﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015
Ran by Admin at 2015-07-15 06:02:25
Running from C:\Users\Admin\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Admin (S-1-5-21-2560372422-2021965399-549226919-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2560372422-2021965399-549226919-500 - Administrator - Disabled)
Baruška (S-1-5-21-2560372422-2021965399-549226919-1007 - Limited - Enabled)
Guest (S-1-5-21-2560372422-2021965399-549226919-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Comodo Defense+ (Enabled - Up to date) {493CE176-EB84-BC8D-9707-B3ACF7598648}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: COMODO Firewall (Enabled) {CA6681B7-87D1-B25B-86E8-21EB720D8B8E}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\uTorrent) (Version: 3.4.2.33023 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.203 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{ACF4E7FE-650D-9BD7-BAE5-1AD061F40F69}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Application Compatibility Toolkit (Version: 8.100.26641 - Microsoft) Hidden
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
Assessments on Client (x32 Version: 8.100.26866 - Microsoft) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2223 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Classic Shell (HKLM\...\{7C129CF8-199F-4269-AAEE-60B5D8D716E2}) (Version: 4.2.1 - IvoSoft)
COMODO Firewall (HKLM\...\{4C5D0B6A-944A-47A6-A2F3-BCB58E05CA5D}) (Version: 8.2.0.4591 - COMODO Security Solutions Inc.)
CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Crysis 3 v1.0.0.1 (HKLM-x32\...\Crysis 3_is1) (Version:  - )
Driver Booster 2.4 (HKLM-x32\...\Driver Booster_is1) (Version: 2.4 - IObit)
Dying Light ver. 1.4.0.0 (HKLM-x32\...\{90098008-07WS-70NM-44T5-66JH8S9876UY}_is1) (Version: 1.4.0.0 - Warner Bros. Interactive Entertainment)
Fallout 3 (HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.7.0.3 - Bethesda Softworks)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
GDR 5343 for SQL Server 2012 (KB3045321) (HKLM-x32\...\KB3045321) (Version: 11.2.5343.0 - Microsoft Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.3.0.122 - IObit)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
KeePass Password Safe 2.29 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.29 - Dominik Reichl)
Kholat (HKLM-x32\...\Kholat_is1) (Version:  - )
Killing Floor (HKLM-x32\...\Steam App 1250) (Version:  - Tripwire Interactive)
Killing Floor 2 - SDK (HKLM-x32\...\Steam App 232150) (Version:  - )
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version:  - Tripwire Interactive)
Kits Configuration Installer (x32 Version: 8.100.25984 - Microsoft) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
LG United Mobile Drivers (HKLM-x32\...\{2D5218EB-6992-46E3-8ECE-76C79AB955CE}) (Version: 3.13.2.0 - LG Electronics)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.377 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.377 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware verze 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (HKLM-x32\...\Microsoft SQL Server SQLServer2012) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{3965C9F9-9B9A-4391-AC4B-8388210D3AA0}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM-x32\...\{11778632-197C-4D05-8AF3-4C4626019712}) (Version: 11.2.5343.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60830 (HKLM\...\{122B909F-9DCF-360E-91E7-0679E033FBE1}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60830 (HKLM\...\{083808D6-6235-37A8-82C1-98D226EB681F}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{3E0DD83F-BE4C-4478-86A0-AD0D79D1353E}) (Version: 11.2.5058.0 - Microsoft Corporation)
Mozilla Firefox 39.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 cs)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.1 - Mozilla)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
PWGen 2.5.4 (HKLM-x32\...\{8A5E6B59-2804-4677-8A5F-DEBC218CE4E0}_is1) (Version:  - Christian Thoeing)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Serious Sam 2 (HKLM-x32\...\SeriousSam2) (Version:  - )
Serious Sam 3: BFE (HKLM-x32\...\Steam App 41070) (Version:  - Croteam)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
Service Pack 2 for SQL Server 2012 (KB2958429) (HKLM-x32\...\KB2958429) (Version: 11.2.5058.0 - Microsoft Corporation)
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
Smart Defrag 4 (HKLM-x32\...\Smart Defrag 4_is1) (Version: 4.1 - IObit)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
SQL Server 2012 Common Files (x32 Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (x32 Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (x32 Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2012 (HKLM-x32\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.2.5058.0 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (x32 Version: 11.2.5058.0 - Microsoft Corporation) Hidden
Stalker Call Of Pripyat 1.6.02 (HKLM-x32\...\Stalker Call Of Pripyat 1.6.02) (Version: 1.6.02 - Monster_CZ)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
Telegram Desktop version 0.8.38 (HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.8.38 - Telegram Messenger LLP)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version:  - )
Tom Clancy's Splinter Cell Blacklist + DLC Update v1.03 - Repack by Danik1B9 (HKLM-x32\...\Tom Clancy's Splinter Cell Blacklist + DLC Updat~7FF9ECED_is1) (Version: 1.0. - Danik1B9)
Toolkit Documentation (x32 Version: 8.100.26866 - Microsoft) Hidden
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0405-1000-0000000FF1CE}_Office15.PROPLUSR_{2B44F588-2B80-4DD3-B577-B10B3C6865EA}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3054946) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{5280698D-EE40-4A94-9E69-ED2E2B1E12A2}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3054946) 64-Bit Edition (HKLM\...\{90150000-012B-0405-1000-0000000FF1CE}_Office15.PROPLUSR_{5280698D-EE40-4A94-9E69-ED2E2B1E12A2}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3054946) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{5280698D-EE40-4A94-9E69-ED2E2B1E12A2}) (Version:  - Microsoft)
User State Migration Tool (x32 Version: 8.100.25984 - Microsoft) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Volume Activation Management Tool (x32 Version: 8.100.26629 - Microsoft) Hidden
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - )
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WPT Redistributables (x32 Version: 8.100.26866 - Microsoft) Hidden
WPTx64 (x32 Version: 8.100.26837 - Microsoft) Hidden
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.9 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

