﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-08-2016 01
Ran by Admin (16-08-2016 08:09:18)
Running from C:\Users\Admin\Desktop
Windows 10 Pro Version 1607 (X64) (2016-08-06 21:36:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Admin (S-1-5-21-2560372422-2021965399-549226919-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2560372422-2021965399-549226919-500 - Administrator - Disabled)
Baruška (S-1-5-21-2560372422-2021965399-549226919-1007 - Limited - Enabled) => C:\Users\Baruška
DefaultAccount (S-1-5-21-2560372422-2021965399-549226919-503 - Limited - Disabled)
Guest (S-1-5-21-2560372422-2021965399-549226919-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.18.354 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{92a7fd6b-31e5-472f-862e-79214c5032ef}) (Version: 1.1.67.18988 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.67.18988 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bitdefender Safepay™ (HKLM\...\Bitdefender Safepay) (Version: 2.0.0.744 - Bitdefender)
Catalyst Control Center Next Localization BR (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0718.1747.30147 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.19 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6229 - CDBurnerXP)
Crysis 3 v1.0.0.1 (HKLM-x32\...\Crysis 3_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Driver Booster 3.5 (HKLM-x32\...\Driver Booster_is1) (Version: 3.5 - IObit)
Eraser 6.2.0.2970 (HKLM\...\{58F37E51-2A83-49F3-9117-6005C63CF399}) (Version: 6.2.2970 - The Eraser Project)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Half-Life 2: Episode One (HKLM\...\Steam App 380) (Version:  - Valve)
Half-Life 2: Episode Two (HKLM\...\Steam App 420) (Version:  - Valve)
Hard Disk Sentinel (HKLM-x32\...\Hard Disk Sentinel_is1) (Version:  - HDS)
HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version:  - EFD Software)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.0.1.119 - IObit)
KeePass Password Safe 2.34 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.34 - Dominik Reichl)
Killing Floor 2 (HKLM\...\Steam App 232090) (Version:  - Tripwire Interactive)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 48.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 48.0 (x86 cs)) (Version: 48.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0 - Mozilla)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
O&O Defrag Professional (HKLM\...\{10F2471C-34AD-4C33-9F92-039B8BC44AC0}) (Version: 19.5.222 - O&O Software GmbH)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.8 - Panda Security)
Prime Benchmark 3.1 (HKLM-x32\...\Prime Benchmark_is1) (Version:  - Vlastimil Burian)
PWGen 2.8.0 (HKLM-x32\...\{8A5E6B59-2804-4677-8A5F-DEBC218CE4E0}_is1) (Version:  - Christian Thöing)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7525 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
Serious Sam 3: BFE (HKLM\...\Steam App 41070) (Version:  - Croteam)
Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.2.0 - IObit)
Sonic & All-Stars Racing Transformed (HKLM\...\Steam App 212480) (Version:  - Sumo Digital)
Startup Delayer v3.0 (build 366) (HKLM-x32\...\Startup Delayer) (Version: 3.0 (build 366) - r2 Studios)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Fortress 2 (HKLM\...\Steam App 440) (Version:  - Valve)
Terraria (HKLM\...\Steam App 105600) (Version:  - Re-Logic)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version:  - )
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
VirusTotal Uploader 2.2 (HKLM-x32\...\VTUploader) (Version:  - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-2) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {000647D1-7CC3-49D8-A136-58027C4C47D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-06] (Google Inc.)
Task: {03896D04-23AB-4F74-A27D-B1B71EE41E2C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [2016-07-16] (Microsoft Corporation)
Task: {03FC538C-94A1-4EE9-8522-E81CDACAE62D} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\UpgradeSubscription.exe [2016-07-17] (Microsoft Corporation)
Task: {16AC8A2A-FA18-4F10-AA45-8294499748FA} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [2016-07-22] (IObit)
Task: {16DEA092-FB0C-40D0-AE20-0536BECC21D9} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task
Task: {184784E2-6ACB-4154-BD0F-A955BE13F177} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange
Task: {1B65DD58-D16B-45E8-BEB4-94D7E4D64DF7} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task
Task: {3F55E112-C15C-493F-A4E8-1FF104FEEA8C} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\UpgradeSubscription.exe [2016-07-17] (Microsoft Corporation)
Task: {5A59D928-5BDF-4A27-9E12-DE1FB625DCE6} - System32\Tasks\Uninstaller_SkipUac_Admin => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-08-04] (IObit)
Task: {5BE91AA6-4313-4E4B-9C09-33DBE53D8152} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [2016-07-16] (Microsoft Corporation)
Task: {6232090F-3BD0-4E1F-960B-78CBA797F685} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand
Task: {6B1AE720-1359-4B9E-9C0F-60167361EF01} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask
Task: {6E8AE752-C5D2-4B34-B351-338B4370A342} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand
Task: {7544DA6C-A75B-45D5-8E52-169DE680A4C6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {7AC5E1E2-2FD3-40CD-8842-88CE53A3609C} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense
Task: {7F704849-62BF-476B-BC6A-3E24321DEF35} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {9851188E-AC07-4F36-BA28-6D00BB2C9C46} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [2016-07-16] (Microsoft Corporation)
Task: {9FF4DE94-5479-451C-8AC8-5276D6BEA8AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-10] (Piriform Ltd)
Task: {A5674FF3-A052-4EA5-B435-F90CBF13A821} - System32\Tasks\Driver Booster SkipUAC (Admin) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-07-28] (IObit)
Task: {A6F2C303-E3D6-4A09-ABD5-13D2E4092347} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {B116773B-C550-4216-AE01-D6E1CECF6ACE} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-07-18] (Advanced Micro Devices, Inc.)
Task: {B6EE76B2-4F82-4E15-9345-C867A29CBAD0} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [2016-07-16] (Microsoft Corporation)
Task: {BA402D59-1B2E-4AE4-B256-B2C2DA7CD652} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-06] (Google Inc.)
Task: {BB163CA0-D83A-44B5-99ED-3239826A04D4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {CC636E49-0109-402B-A40B-A37C29069A95} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession
