﻿Additional scan result of Farbar Recovery Scan Tool (x86) Version: 28-06-2016
Ran by ABC (2016-06-28 17:53:35)
Running from C:\Users\ABC\Downloads
Microsoft Windows 10 Home Version 1511 (X86) (2016-05-02 16:27:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

ABC (S-1-5-21-3526979387-1406197252-2348586671-1000 - Administrator - Enabled) => C:\Users\ABC
Administrator (S-1-5-21-3526979387-1406197252-2348586671-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3526979387-1406197252-2348586671-503 - Limited - Disabled)
Guest (S-1-5-21-3526979387-1406197252-2348586671-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3526979387-1406197252-2348586671-1004 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Flash Player 17 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.2.2214 - AVAST Software)
AviSynth 2.5 (HKLM\...\Avisynth) (Version:  - )
CAcert Root Certificates (HKLM\...\{3D42DACC-2DA6-455F-94FC-A15BCEF695E4}) (Version: 1.0.0 - CAcert Inc.)
Dungeon Defenders II (HKLM\...\Steam App 236110) (Version:  - Trendy Entertainment)
Google Chrome (HKLM\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (Version: 1.3.25.5 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.30.3 - Google Inc.) Hidden
Java 7 Update 80 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217080FF}) (Version: 7.0.800 - Oracle)
Java 8 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2003 (HKLM\...\{90AF0405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 43.0.4 (x86 cs) (HKLM\...\Mozilla Firefox 43.0.4 (x86 cs)) (Version: 43.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 43.0.4 - Mozilla)
Norton Security Scan (HKLM\...\NSS) (Version: 4.3.0.43 - Symantec Corporation)
NVIDIA PhysX (HKLM\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
Seznam Software (HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\SeznamInstall) (Version:  - Seznam.cz)
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.17 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.104 - Skype Technologies S.A.)
SlimDrivers (HKLM\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Unity Web Player (HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Wise Care 365 version 2.08 (HKLM\...\{E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1) (Version: 2.08 - WiseCleaner.com, Inc.)
World of Tanks (HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\ABC\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0525AAC0-C85F-458F-85D3-1638CB73050E} - \48_dresses_updating_service -> No File <==== ATTENTION
Task: {1466A347-1EC7-420D-8818-3EDDF33F2A85} - System32\Tasks\RsDelayLauncher_{8A34248E-7D35-4832-8378-7659E0B0A380} => C:\Program Files\Rising\RAV\rsdelaylauncher.exe
Task: {14EBC735-83EA-4A2D-AD1A-5F71414C8060} - System32\Tasks\{9EE34621-0AED-4C21-A63F-608D2B780BC9} => pcalua.exe -a C:\Users\ABC\AppData\Roaming\.minecraft\Uninstall.exe -d C:\Users\ABC\AppData\Roaming\.minecraft
Task: {15F54B11-253C-4A0B-B57E-C19A85B97880} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {193F3567-8C24-44E0-8248-ACAA6BA45CB7} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {1D5F47BD-A915-41C8-8B7C-42C271FA34BF} - System32\Tasks\{A34CA016-09D0-4576-ACB1-F7C9EF11F605} => Chrome.exe 
Task: {1E39F7E0-1969-4F47-9E43-22C6B1B98AC8} - \Safer-Networking\Spybot - Search and Destroy\Scan the system -> No File <==== ATTENTION
Task: {1F8DFE6D-5999-4A4B-8A27-7012EF3114A0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {214D4FA2-8850-4A6E-AC11-FAE25AE40675} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2905100E-8AD4-41A6-B156-0554324B6798} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {305C59A5-235A-4C82-ABF1-448D6BDCDBBE} - System32\Tasks\{DFDF8C79-403B-45DA-8F46-63DC0FD80F10} => pcalua.exe -a "C:\Users\ABC\Downloads\NHL 09\Support\NHL 09_code.exe" -d "C:\Users\ABC\Downloads\NHL 09\Support"
