﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29.12.2018
Ran by Storkan (29-12-2018 18:19:50)
Running from C:\Users\Storkan\Desktop
Windows 7 Professional Service Pack 1 (X64) (2011-04-28 21:28:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2559262752-1286805619-1219072577-500 - Administrator - Disabled)
Guest (S-1-5-21-2559262752-1286805619-1219072577-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2559262752-1286805619-1219072577-1002 - Limited - Enabled)
Storkan (S-1-5-21-2559262752-1286805619-1219072577-1000 - Administrator - Enabled) => C:\Users\Storkan

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
ArcSoft Webcam Sharing Manager (HKLM-x32\...\{190A7D93-3823-439C-91B9-ADCE3EC2A6A2}) (Version: 1.0.0.26 - ArcSoft)
ASUS RT-N10 Wireless Router Utilities (HKLM-x32\...\{11178BF5-D5F0-4749-ACE4-EF46ADB38D65}) (Version: 4.1.3.0 - ASUS)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{E534C3AC-6D49-4EAC-8993-C1F0FF545B67}) (Version: 3.0.778.0 - ATI Technologies, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
Broadcom 2070 Bluetooth 3.0 (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.6300 - Broadcom Corporation)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.60.350.6 - Broadcom Corporation)
ccc-core-static (HKLM-x32\...\{D89F6F7C-1966-9408-40A7-4877F5A85005}) (Version: 2010.0805.358.5180 - Název společnosti:) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
HP 3D DriveGuard (HKLM\...\{3E92DCCC-A2F0-4C27-A5B9-B3B1A2143149}) (Version: 4.0.4.1 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{BA3A0273-4E98-47A2-BCE9-4D3C1C4C4792}) (Version: 1.1.8.1 - Hewlett-Packard Company)
HP HotKey Support (HKLM\...\{4209A6A2-0CE8-40E7-9A5D-BF3D33D0DBD9}) (Version: 4.0.3.1 - Hewlett-Packard Company)
HP Webcam Driver (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.1.7600.0024 - Realtek Semiconductor Corp.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6300.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.98 - LSI Corporation)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
OpenOffice.org 3.3 (HKLM-x32\...\{D5B94160-4A07-4956-9C73-8C5EEFEF180F}) (Version: 3.3.9567 - OpenOffice.org)
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 3.1.13.0 - Ralink)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0011 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30109 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype verze 8.34 (HKLM-x32\...\Skype_is1) (Version: 8.34 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
Windows Driver Package - Broadcom Bluetooth  (06/15/2009 6.2.0.9000) (HKLM\...\6B8550A319DDC8B17F35F4A89988705E4592349B) (Version: 06/15/2009 6.2.0.9000 - Broadcom)
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
WinRAR 5.61 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-25] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-25] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-25] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-25] (AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-08-05] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-25] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0386333D-C5F7-45CA-B390-BA05CB3CD137} - System32\Tasks\{79EE9789-65D5-49C0-B211-1598CF2652A9} => C:\Windows\system32\pcalua.exe -a C:\Users\Storkan\Downloads\sp47841.exe -d C:\Users\Storkan\Desktop
Task: {1C6B3572-3B60-471B-8B3B-5795F8215068} - System32\Tasks\{8191B717-62B1-4CDD-9A48-B982E8352517} => C:\Windows\system32\pcalua.exe -a "C:\Users\Storkan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6CR4CYK0\sp50301[1].exe" -d C:\Users\Storkan\Desktop
Task: {1D0D611F-D447-45C9-8AD7-687DB145B398} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-27] (Adobe Systems Incorporated)
Task: {2A135F29-A762-4570-A9BC-97B7C4BB76B5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-12-10] (Piriform Ltd)
Task: {38F5608B-6FDF-4468-B2B5-1E1FA97934D3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-11-05] (AVAST Software)