15-07-2015 00:23:53 Windows Update
15-07-2015 01:41:00 Removed LogMeIn Hamachi
15-07-2015 01:46:17 Installed LogMeIn Hamachi
15-07-2015 02:41:45 Removing COMODO Endpoint Security
15-07-2015 02:51:26 Installing COMODO Firewall

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-06-18 21:45 - 2015-07-14 02:04 - 00000125 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0323A09B-9DC3-4EAF-970B-94A824687098} - System32\Tasks\Driver Booster SkipUAC (Admin) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-07-06] (IObit)
Task: {03671ABE-B5F5-434A-B3E7-124C830DDF3D} - System32\Tasks\SmartDefrag4_Update => C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe [2015-06-09] (IObit)
Task: {0A41A8A3-A1DA-469A-9254-F2CC7D580989} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-30] (Adobe Systems Incorporated)
Task: {2A6E2398-E6A4-45FB-9827-8873B35EB423} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2015-03-28] (Microsoft Corporation)
Task: {34ACE420-9C62-48EC-95E1-4AA1DB17356B} - System32\Tasks\Uninstaller_SkipUac_Admin => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-05-12] (IObit)
Task: {36C63E5E-5DCA-4360-803E-5D441FD34A5B} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2015-07-06] (IObit)
Task: {46BC86A9-306F-41C8-AC14-6B314C79265A} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-06-05] (COMODO)
Task: {49369EB7-54ED-47FE-AF57-9A18B2744EC5} - System32\Tasks\adobe flash player updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-10] (Adobe Systems Incorporated)
Task: {54C33C36-CEEE-449E-95E1-5A5B3A5D9B46} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-05-27] (Microsoft Corporation)
Task: {579782AA-1E45-471B-A9AF-0E6B4B60EC1A} - System32\Tasks\{75DF3B3D-7AF8-4DEE-BF0F-656A1D4C53F2} => pcalua.exe -a C:\Users\Admin\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveSetup.exe -c  /uninstall
Task: {650178BC-DBFD-4C8B-A89E-7481C097C057} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-05-27] (Microsoft Corporation)
Task: {6AE1BA85-55BD-4FED-B2F2-13D821EB0E5B} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-07-06] (IObit)
Task: {8EDA6BB9-4011-4A23-B0F6-3BFD2FDFA9FB} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-06-05] (COMODO)
Task: {96C68B2B-6724-4B80-9858-9A4474787A10} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-07-14] (AVAST Software)
Task: {98BDA5CF-4F19-4E0A-9EAF-59F1136180AA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2015-03-28] (Microsoft Corporation)
Task: {A79AFD1A-A733-4902-A5BC-A090B8FA8B45} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-05-27] (Microsoft Corporation)
Task: {B2261EC4-2B08-4F2F-A0B5-F238F58E6577} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-05-27] (Microsoft)
Task: {B8767E18-18B2-4CE7-A598-113BD4675B85} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2015-03-28] (Microsoft Corporation)
Task: {C15FD362-C855-4D7C-BB25-78B1C06D7EC2} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-05-27] (Microsoft Corporation)
Task: {CA919A53-463A-48FB-AE90-54EB91303F7A} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-06-05] (COMODO)
Task: {D0E1672B-8319-4F86-8D3B-ADA842D42475} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-07-03] (Microsoft Corporation)
Task: {F1266AB4-BA42-4E81-A579-8A5AC42FCED4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-28] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Admin.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Loaded Modules (Whitelisted) ==============

