﻿Additional scan result of Farbar Recovery Scan Tool (x86) Version:14-08-2015 01
Ran by uživatel (2015-08-15 20:30:49)
Running from C:\Users\uživatel\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2597256624-3775549259-338266546-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2597256624-3775549259-338266546-1002 - Limited - Enabled)
Guest (S-1-5-21-2597256624-3775549259-338266546-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-2597256624-3775549259-338266546-1006 - Limited - Enabled) => C:\Users\UpdatusUser
uživatel (S-1-5-21-2597256624-3775549259-338266546-1000 - Administrator - Enabled) => C:\Users\uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«Cities in Motion» (HKLM\...\«Cities in Motion»_is1) (Version:  - Paradox Interactive)
7-Zip 9.21beta (HKLM\...\7-Zip) (Version:  - )
Adobe Acrobat 4.0 (HKLM\...\Adobe Acrobat 4.0) (Version:  - )
Adobe Download Manager (HKLM\...\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}) (Version: 1.6.2.63 - NOS Microsystems Ltd.)
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader X (10.1.15) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.15 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Aktualizace NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISER_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version:  - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISER_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version:  - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISER_{E68DD413-B834-4923-8181-0A03B7555187}) (Version:  - Microsoft)
Ashampoo Burning Studio 6 FREE (HKLM\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.7.1 - ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Avast Free Antivirus (HKLM\...\avast) (Version: 10.3.2225 - AVAST Software)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.62.1068 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 3.17 - Piriform)
Codec Pack - All In 1 6.0.3.0 (HKLM\...\Cool's_Codec_pack_4.12) (Version:  - )
ConvertXtoDVD 3.6.12.174c (HKLM\...\{76C24F39-B161-498F-BD8B-C64789812D13}_is1) (Version: 3.6.12.174c - )
CPUID HWMonitor 1.20 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CrystalDiskInfo 6.5.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 4.41.0314.0232 - DT Soft Ltd)
DVD Shrink 3.2 (HKLM\...\DVD Shrink_is1) (Version:  - DVD Shrink)
Easy Subtitles Synchronizer (HKLM\...\{A35461B1-DFFD-48AE-A672-3C96A08B6A96}) (Version: 1.1.0 - ESS)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
IrfanView (remove only) (HKLM\...\IrfanView) (Version:  - )
Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
MediaCoder 0.7.5.4799 (HKLM\...\MediaCoder) (Version: 0.7.5.4799 - Broad Intelligence)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Access 2000 Runtime (HKLM\...\{00180408-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.3308 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Train Simulator (HKLM\...\Train Simulator 1.0) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 40.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 40.0.2 (x86 cs)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 40.0.2 - Mozilla)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MySQL Connector/ODBC 3.51 (HKLM\...\{0CB3C535-1171-4A20-B549-E2CB5DEB9723}) (Version: 3.51.12 - MySQL AB)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Ovládací panel NVIDIA 341.44 (Version: 341.44 - NVIDIA Corporation) Hidden
PSPad editor (HKLM\...\PSPad editor_is1) (Version:  - Jan Fiala)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime (HKLM\...\InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}) (Version: 7.1 - Apple Computer, Inc.)
QuickTime (Version: 7.1 - Apple Computer, Inc.) Hidden
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Shockwave (HKLM\...\Shockwave) (Version:  - )
Spyware Terminator 2012 (HKLM\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.0.69 - Crawler.com)
Steam (HKLM\...\Steam) (Version:  - Valve Corporation)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version:  - )
Train Fever (HKLM\...\Steam App 304730) (Version:  - Urban Games)
Train Store (Czech Language Pack) (HKLM\...\Train Store (Czech Language Pack)) (Version:  - )
Train Store V3.2 (HKLM\...\Train Store V3.2) (Version:  - )
Trainz Simulator 2009: World Builder Edition (HKLM\...\AuranTS2009_is1) (Version:  - Auran)
Trať Bratislava-Brno-Česká Třebová-Kolín-Praha pro MSTS verze B (HKLM\...\Trať Bratislava-Brno-Česká Třebová-Kolín-Praha pro MSTS_is1) (Version:  - Zbyněk Šemora)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
Windows Live OneCare safety scanner (HKLM\...\Windows Live OneCare safety scanner) (Version:  - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
World of Subways Vol.2 (HKLM\...\{0A902DF4-B767-49DB-98D3-D413E6F1E703}) (Version: 1.00 - TML-Studios)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{0D43FE01-F093-11CF-8940-00A0C9054228}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{989D1DC0-B162-11D1-B6EC-D27DDCF9A923}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{B54F3741-5B07-11cf-A4B0-00AA004A55E8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{B54F3743-5B07-11cf-A4B0-00AA004A55E8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{cc5bbec3-db4a-4bed-828d-08d78ee3e1ed}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{f414c260-6ac0-11cf-b6d1-00aa00bbbb58}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2597256624-3775549259-338266546-1000_Classes\CLSID\{f414c262-6ac0-11cf-b6d1-00aa00bbbb58}\InprocServer32 -> no filepath

