﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-01-2017
Ran by Karolína (09-01-2017 01:44:35)
Running from C:\Users\Karolína\Desktop
Windows 8.1 (Update) (X64) (2014-11-27 14:50:32)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1525932149-3443309983-2069399966-500 - Administrator - Disabled)
Guest (S-1-5-21-1525932149-3443309983-2069399966-501 - Limited - Disabled)
Karolína (S-1-5-21-1525932149-3443309983-2069399966-1001 - Administrator - Enabled) => C:\Users\Karolína

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat X Pro - Eastern European (Group 1) (HKLM-x32\...\{AC76BA86-1029-4770-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Design Standard (HKLM-x32\...\{0327A4BF-62BF-48BB-8928-B971B749E9E1}) (Version: 6 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Botanicula (HKLM-x32\...\Botanicula_is1) (Version:  - GOG.com)
Canon CanoScan LiDE 220 On-screen Manual (HKLM-x32\...\Canon CanoScan LiDE 220 On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.11.1 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.)
CanoScan LiDE 220 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4811) (Version: 1.00 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd)
Empress of the Deep - The Darkest Secret (x32 Version: 2.2.0.98 - WildTangent) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.2.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Island Tribe (x32 Version: 2.2.0.98 - WildTangent) Hidden
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
Java 8 Update 72 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418072F0}) (Version: 8.0.720.15 - Oracle Corporation)
Java 8 Update 74 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418074F0}) (Version: 8.0.740.2 - Oracle Corporation)
Jewel Quest Solitaire 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
LG USB Modem Drivers (HKLM-x32\...\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}) (Version: 4.9.4 - LG Electronics)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes verze 3.0.5.1299 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.5.1299 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 cs)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
Nero 12 Essentials Toshiba (HKLM-x32\...\{BA8958DC-ADD7-41E5-8436-5883C7E871C7}) (Version: 12.0.00400 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG)
Nero MediaHome Free (HKLM-x32\...\{37F879C7-BAEC-47F8-AB0C-C0AFA8FEEAD0}) (Version: 17.0.00600 - Nero AG)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.30.0 - Nokia)
Nokia Suite (x32 Version: 3.8.30.0 - Nokia) Hidden
OpenOffice.org 3.3 (HKLM-x32\...\{D5B94160-4A07-4956-9C73-8C5EEFEF180F}) (Version: 3.3.9567 - OpenOffice.org)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Premium Sound HD (HKLM\...\{94F03B8E-CB73-4653-AFE9-79112C01FED2}) (Version: 1.12.4600 - SRS Labs, Inc.)
Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) Hidden
Prerequisite installer (x32 Version: 17.0.0002 - Nero AG) Hidden
Realtek Bluetooth Filter Driver Package (HKLM-x32\...\InstallShield_{0CC0980D-811D-43B8-A455-8D150EB5BC0D}) (Version: 12.24.2012.0802 - REALTEK Semiconductor Corp)
Realtek Bluetooth Filter Driver Package (x32 Version: 12.24.2012.0802 - REALTEK Semiconductor Corp) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6687 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.30136 - Realtek Semiconductor Corp.)
Realtek WLAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173001290E16}) (Version: 2.00.0020 - REALTEK Semiconductor Corp.)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version:  - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.10.3 - Synaptics Incorporated)
TOSHIBA Desktop Assist (HKLM\...\{95CCACF0-010D-45F0-82BF-858643D8BC02}) (Version: 1.00.0007.00002 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.0.0.6415 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.00.6425 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.10 - TOSHIBA)
Toshiba Password Utility (HKLM-x32\...\InstallShield_{6D35FF17-A8B3-43D3-917E-5A1F2C3FB628}) (Version: 2.00.910 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.8.17.640104 - Toshiba Corporation)
Toshiba Places Icon Utility (HKLM\...\{C991A8C4-307C-4FDD-8AAE-A1BF44881E95}) (Version: 2.1.1 - TOSHIBA)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.2.0.54043005 - Toshiba Corporation)
TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.2.2.00 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM\...\{B8C8422F-01F1-4791-B084-047AAFF9BFCC}) (Version: 2.4.4 - TOSHIBA)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0012 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.00.0002.32002 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{F76F5214-83A8-4030-80C9-1EF57391D72A}) (Version: 4.2.1 - Toshiba Europe GmbH)
TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.1.0.12-A - Toshiba Corporation)
Undertale (HKLM-x32\...\1456487183_is1) (Version: 2.0.0.2 - GOG.com)
Unity Web Player (HKU\S-1-5-21-1525932149-3443309983-2069399966-1001\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Welcome App (Start-up experience) (x32 Version: 12.0.13000 - Nero AG) Hidden
WildTangent Games (HKLM-x32\...\WildTangent toshiba Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.11.14 - WildTangent) Hidden
Windows Driver Package - Realtek Semiconductor Corp. RtkBtFilter Bluetooth  (07/11/2012 2.3.13.3) (HKLM\...\57F58DC141BEB353704E041792E5B00606694FEA) (Version: 07/11/2012 2.3.13.3 - Realtek Semiconductor Corp.)
WinRAR 5.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Zoo Tycoon: Complete Collection (HKLM-x32\...\Zoo Tycoon 1.0) (Version:  - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1525932149-3443309983-2069399966-1001_Classes\CLSID\{00000001-0E3A-4123-8B32-4B68A91E104A}\InprocServer32 -> C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIBasePlace.dll (Toshiba Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {13212C95-C4EC-4384-AEAF-06827AF4DAF8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-12-09] (AVAST Software)
Task: {3AAE6ACE-A8EB-4F8B-8275-DF6E94621FF6} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2012-07-27] (TOSHIBA Corporation)
Task: {41229579-70A4-4030-9EE6-188764B760E1} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-03] (AVAST Software)
Task: {5A984CA5-3036-4241-B107-E8D1AF1E6847} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2012-08-14] (Toshiba Europe GmbH)
Task: {608D47C1-F229-4F2E-9ED9-E312A5AC67C2} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-06-04] (Nero AG)
Task: {66CC7EF0-A81F-4814-BB52-FB6CF1450F3F} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {72A83759-0D8F-49DE-BF3B-8C33F0DA2950} - System32\Tasks\{247E9F68-6F2D-4F7B-A15C-17CF771D4621} => Chrome.exe hxxp://ui.skype.com/ui/0/7.7.0.103/cs/abandoninstall?page=tsProgressBar
Task: {82CBB6B1-EE36-45A0-A8C8-E24C2DD4B768} - System32\Tasks\AdobeAAMUpdater-1.0-toshiba-Karolína => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {9353CB8B-32FC-47C4-B799-23142966CA7E} - System32\Tasks\SafeZone scheduled Autoupdate 1481290371 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {977C222F-2889-4A58-81E8-9DFE6EC1EEE6} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe
Task: {9C26CF6A-1553-4F6E-A908-E6147A308A95} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {A3210557-E165-45DD-946D-428775241194} - System32\Tasks\avastBCLRestartS-1-5-21-1525932149-3443309983-2069399966-1001 => Chrome.exe 
Task: {CA7ECB69-60E3-4098-9F9A-5A9A37760FE8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {CDFD858E-38BC-417A-A93C-4FE296B351B5} - System32\Tasks\Driver Booster SkipUAC (Karolína) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {D94478B9-7529-4075-A070-7A1A003B89E7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {FABEFD75-7475-4564-9D07-78F71FB906C2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2011-10-13 22:38 - 2011-10-13 22:38 - 00156672 _____ () C:\Program Files (x86)\TOSHIBA\Password Utility\GFNEXSrv.exe
2016-01-09 23:37 - 2013-06-28 16:28 - 00084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2017-01-08 21:33 - 2016-12-14 12:55 - 02259232 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-01-08 21:33 - 2016-12-14 12:55 - 02813904 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\arwlib.dll
2017-01-08 21:33 - 2016-12-14 12:55 - 02247632 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2012-07-19 02:38 - 2012-07-19 02:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2012-07-19 02:38 - 2012-07-19 02:38 - 00049064 _____ () C:\Program Files\TOSHIBA\Hotkey\Hotkey\FnZ.dll
2012-08-14 03:13 - 2012-08-14 03:13 - 00018344 _____ () C:\Program Files\TOSHIBA\Teco\TecoMUI.dll
2016-12-27 17:38 - 2014-08-19 20:12 - 01356568 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-07-31 08:11 - 2012-07-31 08:11 - 00020480 _____ () C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\cs\TosDILangPack.resources.dll
