﻿Additional scan result of Farbar Recovery Scan Tool (x86) Version:14-08-2015 01
Ran by uživatel (2015-08-15 14:28:47)
Running from C:\Users\uživatel\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2597256624-3775549259-338266546-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2597256624-3775549259-338266546-1002 - Limited - Enabled)
Guest (S-1-5-21-2597256624-3775549259-338266546-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-2597256624-3775549259-338266546-1006 - Limited - Enabled) => C:\Users\UpdatusUser
uživatel (S-1-5-21-2597256624-3775549259-338266546-1000 - Administrator - Enabled) => C:\Users\uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«Cities in Motion» (HKLM\...\«Cities in Motion»_is1) (Version:  - Paradox Interactive)
7-Zip 9.21beta (HKLM\...\7-Zip) (Version:  - )
Adobe Acrobat 4.0 (HKLM\...\Adobe Acrobat 4.0) (Version:  - )
Adobe Download Manager (HKLM\...\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}) (Version: 1.6.2.63 - NOS Microsystems Ltd.)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader X (10.1.15) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.15 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Aktualizace NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISER_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version:  - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISER_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version:  - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISER_{E68DD413-B834-4923-8181-0A03B7555187}) (Version:  - Microsoft)
Ashampoo Burning Studio 6 FREE (HKLM\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.7.1 - ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\avast) (Version: 10.3.2225 - AVAST Software)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.62.1068 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 3.17 - Piriform)
Codec Pack - All In 1 6.0.3.0 (HKLM\...\Cool's_Codec_pack_4.12) (Version:  - )
ConvertXtoDVD 3.6.12.174c (HKLM\...\{76C24F39-B161-498F-BD8B-C64789812D13}_is1) (Version: 3.6.12.174c - )
CPUID HWMonitor 1.20 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CrystalDiskInfo 6.5.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 4.41.0314.0232 - DT Soft Ltd)
DAEMON Tools Toolbar (HKLM\...\DAEMON Tools Toolbar) (Version: 1.0.8.0552 - DT Soft Ltd) <==== ATTENTION
DVD Shrink 3.2 (HKLM\...\DVD Shrink_is1) (Version:  - DVD Shrink)
Easy Subtitles Synchronizer (HKLM\...\{A35461B1-DFFD-48AE-A672-3C96A08B6A96}) (Version: 1.1.0 - ESS)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
IrfanView (remove only) (HKLM\...\IrfanView) (Version:  - )
Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
MediaCoder 0.7.5.4799 (HKLM\...\MediaCoder) (Version: 0.7.5.4799 - Broad Intelligence)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Access 2000 Runtime (HKLM\...\{00180408-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.3308 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Train Simulator (HKLM\...\Train Simulator 1.0) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 40.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 40.0.2 (x86 cs)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 40.0.2 - Mozilla)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MySQL Connector/ODBC 3.51 (HKLM\...\{0CB3C535-1171-4A20-B549-E2CB5DEB9723}) (Version: 3.51.12 - MySQL AB)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Ovládací panel NVIDIA 341.44 (Version: 341.44 - NVIDIA Corporation) Hidden
PSPad editor (HKLM\...\PSPad editor_is1) (Version:  - Jan Fiala)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime (HKLM\...\InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}) (Version: 7.1 - Apple Computer, Inc.)
QuickTime (Version: 7.1 - Apple Computer, Inc.) Hidden
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Shockwave (HKLM\...\Shockwave) (Version:  - )
Spyware Terminator 2012 (HKLM\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.0.69 - Crawler.com)
Steam (HKLM\...\Steam) (Version:  - Valve Corporation)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version:  - )
Train Fever (HKLM\...\Steam App 304730) (Version:  - Urban Games)
Train Store (Czech Language Pack) (HKLM\...\Train Store (Czech Language Pack)) (Version:  - )
Train Store V3.2 (HKLM\...\Train Store V3.2) (Version:  - )
Trainz Simulator 2009: World Builder Edition (HKLM\...\AuranTS2009_is1) (Version:  - Auran)
Trať Bratislava-Brno-Česká Třebová-Kolín-Praha pro MSTS verze B (HKLM\...\Trať Bratislava-Brno-Česká Třebová-Kolín-Praha pro MSTS_is1) (Version:  - Zbyněk Šemora)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
Windows Live OneCare safety scanner (HKLM\...\Windows Live OneCare safety scanner) (Version:  - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
World of Subways Vol.2 (HKLM\...\{0A902DF4-B767-49DB-98D3-D413E6F1E703}) (Version: 1.00 - TML-Studios)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{0D43FE01-F093-11CF-8940-00A0C9054228}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{989D1DC0-B162-11D1-B6EC-D27DDCF9A923}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{B54F3741-5B07-11cf-A4B0-00AA004A55E8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{B54F3743-5B07-11cf-A4B0-00AA004A55E8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{cc5bbec3-db4a-4bed-828d-08d78ee3e1ed}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{f414c260-6ac0-11cf-b6d1-00aa00bbbb58}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{f414c262-6ac0-11cf-b6d1-00aa00bbbb58}\InprocServer32 -> no filepath

