﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by Admin (2016-03-15 19:30:24)
Running from C:\Users\Admin\Desktop\Scan
Windows 10 Pro (X64) (2015-07-31 16:16:26)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Admin (S-1-5-21-2560372422-2021965399-549226919-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2560372422-2021965399-549226919-500 - Administrator - Disabled)
Baruška (S-1-5-21-2560372422-2021965399-549226919-1007 - Limited - Enabled) => C:\Users\Baruška
DefaultAccount (S-1-5-21-2560372422-2021965399-549226919-503 - Limited - Disabled)
Guest (S-1-5-21-2560372422-2021965399-549226919-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2253 - AVAST Software)
Awesomenauts (HKLM-x32\...\Steam App 204300) (Version:  - Ronimo Games)
Bitdefender Safepay™ (HKLM\...\Bitdefender Safepay) (Version: 2.0.0.744 - Bitdefender)
BlueStacks App Player (HKLM-x32\...\{AF0D9073-1AE0-4C21-AA70-41294AEFBDFD}) (Version: 2.0.8.5638 - BlueStack Systems, Inc.)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Crysis 3 v1.0.0.1 (HKLM-x32\...\Crysis 3_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dying Light: The Following - Enhanced Edition (HKLM\...\ZHlpbmdsaWdodHRoZWZvbGxvd2luZ2VuaGFuY2VkZWRpdGlvbg_is1) (Version: 1 - )
Eraser 6.2.0.2970 (HKLM\...\{58F37E51-2A83-49F3-9117-6005C63CF399}) (Version: 6.2.2970 - The Eraser Project)
Fallout 4 (HKLM-x32\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GDR 5343 for SQL Server 2012 (KB3045321) (HKLM-x32\...\KB3045321) (Version: 11.2.5343.0 - Microsoft Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Grand Theft Auto IV Episodes from Liberty City v.1.1.2.0 (HKLM-x32\...\Grand Theft Auto IV Episodes from Liberty City_is1) (Version:  - )
Grand Theft Auto IV v.1.07.0 (HKLM-x32\...\Grand Theft Auto IV_is1) (Version:  - )
Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: 1.0.350.1 - Rockstar)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Half-Life 2: Episode One (HKLM-x32\...\Steam App 380) (Version:  - Valve)
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.0.3.171 - IObit)
Java 8 Update 74 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218074F0}) (Version: 8.0.740.2 - Oracle Corporation)
KeePass Password Safe 2.31 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.31 - Dominik Reichl)
Killing Floor (HKLM-x32\...\Steam App 1250) (Version:  - Tripwire Interactive)
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version:  - Tripwire Interactive)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Little Fighter (HKLM-x32\...\Little Fighter) (Version:  - )
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.410 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.410 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 (HKLM-x32\...\Microsoft SQL Server SQLServer2012) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version:  - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version:  - )
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 44.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 cs)) (Version: 44.0.2 - Mozilla)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Potplayer-64 Bits (HKLM\...\PotPlayer64) (Version:  - Kakao Corp.)
Prime Benchmark 3.1 (HKLM-x32\...\Prime Benchmark_is1) (Version:  - Vlastimil Burian)
PWGen 2.7.0 (HKLM-x32\...\{8A5E6B59-2804-4677-8A5F-DEBC218CE4E0}_is1) (Version:  - Christian Thöing)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7525 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.9 - Rockstar Games)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Serious Sam 2 (HKLM-x32\...\SeriousSam2) (Version:  - )
Serious Sam TFE HD (Jimbus edition) (HKLM-x32\...\Serious Sam TFE HD) (Version: 117727 - Jimbo)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
Service Pack 2 for SQL Server 2012 (KB2958429) (HKLM-x32\...\KB2958429) (Version: 11.2.5058.0 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Sonic & All-Stars Racing Transformed (HKLM-x32\...\Steam App 212480) (Version:  - Sumo Digital)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
Telegram Desktop version 0.9.32 (HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.9.32 - Telegram Messenger LLP)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0FA8AE0C-69AE-4F60-A1AB-F79C6BA5A999}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114831) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{319F14FC-24A0-4A07-B84C-C7450AF9422F}) (Version:  - Microsoft)
VirusTotal Uploader 2.2 (HKLM-x32\...\VTUploader) (Version:  - )
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - )
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
Ziggurat (2014)(CZ) (HKLM-x32\...\Ziggurat_is1) (Version:  - )
ZOMBI v.версия 1.0 (HKLM-x32\...\ZOMBI_is1) (Version:  - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {060020EF-B665-4795-9FF3-7115BCCA5BFA} - \COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} -> No File <==== ATTENTION
Task: {0D5CD650-3718-4E71-B30D-225E60CF6435} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-02-03] (AVAST Software)
Task: {1754DEE7-B15D-4684-BFE4-7EC7B2A8102E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-22] (Google Inc.)
Task: {22904216-C1D0-45D0-881E-26E480E29E42} - \COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} -> No File <==== ATTENTION
Task: {31AECE89-657C-47E5-844D-FE2A5A59B1D2} - System32\Tasks\Uninstaller_SkipUac_Admin => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-08-25] (IObit)
Task: {3797CC23-DE64-426E-A8C9-00A1BEA42BA3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {3DFE9E96-B9F4-4B6D-944E-3BA0709BA7E4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd)
Task: {3FE25E9A-4E5F-44EA-84BA-E8C61D179186} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [2016-03-09] (Microsoft Corporation)
Task: {40F1D8AC-7C74-419D-99A4-FDC8E34EEBD0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-22] (Google Inc.)
Task: {4243245B-2E31-488F-AFC0-4F5F9F8F76F2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {47039CF4-5EC8-43B7-B26C-6C518DABA2D6} - System32\Tasks\{B00B4C0C-0045-4E54-A63E-918F6B816D0F} => pcalua.exe -a C:\Users\Admin\Downloads\avgarkt-setup-1.1.0.42.exe -d C:\Users\Admin\Downloads
