Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by AdamecDuke (02-04-2017 15:47:55)
Running from C:\Users\AdamecDuke\Desktop
Windows 10 Pro Version 1607 (X64) (2016-09-29 17:29:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

AdamecDuke (S-1-5-21-2578957823-3012915285-46962276-1001 - Administrator - Enabled) => C:\Users\AdamecDuke
Administrator (S-1-5-21-2578957823-3012915285-46962276-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2578957823-3012915285-46962276-503 - Limited - Disabled)
Guest (S-1-5-21-2578957823-3012915285-46962276-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.5.1 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Catalyst Control Center Next Localization BR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform)
Connectify 2016 (HKLM\...\Connectify) (Version: 2016.0.3.36821 - Connectify)
Creo Parametric Version 2.0 Datecode [M020] (HKLM-x32\...\Creo Parametric Version 2.0 Datecode [M020]) (Version: 2.0 - PTC)
Creo Platform 2.10 (HKLM-x32\...\{3D2C04FC-1F9B-4C13-BA4A-E21E5C6A26C5}) (Version: 2.10.0 - PTC)
Creo Simulate Version 2.0 Datecode [M020] (HKLM-x32\...\Creo Simulate Version 2.0 Datecode [M020]) (Version: 2.0 - PTC)
Creo Thumbnail Viewer 2.0 (HKLM\...\{F0B52181-4318-4EF9-A835-187EC09569DD}) (Version: 30.12.230 - PTC)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - )
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
K-Lite Codec Pack 12.1.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.5 - KLCP)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.1.5 - PandoraTV)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0045 - Lenovo)
Malwarebytes verze 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.7870.2031 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.7870.2031 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7766.2039 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PTC Portmapper Version 2.0 Datecode [M020] (HKLM-x32\...\PTC Portmapper Version 2.0 Datecode [M020]) (Version: 2.0 - PTC)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.1 - Qualcomm Atheros)
QuickTime (HKLM-x32\...\{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}) (Version: 7.60.92.0 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29088 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7534 - Realtek Semiconductor Corp.)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Software tiskárny EPSON (HKLM\...\EPSON Printer and Utilities) (Version:  - SEIKO EPSON Corporation)
Spotify (HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\Spotify) (Version: 1.0.51.693.g6ea1e7f6 - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.16.0 - Synaptics Incorporated)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinSnare (HKLM-x32\...\{BB26F52E-34C5-4937-9240-471C59CC81E6}) (Version: 4.4.5 - WinSnare) <==== ATTENTION
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_CZ_is1) (Version: 19.1703.2.20 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2578957823-3012915285-46962276-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-18D104496A7A}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-2578957823-3012915285-46962276-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02B4880E-4188-4DE1-932D-55E96EB103E4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-21] (Piriform Ltd)
Task: {072DCF87-E8ED-44ED-85AF-CC07E2D8F7EC} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-adamecduke@outlook.cz => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {0F3EE85A-AB92-4A13-AECA-3CA07DCA8D3B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {19F821E3-6227-4FF0-BEFF-2449A3FAF1E5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-02] (Microsoft Corporation)
Task: {1ACA91A4-1414-4AF9-9B30-65A1EB82E153} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-01-18] ()
Task: {242ADB52-8543-4B4A-804A-89F99D29087A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-17] (Google Inc.)
Task: {493F729C-CFEC-4809-A7EE-0E437DCA9F9F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {4B6FC10F-1DEB-4703-854A-94DD39D16B5E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-17] (Google Inc.)
Task: {6D050C4A-EAB9-45F7-B216-FF01D7134B82} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-03-17] (Microsoft Corporation)
Task: {72655185-3AE1-4FEB-8575-15394E587E9D} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-05-24] ()
Task: {946FCA02-F15D-4695-9D16-F482F7AC52E8} - System32\Tasks\Windows-PG => powershell.exe C:\Update\psgo\psgo.ps1
Task: {9AACF43D-8089-4AD8-9247-6F48E6EA1217} - \{39C41BA4-235E-4AAD-9A45-536D112B4993} -> No File <==== ATTENTION
Task: {9FF8DF1A-B8B5-4227-83E2-3CD212168F0A} - System32\Tasks\{F7B53955-1E0E-43AE-A9D2-26D6EB76483A} => pcalua.exe -a "C:\Program Files (x86)\PurgeDrive\Uninstall.exe" -c "C:\Program Files (x86)\PurgeDrive\install.log"
Task: {A6CBFDDF-930E-4875-8FCE-F4C86C2D9F15} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-01-18] ()
Task: {AFDF056D-BA98-4088-B519-40C3D6654C00} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {C2BF5077-7588-46A2-9C28-35C3AB52227E} - System32\Tasks\Anazeriedplertaght Monitor => C:\Program Files (x86)\Idotion\xrgat.exe 
Task: {CA71397C-89DE-42C3-A980-0CBDEA89BEE7} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-09-16] (Advanced Micro Devices, Inc.)
Task: {CBEF5F0A-1570-469C-A09A-E727AFCECC72} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {DB9E6A8C-B47D-42AB-9693-51EDDDFEE319} - \Clsuqecoph -> No File <==== ATTENTION
Task: {FFD6D809-61FB-44C6-928E-3FF2139CCA16} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-02] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\AdamecDuke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Eastone\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\AdamecDuke\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Eastone\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Eastone\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Eastone\Application\chrome.exe (Google Inc.)