Task: {352DBD31-A78E-411E-8DB9-A1140FA98AD5} - System32\Tasks\{F7342EF5-3705-4DA4-8968-B5AC3CBE59F5} => pcalua.exe -a C:\Users\ABC\Downloads\Minecraft-1.7.2-install-[Full].exe -d C:\Users\ABC\Downloads
Task: {385DCE2D-8457-4C39-88FA-FA8A0115245B} - System32\Tasks\{C9D57E1E-C156-43AC-A4C4-50E7BAF04300} => pcalua.exe -a "C:\Program Files\oPryzeLP\Uninstal.exe"
Task: {4CFE11E0-66EA-42D8-AEA6-656F82E5F6D4} - System32\Tasks\{A1D89DEE-87C7-4176-90D7-C75009078B7B} => pcalua.exe -a C:\Users\ABC\Downloads\install_flashplayer14x32ax_mssa_aaa_aih.exe -d C:\Users\ABC\Downloads
Task: {4DF9D0CA-8C2F-4C71-AAC4-89CADAD18970} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {5054E73C-B8C3-4CC3-8EC8-09BD28529091} - System32\Tasks\{E0B0FF12-59EF-4531-96DA-5ED9CAC4781F} => pcalua.exe -a "C:\Users\ABC\Downloads\Minecraft 1.7.2\Minecraft 1.7.2 TagCraft.exe" -d "C:\Users\ABC\Downloads\Minecraft 1.7.2"
Task: {55CF7851-A707-4A16-9A69-65A7DD79EFFD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5763D4D3-FFC9-455D-BC70-7058623798A4} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {57885D94-335D-49E7-8E61-AE31B6ED9138} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\AVG\AVG PC TuneUp\OneClick.exe
Task: {593515E6-12FD-4D82-B206-31A26671019A} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5A48614C-7F44-43ED-8039-D839D7DDC2AF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {5BECB176-E389-4401-B17B-C20203667B38} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_190_pepper.exe [2015-06-25] (Adobe Systems Incorporated)
Task: {5D0C795D-F758-416C-BD59-16549DAF2449} - System32\Tasks\avastBCLRestartS-1-5-21-3526979387-1406197252-2348586671-1000 => Chrome.exe 
Task: {5E16E5B4-701F-491F-A246-D3C4A4754535} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5FDEBEE5-8DA9-4D5F-852B-0B98B64A0650} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {609DAC9E-7316-44E3-B685-F0D7CEDA4B63} - System32\Tasks\{F20E0418-A297-480E-B7D2-3A49A9B1FEAF} => Chrome.exe 
Task: {6180C0AF-3C8A-46AE-93C9-A483C1F93280} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-07-01] (Google Inc.)
Task: {62F0CF84-39B1-4E43-BB04-AAD06E325CAD} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {63A1A0ED-9579-48DE-904D-E47FE8508E3E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {64F8BA63-3DDB-4DA5-A036-9A5743F100E4} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {66614FAB-5A1B-4DF1-B035-42258199F630} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6B2F0DCB-14EE-4D8F-BCAF-9FB939C6315D} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {6D29532A-4765-4261-856A-AFC14EDC63D0} - System32\Tasks\Norton Security Scan for ABC => C:\Program Files\Norton Security Scan\Engine\4.3.0.43\Nss.exe [2015-07-07] (Symantec Corporation)
Task: {749D401C-F531-4D4A-A390-25B0E9996F84} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7B759640-ED13-4EA1-AF58-3C30DD2F5661} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7C5A3DFC-AC1A-43F2-AEF8-645454CDE444} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {820EEC88-D939-4F20-B135-CEA0B9AECA2E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {83CCFBB8-20FD-4BC7-8B58-ACCDE0F61462} - \Safer-Networking\Spybot - Search and Destroy\Refresh immunization -> No File <==== ATTENTION
Task: {88E8D73D-171E-4E02-8997-3866AC1BEDBD} - System32\Tasks\{1A18ADDF-0CC7-4D6E-9693-02C830037575} => pcalua.exe -a C:\Users\ABC\Downloads\install_flashplayer14x32_mssa_aaa_aih.exe -d C:\Users\ABC\Downloads
Task: {90B6B31F-6139-4383-8693-6E02C9F4065D} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe
Task: {92B15C37-D5FE-41E6-B5D3-57736661F088} - System32\Tasks\{3E3568C3-A75C-4E26-865A-02532C5B63C8} => pcalua.exe -a F:\UPDATE\assassins_creed_2_1.01_us.exe -d F:\UPDATE