Task: {CD19BC8A-E9FE-49ED-92A5-0E1194F69F00} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\Windows\System32\XblGameSaveTask.exe [2016-07-16] (Microsoft Corporation)
Task: {D394BE25-2E16-45D4-AAB2-3E8861A09351} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask
Task: {D3C4106A-D511-42C6-9716-465644534C87} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [2016-07-16] (Microsoft Corporation)
Task: {D941F53F-7907-4FBE-B1E7-69EBD5B3A5D8} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange
Task: {EA9BAA00-6604-4A27-8A73-AFA65F0EE1B3} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => Rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
Task: {ECEDC57D-8965-4EB1-BD6F-84791D928E23} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [2016-07-16] (Microsoft Corporation)
Task: {F0089C1C-3B6F-425F-BE3D-AAD65383544C} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-07-28] (IObit)
Task: {F7DC3A96-0173-450F-AC2E-57C2E7438E13} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-08-08] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Admin.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-08-09 20:06 - 2016-08-02 10:15 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-08-09 20:06 - 2016-08-02 10:01 - 09761280 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-08-09 20:06 - 2016-08-02 09:53 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-08-09 20:06 - 2016-08-02 09:53 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-08-09 20:06 - 2016-08-02 09:54 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-08-09 20:06 - 2016-08-02 09:56 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 16:53 - 2015-06-25 16:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 16:51 - 2015-06-25 16:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-08-07 02:19 - 2016-08-07 02:19 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-08-07 02:19 - 2016-08-07 02:19 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-08-07 02:19 - 2016-08-07 02:19 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-07-17 00:34 - 2016-07-17 00:34 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-07-17 00:33 - 2016-07-17 00:33 - 03790336 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1605.1582.0_x64__8wekyb3d8bbwe\Calculator.exe
2016-07-17 00:33 - 2016-07-17 00:33 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1605.1582.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-08-07 13:12 - 2014-09-03 10:46 - 00203768 _____ () C:\Program Files\Bitdefender\Bitdefender Safepay\txmlutil.dll
2016-08-07 13:12 - 2014-09-03 10:48 - 00033336 _____ () C:\Program Files\Bitdefender\Bitdefender Safepay\manupdchksch.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\coin95ip.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\coin95itp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WdfCoInstaller01009.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WdfCoInstaller01011.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\a016bus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\a016cm.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\a016cmnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\a016mgmt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\a016obex.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\a016wh.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\a016whnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ggflt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ggsomc.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandbus64.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lganddiag64.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandgps64.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandnetbus64.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandnetdiag264.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandnetdiag64.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgandnetgps64.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgx64bus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgx64diag.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\lgx64gps.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\nuidfltr.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016bus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016cm.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016cmnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016cr.sys:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016mgmt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016obex.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016unic.sys:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016wh.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0016whnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017bus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017cm.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017cmnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017cr.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017mgmt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017obex.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017unic.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017wh.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s0017whnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018bus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018cm.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018cmnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018cr.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018mgmt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018obex.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018unic.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018wh.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1018whnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029bus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029cm.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029cmnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029cr.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029mgmt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029obex.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029unic.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029wh.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1029whnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039bus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039cm.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039cmnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039cr.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039mgmt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039obex.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039unic.