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-16 18:36 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-08 14:31 - 2011-03-10 17:14 - 00015360 _____ () C:\WINDOWS\System32\KOAZ8JAL.DLL
2015-10-08 14:50 - 2014-02-21 12:24 - 04277760 _____ () C:\WINDOWS\System32\SAFEQVS64.DLL
2015-10-08 14:50 - 2014-02-21 12:24 - 00911360 _____ () C:\WINDOWS\System32\SafeQCairoLib64.dll
2016-02-15 22:01 - 2016-02-15 22:01 - 00031256 _____ () C:\WINDOWS\System32\us008lm.dll
2017-03-01 20:59 - 2017-03-06 21:25 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-03-16 18:36 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-09-29 19:36 - 2016-09-29 19:36 - 00959168 _____ () C:\Users\AdamecDuke\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64\ClientTelemetry.dll
2016-10-09 17:18 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-16 18:35 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-16 18:36 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-16 18:36 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-16 18:36 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-16 18:36 - 2017-03-04 08:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-16 18:36 - 2017-03-04 08:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-09-20 01:02 - 2015-02-09 11:18 - 00124440 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2016-06-30 20:12 - 2016-06-30 20:12 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-06-30 20:12 - 2016-06-30 20:12 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-06-30 20:12 - 2016-06-30 20:12 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-06-30 20:12 - 2016-06-30 20:12 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-06-30 20:12 - 2016-06-30 20:12 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-06-30 20:12 - 2016-06-30 20:12 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-11-21 18:19 - 2016-11-21 18:19 - 00155016 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
2017-03-01 21:27 - 2017-03-01 21:31 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-03-01 21:27 - 2017-03-01 21:31 - 21149696 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-03-01 21:27 - 2017-03-01 21:31 - 05380096 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2016-06-20 19:42 - 2016-06-20 20:12 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-03-01 21:27 - 2017-03-01 21:31 - 00387584 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-03-01 21:27 - 2017-03-01 21:31 - 01047552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-03-03 19:17 - 2016-03-03 19:17 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2017-01-30 13:52 - 2017-01-30 13:52 - 01926632 ____R () C:\Program Files (x86)\Skype\Phone\roottools.dll
2017-04-01 22:44 - 2017-03-31 04:21 - 00104448 _____ () c:\programdata\package cache\{2a002f88-fd5d-379b-a350-a25d84af128b}v14.0.25420\packages\visualc_d14\vc_ide.base\vc_ide_base.dll
2017-04-01 22:44 - 2017-03-31 04:21 - 00104448 _____ () C:\ProgramData\Package Cache\{2A002F88-FD5D-379B-A350-A25D84AF128B}v14.0.25420\packages\VisualC_D14\VC_IDE.Base\VC_IDE_Base.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\skype.com -> hxxps://apps.skype.com

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-11-10 23:40 - 2015-11-10 23:40 - 00003380 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 209.34.83.73:443
127.0.0.1 209.34.83.73:43
127.0.0.1 209.34.83.73
127.0.0.1 209.34.83.67:443
127.0.0.1 209.34.83.67:43
127.0.0.1 209.34.83.67
127.0.0.1 ood.opsource.net
127.0.0.1 199.7.52.190:80
127.0.0.1 199.7.52.190
127.0.0.1 OCSP.SPO1.VERISIGN.COM
127.0.0.1 199.7.54.72:80
127.0.0.1 199.7.54.72
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 209-34-83-73.ood.opsource.net
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate-sjc0.adobe.com

