Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-04-2017
Ran by Sonidla (20-04-2017 21:17:18)
Running from C:\Users\Sonidla\Desktop
Windows 10 Home Version 1607 (X64) (2017-03-09 14:11:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-413214280-1799941555-775631740-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-413214280-1799941555-775631740-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-413214280-1799941555-775631740-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-413214280-1799941555-775631740-501 - Limited - Disabled)
Sonidla (S-1-5-21-413214280-1799941555-775631740-1001 - Administrator - Enabled) => C:\Users\Sonidla

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{552523b2-40ad-46b3-94f6-2b99d0860d5c}) (Version: 18.40.0 - Intel Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
Dell Customer Connect (HKLM-x32\...\{4FA72FF9-DD64-43A8-8704-6380A11F11D5}) (Version: 1.4.15.0 - Dell Inc.)
Dell Data Vault (Version: 4.4.0.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{99B7C4B5-DC14-441D-A5B6-7340F682BC81}) (Version: 3.1.1117.0 - Dell Products, LP)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.72 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{CD2DF2B3-01E7-47FF-AF9C-725FC5FF6409}) (Version: 1.3.2.3 - Dell)
Dell Update - SupportAssist Update Plugin (HKLM\...\{92F651D9-4431-469E-9B11-299D007AF656}) (Version: 2.0.2.1835 - Dell Inc.)
Dell Update (HKLM-x32\...\{49655877-33CF-4C8A-B07C-9694935431E4}) (Version: 1.9.7.0 - Dell Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 24.4.16 - Dropbox, Inc.)
Dropbox 20 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.33.3 - Google Inc.) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.10900.330 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.0.313 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.5.0.1015 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4574 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.1.0.21 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{97F4CEAE-8F2B-4012-93CC-75428373214D}) (Version: 19.00.1621.3340 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.27 - Intel(R) Corporation) Hidden
Intel® Integrated Sensor Solution (HKLM-x32\...\{b3c2a365-876b-4588-97ce-5ab104b07d57}) (Version: 3.0.30.1076 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{8B08DDA1-FDE7-4897-8EB6-E0B048A6D88B}) (Version: 1.0.1.618 - Intel Corporation)
ISS_Drivers_x64 (Version: 3.0.30.1076 - Intel Corporation) Hidden
Maxx Audio Installer (x64) (Version: 2.7.8942.2 - Waves Audio Ltd.) Hidden
Microsoft Office 2016 pro profesionály - cs-cz (HKLM\...\ProfessionalRetail - cs-cz) (Version: 16.0.7870.2031 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-413214280-1799941555-775631740-1001\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7830.1018 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Online Application (x32 Version: 2.6.0 - Microleaves) Hidden <==== ATTENTION
QuickSet64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.37 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7989 - Realtek Semiconductor Corp.)
Realtek PC Camera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.10586.11188 - Realtek Semiconductor Corp.)
Registrace produktu (Version: 3.0.123.0 - Název společnosti:) Hidden
Registrace produktu Dell (HKLM-x32\...\InstallShield_{85B14AE3-1624-45BE-942B-A528DF6F1CCE}) (Version: 3.0.123.0 - Název společnosti:)
Seznam Software (HKU\S-1-5-21-413214280-1799941555-775631740-1001\...\SeznamInstall) (Version:  - Seznam.cz)
Software602 Form Filler (HKLM-x32\...\{04703FE3-1A8B-4467-88E6-3D6A1A0FA65A}) (Version: 4.70 - Software602 a.s.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1CE63C1E-0C81-4253-B460-811F33EADD90} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)
Task: {2A643991-C963-4D94-BB17-3A18B90E044A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-28] (Microsoft Corporation)