Task: {92C0B8C6-252A-4171-BDBC-86F198144EFF} - System32\Tasks\Opera scheduled Autoupdate 1429368059 => C:\Program Files\Opera\launcher.exe
Task: {94AA134C-EA04-4D26-9F62-71FB520DBFF8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {981FFDF8-47D1-428C-AF36-3ECDF6528C52} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-27] (AVAST Software)
Task: {9CACEBD0-7657-493C-B0AD-0FCBCDF6E6E3} - System32\Tasks\{87EFD09F-D66E-4CF2-A086-574C125110BA} => pcalua.exe -a C:\Users\ABC\Downloads\Shockwave_Installer_Slim.exe -d C:\Users\ABC\Downloads
Task: {9EB3EC4C-3AC0-479C-9D8E-C6FE8025F9E7} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A1A6C133-8CB2-455E-8B13-720F6E1FCF0D} - System32\Tasks\{30227E22-AC06-4E01-BCD8-44108F2F180E} => pcalua.exe -a C:\Users\ABC\AppData\Roaming\istartsurf\UninstallManager.exe -c  -ptid=cor
Task: {A3F3DF69-5769-43EB-9B48-C9B9382183B9} - System32\Tasks\SteamClient => cmd.exe /c rename "C:\Program Files\Minecraft Story Mode - A Telltale Games Series\steam_api.dll" steam_api.exe <==== ATTENTION
Task: {AA7FA39B-9B21-46EB-90D6-0CD372C85DC5} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B017C968-9CC2-4276-8F0E-4A8887E51D9F} - System32\Tasks\{A575584B-CFD7-4E53-9686-E3035656F4A3} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&amp;ver=6.20.0.104&amp;LastError=404
Task: {B3BF868F-CD24-4B40-A0CD-54384D1CBE9B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {B4B91F7A-4AF2-482C-A3B5-938384F0425D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B53C22DD-991D-4AA1-80AB-FD848628DB09} - System32\Tasks\Uninstaller_SkipUac_ABC => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {B74E50C1-68CF-4601-A1E0-FEB32D86197D} - System32\Tasks\{4B184036-BF43-4280-91F2-51323851A832} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&amp;ver=6.20.0.104&amp;LastError=404
Task: {B86AE1DA-32E2-4A31-9874-9DA90F1E3E47} - System32\Tasks\{C6E64BE6-9D9B-4EFC-9D37-4362B3ADBE0E} => Chrome.exe 
Task: {B8C15983-D961-441D-AB24-0DE3C06FC9D8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {B8E05C92-5B2F-45BF-B166-5B7D9725A216} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {BEA6DA4F-8031-4E08-9EFA-14AB069E3E3D} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {C3BE7131-4420-48CE-AA53-E52888BC36BE} - System32\Tasks\{5A7514BE-CBAE-4C84-9ABE-3253A49C1648} => pcalua.exe -a C:\Users\ABC\Downloads\Cheat-Engine-6.2-CZ-PLNÁ-VERZE.exe -d C:\Users\ABC\Downloads
Task: {C3FD4511-D0C0-40DE-A4BA-D92D3FAE5404} - \Safer-Networking\Spybot - Search and Destroy\Check for updates -> No File <==== ATTENTION
Task: {C4988846-1791-4950-908F-3FBB00DD0C4F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-07-01] (Google Inc.)
Task: {C64C9A56-2345-4526-AD84-40A46DBD497C} - System32\Tasks\{3F8B9D9A-BBAE-4ADE-BAE9-3463DFEC6C15} => pcalua.exe -a "C:\Program Files\AVCWare\Ringtone Maker\Uninstall.exe"
Task: {C73AB867-9710-4DC8-80AE-D14CBB96FF54} - System32\Tasks\Wise Care 365 => C:\Program Files\Wise\Wise Care 365\WiseTray.exe [2012-09-24] (WiseCleaner.com)
Task: {C8AF2528-C33D-466A-8445-C99DBFC5D871} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C8B8D183-C092-459A-9765-4FF657195EC4} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {CB22D915-2387-4FF5-AE0F-5215461408DE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {CBEE2C60-81B4-44B0-AFF7-24087FDAA884} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D786FC07-666A-4015-91B4-D270D898D397} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-05-01] (Avast Software s.r.o.)
Task: {D850415F-9F51-4B17-A74E-C72823705123} - System32\Tasks\{A4A20A75-478D-4C7C-A7C0-D474439790EC} => pcalua.exe -a F:\INSTALL.EXE -d F:\