2016-12-09 14:27 - 2016-12-09 14:27 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-01-08 13:36 - 2017-01-08 13:36 - 03138056 _____ () C:\Program Files\AVAST Software\Avast\defs\17010801\algo.dll
2016-12-09 14:27 - 2016-12-09 14:27 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-12-09 14:27 - 2016-12-09 14:27 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-12-16 13:00 - 2016-12-08 08:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-16 13:00 - 2016-12-08 08:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2012-09-26 23:43 - 2012-06-25 18:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1525932149-3443309983-2069399966-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Karolína\Downloads\sken\IMG_20161221_0008.jpg
DNS Servers: 10.0.1.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Acrobat Speed Launcher"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-1525932149-3443309983-2069399966-1001\...\StartupApproved\StartupFolder: => "OpenOffice.org 3.3.lnk"
HKU\S-1-5-21-1525932149-3443309983-2069399966-1001\...\StartupApproved\Run: => "NokiaSuite.exe"
HKU\S-1-5-21-1525932149-3443309983-2069399966-1001\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{9C6B8872-5AFA-4739-B26A-5CB3E221E4A8}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{DEAD3A2F-9CF6-4AC3-A9E8-B6E4E1894D7A}] => C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
FirewallRules: [{9DD1BEF6-1D65-441F-85F5-FBFED6C4EE1C}] => C:\Program Files (x86)\Nero\KM\KwikMedia.exe
FirewallRules: [{E37BDA05-09F9-4BF5-9ED4-9ABC22EA506D}] => C:\Program Files (x86)\Nero\KM\KwikMedia.exe
FirewallRules: [{257DE35A-2354-48F1-98A7-E656B59EE456}] => C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{F566D26C-DFE4-4757-AA63-33B71857B9A2}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BF19A0D7-AB44-4B00-ADCC-1E07522F97BB}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{282C4815-876F-466E-9B6B-DC3A229AE90B}C:\windows\syswow64\dplaysvr.exe] => C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{6D4869CD-0600-43B9-836E-AA23617744B5}C:\windows\syswow64\dplaysvr.exe] => C:\windows\syswow64\dplaysvr.exe
FirewallRules: [{DC8138BF-FCFC-46D9-AE9E-343E29C9F1F1}] => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{2D63A379-859C-47E1-926E-6982D34FD71F}] => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{653C0E4C-1F44-48B0-A64F-BD2220011E9D}] => C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{4C6BAFD4-BC43-477E-830A-EFDDD0988768}] => C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{DE2543CA-06FC-4D44-8313-15F089235EF2}] => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{E8D6F8A9-F513-41F7-933F-2DC293EDB53E}] => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{C9A1F94D-8563-40A4-84C4-3CB06FA03C9B}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{8C723EF0-D31F-4A77-8F81-4D6B0EE280E4}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{D4D70F62-6A39-484F-81D3-BC1B836CE647}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/08/2017 11:42:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsMpEng.exe, verze: 4.7.205.0, časové razítko: 0x54cb5aeb
Název chybujícího modulu: mpengine.dll, verze: 1.1.9700.0, časové razítko: 0x51d28fcb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005615b7
ID chybujícího procesu: 0x1118
Čas spuštění chybující aplikace: 0x01d269fff35f3f8d
Cesta k chybující aplikaci: C:\Program Files\Windows Defender\MsMpEng.exe
Cesta k chybujícímu modulu: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll
ID zprávy: cda3b915-d5f3-11e6-bfa5-20689d7e0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 11:37:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsMpEng.exe, verze: 4.7.205.0, časové razítko: 0x54cb5aeb
Název chybujícího modulu: mpengine.dll, verze: 1.1.9700.0, časové razítko: 0x51d28fcb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005615b7
ID chybujícího procesu: 0x17e8
Čas spuštění chybující aplikace: 0x01d269ff65b3a168
Cesta k chybující aplikaci: C:\Program Files\Windows Defender\MsMpEng.exe
Cesta k chybujícímu modulu: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll
ID zprávy: ff705c7b-d5f2-11e6-bfa5-20689d7e0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 11:36:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program avastui.exe verze 12.3.3154.23 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 132c