==================== Restore Points =========================

15-08-2015 12:18:02 Sample Restore Point
15-08-2015 12:28:37 Instalace balíčku ovladače zařízení: Intel Systémová zařízení
15-08-2015 12:29:10 Instalace balíčku ovladače zařízení: JMicron Technology Corp. Řadiče paměťových zařízení
15-08-2015 12:45:45 Instalace balíčku ovladače zařízení: Hewlett-Packard Tiskárna kompatibilní se zařízením IEEE 1284.4

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 12:23 - 2006-09-18 23:41 - 00000736 ____A C:\Windows\system32\Drivers\etc\hosts
::1             localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C3AF200-FADC-49E5-880E-DEE192C8B79A} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [2008-01-19] (Společnost Microsoft)
Task: {246CC258-A6C1-4D98-96E1-8A9D4619ACB4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-14] (Adobe Systems Incorporated)
Task: {4E2A6237-AEBE-4576-9C2D-26DB6595F85A} - System32\Tasks\{B45F1495-4E86-4D06-8611-60F825CB062F} => pcalua.exe -a C:\Users\uživatel\Desktop\irfanview_plugins_410_setup.exe -d C:\Users\uživatel\Desktop
Task: {5B6CB8DC-2048-4E72-BDDF-ABADEB7B3E29} - System32\Tasks\{85C8A26B-CEA8-4D72-A19A-27F1FEBA5B09} => pcalua.exe -a C:\Users\uživatel\Downloads\racing_mod_11.exe -d C:\Users\uživatel\Downloads
Task: {677C0C6F-C4BD-47DC-B59B-EA24B92E7F97} - System32\Tasks\{56A29029-4749-4695-BAAA-5E54AB3248D0} => pcalua.exe -a "C:\Program Files\QuickTime\QTSystem\QuickTime.cpl" -c QuickTime
Task: {6DD7C663-45DD-478F-9317-3876A7A861ED} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {78C6A9B9-9B8B-4BB1-9E6E-3A5DB6FD409E} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2597256624-3775549259-338266546-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {8C519CC5-36DA-4079-AB04-D8C643EFBE2A} - System32\Tasks\Driver Booster SkipUAC (uživatel) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe
Task: {9DFEAFF7-0C1B-4C1C-A325-78075DA970A9} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - uživatel => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: {AD72E6F3-F336-4EF4-9D76-381199C83930} - System32\Tasks\{9E4EBCA7-0EA1-4D17-AF9E-77AC7D6AECEE} => pcalua.exe -a "C:\download\virtual hottie\vh202.exe" -d "C:\download\virtual hottie"
Task: {CFD3A6B0-8E23-4288-9B7C-E4DF7F1EBC41} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe [2015-08-14] (Adobe Systems Incorporated)
Task: {D51A36FD-94EF-4EB2-8018-D996E7EB2EA0} - System32\Tasks\{4C165078-1FCF-4BF2-964D-0E02DB7BB95A} => pcalua.exe -a "C:\Users\Public\Desktop\Ski Jump International.pif" -d C:\Users\uživatel\Desktop
Task: {DADB24E8-002C-40C2-9977-9C76E5F9C823} - System32\Tasks\{B9CD6DE0-065A-44C4-B3AB-D232A2E6D1FE} => pcalua.exe -a E:\Doplnkove_programy\MSTScestina.exe -d E:\Doplnkove_programy
Task: {E639B1FA-56E5-422F-9B8B-00952A6D06EC} - System32\Tasks\{DE1172E0-C64A-4B73-BD18-748A2B986539} => pcalua.exe -a J:\setup.exe -d J:\
Task: {F13413B3-556F-4564-8515-A8BE100ECC0B} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2015-08-05] (AVAST Software)
Task: {F983D37A-B5E3-488D-A3E9-2E9F33686365} - System32\Tasks\{6248EC4A-4D37-422C-969D-5571BD3C2C0B} => pcalua.exe -a C:\Users\uživatel\Desktop\simulator-instalace.exe -d C:\Users\uživatel\Desktop
Task: {FED44404-FD14-47D4-ADA6-14A8037B1377} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2597256624-3775549259-338266546-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{C2C63E11-70A6-4273-93A4-B3642B591226}.job => C:\Windows\system32\msfeedssync.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-05 21:09 - 2015-08-05 21:09 - 00102864 _____ () C:\Program Files\Alwil Software\Avast5\log.dll
2015-08-05 21:09 - 2015-08-05 21:09 - 00123976 _____ () C:\Program Files\Alwil Software\Avast5\JsonRpcServer.dll
2015-08-15 11:43 - 2015-08-15 11:43 - 02962432 _____ () C:\Program Files\Alwil Software\Avast5\defs\15081500\algo.dll
2008-02-15 02:24 - 2007-09-20 19:34 - 00129024 _____ () C:\Program Files\WinRAR\rarext.dll
2008-02-15 02:24 - 2007-10-02 16:41 - 00319488 _____ () C:\Program Files\WinRAR\rarlng.dll
2014-01-13 16:09 - 2015-08-05 21:09 - 40540672 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll
2015-08-15 13:42 - 2015-08-15 14:26 - 00029696 _____ () C:\Users\uživatel\AppData\Local\MSGBOX.EXE