Task: {47BF8136-5BC1-499F-A958-FDD22F09D56D} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {4A8D8E46-3B40-44BD-83C5-E6107B284A01} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-10] (Adobe Systems Incorporated)
Task: {4AB6E0E2-140B-4699-8173-F41C8D2FCA87} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {4CC7DDEE-8F7E-456F-87AA-91B06C4069F5} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}
Task: {54C33C36-CEEE-449E-95E1-5A5B3A5D9B46} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-05-27] (Microsoft Corporation)
Task: {5B03405B-ADCD-48C6-8F69-E693E10A0D2F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {5F3DDBD1-B785-47A5-B9BE-577CB73E3E59} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {650178BC-DBFD-4C8B-A89E-7481C097C057} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-05-27] (Microsoft Corporation)
Task: {7AB31436-3F03-4A70-A5C4-F3A604712B5C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {89E8D41F-9A78-4F7D-9220-9D8609A151E0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A79AFD1A-A733-4902-A5BC-A090B8FA8B45} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-05-27] (Microsoft Corporation)
Task: {B2261EC4-2B08-4F2F-A0B5-F238F58E6577} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-05-27] (Microsoft)
Task: {B71AAB24-5395-4C0B-9856-60518FD24143} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {C15FD362-C855-4D7C-BB25-78B1C06D7EC2} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-05-27] (Microsoft Corporation)
Task: {C5D08BD1-EEA8-413F-8F9C-34F0E06B882F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-03-09] (Microsoft Corporation)
Task: {C681F58B-B5CE-4EAD-8AD5-09CD82DDD995} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {C9703E5C-8C68-4F15-BCA3-8B4433A34122} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {CBF8079A-012D-4D4B-A471-0CECF116DF43} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {FE997E90-DF24-4029-BC98-F09B7367650C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Admin.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-07-31 16:20 - 2015-07-31 16:20 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-15 20:39 - 2015-07-15 20:39 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 00817152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2015-09-02 23:29 - 2015-10-02 22:54 - 01360016 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2015-08-21 00:38 - 2015-08-11 10:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-09-02 21:33 - 2014-01-28 04:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2015-09-30 21:50 - 2015-09-30 21:50 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-30 21:50 - 2015-09-30 21:50 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-09-15 07:58 - 2015-09-15 07:58 - 08901184 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-05-01 15:13 - 2014-05-01 15:13 - 00470016 _____ () C:\Users\Admin\AppData\Local\MEGAsync\ShellExtX64.dll
2015-09-30 21:50 - 2015-09-30 21:50 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-09-30 21:50 - 2015-09-30 21:50 - 00642048 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
2015-12-10 18:01 - 2015-11-25 05:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-10 18:01 - 2015-11-25 05:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-10 18:01 - 2015-11-25 05:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-09-30 21:50 - 2015-09-30 21:50 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-21 16:32 - 2016-01-21 16:32 - 03563008 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.19020.0_x64__8wekyb3d8bbwe\Calculator.exe
2015-12-15 13:58 - 2015-12-15 13:58 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.19020.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-03-02 00:25 - 2016-03-09 16:15 - 02420224 _____ () C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe
2016-02-03 18:08 - 2016-02-03 18:08 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-02-03 18:08 - 2016-02-03 18:08 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-03-14 18:40 - 2016-03-14 18:40 - 02840576 _____ () C:\Program Files\AVAST Software\Avast\defs\16031401\algo.dll
2016-02-03 18:08 - 2016-02-03 18:08 - 00480760 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-03-15 13:48 - 2016-03-15 13:48 - 02840576 _____ () C:\Program Files\AVAST Software\Avast\defs\16031500\algo.dll
2015-09-04 20:33 - 2016-03-15 03:46 - 00033792 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2015-09-02 21:33 - 2014-01-28 04:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2015-09-27 19:21 - 2014-09-03 09:46 - 00203768 _____ () C:\Program Files\Bitdefender\Bitdefender Safepay\txmlutil.dll
2015-09-27 19:21 - 2014-09-03 09:48 - 00033336 _____ () C:\Program Files\Bitdefender\Bitdefender Safepay\manupdchksch.dll
2016-02-21 12:10 - 2016-02-18 05:14 - 01630360 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libglesv2.dll
2016-02-21 12:10 - 2016-02-18 05:14 - 00085656 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libegl.dll
2015-12-17 00:09 - 2015-12-17 00:09 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-03-02 00:25 - 2016-03-02 00:25 - 00092599 _____ () C:\Users\Admin\Desktop\Tor Browser\Browser\libssp-0.dll
2016-03-02 00:25 - 2016-03-02 00:25 - 00719217 _____ () C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Tor\libevent-2-0-5.dll
2016-03-02 00:25 - 2016-03-02 00:25 - 00092599 _____ () C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Tor\libssp-0.dll
2016-03-02 00:25 - 2016-03-02 00:25 - 00107520 _____ () C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Tor\zlib1.dll