2015-03-17 02:41 - 2015-03-17 02:41 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2015-07-14 01:13 - 2015-07-14 01:13 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-07-14 01:13 - 2015-07-14 01:13 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-07-14 21:56 - 2015-07-14 21:56 - 02956288 _____ () C:\Program Files\AVAST Software\Avast\defs\15071401\algo.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\avastSS.scr:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system\test.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\aepic.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AERTAC64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AERTAR64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\appdrvrem01.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\apphelp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\clfsw32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\coin95itp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\comctl32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\compstui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CX64APO.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dbgeng.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dbghelp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DDPA64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DDPA64F3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DDPD64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DDPD64AF3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DDPO64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DDPO64AF3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DDPP64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DDPP64AF3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DelayAPO.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dpapisrv.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ExplorerFrame.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\FMAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\hpotscl1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\hpovst01.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\hpowiav1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\hppldcoi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\HPZLLLHN.DLL:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iedkcs32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IntelSSTAPO.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IntelSstCApoPropPage.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IObitSmartDefragExtension.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\localspl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO4064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO5064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO6064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO7064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO2064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO3064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO4064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mcupdate_GenuineIntel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\microsoft-windows-system-events.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msctf.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mssph.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mssphtb.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mssvp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\OpenAL32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\PhotoMetadataHandler.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\PortChanger.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\profsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\puiobj.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\pwdrvio.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\pwdspio.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\pwNative.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\R4EEA64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\R4EED64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\R4EEG64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\R4EEL64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\R4EEP64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\rascfg.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RCoInstII64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RTCOM64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RtDataProc64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RTEED64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RTEEG64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RTEEL64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RTEEP64A.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RtkApi64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RtkCfg64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RtlCPAPI64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RtNicProp64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RtPgEx64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RTSnMg64.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sdbinst.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SEAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SearchIndexer.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sechost.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SECOMN64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SFAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SFCOM64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SFNHK64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sl3apo64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\slcnt64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\slprp64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sltech64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SmartDefragBootTime.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sppobjs.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sppsvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sppwinob.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRAPO64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRCOM64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRH.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRSHP64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRSTSH64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRSTSX64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\storewuauth.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo264.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tdh.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tepeqapo64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tquery.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tracerpt.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\TsWpfWrp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WdfCoInstaller01009.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wevtsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WiFiDisplay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Input.Inking.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wow64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wow64cpu.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wpdshext.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wrap_oal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WSShared.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wu.upgrade.ps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\YamahaAE.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\YamahaAE2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\atl70.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\atl71.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\clfsw32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\comct232.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\comct332.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\comctl32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\comctl32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\comdlg32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dbgeng.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dbghelp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dblist32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ExplorerFrame.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\IObitSmartDefragExtension.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\jscript9diag.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mci32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70chs.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70cht.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70deu.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70enu.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70esp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70fra.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70ita.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70jpn.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70kor.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc70u.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71chs.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71cht.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71deu.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71enu.