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:59C9AAB506CED086
AlternateDataStreams: C:\ProgramData\TEMP:6971CCC5

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2597256624-3775549259-338266546-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\uživatel\Pictures\1.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^uživatel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk => C:\Windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: DAEMON Tools Pro Agent => "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\qttask.exe" -atboottime

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [TCP Query User{7A1CE0EC-CDD0-45B3-B795-DBD65892D140}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{3D6476B2-43AD-443D-B6E0-260135B432CD}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [{3A134F3E-D3B9-45C5-A489-85F983B7C88A}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\outlook.exe
FirewallRules: [{29964717-B9BB-457F-A366-7BEFAF50C84D}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\GROOVE.EXE
FirewallRules: [{6DB3DBFD-731A-4F03-A058-00CF9E3F13A4}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\GROOVE.EXE
FirewallRules: [{36E6018B-E96F-4653-964E-8F2864253F13}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\ONENOTE.EXE
FirewallRules: [{4142906B-0962-431F-BE14-6467FFC5B201}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\ONENOTE.EXE
FirewallRules: [TCP Query User{7E4CEA36-DDA4-4281-871E-65A9B0370695}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{3162A44B-03F5-43BC-A8F4-903A2FB1473F}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [TCP Query User{0A6E98A6-61BF-4635-946F-8E96A677DCEC}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [UDP Query User{7A99E1D8-1D12-483B-ACCA-8AD9F5503CE5}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [{1B714040-B57D-46E5-B475-8ACFC3C4F8F4}] => (Allow) LPort=80
FirewallRules: [{605DF2D3-B03D-4DC8-9F3D-81429E0D0A6A}] => (Allow) LPort=80
FirewallRules: [{AE634F07-6428-4BAD-88DF-36E3D6AD9D35}] => (Allow) LPort=80
FirewallRules: [{A702DF1E-8618-4EDD-B1FD-A3455E897120}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{D616A3FB-5F9A-4C2C-B253-9AF702A73C44}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{BF5066B1-4FF0-46A9-9075-B60A0709EF6E}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{94FC55CA-3A6A-4D41-B899-D600AE380A7F}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [TCP Query User{6CF4AADF-450E-4F55-9F49-F907FD4012F5}C:\program files\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{C541EF06-CEED-4C98-991E-F014E12BA739}C:\program files\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{B85AA14E-1D6E-4721-8784-55DB6A66A62D}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{61C12D51-A209-4D90-AB5B-02B6633055B3}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [TCP Query User{940F866D-6E3E-49D2-A9E0-66038F9E9999}C:\program files\mozilla firefox\plugin-container.exe] => (Allow) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{A691386D-AF0E-4ACB-8263-AB796E49DA26}C:\program files\mozilla firefox\plugin-container.exe] => (Allow) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [{87EBD0E2-ED7E-4ADA-9A34-016B034ED274}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{7FEC54C7-BA16-49CB-8BD5-99152EF5A3F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{1F1C586F-AF7E-44C6-AA74-05617A3323FF}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{6BF4180A-A4C1-438E-8AB6-6B9FBA431447}] => (Allow) C:\Program Files\Alwil Software\Avast5\ng\vbox\aswFe.exe
FirewallRules: [{A4F31886-E83C-4CEA-8E1E-53A9EB5772FB}] => (Allow) C:\Program Files\Alwil Software\Avast5\ng\vbox\aswFe.exe
FirewallRules: [{343C9B3B-CF8E-4A2A-A4EF-C487D146034B}] => (Allow) D:\trainfever\Steam\Steam.exe
FirewallRules: [{3E92C259-D6B6-43C0-B8D0-A45FE3A7BA6C}] => (Allow) D:\trainfever\Steam\Steam.exe
FirewallRules: [{62C01D29-09A2-4B63-B475-84AE339956CE}] => (Allow) D:\trainfever\Steam\bin\steamwebhelper.exe
FirewallRules: [{9A59C425-8215-4AC0-90D7-41711A1BB8FF}] => (Allow) D:\trainfever\Steam\bin\steamwebhelper.exe
FirewallRules: [{80D81B5E-9C44-4CC9-B846-4A4B7025ED29}] => (Allow) D:\trainfever\Steam\steamapps\common\Train Fever\TrainFever.exe
FirewallRules: [{E7A813F4-991A-449F-82E1-9B9B086E8D8F}] => (Allow) D:\trainfever\Steam\steamapps\common\Train Fever\TrainFever.exe
FirewallRules: [{941D10D5-5D96-4DF1-A1DD-F5B17D734D91}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{01249842-FED4-496A-80CF-AF8DD941DB20}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/15/2015 02:12:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace st_rsser.exe, verze 3.0.0.101, časové razítko 0x54b4ced7, chybující modul unknown, verze 0.0.0.0, časové razítko 0x00000000, kód výjimky 0x00000000, posun chyby 0x00000000,
ID procesu 0xa74, čas spuštění aplikace 0xst_rsser.exe0.