Task: {2C6ED16F-D770-45C9-AE8D-65A46993F502} - System32\Tasks\McAfeeLogon => C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe 
Task: {461866BD-C6B8-4585-B8D4-49F51FDF5D59} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2017-02-17] (PC-Doctor, Inc.)
Task: {646286A6-E8A6-45A3-BB47-86716FAF014E} - System32\Tasks\UCBrowserUpdater => C:\Program Files (x86)\UCBrowser\Application\update_task.exe  <==== ATTENTION
Task: {67349A64-828E-4C3A-BAEC-675C015D6D2D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-09] (Google Inc.)
Task: {6826E80E-C910-4CBB-974B-FC33E8366945} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe  <==== ATTENTION
Task: {6BC62487-23F9-4B0F-A314-22145E7846AC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-28] (Microsoft Corporation)
Task: {79C82B92-3B60-43D5-B0E8-D6D64BD957E3} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation)
Task: {7C631D16-0FF0-4054-8613-A63989C3ACE5} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe 
Task: {8D7DEDE5-1E94-4851-846E-B4050DCABA6F} - System32\Tasks\Dell Cleanup => c:\windows\system32\oem\startmenufix.vbs [2016-09-14] ()
Task: {8D886342-FE24-459A-A638-2F6E9FAEC52D} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe 
Task: {985EAF89-BCE0-4ABD-90FA-28B7114C7C5D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\Explorer.exe /NOUACCHECK
Task: {9CDE5DEB-71BE-4ABC-848F-590CE1618BAA} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2017-02-17] (PC-Doctor, Inc.)
Task: {A2ED7BD6-D82B-4F05-A973-0DBA5BDA7EF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-28] (Microsoft Corporation)
Task: {A43EC524-1053-4702-BB25-65950FEEDE78} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-11-30] (DropboxOEM)
Task: {A4D7607D-FFCB-4114-A4A8-86E9E5405B36} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
Task: {A9FFBCDF-7E3B-43B0-83A9-3D027ECAAA82} - System32\Tasks\{7F24E4D4-F442-49D0-82B9-968854A2126E} => pcalua.exe -a "C:\Program Files (x86)\YeaDesktop\unins000.exe" -d "C:\Program Files (x86)\YeaDesktop"
Task: {AF076678-A864-4CE5-8598-8EE67BA2510E} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe 
Task: {B7E730FD-324F-4689-96D3-C8888835CD8A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-09] (Google Inc.)
Task: {C3FEC4F7-0994-4212-8008-C09641841EA8} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe  <==== ATTENTION
Task: {CCC57DB7-4959-47C8-ABAE-D70273EE8F66} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-09] (Dropbox, Inc.)
Task: {CCD5E9C4-6D32-4792-A656-406F959EAF44} - System32\Tasks\Pritc => C:\Users\Sonidla\AppData\Local\Temp\is-4EHC7.tmp\Setup.exe [2017-04-20] () <==== ATTENTION
Task: {DC08CDA7-2885-45DE-8A15-AEC9C2F122A3} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {DC0D24CA-D7E3-4103-A76C-FA0E79D56113} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {E725EF2F-DC79-45B3-A846-7E65E3658E12} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-10-24] (Dell Inc.)
Task: {EB0E1E8F-6E41-414B-B9A6-55A0A3C75256} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-11-22] (Realtek Semiconductor)
Task: {F084362E-BBAD-4D6F-993E-9C94DA85F944} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-09] (Dropbox, Inc.)
Task: {F37AEEDC-0E2B-4D44-82FC-B3B110F5163B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-28] (Microsoft Corporation)
Task: {F763A6ED-BF0B-417D-A287-1A9B320E610F} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe  <==== ATTENTION
Task: {FB3519B9-A3EF-4337-A9E8-EA626BDEE58F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)
Task: {FDEC5AFC-75DB-4948-861A-DE2367575C88} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-03-26] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\Windows\Tasks\Online Application V2G2.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\Windows\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\Windows\Tasks\UCBrowserUpdater.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
Task: C:\Windows\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

