C:\Users\Sběrna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {E972F8E4-646A-4A45-9081-CDD7FB3ADD5B} - System32\Tasks\{1B1AEC29-BA71-4541-8642-76AB10146AB5} => pcalua.exe -a E:\DOW2.exe -d E:\
Task: {ED7D9DCA-E48B-4D5B-9C5B-FF6F458A4E79} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core.job => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA.job => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core.job => C:\Users\Sb
rna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA.job => C:\Users\Sb
rna\AppData\Local\Google\Update\GoogleUpdate.exe

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\sony.com -> sony.com

CMD: bitsadmin /reset /allusers

Hosts:
EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Co problémy? Běhá počítač rychleji?

[skayllerCZ]

Fixlog:

Fix result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015
Ran by OpenGate at 2015-05-27 20:34:33 Run:1
Running from C:\Users\OpenGate\Desktop
Loaded Profiles: OpenGate (Available Profiles: OpenGate & Guest)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:

() C:\Program Files (x86)\Adobe Arkalis\Adobe_Arkalis.exe

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WindowsDriverScan86] => C:\Program Files (x86)\Adobe Arkalis\Arkalis86.lnk [1501 2014-08-10] ()
HKLM-x32\...\Run: [WindowsDriverScan64] => C:\Program Files (x86)\Adobe Arkalis\Arkalis.lnk [1419 2014-08-10] ()
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Run: [Google Update] => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-03-18] (Google Inc.)
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {1b9498aa-1065-11e2-b6a6-8c89a5cb8e55} - J:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {329b8da9-2443-11e2-8fcd-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {329b8e76-2443-11e2-8fcd-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {60a7161f-2825-11e2-95e8-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {7431827b-46f1-11e2-9070-8c89a5cb8e55} - J:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {8722c837-2473-11e4-bdae-8c89a5cb8e55} - "E:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {ffa972b7-405c-11e2-8b1e-8c89a5cb8e55} - E:\SISetup.exe
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\MountPoints2: {ffa972ce-405c-11e2-8b1e-8c89a5cb8e55} - E:\setup_vmb_lite.exe /checkApplicationPresence
AppInit_DLLs-x32:  => "" File not found
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {A0D5007C-5BDB-4933-AD5F-54C1A661801C} http://10.0.0.3:5550/PCViewX.cab
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100

FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\3.4.22.118\npplugin4game.dll [2015-04-16] (Innova Co S.a r.l.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2534689519-1064839547-1167534587-1000: @tools.google.com/Google Update;version=3 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-2534689519-1064839547-1167534587-1000: @tools.google.com/Google Update;version=9 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Extension: No Name - C:\Users\OpenGate\AppData\Roaming\Mozilla\Firefox\Profiles\jxx7fbbl.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [not found]

C:\Program Files (x86)\Adobe Arkalis\
C:\Users\OpenGate\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\OpenGate\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\OpenGate\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

Task: {2AA38B6E-605D-403B-B908-E2C3F9B2DFE5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-11] (Google Inc.)
Task: {39F1CC9E-36E2-43FA-B162-5C20855F5424} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [2014-03-18] (Google Inc.)
Task: {77A59046-3323-47D8-A79F-9327C1FEC771} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-11] (Google Inc.)
Task: {A62730BF-C09E-439F-9D94-6DF2984B2C9A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core => C:\Users\Sběrna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {AF0FB090-481A-43AE-BBD8-4F539A8E1744} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {BBD9B444-8FBC-4CBB-A837-213B7C10F96F} - System32\Tasks\{B66ADB78-502D-4ED4-A580-6C089F23C450} => pcalua.exe -a D:\Setup.exe -d D:\
Task: {DA8AF62C-4EB4-4987-A75F-99DD7A82454F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe [2014-03-18] (Google Inc.)
Task: {DEFBC032-B825-4B7B-B223-42B2CEA2A345} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E457F69E-DF2D-4969-B7B1-E69459A73793} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA => C:\Users\Sběrna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {E972F8E4-646A-4A45-9081-CDD7FB3ADD5B} - System32\Tasks\{1B1AEC29-BA71-4541-8642-76AB10146AB5} => pcalua.exe -a E:\DOW2.exe -d E:\
Task: {ED7D9DCA-E48B-4D5B-9C5B-FF6F458A4E79} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core.job => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA.job => C:\Users\OpenGate\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core.job => C:\Users\Sb
rna\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA.job => C:\Users\Sb
rna\AppData\Local\Google\Update\GoogleUpdate.exe