There are 54 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2578957823-3012915285-46962276-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\AdamecDuke\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 79.98.152.2 - 79.98.156.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: lfsvc => 3
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\StartupApproved\StartupFolder: => "Adobe Gamma.lnk"
HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2578957823-3012915285-46962276-1001\...\StartupApproved\Run: => "EPSON Stylus DX5000 Series"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A574CEA1-6889-4EE1-B505-808A6F9182B3}] => (Allow) LPort=1900
FirewallRules: [{363D333E-D231-4530-B393-43C1A8000146}] => (Allow) LPort=2869
FirewallRules: [{0CE5F945-6BCB-4D7C-AE7E-C40BEB261C18}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9AE2EA44-FF48-4651-8D66-5956E61321C6}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{07CD651D-9C22-4587-B967-EBFD0B3F53B7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{4B42AFCE-2DE3-4F76-9FB4-723321A6F6C3}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{2794D1B1-D954-447B-9A96-1389D05F5030}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\inventortopro.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\inventortopro.exe
FirewallRules: [TCP Query User{F8E7C877-FB47-4753-BC49-7FD1A18FAD51}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\inventortopro.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\inventortopro.exe
FirewallRules: [TCP Query User{3E3D0DF9-1DF7-4E24-8BC0-D28BC5D14235}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe
FirewallRules: [UDP Query User{3090D14E-3DF9-428F-B903-058815C4105F}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe
FirewallRules: [TCP Query User{0684BE7E-0E84-4FE4-9BA2-C4C4A8F9F012}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\nms\nmsd.exe
FirewallRules: [UDP Query User{A5DE1101-76CA-4F8F-83AC-F7450D6CC1F1}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\nms\nmsd.exe
FirewallRules: [TCP Query User{1D4EB9A5-BFF7-4D57-96BC-74DB399F8BF1}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{5A8EF3A2-DFCD-42D5-918D-F4896A5E875B}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{12FF1438-2D1A-4530-8A04-1B363BC04588}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{6FFE9564-736A-4CCC-A8D1-421860AF343D}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [TCP Query User{5A51B16A-6C87-4BC6-B202-F82ACDAC9392}C:\users\adamecduke\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\adamecduke\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{9E825454-00EF-4E36-8BD1-1D916ED90D83}C:\users\adamecduke\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\adamecduke\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{94F7BFA0-15B8-4743-A8A1-EBA9613B75F1}C:\program files\flatout2\flatout2.exe] => (Allow) C:\program files\flatout2\flatout2.exe
FirewallRules: [UDP Query User{983B29BE-02C0-4B29-9A51-D5BD644E2FA2}C:\program files\flatout2\flatout2.exe] => (Allow) C:\program files\flatout2\flatout2.exe
FirewallRules: [TCP Query User{6C6A10E1-B9FA-4688-92C4-77016A74686A}C:\program files\quake\quake3.exe] => (Block) C:\program files\quake\quake3.exe
FirewallRules: [UDP Query User{FF5F7305-41BA-4ED5-AB99-DF81D9E2B37C}C:\program files\quake\quake3.exe] => (Block) C:\program files\quake\quake3.exe
FirewallRules: [TCP Query User{D4B37386-9CB7-41BB-B207-B7845F2F2F24}C:\users\adamecduke\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\adamecduke\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{4BB82E64-F3D2-4C5C-99D2-7550B5076618}C:\users\adamecduke\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\adamecduke\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{C4DC232D-A0FD-40B2-8DB6-8D2F87E7853D}] => (Allow) C:\Program Files (x86)\Connectify\Connectify.exe
FirewallRules: [{B8F4100E-1D2F-4D81-83DB-966021236412}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{925DB7B3-9A0B-474B-AF4E-808E3B9C8C3E}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{F874558A-502E-41F4-A3FB-3A4B0C3CA61C}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{9F326CFC-6DD9-40E2-99A4-2AFA2B00CF12}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{798EFCEF-C9FD-46C6-A8A7-02225032D2B8}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [TCP Query User{A9DFAC19-6128-46AB-AA7D-26BC70AA1336}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{365F8AD2-D63C-4345-8429-9CABA589D9DA}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{99802657-2560-410E-9E0F-8A901A8A14C1}C:\users\adamecduke\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\adamecduke\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{C918A51E-98BC-4F62-BCD4-918335C37DD6}C:\users\adamecduke\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\adamecduke\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{8FBB39F4-AD7E-4173-8108-F0ADAEC78049}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\xtop.exe
FirewallRules: [UDP Query User{16358E07-81E6-4A47-86BB-9946A9B25BA5}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\xtop.exe
FirewallRules: [TCP Query User{00842CB5-CB68-4C21-865C-D6E79FE7A65C}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [UDP Query User{48D4F271-A40F-4428-B353-B528C80A3F32}C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 2.0\common files\m020\x86e_win64\obj\pro_comm_msg.exe
FirewallRules: [{9B499D5C-A897-4B5E-A9EF-F1BA43DCEE90}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{523B4068-A64A-41CA-9F44-0AEB3720B71B}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{564B2903-E38C-4EF1-9112-23C2988F7F40}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6D9976F6-4077-422A-A110-4B0AE89665A7}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000lm024xhn-m101mbb_s30yj9bfa16570.dat
FirewallRules: [{33E3F08C-7CA1-4EED-A9DF-8ED947D9D1A7}] => (Allow) C:\Program Files (x86)\MIO\loader\st1000lm024xhn-m101mbb_s30yj9bfa16570.dat
FirewallRules: [{33C6E129-50E9-45E4-BAEF-D8B228DED1A8}] => (Allow) C:\Program Files (x86)\Eastone\Application\chrome.exe
FirewallRules: [{F23BE76A-F537-4CF9-B6BF-D2D8EAE183F9}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{C86822C5-5ABB-43AD-9E49-8EEFE2257A1C}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe

==================== Restore Points =========================

24-03-2017 12:38:27 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/02/2017 03:14:59 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad  na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.

Error: (04/01/2017 11:47:03 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (04/01/2017 11:56:25 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x8007001f, Zařízení připojené k systému nefunguje.
.


Operace:
   Spouštění asynchronní operace

Kontext:
   Aktuální stav: DoSnapshotSet

Error: (04/01/2017 11:55:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (04/01/2017 11:54:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 15.3.2017.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 1234

Čas spuštění: 01d2aa70797f2d9e

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Users\AdamecDuke\Desktop\farbar\FRST64.exe

ID hlášení: 34df7756-16c1-11e7-9c86-f8a9633b7ba7

Úplný název balíčku s chybou: 

ID aplikace související s balíčkem s chybou:

Error: (04/01/2017 12:47:39 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x8007001f, Zařízení připojené k systému nefunguje.
.


Operace:
   Spouštění asynchronní operace

Kontext:
   Aktuální stav: DoSnapshotSet

Error: (04/01/2017 12:46:26 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (04/01/2017 12:46:03 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
   Shromažďování dat modulu pro zápis

Kontext:
   ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
   Název modulu pro zápis: System Writer
   ID instance modulu pro zápis: {fef6510b-5874-402b-be72-67ad495b7eb6}

Error: (04/01/2017 12:08:50 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad  na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.

Error: (03/31/2017 11:54:40 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad  na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.


System errors:
=============
Error: (04/02/2017 03:06:34 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.

Error: (04/02/2017 03:02:34 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 a APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/02/2017 03:02:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba APXACC neuspěla při spuštění v důsledku následující chyby: 
Zařízení připojené k systému nefunguje.

Error: (04/02/2017 03:02:10 PM) (Source: APXACC) (EventID: 1003) (User: )
Description: The NDIS6 LWF initialization has failed. (0xC0000001)

Error: (04/02/2017 03:01:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/02/2017 02:52:28 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě: 
Instance této služby je již spuštěna.

Error: (04/02/2017 02:51:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Update Service(FirefoxU) byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 300000 milisekund: Restartovat službu.

Error: (04/02/2017 02:51:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Malwarebytes Service byla neočekávaně ukončena. Tento stav nastal již 2krát.

Error: (04/02/2017 02:51:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (04/02/2017 02:51:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba zařazování tisku byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.


==================== Memory info =========================== 

Processor: AMD A6-6310 APU with AMD Radeon R4 Graphics 
Percentage of memory in use: 38%
Total physical RAM: 5080.26 MB
Available physical RAM: 3146.62 MB
Total Virtual: 5848.26 MB
Available Virtual: 3417.16 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.96 GB) (Free:521.25 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: D9FA2484)

Partition: GPT.

==================== End of Addition.txt ============================