WMI_ActiveScriptEventConsumer_ASEC: <===== ATTENTION

ShortcutWithArgument: C:\Users\Sonidla\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://qtipr.com/

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2017-04-13 17:22 - 2017-03-28 08:22 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2017-04-13 17:22 - 2017-03-28 08:22 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2017-01-12 13:40 - 2017-01-12 13:40 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-18 23:26 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-18 23:26 - 2017-03-04 08:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll
2017-03-18 23:23 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-18 23:23 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-18 23:23 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-04-13 17:22 - 2017-03-28 07:08 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-04-13 17:22 - 2017-03-28 07:11 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-04-10 21:59 - 2017-04-10 21:59 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-04-10 21:59 - 2017-04-10 21:59 - 00189952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-04-10 21:59 - 2017-04-10 21:59 - 42507264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-04-10 21:59 - 2017-04-10 21:59 - 02334184 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\skypert.dll
2016-12-21 11:24 - 2016-12-21 11:24 - 00134008 _____ () C:\Program Files (x86)\Dell Customer Connect\ServiceTagPlusPlus.dll
2016-05-02 15:46 - 2016-05-02 15:46 - 00134008 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2016-09-22 09:56 - 2016-09-22 09:56 - 00133992 _____ () C:\Program Files (x86)\Dell Update\ServiceTagPlusPlus.dll
2016-05-16 22:50 - 2016-05-16 22:50 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\system32\drivers:ucdrv-x64.sys [25444]
AlternateDataStreams: C:\Windows\system32\drivers:x64 [1498914]
AlternateDataStreams: C:\Windows\system32\drivers:x86 [1223458]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-413214280-1799941555-775631740-1001\...\sharepoint.com -> hxxps://zslogo-files.sharepoint.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 13:47 - 2016-07-16 13:45 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-413214280-1799941555-775631740-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\dell\BlueLava_1112000xx_inspiron_wallpaper58095_16x9_72dpi_RGB.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-413214280-1799941555-775631740-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{32E3A314-93CB-4E4D-A23B-542BE05C2EC1}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{9C26A9CA-2536-4F9C-AB86-C8D125EB8164}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{A708A434-7805-4235-8DB1-588C75B743CA}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{0F0912C0-F5D0-4062-994C-8D1F8E70D41F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{A95EC2CD-D88E-4410-AC90-167226F913EB}] => (Allow) C:\Users\Sonidla\AppData\Local\Temp\FlowSpritSetup_slnt_5016.exe
FirewallRules: [{77F22456-BAB2-45A6-9FEE-F4D76FED90AE}] => (Allow) C:\Users\Sonidla\AppData\Local\Temp\setuppacket_bin_77c35ed\FlowSpritSetup_slnt_5009.exe
FirewallRules: [{9B4E0CF7-9F17-46F7-86FB-DFEF6AE324F7}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Restore Points =========================

12-04-2017 13:45:32 Windows Update
12-04-2017 13:46:06 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/20/2017 08:16:30 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- Exception on mounting SOS: mk_dellsupport_lnk can't find DSP! errno=0 #StackInfo#

Error: (04/20/2017 08:16:30 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- mk_dellsupport_lnk() can't find DSP! Threw exception! #StackInfo#

Error: (04/20/2017 08:16:30 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- FindPartObjects() Lable not matched! Target:DELLSUPPORT, Current:Image, Partition:PartitionPos {disk:0, part:5}, curGptTypeStr:{de94bba4-06d1-4d40-a16a-bfd50179d6ac} #StackInfo#

Error: (04/20/2017 08:16:30 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- FindPartObjects() Lable not matched! Target:DELLSUPPORT, Current:WINRETOOLS, Partition:PartitionPos {disk:0, part:4}, curGptTypeStr:{de94bba4-06d1-4d40-a16a-bfd50179d6ac} #StackInfo#

Error: (04/20/2017 08:16:30 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- [SOSINSTALLER] TRYMOUNT-DELLSUPPORT: mk_dellsupport_lnk can't find DSP! errno=0
   v utilities.SymlnkBroker.mk_dellsupport_lnk(String mountpoint, String targetFileRelativePath, Boolean isDirectory, List`1 targetKeyFiles)
   v utilities.PartitionHelper.DellSupportFinder.find()
   v DellUpdate.sosinstaller.try_mount_dellsupport() #StackInfo#

Error: (04/20/2017 08:16:30 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- mk_dellsupport_lnk() can't find DSP! Threw exception! #StackInfo#

Error: (04/20/2017 08:13:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: szndesktop.exe, verze: 0.0.0.0, časové razítko: 0x58e4e7d9
Název chybujícího modulu: lightspeed.dll, verze: 0.0.0.0, časové razítko: 0x55645b39
Kód výjimky: 0xc0000005
Posun chyby: 0x00057580
ID chybujícího procesu: 0x1938
Čas spuštění chybující aplikace: 0x01d2b9fabcc9d9ce
Cesta k chybující aplikaci: C:\Users\Sonidla\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
Cesta k chybujícímu modulu: C:\Users\Sonidla\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
ID zprávy: 97da7a60-529d-4f06-bf78-7573fc3628f2
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (04/20/2017 06:49:42 PM) (Source: ESENT) (EventID: 454) (User: )
Description: DllHost (7104) Microsoft.MicrosoftEdge_8wekyb3d8bbwe_NOEDP_EDGE_IDB: Při pokusu o obnovení nebo zotavení databáze došlo k neočekávané chybě -1216.