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\...\sony.com -> sony.com

CMD: bitsadmin /reset /allusers

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
C:\Program Files (x86)\Adobe Arkalis\Adobe_Arkalis.exe => No running process found
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value Removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\WindowsDriverScan86 => value Removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\WindowsDriverScan64 => value Removed successfully
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update => value Removed successfully
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value Removed successfully
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1b9498aa-1065-11e2-b6a6-8c89a5cb8e55}" => key Removed successfully
HKCR\CLSID\{1b9498aa-1065-11e2-b6a6-8c89a5cb8e55} => key not found.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{329b8da9-2443-11e2-8fcd-8c89a5cb8e55}" => key Removed successfully
HKCR\CLSID\{329b8da9-2443-11e2-8fcd-8c89a5cb8e55} => key not found.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{329b8e76-2443-11e2-8fcd-8c89a5cb8e55}" => key Removed successfully
HKCR\CLSID\{329b8e76-2443-11e2-8fcd-8c89a5cb8e55} => key not found.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{60a7161f-2825-11e2-95e8-8c89a5cb8e55}" => key Removed successfully
HKCR\CLSID\{60a7161f-2825-11e2-95e8-8c89a5cb8e55} => key not found.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7431827b-46f1-11e2-9070-8c89a5cb8e55}" => key Removed successfully
HKCR\CLSID\{7431827b-46f1-11e2-9070-8c89a5cb8e55} => key not found.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8722c837-2473-11e4-bdae-8c89a5cb8e55}" => key Removed successfully
HKCR\CLSID\{8722c837-2473-11e4-bdae-8c89a5cb8e55} => key not found.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ffa972b7-405c-11e2-8b1e-8c89a5cb8e55}" => key Removed successfully
HKCR\CLSID\{ffa972b7-405c-11e2-8b1e-8c89a5cb8e55} => key not found.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ffa972ce-405c-11e2-8b1e-8c89a5cb8e55}" => key Removed successfully
HKCR\CLSID\{ffa972ce-405c-11e2-8b1e-8c89a5cb8e55} => key not found.
"" => value data Removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1" => key Removed successfully
HKCR\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2" => key Removed successfully
HKCR\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3" => key Removed successfully
HKCR\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt4" => key Removed successfully
HKCR\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value Removed successfully
HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value Removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{A0D5007C-5BDB-4933-AD5F-54C1A661801C}" => key Removed successfully
"HKCR\Wow6432Node\CLSID\{A0D5007C-5BDB-4933-AD5F-54C1A661801C}" => key Removed successfully
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer => value Removed successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key Removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@4game.com/plugin" => key Removed successfully
C:\Program Files (x86)\4game\3.4.22.118\npplugin4game.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key Removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => key Removed successfully
C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => key Removed successfully
C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll not found.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => key Removed successfully
C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll => Moved successfully.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => key Removed successfully
C:\Users\OpenGate\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll not found.
C:\Users\OpenGate\AppData\Roaming\Mozilla\Firefox\Profiles\jxx7fbbl.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} not found.
C:\Program Files (x86)\Adobe Arkalis => Moved successfully.
C:\Users\OpenGate\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => Moved successfully.
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}" => key Removed successfully
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => key Removed successfully
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}" => key Removed successfully
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => key Removed successfully
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => key Removed successfully
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => key Removed successfully