Error: (08/15/2015 01:13:46 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Položka <C:\USERS\UŽIVATEL\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\HC67UJE8.DEFAULT\SAFEBROWSING-BACKUP> v mapě algoritmu hash nebyla aktualizována.

Kontext: aplikace , katalog SystemIndex

Podrobnosti:
	Zařízení připojené k systému nefunguje.   (0x8007001f)

Error: (08/15/2015 12:58:23 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: Neznámé rozhraní

Error: (08/15/2015 12:58:23 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: Neplatný popisovač

Error: (08/15/2015 12:58:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace ASCService.exe, verze 8.0.0.20, časové razítko 0x551e2cb9, chybující modul ntdll.dll, verze 6.0.6002.19454, časové razítko 0x55ae6e00, kód výjimky 0xc0000005, posun chyby 0x00008ca3,
ID procesu 0x3c8, čas spuštění aplikace 0xASCService.exe0.

Error: (08/15/2015 12:30:29 PM) (Source: AdvancedSystemCareService8) (EventID: 0) (User: )
Description: Neplatný popisovač

Error: (08/15/2015 12:18:01 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
   Shromažďování dat modulu pro zápis

Kontext:
   ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
   Název modulu pro zápis: System Writer
   ID instance modulu pro zápis: {55d2007a-f8f6-485f-a584-5fc21b48b036}

Error: (08/15/2015 12:12:08 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Službě Windows Search se nepodařilo vytvořit vyhledávací index SystemIndex. Došlo k vnitřní chybě <4, 0x8004117f, Nepodařilo se přidat projekt: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects>.

Error: (08/15/2015 12:12:08 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: Služba Windows Search neotevřela úložiště vlastností databázového stroje Jet.

Podrobnosti:
	Server indexu obsahu neaktualizoval nebo nenačetl informace kvůli chybě databáze. Zastavte a restartujte vyhledávací službu. Pokud potíže potrvají, vymažte index obsahu a proveďte znovu jeho procházení. V některých případech bude pravděpodobně nutné odstranit a znovu vytvořit index obsahu.   (0x8004117f)

Error: (08/15/2015 12:12:08 PM) (Source: ESENT) (EventID: 413) (User: )
Description: Windows (4576) Windows: Nový soubor protokolu nelze vytvořit, protože není možné zapisovat na jednotku protokolu. Jednotka může být označena jen pro čtení, na disku je nedostatek místa nebo je jednotka chybně nakonfigurována či poškozena. Chyba -1032


System errors:
=============
Error: (08/15/2015 02:02:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069

Error: (08/15/2015 02:02:18 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330

Error: (08/15/2015 01:22:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069

Error: (08/15/2015 01:22:59 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330

Error: (08/15/2015 01:16:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Advanced SystemCare Service 81

Error: (08/15/2015 01:01:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069

Error: (08/15/2015 01:01:51 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330

Error: (08/15/2015 12:34:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069

Error: (08/15/2015 12:34:44 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330

Error: (08/15/2015 12:33:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Avast Antivirus%%1053


Microsoft Office:
=========================
Error: (06/16/2015 09:25:46 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6720.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 11 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/29/2015 03:42:51 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6718.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 7 seconds with 0 seconds of active time.  This session ended with a crash.


CodeIntegrity:
===================================
  Date: 2015-08-05 20:56:08.352
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:56:07.981
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:56:07.616
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:56:07.247
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:56:06.860
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:56:06.478
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:48:01.569
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:48:01.223
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:48:00.837
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-05 20:48:00.488
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz
Percentage of memory in use: 54%
Total physical RAM: 2045.77 MB
Available physical RAM: 932.9 MB
Total Virtual: 4336.54 MB
Available Virtual: 2864.94 MB

==================== Drives ================================