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039wh.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s1039whnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s916bus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s916cm.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s916cmnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s916mgmt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s916obex.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s916wh.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\s916whnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\se3ebus.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\se3ecm.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\se3ecmnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\se3emgmt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\se3eobex.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\se3ewh.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\se3ewhnt.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ssudbus.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\Admin\Desktop\procexp.exe:$CmdTcID [64]
AlternateDataStreams: C:\Users\Admin\Desktop\procexp.exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\Admin\Downloads\derren brown - magie a manipulace mysli.pdf:$CmdZnID [26]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-30 03:34 - 2016-08-16 07:57 - 00000870 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2560372422-2021965399-549226919-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: asComSvc => 2
MSCONFIG\Services: AsSysCtrlService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: SkypeUpdate => 2
HKLM\...\StartupApproved\StartupFolder: => "O&O Defrag Tray.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "Eraser"
HKLM\...\StartupApproved\Run: => "OODefragTray"
HKLM\...\StartupApproved\Run: => "obkagent"
HKLM\...\StartupApproved\Run32: => "Eraser"
HKLM\...\StartupApproved\Run32: => "obkagent"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2560372422-2021965399-549226919-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [WirelessDisplay-Infra-In-TCP] => (Allow) %systemroot%\system32\CastSrv.exe
FirewallRules: [{7B07AADC-EADB-42C8-A2ED-FC462472D58D}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{86EC4D8B-96BD-4543-92A1-DF5C9ED14B65}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FAD74737-C076-47FE-ADE4-197E84554049}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B0A18F37-46A0-4607-9D0D-126CF2246C62}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8E59E17D-424A-49B7-A832-0BE59D9016E8}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{42CACFB8-B3A2-44E5-8FF1-4ECB488EE56B}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4B246C8A-B9D4-4EA9-843A-D760FD195587}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AEA04726-9898-4B82-8EF5-606B69DB159F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EC61E06B-6E9D-4593-A14D-0E3C99A079EB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E06A9D41-5866-4E85-9C97-C6C9364DA868}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D837CF6F-4800-4B75-88B6-DFD2E84BBD12}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DB027A0C-12D2-4A13-BCE8-A1C2838E41AF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B18D4C41-7872-47F5-A817-0B3827252493}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{97EABE64-BC7B-4018-BBCA-39B31B4BEC7C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{0190D01A-E95C-41AE-AFFD-BE4DCD42FC0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{441CA4A3-90F8-409B-A771-38D16F5B52D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{39CD569A-4F80-4294-AEE2-2AB3CFED510F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{4CE6433F-6F2A-44CB-BF8C-4EF82F7A3A46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Serious Sam 3\Bin\Sam3.exe
FirewallRules: [{B60E04F7-1660-46E0-B244-46BFAAE88F05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Serious Sam 3\Bin\Sam3.exe
FirewallRules: [{6ABC4E21-D3C2-4764-9E03-08CA18C081A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Serious Sam 3\Bin\Sam3_Unrestricted.exe
FirewallRules: [{F1A2BD12-E718-4165-B37F-FAC533E4DE83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Serious Sam 3\Bin\Sam3_Unrestricted.exe
FirewallRules: [{CB40311A-7A14-4A5B-988B-EF867975F7B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{4BAFD390-8EBC-426E-86D0-21741557D389}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{5823989A-D320-42A1-A068-27C72059DFE6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{E217321E-E0F4-4F0B-8C1C-2C76A384E68B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [TCP Query User{D4515BDE-D812-4E87-B9F1-7FBCF596BFFC}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{3A0BDE42-6332-47B5-A5B3-489A66A22500}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{0512FFB6-3CD0-486B-853D-84DB5413C1A3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5B187C75-E046-4706-B227-AE9087F5762B}] => (Allow) LPort=2869
FirewallRules: [{2B71F78E-8408-4676-B2FC-2D4209E39EE9}] => (Allow) LPort=1900
FirewallRules: [{F7C27AE2-3D06-4422-AC7C-4E1D770B3C84}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{27BBFE37-A182-4970-ADE1-C4EA11BFB796}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{740A5F8A-AB45-4CD0-A49E-CC7F095D230C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{E3047E55-43B4-4919-8F32-61481C83D4D9}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{F673248F-0089-4FD5-947E-9C0498202243}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{6F88743F-058F-4E84-8E63-09AC33D3C0E6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{EC323118-0485-499E-96A0-0A18D754B84B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{84353320-11B0-4521-9BB9-C65A0761451B}C:\hry\dying light\dyinglightgame.exe] => (Block) C:\hry\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{FFC56DC1-165B-45EC-B0C3-2C63B660F9A9}C:\hry\dying light\dyinglightgame.exe] => (Block) C:\hry\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{A76BDD47-D2CD-4CE3-AA8E-F8CD0980E0AC}C:\hry\far cry 4\bin\farcry4.exe] => (Block) C:\hry\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{F734C45B-2F1D-4E22-AB8C-0A1967E15F8E}C:\hry\far cry 4\bin\farcry4.exe] => (Block) C:\hry\far cry 4\bin\farcry4.exe
FirewallRules: [{469576F9-9E36-45FB-A3E7-3FE09E0A6986}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{F4A7C510-ABCA-466B-8939-DE12E04B1349}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{A78F4B5C-1C23-4A24-831C-EE8EB823E166}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [{FC27D52C-2BAE-4B01-A004-9EFD6856ECFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe

==================== Restore Points =========================

14-08-2016 10:52:15 Naplánovaný kontrolní bod
14-08-2016 23:35:11 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/16/2016 01:51:30 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333

Error: (08/15/2016 12:47:26 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333

Error: (08/14/2016 11:35:14 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (08/14/2016 10:52:18 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (08/14/2016 09:51:49 AM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (4648) WebCacheLocal: Při otevírání souboru protokolu C:\Users\Admin\AppData\Local\Microsoft\Windows\WebCache\V0100056.log došlo k chybě -1811 (0xfffff8ed).

Error: (08/14/2016 05:09:10 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (08/14/2016 05:09:02 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (08/14/2016 03:49:06 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333

Error: (08/14/2016 01:23:05 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Steam.exe verze 3.55.92.67 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 2f70

Čas spuštění: 01d1f5b861972ddb

Čas ukončení: 0

Cesta k aplikaci: C:\Program Files (x86)\Steam\Steam.exe

ID hlášení: d84468c1-61ac-11e6-a435-f07959613533

Úplný název balíčku s chybou: 

ID aplikace související s balíčkem s chybou:

Error: (08/13/2016 06:48:02 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333


System errors:
=============
Error: (08/16/2016 08:00:08 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba platformy připojených zařízení byla ukončena s následující chybou: 
%%2147500037 = Nespecifikovaná chyba

Error: (08/16/2016 07:55:48 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 109TrustedInstallerNení k dispozici{752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (08/16/2016 07:55:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Instalační služba modulů systému Windows neuspěla při spuštění v důsledku následující chyby: 
%%109 = Přesměrování bylo ukončeno.

Error: (08/16/2016 04:48:40 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba platformy připojených zařízení byla ukončena s následující chybou: 
%%2147500037 = Nespecifikovaná chyba

Error: (08/16/2016 04:39:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba platformy připojených zařízení byla ukončena s následující chybou: 
%%2147500037 = Nespecifikovaná chyba

Error: (08/16/2016 04:34:59 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Inicializace výpisu stavu systému se nezdařila.

Error: (08/16/2016 03:24:12 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (08/16/2016 01:46:49 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba platformy připojených zařízení byla ukončena s následující chybou: 
%%2147500037 = Nespecifikovaná chyba

Error: (08/15/2016 11:52:37 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (08/15/2016 11:23:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici


CodeIntegrity:
===================================
  Date: 2016-08-13 06:10:46.225
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Admin\Downloads\Malwarebytes Anti-Malware Premium 2.2.1.1043 Final Portable (CZ)\App\SysDir\drivers\mbamchameleon,1.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-08-13 06:10:46.190
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Admin\Downloads\Malwarebytes Anti-Malware Premium 2.2.1.1043 Final Portable (CZ)\App\SysDir\drivers\mbamchameleon,1.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: AMD FX(tm)-6300 Six-Core Processor 
Percentage of memory in use: 21%
Total physical RAM: 8093.58 MB
Available physical RAM: 6387.54 MB
Total Virtual: 10269.58 MB
Available Virtual: 8393.17 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.73 GB) (Free:101.92 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:660 GB) NTFS
Drive f: (MULTIBOOT) (Fixed) (Total:465.62 GB) (Free:463.82 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E3B86E78)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B7F7BA07)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 465.7 GB) (Disk ID: 000B7676)
Partition 1: (Active) - (Size=465.7 GB) - (Type=0C)

==================== End of Addition.txt ============================