Čas spuštění: 01d269ff1ae3501c

Čas ukončení: 60000

Cesta k aplikaci: C:\Program Files\AVAST Software\Avast\avastui.exe

ID hlášení: bc7300e3-d5f2-11e6-bfa5-20689d7e0237

Úplný název chybujícího balíčku: 

ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 11:35:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: chrome.exe, verze: 55.0.2883.87, časové razítko: 0x5848db5c
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.17668, časové razítko: 0x54c846bb
Kód výjimky: 0xc00000fd
Posun chyby: 0x00041352
ID chybujícího procesu: 0xc90
Čas spuštění chybující aplikace: 0x01d269ff61fb1749
Cesta k chybující aplikaci: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: c9748e9b-d5f2-11e6-bfa5-20689d7e0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 11:33:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsMpEng.exe, verze: 4.7.205.0, časové razítko: 0x54cb5aeb
Název chybujícího modulu: mpengine.dll, verze: 1.1.9700.0, časové razítko: 0x51d28fcb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005615b7
ID chybujícího procesu: 0x8e0
Čas spuštění chybující aplikace: 0x01d269ff011af2b4
Cesta k chybující aplikaci: C:\Program Files\Windows Defender\MsMpEng.exe
Cesta k chybujícímu modulu: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll
ID zprávy: 78eb1e82-d5f2-11e6-bfa5-20689d7e0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 11:09:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsMpEng.exe, verze: 4.7.205.0, časové razítko: 0x54cb5aeb
Název chybujícího modulu: mpengine.dll, verze: 1.1.9700.0, časové razítko: 0x51d28fcb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005615b7
ID chybujícího procesu: 0x14c
Čas spuštění chybující aplikace: 0x01d269fbc3161bb4
Cesta k chybující aplikaci: C:\Program Files\Windows Defender\MsMpEng.exe
Cesta k chybujícímu modulu: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll
ID zprávy: 29f043cf-d5ef-11e6-bfa4-20689d7e0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 11:07:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsMpEng.exe, verze: 4.7.205.0, časové razítko: 0x54cb5aeb
Název chybujícího modulu: mpengine.dll, verze: 1.1.9700.0, časové razítko: 0x51d28fcb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005615b7
ID chybujícího procesu: 0x73c
Čas spuštění chybující aplikace: 0x01d269f5f00bed55
Cesta k chybující aplikaci: C:\Program Files\Windows Defender\MsMpEng.exe
Cesta k chybujícímu modulu: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll
ID zprávy: dcdb0228-d5ee-11e6-bfa4-20689d7e0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 10:25:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsMpEng.exe, verze: 4.7.205.0, časové razítko: 0x54cb5aeb
Název chybujícího modulu: mpengine.dll, verze: 1.1.9700.0, časové razítko: 0x51d28fcb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005615b7
ID chybujícího procesu: 0x7b4
Čas spuštění chybující aplikace: 0x01d269f59883f260
Cesta k chybující aplikaci: C:\Program Files\Windows Defender\MsMpEng.exe
Cesta k chybujícímu modulu: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll
ID zprávy: 08c000a5-d5e9-11e6-bfa4-4c72b9d14b3d
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 10:21:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsMpEng.exe, verze: 4.7.205.0, časové razítko: 0x54cb5aeb
Název chybujícího modulu: mpengine.dll, verze: 1.1.9700.0, časové razítko: 0x51d28fcb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005615b7
ID chybujícího procesu: 0x11c4
Čas spuštění chybující aplikace: 0x01d269f51a6b6fed
Cesta k chybující aplikaci: C:\Program Files\Windows Defender\MsMpEng.exe
Cesta k chybujícímu modulu: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll
ID zprávy: 6c321bc5-d5e8-11e6-bfa3-20689d7e0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/08/2017 10:19:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsMpEng.exe, verze: 4.7.205.0, časové razítko: 0x54cb5aeb
Název chybujícího modulu: mpengine.dll, verze: 1.1.9700.0, časové razítko: 0x51d28fcb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005615b7
ID chybujícího procesu: 0x910
Čas spuštění chybující aplikace: 0x01d269f4ba245201
Cesta k chybující aplikaci: C:\Program Files\Windows Defender\MsMpEng.exe
Cesta k chybujícímu modulu: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\mpengine.dll
ID zprávy: 31733d27-d5e8-11e6-bfa3-20689d7e0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (01/09/2017 12:41:34 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (01/08/2017 11:43:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba Windows Defender byla neočekávaně ukončena. Tento stav nastal již 3krát.

Error: (01/08/2017 11:37:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Defender byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (01/08/2017 11:33:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Defender byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (01/08/2017 11:29:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby: 
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (01/08/2017 11:29:59 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WSearch se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50 = Požadavek není podporován.

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (01/08/2017 11:29:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (01/08/2017 11:29:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Nero Update byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/08/2017 11:29:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management and Security Application User Notification Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/08/2017 11:29:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


CodeIntegrity:
===================================
  Date: 2017-01-08 23:31:15.467
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-08 22:24:06.922
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-08 22:17:37.135
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-04 12:51:04.995
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-04 09:13:40.415
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-27 17:35:39.215
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-27 17:25:29.630
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\wachidrouter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-27 17:24:43.342
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\IntcDAud.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-27 17:22:38.689
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\wachidrouter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-27 17:19:21.568
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\wachidrouter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 64%
Total physical RAM: 3979.7 MB
Available physical RAM: 1430.16 MB
Total Virtual: 6027.7 MB
Available Virtual: 2873.32 MB

==================== Drives ================================

Drive c: (TI30983100A) (Fixed) (Total:454.93 GB) (Free:118.78 GB) NTFS
Drive e: (ZOO_TYCN) (CDROM) (Total:0.55 GB) (Free:0 GB) CDFS
Drive g: (MARINE) (CDROM) (Total:0.57 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================