Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-04-2017
Ran by adeam (26-04-2017 17:17:19)
Running from C:\Users\adeam\Desktop
Windows 7 Professional Service Pack 1 (X64) (2017-01-04 14:05:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

adeam (S-1-5-21-3770857571-1092624148-1139369411-1000 - Administrator - Enabled) => C:\Users\adeam
Administrator (S-1-5-21-3770857571-1092624148-1139369411-500 - Administrator - Disabled)
Guest (S-1-5-21-3770857571-1092624148-1139369411-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3770857571-1092624148-1139369411-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Endpoint Antivirus 6.4.2014.2 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Endpoint Antivirus 6.4.2014.2 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
ACA & MEP 2017 Object Enabler (Version: 7.9.45.0 - Autodesk) Hidden
ACAD Private (Version: 21.0.52.0 - Autodesk) Hidden
Acronis True Image WD Edition (HKLM-x32\...\{CEAC6D9F-944A-40F7-AB5D-A7412AF9CED9}) (Version: 19.0.33 - Acronis)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 6.0 (HKLM-x32\...\Adobe Photoshop Lightroom 6.0) (Version: 6.0 - Adobe)
Akamai NetSession Interface (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)
AutoCAD 2017 - English (Version: 21.0.52.0 - Autodesk) Hidden
AutoCAD 2017 (Version: 21.0.52.0 - Autodesk) Hidden
AutoCAD 2017 Language Pack - English (Version: 21.0.52.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk)
Autodesk App Manager 2016-2017 (HKLM-x32\...\{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 - Autodesk)
Autodesk AutoCAD 2017 - English (HKLM\...\AutoCAD 2017 - English) (Version: 21.0.52.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.5 (HKLM-x32\...\{8600F844-9AA5-412E-B6F2-F9C6CBCFD268}) (Version: 1.2.5.0 - Autodesk)
Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 6.2.0.174 - Autodesk)
Autodesk Featured Apps 2016-2017 (HKLM-x32\...\{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
BitTorrent (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\BitTorrent) (Version: 7.9.9.43389 - BitTorrent Inc.)
Blizzard App (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform)
Connectify 2016 (HKLM\...\Connectify) (Version: 2016.0.12.37996 - Connectify)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0115 - Disc Soft Ltd)
Dexpot (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\Dexpot) (Version: 1.6.14 - Dexpot GbR)
DiRT 3 Complete Edition (HKLM\...\Steam App 321040) (Version:  - Codemasters Racing Studio)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dual Monitor 1.22 (HKLM-x32\...\{64AA3F94-ED4A-4A4B-B72C-B7A1481ED5D8}_is1) (Version: 1.22.021813 - Cristi Diaconu)
EDGE (HKLM\...\Steam App 38740) (Version:  - Two Tribes)
ESET Endpoint Antivirus (HKLM\...\{BE081690-1595-409A-B241-E8E89978AAB3}) (Version: 6.4.2014.2 - ESET, spol. s r.o.)
Ext2Fsd 0.68 (HKLM\...\Ext2Fsd_is1) (Version: 0.68 - Matt Wu)
f.lux (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\Flux) (Version:  - )
Google Chrome (HKLM\...\{83F2CE66-1F17-38DE-83BD-1BAD39009FB6}) (Version: 58.0.3029.81 - Google, Inc.)
Google Chrome Canary (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\Google Chrome SxS) (Version: 60.0.3081.0 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.33.3 - Google Inc.) Hidden
HashTab 6.0.0.28 (HKLM\...\HashTab) (Version: 6.0.0.28 - Implbits Software)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
HeidiSQL (HKLM\...\HeidiSQL_is1) (Version:  - Ansgar Becker)
hide.me VPN 1.2.12 (HKLM-x32\...\{0E00BDA5-7998-4889-BE4B-39A4BBD2EDFB}_is1) (Version: 1.2.12 - eVenture Limited)
HipChat (HKLM-x32\...\{1E58E3D7-8943-4BF1-BADD-BF471506B684}_is1) (Version: 4.29.1662 - Atlassian Inc)
HP LaserJet P1000 series (HKLM-x32\...\HP LaserJet P1000 series) (Version:  - )
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version:  - )
HP LaserJet Professional M1210 MFP Series Fax Installer (HKLM\...\{E65099C4-9110-4C31-BD03-5C17EFB5FE92}) (Version: 1.1.0 - HP)
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Image Composite Editor (HKLM\...\{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation)
Inst5676 (Version: 8.01.57 - Softex Inc.) Hidden
Integrated Camera (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.7.36 - SunplusIT)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.4 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 19.0.1629.3590) (HKLM\...\{302600C1-6BDF-4FD1-1603-148929CC1385}) (Version: 19.0.1603.0650 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{aa2c2346-d0c0-4d3e-9ab1-11a48b4cb9f3}) (Version: 19.20.3 - Intel Corporation)
Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
JetBrains PhpStorm 2016.3.2 (HKLM-x32\...\PhpStorm 2016.3.2) (Version: 163.10504.2 - JetBrains s.r.o.)