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71esp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71fra.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71ita.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71jpn.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71kor.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfc71u.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mscomct2.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mscomctl.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mscomctl32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mscomm32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msctf.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msdatgrd.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msdatlst.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msflxgrd.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msftedit.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mshflxgd.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msinet.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msmask32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mssph.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msstdfmt.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msstkprp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mssvp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msvbvm50.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msvci70.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msvcp70.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msvcp71.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msvcr70.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msvcr71.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msvcrt10.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mswinsck.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\OpenAL32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\picclp32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\pku2u.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\PrintConfig.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\puiobj.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\rascfg.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\rastapi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\rgb9rast.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\richtx32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\RltkAPO.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\sdbinst.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SearchIndexer.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\sechost.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SECOMN32.DLL:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SFCOM.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SRCOM.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SRH.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\sysinfo.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\tabctl32.ocx:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\tdh.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\tquery.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\tracerpt.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\TsWpfWrp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\vb40032.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\wpdshext.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\wrap_oal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\WSShared.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ahcache.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdacpksl.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\AtihdWB6.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\bthhfenum.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\clfs.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\Dot4.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\Dot4Prt.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\Dot4usb.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dumpsd.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ggflt.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ggsomc.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\http.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandnetbus64.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandnetdiag64.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandnetmodem64.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ndproxy.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\Rt630x64.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHD64.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\sdbus.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ssudbus.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ssudmdm.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\udfs.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\usb8023.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\usbfilter.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\usbscan.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\vwififlt.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\vwifimp.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wanarp.sys:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Desktop\audio_2015-06-25_23-28-10.ogg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Desktop\FRST64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Desktop\FRST64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Desktop\Lucy-Hale.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Desktop\ProcessHacker.exe:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Desktop\ProcessHacker.exe:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Desktop\video_2015-04-14_22-05-47.mov:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\10255839_1383135778640599_8173910330187023673_o.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\10409035_375870925952276_2832422946215172114_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\10958700_769017893174703_200329094_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\10962006_771676516242174_309528695_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\10962055_1705094809716871_851055478_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\10968185_1705093516383667_2077305528_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\10979464_771670466242779_1996548684_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11002723_771666086243217_2043816741_o.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11006037_771664336243392_53824045_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11018100_359959650865137_2096148368536846332_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11040335_784713314938494_923767445_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11041506_793197587440177_1686713377_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11046207_677024265739750_3831215964110502337_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11061716_882036105188002_6921144233422175289_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11106434_806343692792233_595465251_n.jpg.png:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11169133_919413401413060_1626888571_n.jpg:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Downloads\11169133_919413401413060_1626888571_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11188297_362211973973238_4247317530694173432_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11209704_708736622568514_7823738208921563768_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11257045_882638495133127_136655729_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11295926_811962445554476_2003495727114681540_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11304224_1064037353623599_1014440761_n.jpg:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Downloads\11304224_1064037353623599_1014440761_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\11659436_381797738681328_218095081028849347_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\1175489_610002932356319_166082306_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\18. Československo v období normalizace společnosti.doc.doc:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Downloads\18. Československo v období normalizace společnosti.doc.doc:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\198504_208169089210869_356584_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\226523_220302707997507_1267072_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\522040_801688833207533_5576881731799159039_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\549366_1037512909593754_5801239504446833426_n.jpg:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\adwcleaner_4.208.exe:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Downloads\adwcleaner_4.208.exe:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\air.com.bigwigmedia.hotdogbush_1.6.0_[www.apk-dl.com].apk:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Downloads\air.com.bigwigmedia.hotdogbush_1.6.0_[www.apk-dl.com].apk:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\AppManagerSetup_2.0.exe:$CmdTcID
AlternateDataStreams: C:\Users\Admin\Downloads\AppManagerSetup_2.0.exe:$CmdZnID
AlternateDataStreams: C:\Users\Admin\Downloads\Area-51(0000256171).srt:$CmdTcID