Task: {4292A10A-E00E-4076-A1BB-13AD08981CDA} - System32\Tasks\{B63DF085-2376-4090-84A1-28D8FF057943} => C:\Windows\system32\pcalua.exe -a "C:\Users\Storkan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M7ARY3G\sp46693.exe" -d C:\Users\Storkan\Desktop
Task: {5C30D84B-1343-4054-86D1-842B6A55E8D4} - System32\Tasks\{665B1852-D55E-4357-B68D-85803864DC6F} => C:\Windows\system32\pcalua.exe -a C:\Users\Storkan\Desktop\sp51059.exe -d C:\Users\Storkan\Desktop
Task: {5F7CAE0A-CEB3-4C7E-BCC7-28592178F80D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-11-25] (AVAST Software)
Task: {63A0A70B-926C-4072-A033-7DD9CC4C67E3} - System32\Tasks\{EB347F28-1898-442B-A7C5-A6911F2D1253} => C:\Windows\system32\pcalua.exe -a C:\Users\Storkan\Desktop\sp47841.exe -d C:\Users\Storkan\Desktop
Task: {6BF6C06E-EFD0-4A0C-80BC-3FFFC2CE4191} - System32\Tasks\{6C2DDC71-BDA8-4D55-9851-F46439DDD233} => C:\Windows\system32\pcalua.exe -a D:\johanka\Setup.exe -d D:\johanka
Task: {71AD929B-0FD2-43AA-BD0C-13E84F0E7421} - System32\Tasks\{BFC738C2-98EE-4E1B-B8E1-06A38724C29E} => C:\Windows\system32\pcalua.exe -a E:\sp52330.exe -d E:\
Task: {8EA8AC42-333D-4A8B-8AF5-445D2FAA141A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-13] (Google Inc.)
Task: {9127082A-1587-4D91-A683-978AFBE350B5} - System32\Tasks\{7FF1D910-34FB-4E9F-9448-2019DF98C4F8} => C:\Windows\system32\pcalua.exe -a "C:\Users\Storkan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6CR4CYK0\sp47841[1].exe" -d C:\Users\Storkan\Desktop
Task: {9AE5BA5B-4C44-456A-8F8C-44D94E529653} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2559262752-1286805619-1219072577-1000
Task: {9B2491B2-676D-4C78-9F83-BD395DAA3346} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {A6F22C58-BED7-4E10-9BC6-2EE0686F39F9} - System32\Tasks\{AF2E2289-1AE2-4601-91DC-AAD02944F45D} => C:\Windows\system32\pcalua.exe -a C:\Users\Storkan\Desktop\Downloads\hijackthis.exe -d C:\Users\Storkan\Desktop\Downloads
Task: {B72B5462-CB5A-4BA7-8C9C-35603601D828} - System32\Tasks\{E2E777C8-2078-4E9A-A791-3F26DAB98386} => "C:\Program Files (x86)\Internet Explorer\iexplore.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=5.5.0.117&LastError=404
Task: {DC41C147-3984-4D92-B336-2ABEC890EA1B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-13] (Google Inc.)
Task: {DE20CEA6-6806-476F-8CC7-B8E916E67D65} - System32\Tasks\{5B5D9DAF-E75D-4CA7-8A79-C206D3CAF30F} => "C:\Program Files (x86)\Internet Explorer\iexplore.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=5.5.0.117&LastError=404
Task: {F1B6EB0C-18C2-4EF7-AC8C-2256F95F2093} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-12-10] (Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2010-07-29 18:39 - 2010-07-29 18:39 - 000173856 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2018-12-10 11:09 - 2018-12-10 11:09 - 000093648 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2018-11-25 17:52 - 2018-11-25 17:52 - 000728792 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2010-06-21 16:54 - 2010-06-21 16:54 - 000098304 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-08-05 02:57 - 2010-08-05 02:57 - 000270336 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2018-11-25 17:52 - 2018-11-25 17:52 - 000919256 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-11-25 17:52 - 2018-11-25 17:52 - 000596696 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-12-29 16:26 - 2018-12-29 16:26 - 005734544 _____ () C:\Program Files\AVAST Software\Avast\defs\18122904\algo.dll
2018-11-25 17:52 - 2018-11-25 17:52 - 000496344 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-11-25 17:51 - 2018-11-25 17:51 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-11-25 17:52 - 2018-11-25 17:52 - 001112280 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-03-12 13:08 - 2018-03-12 13:08 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-12-10 16:05 - 2018-12-10 16:05 - 000170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\0ec336503e7339d02c165f32e732a724\IsdiInterop.ni.dll