Task: {E06A5E0D-219A-4110-B1DB-9DF4C9C6B0D8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E17CDA64-9FAA-4C7E-B011-0B2C3B22DE01} - System32\Tasks\{10D98BF4-EB45-4F82-8B7B-1322BCBF4425} => pcalua.exe -a "D:\Left 4 Dead 2\dx.exe" -d "D:\Left 4 Dead 2"
Task: {E2E5EE32-EAEF-4468-A168-690B09B28084} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-10-06] (Oracle Corporation)
Task: {E77A1415-FF8C-45D9-9509-D9CAAB9E5B1D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {E881FBB0-7F8A-4195-BFD1-C522D9037B3A} - System32\Tasks\Driver Booster SkipUAC (ABC) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe
Task: {EB741DE6-26C8-4FBA-93B8-34AC5982493A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F548BC7F-3327-4730-84E2-20A6384EE032} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F8DCCBEE-052E-4AB8-BA0D-A479809052C4} - System32\Tasks\Google Updater and Installer => C:\Users\ABC\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {F9D5DAC6-D4B2-4087-A29E-70A90F0068D7} - System32\Tasks\{E89EAE13-9AC5-4AE1-9877-D6CDBEA90C90} => pcalua.exe -a F:\Redist\DirectX\DXSETUP.exe -d F:\Redist\DirectX
Task: {FA410193-D15F-433F-865D-C828B6F2DA42} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\48_dresses_updating_service.job => C:\Program Files\48 dresses\48_dresses_updating_service.exe« /campid=2913 /verid=1 /url=hxxp:/cdn.buildomserv.com/txt/@CAMPID@/@VER@/file.txt /appid=73143 /taskname=48_dresses_updating_service /funurl=hxxp:/stats.buildomserv.com <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_190_pepper.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Norton Security Scan for ABC.job => C:\PROGRA~1\NORTON~2\Engine\430~1.43\Nss.exe
Task: C:\WINDOWS\Tasks\Wise Care 365.job => C:\Program Files\Wise\Wise Care 365\WiseTray.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{E561A2BD-7A2C-4DD1-929C-F7E287162285}\SupportTasks\0\Podpora.lnk -> hxxp://techsupport.ea.com/ (No File)
Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{DF67B71A-0887-494B-BCF3-0B3B903398CD}\SupportTasks\1\Podpora.lnk -> hxxp://www.activision.com/support/ (No File)
Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{DF67B71A-0887-494B-BCF3-0B3B903398CD}\SupportTasks\0\Další hry od společnosti Microsoft.lnk -> hxxp://www.callofduty.com/ (No File)
Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{CD5E6F5D-BE2D-49E6-889F-67B1A9AD0A6F}\SupportTasks\0\Další hry od společnosti Microsoft.lnk -> hxxp://www.rockstargames.com/sanandreas/ (No File)
Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{A9B14813-D19C-4A82-89B2-0F2B857BC25A}\SupportTasks\0\Další hry od společnosti Microsoft.lnk -> hxxp://www.rockstargames.com/sanandreas/ (No File)
Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{A1D67198-E8DC-4B94-8137-DC09FADF03F0}\SupportTasks\1\Podpora.lnk -> hxxp://www.activision.com/support/ (No File)
Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{A1D67198-E8DC-4B94-8137-DC09FADF03F0}\SupportTasks\0\Další hry od společnosti Microsoft.lnk -> hxxp://www.callofduty.com/ (No File)
Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{5A96BB7D-6590-457F-8AEC-E10EF7FA4ECE}\SupportTasks\1\Podpora.lnk -> hxxp://techsupport.ea.com/ (No File)
Shortcut: C:\Users\ABC\AppData\Local\Microsoft\Windows\GameExplorer\{5A96BB7D-6590-457F-8AEC-E10EF7FA4ECE}\SupportTasks\0\Další hry od společnosti Microsoft.lnk -> hxxp://www.ea.com/eagames/official/battlefield1942/home.jsp/ (No File)
Shortcut: C:\Users\ABC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk -> hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy/.C:\Users\ABC\AppData\Roaming\WarThunder\wt.ico (No File)
Shortcut: C:\Users\ABC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> hxxp://mmotraffic.com/catalog/goplay/1000932/MTE3NjYvLy8xMDAwOTMy/.C:\Users\ABC\AppData\Roaming\WarThunder\wt.ico (No File)