Error: (04/20/2017 06:49:42 PM) (Source: ESENT) (EventID: 494) (User: )
Description: DllHost (7104) Microsoft.MicrosoftEdge_8wekyb3d8bbwe_NOEDP_EDGE_IDB: Obnovení databáze selhalo a došlo k chybě -1216, protože se zjistily odkazy na databázi C:\Users\Sonidla\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\Indexed DB\IndexedDB.edb, která už není dostupná. Databáze se před odebráním (nebo případným přesunutím nebo přejmenováním) nepřevedla do stavu čistého vypnutí. Databázový stroj nepovolí dokončení obnovení pro tuto instanci, dokud se znovu nevytvoří instance chybějící databáze. Pokud už databáze skutečně není dostupná a už se nevyžaduje, získáte pokyny týkající se odstranění této chyby ve znalostní bázi Microsoft Knowledge Base nebo po kliknutí na odkaz Další informace na konci této zprávy.

Error: (04/20/2017 06:16:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: YeaDesktop.exe, verze: 1.0.0.6, časové razítko: 0x58f704d4
Název chybujícího modulu: FileSyncShell.dll, verze: 17.3.6799.327, časové razítko: 0x58d9ba50
Kód výjimky: 0xc0000005
Posun chyby: 0x00006dc5
ID chybujícího procesu: 0x1830
Čas spuštění chybující aplikace: 0x01d2b9f1569749f3
Cesta k chybující aplikaci: C:\Program Files (x86)\YeaDesktop\YeaDesktop.exe
Cesta k chybujícímu modulu: C:\Users\Sonidla\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll
ID zprávy: 7d552b64-67a8-4324-80b2-500162fb2fd4
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (04/20/2017 08:18:17 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-V4OE7ON)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 a APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 uživateli DESKTOP-V4OE7ON\Sonidla (SID: S-1-5-21-413214280-1799941555-775631740-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe – SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/20/2017 08:15:33 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-V4OE7ON)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 a APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 uživateli DESKTOP-V4OE7ON\Sonidla (SID: S-1-5-21-413214280-1799941555-775631740-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe – SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/20/2017 08:15:19 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-V4OE7ON)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 a APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 uživateli DESKTOP-V4OE7ON\Sonidla (SID: S-1-5-21-413214280-1799941555-775631740-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe – SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/20/2017 07:40:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/20/2017 07:40:05 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-V4OE7ON)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 a APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 uživateli DESKTOP-V4OE7ON\Sonidla (SID: S-1-5-21-413214280-1799941555-775631740-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe – SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/20/2017 07:23:20 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-V4OE7ON)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{9E175B6D-F52A-11D8-B9A5-505054503030}
 a APPID 
{9E175B9C-F52A-11D8-B9A5-505054503030}
 uživateli DESKTOP-V4OE7ON\Sonidla (SID: S-1-5-21-413214280-1799941555-775631740-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe – SID (S-1-15-2-3624051433-2125758914-1423191267-1740899205-1073925389-3782572162-737981194). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/20/2017 07:22:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 a APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/20/2017 07:21:04 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\IWMSSvc.dll

Error: (04/20/2017 07:21:04 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\IWMSSvc.dll

Error: (04/20/2017 07:21:02 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\System32\IWMSSvc.dll


CodeIntegrity:
===================================
  Date: 2017-04-20 19:21:45.431
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 19:06:34.236
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 18:55:14.692
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 18:48:52.697
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 18:32:41.636
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 18:14:31.937
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 18:04:18.543
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 18:03:31.553
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 18:03:31.442
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cryptfd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-20 18:00:12.265
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i3-7100U CPU @ 2.40GHz
Percentage of memory in use: 53%
Total physical RAM: 3965.23 MB
Available physical RAM: 1836.75 MB
Total Virtual: 7933.23 MB
Available Virtual: 5468.67 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:921.52 GB) (Free:880.92 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: C84573FE)

Partition: GPT.

==================== End of Addition.txt ============================