2011-05-02 23:38 - 2010-03-03 19:08 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2018-12-27 23:05 - 000000828 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2559262752-1286805619-1219072577-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Storkan\AppData\Roaming\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Corporation)
FirewallRules: [{47BDC236-5D92-4DF8-B9AA-5D08D158DBC0}] => (Allow) C:\Program Files (x86)\ASUS\RT-N10 Wireless Router Utilities\Discovery.exe (ASUSTeK COMPUTER INC.)
FirewallRules: [{AA88727C-C385-4437-B3E4-3A197942EDC3}] => (Allow) C:\Program Files (x86)\ASUS\RT-N10 Wireless Router Utilities\Discovery.exe (ASUSTeK COMPUTER INC.)
FirewallRules: [{2979DAA2-256B-4BC5-A8F7-8B6611D08993}] => (Allow) C:\Program Files (x86)\ASUS\RT-N10 Wireless Router Utilities\Rescue.exe (ASUSTek COMPUTER INC.)
FirewallRules: [{3362B2B5-1B26-4539-B645-5C609F70736B}] => (Allow) C:\Program Files (x86)\ASUS\RT-N10 Wireless Router Utilities\Rescue.exe (ASUSTek COMPUTER INC.)
FirewallRules: [TCP Query User{0B5E0EC3-82DB-4C3A-8532-E5E9680E8688}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe] => (Block) C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe No File
FirewallRules: [UDP Query User{88573A2F-DFFA-4ED9-B7E7-54C1C7D8EB3F}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe] => (Block) C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe No File
FirewallRules: [{22767086-FE81-49B8-923C-A87718ADC04C}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe (Nexon)
FirewallRules: [{6EF6B1B4-118B-4F77-8C3C-55A9403325B4}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe (Nexon)
FirewallRules: [{7EAE87C0-1E15-42F8-BB8C-7955360A2EDB}] => (Allow) C:\Nexon\Combat Arms EU\NMService.exe No File
FirewallRules: [{79C6649A-5D5C-4843-B040-E52744C6E137}] => (Allow) C:\Nexon\Combat Arms EU\NMService.exe No File
FirewallRules: [TCP Query User{DBC6D307-4BB5-4EE6-8938-0B27A309ADBA}C:\nexon\combat arms eu\engine.exe] => (Block) C:\nexon\combat arms eu\engine.exe No File
FirewallRules: [UDP Query User{AAC8551C-3D4F-460E-B82B-107E8E1A8C0F}C:\nexon\combat arms eu\engine.exe] => (Block) C:\nexon\combat arms eu\engine.exe No File
FirewallRules: [TCP Query User{D080E671-E926-48BD-8562-49FC5EBBC005}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A15442FE-AD96-420B-92FB-E69DB09CC86B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E8A1E134-49A2-423D-9BA3-1DC18E97A2E0}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{BE0D0AB2-B746-476D-8BBF-9F34C735B76A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe No File
FirewallRules: [{002A131C-EA5B-4233-94EB-2323C23D5C05}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{3E52A851-F09F-42E4-9F41-43CAFF971AA6}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{DFAAD691-5888-4613-847A-C7AD412F5143}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{F3B5080D-165E-473F-B0D1-A9433DC6714A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{B2753D4B-3BA9-48EF-AB0E-833DA3D8D691}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{EA08E1A7-3351-40BF-9062-6B196F056EF3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{A0CB00F2-48AF-4738-9BEC-DA2C492A98B4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{9155E08C-5512-465A-865D-C722663A9460}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{1B4F45FE-B77A-4B6E-A4A0-EAB316017254}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{5C3CE917-7D3B-4838-A641-93D1F4D8B6BF}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe No File
FirewallRules: [{1448D670-6955-4EF0-B62A-50372DA8D7A5}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe No File
DomainProfile\AuthorizedApplications: [C:\Nexon\Combat Arms EU\CombatArms.exe] => :*Enabled:CombatArms.exe
DomainProfile\AuthorizedApplications: [C:\Nexon\Combat Arms EU\Engine.exe] => :*Enabled:Engine.exe
StandardProfile\AuthorizedApplications: [C:\Nexon\Combat Arms EU\CombatArms.exe] => :*Enabled:CombatArms.exe
StandardProfile\AuthorizedApplications: [C:\Nexon\Combat Arms EU\Engine.exe] => :*Enabled:Engine.exe