2016-03-02 00:25 - 2016-03-02 00:25 - 00523262 _____ () C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Tor\libgcc_s_sjlj-1.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00144832 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2016-01-21 01:02 - 2016-01-21 01:02 - 02632640 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00554944 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2016-01-21 01:02 - 2016-01-21 01:02 - 00041920 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2016-01-21 01:02 - 2016-01-21 01:02 - 00039872 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00086464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00078272 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 02198464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00114112 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00245184 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00089536 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libvdr_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00055744 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00072128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00598464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00771520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00131520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00052672 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\librar_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00023488 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00145856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 01566656 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00334784 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 01265600 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00069568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00242624 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00048576 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00108992 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2016-01-21 01:02 - 2016-01-21 01:02 - 11997632 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00096704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00091584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00032192 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 01308096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00046528 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libdemux_cdg_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00086976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libvobsub_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00026560 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libdemux_stl_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00100800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsubtitle_plugin.dll
2016-01-21 01:02 - 2016-01-21 01:02 - 00261056 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll
2016-01-21 01:02 - 2016-01-21 01:02 - 00027072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2016-01-21 01:02 - 2016-01-21 01:02 - 00298944 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00084928 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 01291200 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00754624 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00344512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00052160 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00456128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00035776 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00030144 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00034752 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00961472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00157632 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 02668480 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00356288 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liba52_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00031680 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00370112 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libopus_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00121792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdvbsub_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 14929344 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 01782208 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvpx_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00038336 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libscte27_plugin.dll
2016-01-21 01:02 - 2016-01-21 01:02 - 01568704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libzvbi_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00067008 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsubsdec_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00789952 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\text_renderer\libfreetype_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00137152 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00038848 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00030144 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_mmx_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00746432 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00027072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00125376 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_sse2_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00140224 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00064448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_mmx_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00176576 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_mmx_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00067520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00027584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 01504704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00127936 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libhttp_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00030656 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00027584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00029632 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00029120 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00037312 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00024000 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00034240 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00023488 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll
2016-01-21 01:01 - 2016-01-21 01:01 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libyuvp_plugin.dll
2016-01-21 01:00 - 2016-01-21 01:00 - 00088512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_mms_plugin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