==================== Loaded Modules (Whitelisted) ==============

2015-03-15 12:04 - 2015-03-15 12:04 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-03-15 12:04 - 2015-03-15 12:04 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-05-30 19:42 - 2016-05-30 19:42 - 02982040 _____ () C:\Program Files\AVAST Software\Avast\defs\16053000\algo.dll
2016-06-27 19:26 - 2016-06-27 19:26 - 02948608 _____ () C:\Program Files\AVAST Software\Avast\defs\16062700\algo.dll
2014-04-24 19:41 - 2015-03-11 14:24 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-10-30 07:44 - 2015-10-30 07:44 - 00149504 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-05-02 18:45 - 2016-05-02 18:45 - 01862008 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-06-10 20:59 - 2015-05-26 13:37 - 00078504 ____N () C:\Users\ABC\AppData\Roaming\Seznam.cz\bin\8099libfoxloader.dll
2016-05-02 18:45 - 2016-05-02 18:45 - 01862008 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-30 19:44 - 2016-05-30 19:44 - 00679624 _____ () C:\Users\ABC\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-05-02 18:45 - 2016-05-02 18:45 - 00070656 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-10 20:17 - 2016-04-23 06:20 - 00316416 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-10 20:20 - 2016-04-23 06:05 - 05340672 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-10 20:20 - 2016-04-23 05:58 - 00471552 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-10 20:20 - 2016-04-23 05:58 - 02366976 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-10 20:20 - 2016-04-23 06:01 - 02656768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-03-15 12:04 - 2015-03-15 12:04 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-06-10 20:59 - 2015-05-26 13:38 - 00457384 _____ () C:\Users\ABC\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
2015-06-10 20:59 - 2015-05-26 13:38 - 00862888 _____ () C:\Users\ABC\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
2015-03-15 12:04 - 2015-03-15 12:04 - 01359872 _____ () C:\Program Files\AVAST Software\Avast\libglesv2.dll
2015-03-15 12:04 - 2015-03-15 12:04 - 00212992 _____ () C:\Program Files\AVAST Software\Avast\libegl.dll
2015-12-06 17:43 - 2016-04-29 22:10 - 00785920 _____ () C:\Program Files\Steam\SDL2.dll
2015-12-06 17:43 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files\Steam\v8.dll
2015-12-06 17:43 - 2016-04-30 02:10 - 02549840 _____ () C:\Program Files\Steam\video.dll
2015-12-06 17:43 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files\Steam\icui18n.dll
2015-12-06 17:43 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files\Steam\icuuc.dll
2015-12-06 17:42 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files\Steam\libavcodec-56.dll
2015-12-06 17:42 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files\Steam\libavformat-56.dll
2015-12-06 17:42 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files\Steam\libavresample-2.dll
2015-12-06 17:42 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files\Steam\libswscale-3.dll
2015-12-06 17:42 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files\Steam\libavutil-54.dll
2015-12-06 17:43 - 2016-04-30 02:10 - 00829008 _____ () C:\Program Files\Steam\bin\chromehtml.DLL
2015-12-06 17:42 - 2016-04-28 03:00 - 49825056 _____ () C:\Program Files\Steam\bin\libcef.dll
2016-05-02 19:17 - 2016-05-02 19:17 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-05-02 19:17 - 2016-05-02 19:17 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-05-02 19:17 - 2016-05-02 19:17 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-05-02 19:12 - 2016-05-02 19:12 - 00017408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-05-02 19:12 - 2016-05-02 19:12 - 14568448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x86__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-05-02 19:08 - 2016-05-02 19:08 - 00180224 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x86__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-06-27 19:01 - 2016-06-15 11:15 - 01745560 _____ () C:\Program Files\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-27 19:01 - 2016-06-15 11:15 - 00091288 _____ () C:\Program Files\Google\Chrome\Application\51.0.2704.103\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\...\100sexlinks.com -> 100sexlinks.com