==================== Restore Points =========================

15-08-2015 12:18:02 Sample Restore Point
15-08-2015 12:28:37 Instalace balíčku ovladače zařízení: Intel Systémová zařízení
15-08-2015 12:29:10 Instalace balíčku ovladače zařízení: JMicron Technology Corp. Řadiče paměťových zařízení
15-08-2015 12:45:45 Instalace balíčku ovladače zařízení: Hewlett-Packard Tiskárna kompatibilní se zařízením IEEE 1284.4

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 12:23 - 2006-09-18 23:41 - 00000736 ____A C:\Windows\system32\Drivers\etc\hosts
::1             localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C3AF200-FADC-49E5-880E-DEE192C8B79A} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [2008-01-19] (Společnost Microsoft)
Task: {246CC258-A6C1-4D98-96E1-8A9D4619ACB4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-14] (Adobe Systems Incorporated)
Task: {4E2A6237-AEBE-4576-9C2D-26DB6595F85A} - System32\Tasks\{B45F1495-4E86-4D06-8611-60F825CB062F} => pcalua.exe -a C:\Users\uživatel\Desktop\irfanview_plugins_410_setup.exe -d C:\Users\uživatel\Desktop
Task: {5B6CB8DC-2048-4E72-BDDF-ABADEB7B3E29} - System32\Tasks\{85C8A26B-CEA8-4D72-A19A-27F1FEBA5B09} => pcalua.exe -a C:\Users\uživatel\Downloads\racing_mod_11.exe -d C:\Users\uživatel\Downloads
Task: {677C0C6F-C4BD-47DC-B59B-EA24B92E7F97} - System32\Tasks\{56A29029-4749-4695-BAAA-5E54AB3248D0} => pcalua.exe -a "C:\Program Files\QuickTime\QTSystem\QuickTime.cpl" -c QuickTime
Task: {6DD7C663-45DD-478F-9317-3876A7A861ED} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {78C6A9B9-9B8B-4BB1-9E6E-3A5DB6FD409E} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2597256624-3775549259-338266546-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {8C519CC5-36DA-4079-AB04-D8C643EFBE2A} - System32\Tasks\Driver Booster SkipUAC (uživatel) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe
Task: {AACC3CEF-E522-4A86-94F1-C002F87C11F9} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - uživatel => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: {AD72E6F3-F336-4EF4-9D76-381199C83930} - System32\Tasks\{9E4EBCA7-0EA1-4D17-AF9E-77AC7D6AECEE} => pcalua.exe -a "C:\download\virtual hottie\vh202.exe" -d "C:\download\virtual hottie"
Task: {CFD3A6B0-8E23-4288-9B7C-E4DF7F1EBC41} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe [2015-08-14] (Adobe Systems Incorporated)
Task: {D51A36FD-94EF-4EB2-8018-D996E7EB2EA0} - System32\Tasks\{4C165078-1FCF-4BF2-964D-0E02DB7BB95A} => pcalua.exe -a "C:\Users\Public\Desktop\Ski Jump International.pif" -d C:\Users\uživatel\Desktop
Task: {DADB24E8-002C-40C2-9977-9C76E5F9C823} - System32\Tasks\{B9CD6DE0-065A-44C4-B3AB-D232A2E6D1FE} => pcalua.exe -a E:\Doplnkove_programy\MSTScestina.exe -d E:\Doplnkove_programy
Task: {E639B1FA-56E5-422F-9B8B-00952A6D06EC} - System32\Tasks\{DE1172E0-C64A-4B73-BD18-748A2B986539} => pcalua.exe -a J:\setup.exe -d J:\
Task: {F13413B3-556F-4564-8515-A8BE100ECC0B} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2015-08-05] (AVAST Software)
Task: {F983D37A-B5E3-488D-A3E9-2E9F33686365} - System32\Tasks\{6248EC4A-4D37-422C-969D-5571BD3C2C0B} => pcalua.exe -a C:\Users\uživatel\Desktop\simulator-instalace.exe -d C:\Users\uživatel\Desktop
Task: {FED44404-FD14-47D4-ADA6-14A8037B1377} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2597256624-3775549259-338266546-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{C2C63E11-70A6-4273-93A4-B3642B591226}.job => C:\Windows\system32\msfeedssync.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-05 21:09 - 2015-08-05 21:09 - 00102864 _____ () C:\Program Files\Alwil Software\Avast5\log.dll
2015-08-05 21:09 - 2015-08-05 21:09 - 00123976 _____ () C:\Program Files\Alwil Software\Avast5\JsonRpcServer.dll
2015-08-15 20:05 - 2015-08-15 20:05 - 02962432 _____ () C:\Program Files\Alwil Software\Avast5\defs\15081502\algo.dll
2008-02-15 02:24 - 2007-09-20 19:34 - 00129024 _____ () C:\Program Files\WinRAR\rarext.dll
2008-02-15 02:24 - 2007-10-02 16:41 - 00319488 _____ () C:\Program Files\WinRAR\rarlng.dll
2014-01-13 16:09 - 2015-08-05 21:09 - 40540672 _____ () C:\Program Files\Alwil Software\Avast5\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:59C9AAB506CED086
AlternateDataStreams: C:\ProgramData\TEMP:6971CCC5