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\03755616.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\11334947.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\03755616.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\11334947.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2560372422-2021965399-549226919-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: appdrvrem01 => 3
MSCONFIG\Services: cmdvirth => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: LiveUpdateSvc => 3
MSCONFIG\Services: LMIGuardianSvc => 2
MSCONFIG\Services: Secunia PSI Agent => 3
MSCONFIG\Services: Secunia Update Agent => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{5D09E645-414F-4AD5-85A2-6D8F0B5D5175}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{72DF78AC-E0C4-4548-9B2C-C9A809B359A5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4B9F961C-C405-4E44-AEA1-DFD040588F34}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2550B052-FD6D-4338-8847-CE1B8B70B389}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{9CB64BDC-CFDB-4AD9-A52F-4BBC5EC84327}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Serious Sam 3\Bin\Sam3.exe
FirewallRules: [{A6A3DDB3-2296-4F80-AAA6-44C47F1E66EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Serious Sam 3\Bin\Sam3.exe
FirewallRules: [{5295B8CC-015C-4484-AC21-B5D991A24F75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Serious Sam 3\Bin\Sam3_Unrestricted.exe
FirewallRules: [{E9D076B1-A8EE-46E1-B6FD-900525612B01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Serious Sam 3\Bin\Sam3_Unrestricted.exe
FirewallRules: [{C1B139F7-239A-43D0-8914-6143B878E618}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{CDCC00E8-3D0A-4BF2-9A55-228509C2FA8F}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{48ED71C4-ED31-4F13-BD28-B709E48CB09B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{9B503DE9-D7F0-4919-AA89-88F80223A760}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{F66DE5FC-611A-4871-B65E-EF076E6B0C4D}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe
FirewallRules: [{38A25821-D07E-4BD4-A502-1B8A8B10B1D9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{922E858E-3D74-40CB-9857-33BBB806E4DC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{8AF5C2DB-6EDD-4A7F-B912-9E56A18FC4A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [{2F336433-F382-4DA8-8E5B-04CEE10B9457}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [{996EA76C-8B8E-4755-8672-9971FF762CCB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{95556CCE-1AE7-4371-A766-3C04D7504342}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{947F6ACE-9B6B-4BCD-B92F-C6C1EDDEA51F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{AF37B43A-7371-4CC1-8248-9D3BB8849FF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{1CA81E46-BC9B-4D0D-92C4-10B82904ABA9}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{EED7C8E4-F292-4717-B917-91AB8949B871}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{4BB9D830-BF75-417D-8E4D-97944BE046E9}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{FD3AD96C-7AC5-4063-B80A-5BC958873691}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{95F2EDA2-3552-4CE1-AEF4-9A356F96EE6C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1A58F015-C9B6-4432-A45C-BFA673BB22A3}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{A9DDC3BA-5DBC-4AB9-9AFF-03523FEFA388}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D999DEBF-8316-4E97-B3C8-DBD9B76699E4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1026FA1C-FF9D-46A1-80E2-418314385B6C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{EE0BFA61-50A8-4EE8-931D-E4F62F8D105D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [TCP Query User{C1FBBEB9-F6DB-4F29-BD87-402FF12A7F6B}C:\users\admin\downloads\utorrent plus v3.4.2 build 33023 stable\utorrent.exe] => (Block) C:\users\admin\downloads\utorrent plus v3.4.2 build 33023 stable\utorrent.exe
FirewallRules: [UDP Query User{3D83F8D3-CD31-4B59-B90A-CE419E6532DE}C:\users\admin\downloads\utorrent plus v3.4.2 build 33023 stable\utorrent.exe] => (Block) C:\users\admin\downloads\utorrent plus v3.4.2 build 33023 stable\utorrent.exe
FirewallRules: [{884490E6-DD28-4AC2-BB92-D6814E7AAF6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{FEE81C9C-4983-4427-B73C-363C9F430C04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{24E06AFC-3E35-4738-A095-A07134D46B2E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B1378552-86AD-4D8F-B766-399ED8AA1EB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{7CCF0C25-11D5-4CA3-A17C-88176E07BBE8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{991543E4-8278-4130-9B96-F1D955AE00F2}C:\users\admin\desktop\th145\th145.exe] => (Allow) C:\users\admin\desktop\th145\th145.exe
FirewallRules: [UDP Query User{DFBFD02B-B843-491B-BE30-02A026DD0B79}C:\users\admin\desktop\th145\th145.exe] => (Allow) C:\users\admin\desktop\th145\th145.exe
FirewallRules: [{655CFFD2-4689-4FF2-A55A-236FE23C0DA9}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{F97AD114-9A2A-43BF-AD69-DBDBFBCA57E1}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{15AB92EA-1899-43AC-96AB-7494F00EE2FB}C:\users\admin\desktop\th145\th145-patch.exe] => (Allow) C:\users\admin\desktop\th145\th145-patch.exe
FirewallRules: [UDP Query User{765C1227-2469-415F-A5EA-8E7D1AA9A3E0}C:\users\admin\desktop\th145\th145-patch.exe] => (Allow) C:\users\admin\desktop\th145\th145-patch.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/15/2015 05:38:27 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:38:26 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:38:22 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:38:22 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:37:25 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:37:25 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:37:21 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:37:20 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:37:12 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809