There are 4787 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2015-06-25 12:06 - 00011823 ___RA C:\WINDOWS\system32\Drivers\etc\hosts

199.59.62.24	www.malwaretips.com
199.59.62.24	malwareremovalguides.info
199.59.62.24	onlinevirusrepair.com
199.59.62.24	enigmasoftware.com
199.59.62.24	pcrisk.com
199.59.62.24	malwarebytes.org/
199.59.62.24	tomshardware.co.uk
199.59.62.24	malwaretips.com
199.59.62.24	answers.yahoo.com
199.59.62.24	www.malwareremovalguides.info
199.59.62.24	www.onlinevirusrepair.com
199.59.62.24	www.enigmasoftware.com
199.59.62.24	www.pcrisk.com
199.59.62.24	guides.yoosecurity.com
199.59.62.24	www.malwarebytes.org/
199.59.62.24	www.tomshardware.co.uk
199.59.62.24	www.gmail.com
199.59.62.24	gmail.com
199.59.62.24	www.hotmail.com
199.59.62.24	hotmail.com
199.59.62.24	www.mail.ru
199.59.62.24	mail.ru
199.59.62.24	www.torrentz.eu
199.59.62.24	torrentz.eu
199.59.62.24	www.kat.ph
199.59.62.24	kat.ph
199.59.62.24	www.thepiratebay.se
199.59.62.24	thepiratebay.se
199.59.62.24	www.thepiratebay.org
199.59.62.24	thepiratebay.org