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2597256624-3775549259-338266546-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\uživatel\Pictures\1.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^uživatel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk => C:\Windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: DAEMON Tools Pro Agent => "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\qttask.exe" -atboottime

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [TCP Query User{7A1CE0EC-CDD0-45B3-B795-DBD65892D140}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{3D6476B2-43AD-443D-B6E0-260135B432CD}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [{3A134F3E-D3B9-45C5-A489-85F983B7C88A}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\outlook.exe
FirewallRules: [{29964717-B9BB-457F-A366-7BEFAF50C84D}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\GROOVE.EXE
FirewallRules: [{6DB3DBFD-731A-4F03-A058-00CF9E3F13A4}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\GROOVE.EXE
FirewallRules: [{36E6018B-E96F-4653-964E-8F2864253F13}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\ONENOTE.EXE
FirewallRules: [{4142906B-0962-431F-BE14-6467FFC5B201}] => (Allow) C:\Program Files\Microsoft Office\ART\Office12\ONENOTE.EXE
FirewallRules: [TCP Query User{7E4CEA36-DDA4-4281-871E-65A9B0370695}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{3162A44B-03F5-43BC-A8F4-903A2FB1473F}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe
FirewallRules: [TCP Query User{0A6E98A6-61BF-4635-946F-8E96A677DCEC}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [UDP Query User{7A99E1D8-1D12-483B-ACCA-8AD9F5503CE5}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe
FirewallRules: [{1B714040-B57D-46E5-B475-8ACFC3C4F8F4}] => (Allow) LPort=80
FirewallRules: [{605DF2D3-B03D-4DC8-9F3D-81429E0D0A6A}] => (Allow) LPort=80
FirewallRules: [{AE634F07-6428-4BAD-88DF-36E3D6AD9D35}] => (Allow) LPort=80
FirewallRules: [{A702DF1E-8618-4EDD-B1FD-A3455E897120}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{D616A3FB-5F9A-4C2C-B253-9AF702A73C44}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{BF5066B1-4FF0-46A9-9075-B60A0709EF6E}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{94FC55CA-3A6A-4D41-B899-D600AE380A7F}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [TCP Query User{6CF4AADF-450E-4F55-9F49-F907FD4012F5}C:\program files\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{C541EF06-CEED-4C98-991E-F014E12BA739}C:\program files\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{B85AA14E-1D6E-4721-8784-55DB6A66A62D}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{61C12D51-A209-4D90-AB5B-02B6633055B3}] => (Allow) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [TCP Query User{940F866D-6E3E-49D2-A9E0-66038F9E9999}C:\program files\mozilla firefox\plugin-container.exe] => (Allow) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{A691386D-AF0E-4ACB-8263-AB796E49DA26}C:\program files\mozilla firefox\plugin-container.exe] => (Allow) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [{87EBD0E2-ED7E-4ADA-9A34-016B034ED274}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{7FEC54C7-BA16-49CB-8BD5-99152EF5A3F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{1F1C586F-AF7E-44C6-AA74-05617A3323FF}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{6BF4180A-A4C1-438E-8AB6-6B9FBA431447}] => (Allow) C:\Program Files\Alwil Software\Avast5\ng\vbox\aswFe.exe
FirewallRules: [{A4F31886-E83C-4CEA-8E1E-53A9EB5772FB}] => (Allow) C:\Program Files\Alwil Software\Avast5\ng\vbox\aswFe.exe
FirewallRules: [{343C9B3B-CF8E-4A2A-A4EF-C487D146034B}] => (Allow) D:\trainfever\Steam\Steam.exe
FirewallRules: [{3E92C259-D6B6-43C0-B8D0-A45FE3A7BA6C}] => (Allow) D:\trainfever\Steam\Steam.exe
FirewallRules: [{62C01D29-09A2-4B63-B475-84AE339956CE}] => (Allow) D:\trainfever\Steam\bin\steamwebhelper.exe
FirewallRules: [{9A59C425-8215-4AC0-90D7-41711A1BB8FF}] => (Allow) D:\trainfever\Steam\bin\steamwebhelper.exe
FirewallRules: [{80D81B5E-9C44-4CC9-B846-4A4B7025ED29}] => (Allow) D:\trainfever\Steam\steamapps\common\Train Fever\TrainFever.exe
FirewallRules: [{E7A813F4-991A-449F-82E1-9B9B086E8D8F}] => (Allow) D:\trainfever\Steam\steamapps\common\Train Fever\TrainFever.exe
FirewallRules: [{941D10D5-5D96-4DF1-A1DD-F5B17D734D91}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{01249842-FED4-496A-80CF-AF8DD941DB20}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/15/2015 05:33:02 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Službě Windows Search se nepodařilo vytvořit vyhledávací index SystemIndex. Došlo k vnitřní chybě <4, 0x8004117f, Nepodařilo se přidat projekt: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects>.