AlternateDataStreams: C:\Users\Admin\Downloads\10255839_1383135778640599_8173910330187023673_o.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\10409035_375870925952276_2832422946215172114_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\10958700_769017893174703_200329094_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\10962006_771676516242174_309528695_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\10962055_1705094809716871_851055478_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\10968185_1705093516383667_2077305528_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\10979464_771670466242779_1996548684_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11002723_771666086243217_2043816741_o.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11006037_771664336243392_53824045_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11018100_359959650865137_2096148368536846332_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11040335_784713314938494_923767445_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11041506_793197587440177_1686713377_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11046207_677024265739750_3831215964110502337_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11061716_882036105188002_6921144233422175289_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11106434_806343692792233_595465251_n.jpg.png:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11169133_919413401413060_1626888571_n.jpg:$CmdTcID [64]
AlternateDataStreams: C:\Users\Admin\Downloads\11169133_919413401413060_1626888571_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11188297_362211973973238_4247317530694173432_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11209704_708736622568514_7823738208921563768_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11257045_882638495133127_136655729_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11295926_811962445554476_2003495727114681540_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11304224_1064037353623599_1014440761_n.jpg:$CmdTcID [64]
AlternateDataStreams: C:\Users\Admin\Downloads\11304224_1064037353623599_1014440761_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11659436_381797738681328_218095081028849347_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\11692968_1138470686168562_690084838_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\1175489_610002932356319_166082306_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\198504_208169089210869_356584_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\226523_220302707997507_1267072_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\522040_801688833207533_5576881731799159039_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\549366_1037512909593754_5801239504446833426_n.jpg:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\DSC_0232.JPG:$CmdTcID [64]
AlternateDataStreams: C:\Users\Admin\Downloads\DSC_0232.JPG:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\DSC_0238.JPG:$CmdTcID [64]
AlternateDataStreams: C:\Users\Admin\Downloads\DSC_0238.JPG:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\DSC_0239.JPG:$CmdTcID [64]
AlternateDataStreams: C:\Users\Admin\Downloads\DSC_0239.JPG:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\P1190002.JPG:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\P1190014.JPG:$CmdZnID [26]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\35872083.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\35872083.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7870 more sites.

IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\123simsen.com -> www.123simsen.com

There are 7870 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-12-14 00:21 - 2016-03-15 03:46 - 00450180 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	1000gratisproben.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	10sek.com
127.0.0.1	www.10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	123fporn.info
127.0.0.1	www.123fporn.info
127.0.0.1	123haustiereundmehr.com
127.0.0.1	www.123haustiereundmehr.com
127.0.0.1	123moviedownload.com
127.0.0.1	www.123moviedownload.com

There are 15468 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2560372422-2021965399-549226919-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\Desktop\♥.png
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: appdrvrem01 => 3
MSCONFIG\Services: cmdvirth => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HitmanProScheduler => 2
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: Secunia PSI Agent => 3
MSCONFIG\Services: Secunia Update Agent => 3
MSCONFIG\Services: SkypeUpdate => 2
HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Kaspersky Software Updater Beta.lnk"
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run: => "COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}"
HKLM\...\StartupApproved\Run: => "InstallerLauncher"
HKLM\...\StartupApproved\Run: => "obkagent"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "SpybotPostWindows10UpgradeReInstall"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "pdiface"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "KSS"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{7CCF0C25-11D5-4CA3-A17C-88176E07BBE8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{B1378552-86AD-4D8F-B766-399ED8AA1EB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{FEE81C9C-4983-4427-B73C-363C9F430C04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{884490E6-DD28-4AC2-BB92-D6814E7AAF6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{2F336433-F382-4DA8-8E5B-04CEE10B9457}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [{8AF5C2DB-6EDD-4A7F-B912-9E56A18FC4A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [{922E858E-3D74-40CB-9857-33BBB806E4DC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{38A25821-D07E-4BD4-A502-1B8A8B10B1D9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [UDP Query User{C73CD06D-C9E4-4837-B4E3-39B4C97C570E}C:\hry\far cry 4\bin\farcry4.exe] => (Block) C:\hry\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{5539A1A8-2B60-4F32-A105-9A8B791DFF0F}C:\hry\far cry 4\bin\farcry4.exe] => (Block) C:\hry\far cry 4\bin\farcry4.exe
FirewallRules: [{2550B052-FD6D-4338-8847-CE1B8B70B389}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4B9F961C-C405-4E44-AEA1-DFD040588F34}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{72DF78AC-E0C4-4548-9B2C-C9A809B359A5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5D09E645-414F-4AD5-85A2-6D8F0B5D5175}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{98BFAA31-5FCB-466E-BB20-FD89F2BC54A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{C1E0919B-90C3-4FFA-80DA-D46CAC3768A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [TCP Query User{3DD7B35F-D681-401C-B612-23E64F12DF12}C:\hry\th145\th145.exe] => (Allow) C:\hry\th145\th145.exe
FirewallRules: [UDP Query User{EC15E5B0-364B-4C03-ADC0-503E983C8966}C:\hry\th145\th145.exe] => (Allow) C:\hry\th145\th145.exe
FirewallRules: [TCP Query User{48BD4D45-1698-4D90-97D3-56043EF72AA0}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{2668DAA6-946D-44E9-A88C-C7E2728E39FD}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{004203BE-33B1-41BA-ADD9-ADDBCBC546E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{9A26A461-049E-463B-ACA3-615B0A2C5A85}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{C246FA8F-5E0C-4F18-8BB7-88B5BE9E9FE8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{186F2F85-B3EA-4CE4-9310-D579078A47A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{844B0D05-4AAC-4328-B3C0-097A3F663B50}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{9E88B1FD-5D91-4503-AE74-B3ADD8A728F5}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{B0D25192-C9A5-4F12-8714-0D2A17E35B32}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{554201E6-4761-435F-8827-CF1207AFF181}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{914A1383-3EB3-4F9F-911E-77A31D90BD16}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{C5BF0C38-0867-4E25-807D-6FC2C7DA1458}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{7341B6CE-E64C-4581-9A64-BF309AC811D2}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{AE638106-D30E-4E27-ADA4-1223E226E225}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{CD59460A-C235-4F4A-8B46-3FA9B945CEA8}C:\program files (x86)\littlefighter\lf2.exe] => (Block) C:\program files (x86)\littlefighter\lf2.exe
FirewallRules: [UDP Query User{C4C2941C-4B92-4824-887B-2BD2DB188D38}C:\program files (x86)\littlefighter\lf2.exe] => (Block) C:\program files (x86)\littlefighter\lf2.exe
FirewallRules: [{629DFDA8-7907-41A3-8B0A-C222BB7C38A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{0006C22E-A8AC-4517-956A-D8CC228610FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{C8495053-2A6C-470C-B498-01C4F785D03F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
FirewallRules: [{1D60FDA6-9AE3-4570-986B-2DA83E720947}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
FirewallRules: [TCP Query User{D4E1ADD4-589F-4EFB-BBCD-DF3F17FD4BC8}C:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe] => (Block) C:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe
FirewallRules: [UDP Query User{E3BE0399-575E-403A-BD16-29781A4A53F9}C:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe] => (Block) C:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe
FirewallRules: [TCP Query User{09B39740-CEE7-4B05-BF51-31F70C9DAFEE}C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe] => (Block) C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{4E8858D3-7D2C-4CBB-B903-A1826B87CC59}C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe] => (Block) C:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe
FirewallRules: [{4C1FDFB3-7D1C-495D-9129-9F5BE220D3D7}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{898CF213-4ACD-4B45-8D57-6027842490F2}] => (Allow) LPort=2869
FirewallRules: [{B9FBD845-B9D8-4B8A-95D1-A82AC1766599}] => (Allow) LPort=1900
FirewallRules: [{935A30E4-D7F0-44A0-842A-170A22294C56}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{3304AFAF-04A3-43AB-A8B4-5CCC5CFC66E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{B40147E2-BAE3-4D80-899A-6E863642306D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{88F4F334-B86C-4026-B85D-0CF6030581CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [{4B832356-64C3-40C3-9EE4-DE78AC7E2431}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [{3C428B77-E9A1-40D2-A9EA-D78F91513855}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{065F1EA8-97F1-44B2-B553-BDAE71E27B07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{464B5C38-CC4A-4AFF-9C27-CE6EA34CCD14}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{9A5331C0-6E8B-43D0-B729-7A6EEEED2D19}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{CDFF65F9-8420-4639-A08A-05613E28892A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{6182ACF3-085E-46B6-B62D-BEF789E0CD33}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{89B285B9-143B-40E4-80DB-0F314ADF21EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{BA49A8B8-E654-419B-BCE0-0C2FBAB2009E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{0306D784-28D5-4BEB-B8AA-B20E46554949}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{B1ADEFD9-F648-4560-B77C-5581E9F3EC77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{77EC1B6F-3482-454F-9DAF-614EC5A4AA61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{8FA51AF9-9C1B-439C-8842-F067E7D99CC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{6E2B86FB-1D42-41C7-9D72-64672A828D26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{D4BC4F18-AE35-473A-8A7C-779F38C59B06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{AB060DFD-0A0D-4B4B-B817-07E20C9BC393}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{53FD018B-9E56-4490-AD1C-B596108768F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{423C1518-EDDC-4D84-A6A1-614B42CBFE42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{10D5F858-F77D-4BAC-A3DC-5A2895F37ABC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [TCP Query User{4B45F5D9-299B-483A-964C-44972C119314}C:\hry\dying light\dyinglightgame.exe] => (Block) C:\hry\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{4C43D412-813A-48BC-8BD4-D83BD9EF8285}C:\hry\dying light\dyinglightgame.exe] => (Block) C:\hry\dying light\dyinglightgame.exe
FirewallRules: [{CFDAD18D-7723-490B-BFFC-640590924ECD}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{88B86C78-3E21-411A-A1E7-42D004716B99}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{84A176A2-C4C0-48D2-BDCA-62F1CD5C762E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{41C27B85-5C36-4832-9390-B03E30BACEE2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [TCP Query User{9DA3D2DD-7237-4C53-A793-69077865E7A6}C:\hry\th145\th145e.exe] => (Allow) C:\hry\th145\th145e.exe
FirewallRules: [UDP Query User{9AC7263C-72CC-4B30-9568-9D38825FD53F}C:\hry\th145\th145e.exe] => (Allow) C:\hry\th145\th145e.exe
FirewallRules: [{253BD39E-F546-47D4-A1A5-7D52F95CE1D4}] => (Block) C:\hry\th145\th145e.exe
FirewallRules: [{0FB471BE-71DF-4A75-A466-AD4C4FE722BF}] => (Block) C:\hry\th145\th145e.exe