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2AA38B6E-605D-403B-B908-E2C3F9B2DFE5}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2AA38B6E-605D-403B-B908-E2C3F9B2DFE5}" => key Removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{39F1CC9E-36E2-43FA-B162-5C20855F5424}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{39F1CC9E-36E2-43FA-B162-5C20855F5424}" => key Removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{77A59046-3323-47D8-A79F-9327C1FEC771}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{77A59046-3323-47D8-A79F-9327C1FEC771}" => key Removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A62730BF-C09E-439F-9D94-6DF2984B2C9A}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A62730BF-C09E-439F-9D94-6DF2984B2C9A}" => key Removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AF0FB090-481A-43AE-BBD8-4F539A8E1744}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF0FB090-481A-43AE-BBD8-4F539A8E1744}" => key Removed successfully
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BBD9B444-8FBC-4CBB-A837-213B7C10F96F}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BBD9B444-8FBC-4CBB-A837-213B7C10F96F}" => key Removed successfully
C:\Windows\System32\Tasks\{B66ADB78-502D-4ED4-A580-6C089F23C450} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B66ADB78-502D-4ED4-A580-6C089F23C450}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DA8AF62C-4EB4-4987-A75F-99DD7A82454F}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA8AF62C-4EB4-4987-A75F-99DD7A82454F}" => key Removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DEFBC032-B825-4B7B-B223-42B2CEA2A345}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DEFBC032-B825-4B7B-B223-42B2CEA2A345}" => key Removed successfully
C:\Windows\System32\Tasks\Apple\AppleSoftwareUpdate => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Apple\AppleSoftwareUpdate" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E457F69E-DF2D-4969-B7B1-E69459A73793}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E457F69E-DF2D-4969-B7B1-E69459A73793}" => key Removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E972F8E4-646A-4A45-9081-CDD7FB3ADD5B}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E972F8E4-646A-4A45-9081-CDD7FB3ADD5B}" => key Removed successfully
C:\Windows\System32\Tasks\{1B1AEC29-BA71-4541-8642-76AB10146AB5} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1B1AEC29-BA71-4541-8642-76AB10146AB5}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ED7D9DCA-E48B-4D5B-9C5B-FF6F458A4E79}" => key Removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED7D9DCA-E48B-4D5B-9C5B-FF6F458A4E79}" => key Removed successfully
C:\Windows\System32\Tasks\Adobe Flash Player Updater => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => key Removed successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1000UA.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003Core.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2534689519-1064839547-1167534587-1003UA.job => Moved successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com" => key Removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com" => key Removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com" => key Removed successfully
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com" => key Removed successfully
"HKU\S-1-5-21-2534689519-1064839547-1167534587-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\sony.com" => key Removed successfully

========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

0 out of 0 jobs canceled.

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts restored successfully.
EmptyTemp: => Removed 517.2 MB temporary data.


The system needed a reboot.

==== End of Fixlog 20:34:40 ====

problémy už nejsou děkuji mockrát :)

[jerabina]

Super, to jsem moc rád

Vlož sem prosím ještě nový log z HJT a já po sobě uklidím, pak to zde můžeme uzavřít.

[skayllerCZ]

Tady je ten log:)

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 21:01:22, on 27.5.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)

FIREFOX: 37.0.1 (x86 cs)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\OpenGate\Downloads\HijackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Global Startup: Service Manager.lnk = C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSSQL$SPZSQL2013 - Unknown owner - C:\Program Files (x86)\Microsoft SQL Server\MSSQL$SPZSQL2013\Binn\sqlservr.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SQLAgent$SPZSQL2013 - Unknown owner - C:\Program Files (x86)\Microsoft SQL Server\MSSQL$SPZSQL2013\Binn\sqlagent.EXE (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10874 bytes

[jerabina]

Tak ještě dočistíme

Zavři ostatní programy/prohlížeče, odpoj se od internetu a v HJT fixni:
NÁVOD

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"

[skayllerCZ]

Kde mám vložit toto? :

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com