Error: (08/15/2015 05:33:01 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: Služba Windows Search neotevřela úložiště vlastností databázového stroje Jet.

Podrobnosti:
	0x%08x (0x8004117f - Server indexu obsahu neaktualizoval nebo nenačetl informace kvůli chybě databáze. Zastavte a restartujte vyhledávací službu. Pokud potíže potrvají, vymažte index obsahu a proveďte znovu jeho procházení. V některých případech bude pravděpodobně nutné odstranit a znovu vytvořit index obsahu.  )

Error: (08/15/2015 05:33:01 PM) (Source: ESENT) (EventID: 490) (User: )
Description: Windows (3824) Windows: Pokus o otevření souboru C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (08/15/2015 05:32:16 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Službě Windows Search se nepodařilo vytvořit vyhledávací index SystemIndex. Došlo k vnitřní chybě <4, 0x8004117f, Nepodařilo se přidat projekt: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects>.

Error: (08/15/2015 05:32:15 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: Služba Windows Search neotevřela úložiště vlastností databázového stroje Jet.

Podrobnosti:
	0x%08x (0x8004117f - Server indexu obsahu neaktualizoval nebo nenačetl informace kvůli chybě databáze. Zastavte a restartujte vyhledávací službu. Pokud potíže potrvají, vymažte index obsahu a proveďte znovu jeho procházení. V některých případech bude pravděpodobně nutné odstranit a znovu vytvořit index obsahu.  )

Error: (08/15/2015 05:32:15 PM) (Source: ESENT) (EventID: 490) (User: )
Description: Windows (2308) Windows: Pokus o otevření souboru C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (08/15/2015 05:31:25 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
	Metadata indexu obsahu nelze číst.   (0xc0041801)

Error: (08/15/2015 05:31:25 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt sběrače nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
	Metadata indexu obsahu nelze číst.   (0xc0041801)

Error: (08/15/2015 05:31:25 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
	Prvek nebyl nalezen.   (0x80070490)

Error: (08/15/2015 05:31:15 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
	Metadata indexu obsahu nelze číst.   (0xc0041801)


System errors:
=============
Error: (08/15/2015 08:26:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069

Error: (08/15/2015 08:26:32 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330

Error: (08/15/2015 08:06:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069

Error: (08/15/2015 08:06:43 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330

Error: (08/15/2015 08:04:22 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (20:02:37, 15.8.2015) bylo neočekávané.

Error: (08/15/2015 07:11:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: NVIDIA Update Service Daemon%%1069

Error: (08/15/2015 07:11:58 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330

Error: (08/15/2015 07:06:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Media Player Network Sharing1300001Restartovat službu

Error: (08/15/2015 07:06:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Adobe Acrobat Update Service1

Error: (08/15/2015 07:06:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba zařazování tisku1600001Restartovat službu


Microsoft Office:
=========================
Error: (06/16/2015 09:25:46 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6720.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 11 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (03/29/2015 03:42:51 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6718.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 7 seconds with 0 seconds of active time.  This session ended with a crash.