==================== Restore Points =========================

27-02-2016 16:37:23 COMODO System Utilities Installaton
01-03-2016 19:33:21 Operace obnovení
05-03-2016 18:56:57 F-Secure Ultralight updated
09-03-2016 15:43:37 Windows Update
10-03-2016 20:15:23 Your Software Deals 1.0.0 restore point
13-03-2016 00:17:34 Avira PC Cleaner - 13. 3. 2016 0:17
13-03-2016 18:43:31 Installed Eraser 6.2.0.2970

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/15/2016 12:51:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MOM.exe, verze: 4.5.0.0, časové razítko: 0x53ad0e3f
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.10240.16683, časové razítko: 0x56ad97a2
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000002a1c8
ID chybujícího procesu: 0x1748
Čas spuštění chybující aplikace: 0xMOM.exe0
Cesta k chybující aplikaci: MOM.exe1
Cesta k chybujícímu modulu: MOM.exe2
ID zprávy: MOM.exe3
Úplný název chybujícího balíčku: MOM.exe4
ID aplikace související s chybujícím balíčkem: MOM.exe5

Error: (03/15/2016 12:51:15 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: MOM.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.Reflection.TargetInvocationException
Zásobník:
   na System.RuntimeMethodHandle.InvokeMethod(System.Object, System.Object[], System.Signature, Boolean)
   na System.Reflection.RuntimeMethodInfo.UnsafeInvokeInternal(System.Object, System.Object[], System.Object[])
   na System.Reflection.RuntimeMethodInfo.Invoke(System.Object, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object[], System.Globalization.CultureInfo)
   na System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
   na System.Type.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[])
   na ATI.ACE.MOM.EXE.MOM.Main(System.String[])

Error: (03/15/2016 06:50:03 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ZalmanR1)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (03/15/2016 03:48:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MOM.exe, verze: 4.5.0.0, časové razítko: 0x53ad0e3f
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.10240.16683, časové razítko: 0x56ad97a2
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000002a1c8
ID chybujícího procesu: 0xfbc
Čas spuštění chybující aplikace: 0xMOM.exe0
Cesta k chybující aplikaci: MOM.exe1
Cesta k chybujícímu modulu: MOM.exe2
ID zprávy: MOM.exe3
Úplný název chybujícího balíčku: MOM.exe4
ID aplikace související s chybujícím balíčkem: MOM.exe5