Error: (07/15/2015 05:37:12 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: Spuštění služby Ochrana softwaru se nezdařilo. 0x80070005
6.3.9600.17809


System errors:
=============
Error: (07/15/2015 05:39:54 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys

Error: (07/15/2015 05:38:27 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5

Error: (07/15/2015 05:38:26 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5

Error: (07/15/2015 05:38:22 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5

Error: (07/15/2015 05:38:22 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5

Error: (07/15/2015 05:37:25 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5

Error: (07/15/2015 05:37:25 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5

Error: (07/15/2015 05:37:21 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5

Error: (07/15/2015 05:37:20 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5

Error: (07/15/2015 05:37:12 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Ochrana softwaru byla ukončena s následující chybou: 
%%5


Microsoft Office:
=========================
Error: (07/15/2015 05:38:27 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:38:26 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:38:22 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:38:22 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:37:25 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:37:25 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:37:21 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:37:20 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:37:12 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809

Error: (07/15/2015 05:37:12 AM) (Source: Software Protection Platform Service) (EventID: 1001) (User: )
Description: 0x800700056.3.9600.17809


CodeIntegrity Errors:
===================================
  Date: 2015-07-15 05:49:08.131
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-15 05:37:25.665
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-15 05:14:28.823
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-15 04:55:58.864
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-15 04:27:03.521
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-15 02:24:26.821
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-14 05:24:23.430
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-14 05:04:31.398
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-14 02:05:13.267
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-13 10:49:15.519
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: AMD FX(tm)-6300 Six-Core Processor 
Percentage of memory in use: 30%
Total physical RAM: 8093.5 MB
Available physical RAM: 5635.61 MB
Total Virtual: 16285.5 MB
Available Virtual: 13745.68 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.17 GB) (Free:237.72 GB) NTFS
Drive d: (Untitled) (Fixed) (Total:931.51 GB) (Free:340.06 GB) NTFS
Drive e: () (Fixed) (Total:465.76 GB) (Free:173.91 GB) NTFS
Drive g: (NEW_VOLUME_9625) (CDROM) (Total:0.64 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E3B86E78)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B7F7BA07)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 011B689C)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of log ============================