There are 355 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3526979387-1406197252-2348586671-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ABC\Desktop\world-of-tanks.jpg
DNS Servers: 10.8.136.1 - 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: cz.seznam.software.autoupdate => "C:\Users\ABC\AppData\Roaming\Seznam.cz\szninstall.exe" -c
MSCONFIG\startupreg: FixMyRegistry => C:\Program Files\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
MSCONFIG\startupreg: NBAgent => "C:\Program Files\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: SpeedUpMyComputer => C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss
MSCONFIG\startupreg: Super Ovladac => C:\Program Files\Super Ovladac\SOLauncher.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [UDP Query User{F101A660-F9F3-49C3-81D4-3D19B8443CC3}E:\easysetupassistant\easysetupassistant.exe] => (Allow) E:\easysetupassistant\easysetupassistant.exe
FirewallRules: [TCP Query User{5C580B10-12E6-41FB-B20D-5342F1DE96A1}E:\easysetupassistant\easysetupassistant.exe] => (Allow) E:\easysetupassistant\easysetupassistant.exe
FirewallRules: [UDP Query User{C51324A0-4769-4942-8AA9-369AC4B1D6B9}C:\users\abc\appdata\local\temp\rar$exa0.754\battlefield.1942.pc.game(djdevastate™)\bf1942.exe] => (Allow) C:\users\abc\appdata\local\temp\rar$exa0.754\battlefield.1942.pc.game(djdevastate™)\bf1942.exe
FirewallRules: [TCP Query User{2B273474-3B7B-454C-98D1-F3CEBDD6751C}C:\users\abc\appdata\local\temp\rar$exa0.754\battlefield.1942.pc.game(djdevastate™)\bf1942.exe] => (Allow) C:\users\abc\appdata\local\temp\rar$exa0.754\battlefield.1942.pc.game(djdevastate™)\bf1942.exe
FirewallRules: [UDP Query User{ED41DA9B-1668-44B9-BD79-9366863F3081}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{5A5AAEA6-DC42-40F0-A552-C9481F590F45}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{8411811A-3A37-45F9-8ABF-4FE91A7DE18E}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{7D8DB6D3-6E65-4000-8F98-DF02328CE64F}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{B912BAE4-7CB2-4D3B-91D7-DA834E16B70A}C:\users\abc\appdata\local\temp\rar$exa0.754\battlefield.1942.pc.game(djdevastate™)\bf1942.exe] => (Allow) C:\users\abc\appdata\local\temp\rar$exa0.754\battlefield.1942.pc.game(djdevastate™)\bf1942.exe
FirewallRules: [TCP Query User{47D6CEEC-C4F5-43EB-922E-598C220D897D}C:\users\abc\appdata\local\temp\rar$exa0.754\battlefield.1942.pc.game(djdevastate™)\bf1942.exe] => (Allow) C:\users\abc\appdata\local\temp\rar$exa0.754\battlefield.1942.pc.game(djdevastate™)\bf1942.exe
FirewallRules: [{14C2472D-C062-47FC-81EA-F7CE585443C8}] => (Allow) C:\Program Files\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{63C99901-2023-4754-822B-E123A960C327}] => (Allow) C:\Program Files\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{8789C3FE-0747-403A-B3E3-C48A3235B347}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{FD83E72A-1A5D-4049-BFA3-F7C34E7787EF}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{A9CB75A2-E83F-4605-A598-A28CDABD5A37}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{C896B679-0E8E-44FC-802F-8D98E35FDD0B}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{9DE109FE-E89D-46F7-A581-FC16BF45CC4F}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [UDP Query User{F25BC4B0-77F8-498B-8C22-C4CA3F13FAD2}C:\program files\java\jre1.8.0_65\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [TCP Query User{46D104F8-7FA1-456A-A693-ED9C90ABAB24}C:\program files\java\jre1.8.0_65\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [UDP Query User{F219B128-6D20-4430-8F52-7F3747269528}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{6C56B2BF-B87A-4D1B-9A47-911824147EB4}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [{374D5DA9-370A-4073-BB1B-EF952F70866E}] => (Allow) C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [{4857DF43-2852-4ADB-B0B4-261C1848B10E}] => (Allow) C:\program files\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [UDP Query User{77F14B71-5C90-43BF-A685-470A274F735A}D:\prompt downloader\promptdownloader.exe] => (Allow) D:\prompt downloader\promptdownloader.exe
FirewallRules: [TCP Query User{29D6E80E-232E-479E-ADE4-3F6E59B1C41C}D:\prompt downloader\promptdownloader.exe] => (Allow) D:\prompt downloader\promptdownloader.exe
FirewallRules: [{9272B512-DE97-4DA1-8EBE-3D63B2A3E941}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{59FC74DB-8B87-4D84-98A4-D9B2B1DF3B45}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{924EF792-E100-4F25-95F6-87A420D235E1}] => (Allow) C:\Users\ABC\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{60CAE463-ED8F-46E2-A7C5-399905D6A471}] => (Allow) C:\Users\ABC\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{323CEBF2-1BDC-428E-B6B1-BBA7B1E345BA}] => (Allow) LPort=1900
FirewallRules: [{16E459BA-3AC3-498C-9D69-F6D117BE000C}] => (Allow) LPort=2869
FirewallRules: [{37C70953-33E2-4691-9313-DEB1C32C8921}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [UDP Query User{735200C2-EE86-41D9-B159-3151921D22B8}C:\users\abc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\abc\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{A71697C6-9B10-457B-82E5-CD83B2B5F7CE}C:\users\abc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\abc\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{5E983CC1-3502-481E-889B-A54C3DB42CB4}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{BF7047AC-7AF8-45DC-821E-FAD709B6508F}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{DB1777A5-9ADE-4604-8BAC-5E942A6741A0}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{ADF13B5A-8D34-4490-9ECC-97FE1B57C4AC}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{F32C1922-A1DE-444A-A02D-F6CA145129C5}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{FAAC535F-B1F3-4222-BCC2-822E0AB618AF}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{F98ECCE9-C865-494D-8F93-A687EB357115}] => (Allow) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{D8445B8B-5CBB-43FD-9A7D-7317B71C96BD}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{706AA556-195A-459F-8ADD-05A25D635A4B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{7FC4C680-78F0-4BF5-82B1-72082C4F297E}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{1677CCB8-44A0-457B-B468-6FC18B933D04}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{E11FE980-A194-42DC-A0F2-390775E77515}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