Error: (03/15/2016 03:48:02 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: MOM.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.Reflection.TargetInvocationException
Zásobník:
   na System.RuntimeMethodHandle.InvokeMethod(System.Object, System.Object[], System.Signature, Boolean)
   na System.Reflection.RuntimeMethodInfo.UnsafeInvokeInternal(System.Object, System.Object[], System.Object[])
   na System.Reflection.RuntimeMethodInfo.Invoke(System.Object, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object[], System.Globalization.CultureInfo)
   na System.RuntimeType.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[], System.Reflection.ParameterModifier[], System.Globalization.CultureInfo, System.String[])
   na System.Type.InvokeMember(System.String, System.Reflection.BindingFlags, System.Reflection.Binder, System.Object, System.Object[])
   na ATI.ACE.MOM.EXE.MOM.Main(System.String[])

Error: (03/15/2016 03:46:32 AM) (Source: MSSQL$ADK) (EventID: 17207) (User: )
Description: FileMgr::StartLogFiles: Operating system error 2(Systém nemůže nalézt uvedený soubor.) occurred while creating or opening file 'e:\sql11_main_t.obj.x86release\sql\mkmastr\databases\objfre\i386\modellog.ldf'. Diagnose and correct the operating system error, and retry the operation.

Error: (03/15/2016 03:46:32 AM) (Source: MSSQL$ADK) (EventID: 17204) (User: )
Description: FCB::Open failed: Could not open file e:\sql11_main_t.obj.x86release\sql\mkmastr\databases\objfre\i386\model.mdf for file number 1.  OS error: 3(Systém nemůže nalézt uvedenou cestu.).

Error: (03/15/2016 03:46:31 AM) (Source: MSSQL$ADK) (EventID: 17207) (User: )
Description: FileMgr::StartLogFiles: Operating system error 2(Systém nemůže nalézt uvedený soubor.) occurred while creating or opening file 'e:\sql11_main_t.obj.x86release\sql\mkmastr\databases\objfre\i386\MSDBLog.ldf'. Diagnose and correct the operating system error, and retry the operation.

Error: (03/15/2016 03:46:31 AM) (Source: MSSQL$ADK) (EventID: 17204) (User: )
Description: FCB::Open failed: Could not open file e:\sql11_main_t.obj.x86release\sql\mkmastr\databases\objfre\i386\MSDBData.mdf for file number 1.  OS error: 3(Systém nemůže nalézt uvedenou cestu.).

Error: (03/15/2016 03:37:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Eraser.exe, verze: 6.2.0.2970, časové razítko: 0x55e85985
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.10240.16683, časové razítko: 0x56ad97a2
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000002a1c8
ID chybujícího procesu: 0x1460
Čas spuštění chybující aplikace: 0xEraser.exe0
Cesta k chybující aplikaci: Eraser.exe1
Cesta k chybujícímu modulu: Eraser.exe2
ID zprávy: Eraser.exe3
Úplný název chybujícího balíčku: Eraser.exe4
ID aplikace související s chybujícím balíčkem: Eraser.exe5


System errors:
=============
Error: (03/15/2016 02:06:53 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {F3B4E234-7A68-4E43-B813-E4BA55A065F6}

Error: (03/15/2016 06:50:38 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5

Error: (03/15/2016 06:50:03 AM) (Source: DCOM) (EventID: 10010) (User: ZalmanR1)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca

Error: (03/15/2016 06:50:02 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (03/15/2016 03:59:40 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (03/15/2016 03:59:40 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (03/15/2016 03:59:39 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (03/15/2016 03:59:38 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (03/15/2016 03:59:38 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (03/15/2016 03:59:37 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici


CodeIntegrity:
===================================
  Date: 2016-03-15 17:30:28.428
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 15:07:44.482
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 14:58:08.484
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 14:37:15.104
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 14:23:24.448
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 14:14:27.791
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 05:48:53.066
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 04:09:36.485
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-15 03:48:54.622
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-14 15:49:02.577
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: AMD FX(tm)-6300 Six-Core Processor 
Percentage of memory in use: 73%
Total physical RAM: 8093.44 MB
Available physical RAM: 2166.28 MB
Total Virtual: 16285.44 MB
Available Virtual: 7151.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.73 GB) (Free:171.58 GB) NTFS
Drive d: (Untitled) (Fixed) (Total:931.51 GB) (Free:80.84 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E3B86E78)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B7F7BA07)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================