==================== Restore Points =========================

15-11-2018 18:18:40 Windows Update
21-12-2018 16:10:48 Windows Update
27-12-2018 18:49:40 Removed Adobe Acrobat Reader DC.
27-12-2018 18:51:41 Odstraněno El Matador
27-12-2018 19:57:14 Odebráno: PC Connectivity Solution
27-12-2018 19:59:04 Removed League of Legends
27-12-2018 21:21:46 Installed Adobe Reader XI - Czech.

==================== Faulty Device Manager Devices =============

Name: Broadcom 2070 Bluetooth
Description: Broadcom 2070 Bluetooth
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/29/2018 06:05:46 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhost (2072) WebCacheLocal: Při otevírání souboru protokolu C:\Users\Storkan\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1032 (0xfffffbf8).

Error: (12/29/2018 06:05:46 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (2072) WebCacheLocal: Pokus o otevření souboru C:\Users\Storkan\AppData\Local\Microsoft\Windows\WebCache\V01.log jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (12/27/2018 08:53:10 PM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (1876) Pokus o otevření souboru C:\Users\Storkan\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (12/27/2018 08:52:12 PM) (Source: MsiInstaller) (EventID: 11500) (User: Storkan-PC)
Description: Produkt: Adobe Reader XI - Czech -- Chyba 1500.Probíhá jiná instalace. Musíte jí nejdříve dokončit, abyste mohli pokračovat v této.

Error: (12/27/2018 08:16:11 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (12/27/2018 07:36:09 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.

Podrobnosti:
	Katalog indexu obsahu je poškozený.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/27/2018 07:36:09 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
	Katalog indexu obsahu je poškozený.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (12/27/2018 07:36:09 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
	Katalog indexu obsahu je poškozený.  (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (12/29/2018 05:56:47 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\bcmihvsrv64.dll

Error: (12/29/2018 05:56:47 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\bcmihvsrv64.dll

Error: (12/29/2018 05:56:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\bcmihvsrv64.dll

Error: (12/29/2018 05:56:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (12/29/2018 05:56:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management & Security Application User Notification Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/29/2018 05:56:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ArcCapture byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/29/2018 05:56:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP Hotkey Monitor byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/29/2018 05:56:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Matrix Storage Event Monitor byla neočekávaně ukončena. Tento stav nastal již 1krát.


CodeIntegrity:
===================================

Date: 2018-12-27 20:33:51.095
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-12-27 20:33:50.252
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz
Percentage of memory in use: 42%
Total physical RAM: 3951.43 MB
Available physical RAM: 2290.63 MB
Total Virtual: 7901 MB
Available Virtual: 6197.97 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:594.06 GB) (Free:507.77 GB) NTFS

\\?\Volume{78419d81-71dd-11e0-af70-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: D2C16FE5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=594.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================