30-05-2016 19:50:04 avast! antivirus system restore point
27-06-2016 18:32:56 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/27/2016 08:02:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ISAPISearchC:\WINDOWS\system32\query.dll4

Error: (06/27/2016 08:02:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ContentIndexC:\WINDOWS\system32\query.dll4

Error: (06/27/2016 08:02:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ContentFilterC:\WINDOWS\System32\query.dll4

Error: (06/27/2016 08:02:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4

Error: (06/27/2016 07:33:08 PM) (Source: MsiInstaller) (EventID: 11921) (User: NT AUTHORITY)
Description: Product: Nero Update -- Error 1921.Service Nero Update (NAUpdate) could not be stopped.  Verify that you have sufficient privileges to stop system services.

Error: (06/27/2016 07:21:47 PM) (Source: MsiInstaller) (EventID: 10005) (User: ABC-PC)
Description: Produkt: CAcert Root Certificates - Při instalaci tohoto balíčku zjistil instalační program neočekávanou chybu. Může to znamenat, že u tohoto balíčku nastaly potíže. Kód chyby je 26352. Argumenty jsou: -2147023673, , .

Error: (06/27/2016 07:19:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: ABC-PC)
Description: Balíček Microsoft.MicrosoftEdge_25.10586.0.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{f2e20003-89f9-4fb4-b7a0-a0e1f5dead30} se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (06/27/2016 06:43:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ABC-PC)
Description: Aplikaci Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2147009280. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (06/27/2016 06:33:21 PM) (Source: EventSystem) (EventID: 4622) (User: )
Description: 800401fb{85EFB3E9-E735-4D4C-9707-E4257141AC70}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (06/27/2016 06:33:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (06/27/2016 08:58:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_3e242 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (06/27/2016 07:25:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Adaptér naslouchání Net.Msmq neuspěla při spuštění v důsledku následující chyby: 
%%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


Error: (06/27/2016 07:25:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby NetMsmqActivator bylo dosaženo časového limitu (30000 ms).

Error: (06/27/2016 07:25:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Adaptér naslouchání Net.Pipe neuspěla při spuštění v důsledku následující chyby: 
%%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


Error: (06/27/2016 07:25:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby NetPipeActivator bylo dosaženo časového limitu (30000 ms).

Error: (06/27/2016 07:25:27 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1053AvastVBoxSvcNení k dispozici{F319F1B8-7587-4146-AF9C-0D6D77819BF1}

Error: (06/27/2016 07:25:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AvastVBoxSvc neuspěla při spuštění v důsledku následující chyby: 
%%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


Error: (06/27/2016 07:25:27 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby AvastVBoxSvc bylo dosaženo časového limitu (30000 ms).

Error: (06/27/2016 07:24:54 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (06/27/2016 07:24:44 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby: 
%%1058 = Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.



CodeIntegrity:
===================================
  Date: 2016-06-28 17:44:08.567
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-27 18:40:20.527
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-22 16:20:52.130
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-22 16:04:11.777
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-13 18:57:07.188
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-09 18:31:46.006
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-02 20:45:13.771
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-02 18:37:57.070
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-02 18:14:29.170
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-02 17:55:39.805
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 6000+
Percentage of memory in use: 59%
Total physical RAM: 2046.55 MB
Available physical RAM: 821.55 MB
Total Virtual: 6142.55 MB
Available Virtual: 4658.27 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:155.81 GB) (Free:28.66 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:309.51 GB) (Free:60.83 GB) NTFS
Drive e: (CD226A2) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 1F471F47)
Partition 1: (Active) - (Size=155.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=449 MB) - (Type=27)
Partition 3: (Not Active) - (Size=309.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================