Lenovo Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.82.00.14 - Lenovo)
Lenovo Fingerprint Manager Pro (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.57 - Lenovo)
Lenovo Fingerprint Manager Pro (Version: 8.01.57 - Lenovo) Hidden
Lenovo On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.86.06 - Lenovo)
Lenovo Power Management Driver (Version: 1.67.12.23 - Lenovo) Hidden
Lenovo Service Bridge (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\dda9ca0b023f4c56) (Version: 1.6.6.0 - Lenovo)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0045 - Lenovo)
Lightshot-5.4.0.5 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.5 - Skillbrains)
maxima-5.38.1 (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\maxima-5.38.1) (Version: 5.38.1 - Maxima Team)
Messenger for Desktop (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\messengerfordesktop) (Version: 2.0.9 - MessengerForDesktop.com)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 365 ProPlus - sk-sk (HKLM\...\O365ProPlusRetail - sk-sk) (Version: 16.0.7870.2031 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Project Professional 2016 - sk-sk (HKLM\...\ProjectProRetail - sk-sk) (Version: 16.0.7870.2031 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
ModemAuthenticator (HKLM-x32\...\{30F2BC34-BB35-4722-9CE9-B04849D3C934}) (Version: 1.0.25 - Intel Mobile Communications)
Mozilla Firefox 51.0.1 (x86 sk) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 sk)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0 - Mozilla)
MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team)
MrvlUsgTracking (HKLM-x32\...\{A82D052A-0806-42DF-80CD-1730A1AC0ED3}) (Version: 1.0.7 - Marvell)
MrvlUsgTracking64 (HKLM\...\{42F0FD29-7EB3-4CAA-AF10-BC2619B96D80}) (Version: 1.0.1 - Marvell Semiconductor Pvt Ltd)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Opera Stable 43.0.2442.1144 (HKLM-x32\...\Opera 43.0.2442.1144) (Version: 43.0.2442.1144 - Opera Software)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Postman-win64-4.9.3 (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\Postman) (Version: 4.9.3 - Postman)
Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.12 - Lenovo Group Limited)
PuTTY release 0.67 (HKLM-x32\...\PuTTY_is1) (Version: 0.67 - Simon Tatham)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7746 - Realtek Semiconductor Corp.)
Resource Hacker Version 4.5.30 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
Riot - Radical Image Optimization Tool (HKLM-x32\...\Riot) (Version:  - )
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Sierra Wireless EM7345 4G LTE Software (HKLM-x32\...\SWIIntelDrvInstaller) (Version: 2.32.10970.4625 - Sierra Wireless, Inc.)
SketchUp Import 2016-2017 (HKLM-x32\...\{063925DB-9D8C-48E2-8F04-1B7038B6C783}) (Version: 2.2.0 - Autodesk)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\Spotify) (Version: 1.0.53.758.gde3fc4b2 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.9.6 (HKLM\...\SteelSeries Engine 3) (Version: 3.9.6 - SteelSeries ApS)
Stud_PE version 2.6.1.0 (HKLM-x32\...\Stud_PE_is1) (Version: 2.6.1.0 - CGSoftLabs)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.109 - Synaptics Incorporated)
Synaptics WBF DDK 5011 (HKLM\...\{1C3CE37F-B15A-4438-9E7A-C15B18E27625}) (Version: 4.5.327.0 - Synaptics)
Synaptics WBF DDK 5011 (HKLM\...\{4D70781C-36A9-4335-9568-565C6F61B5EB}) (Version: 4.5.327.0 - )
TeamSpeak 3 Client (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
Telegram Desktop version 1.0.29 (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.0.29 - Telegram Messenger LLP)
TeraCopy 2.3 (HKLM\...\TeraCopy_is1) (Version:  - Code Sector)
ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.26.85 - Lenovo)
ThinkVantage Password Manager (HKLM-x32\...\{70EE2BAA-F82A-4B8A-950E-649EFD64D5B9}) (Version: 4.70.18.0 - Lenovo Group Limited)
Toastify (HKLM-x32\...\Toastify) (Version: 1.6 - Jesper Palm)
Topaz DeNoise 5 (HKLM-x32\...\Topaz DeNoise 5) (Version: 5.1.0 - Topaz Labs, LLC)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
WinDirStat 1.1.2 (HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\WinDirStat) (Version:  - )
Windows Driver Package - Microsoft (xusb21) XnaComposite  (08/13/2009 2.1.0.1349) (HKLM\...\0AEBEF6F936CFE16E003F7E141631FAB754D9816) (Version: 08/13/2009 2.1.0.1349 - Microsoft)
WinSCP 5.9.3 (HKLM-x32\...\winscp3_is1) (Version: 5.9.3 - Martin Prikryl)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\adeam\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler)
CustomCLSID: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000_Classes\CLSID\{0D327DA6-B4DF-4842-B833-2CFF84F0948F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\adeam\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileCoAuthLib64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000_Classes\CLSID\{720DB9AF-D62C-4ED0-A377-429C22312852}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\adeam\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2017\en-US\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\adeam\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00510848-F0FF-4ADC-A01F-AF769043925A} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-3770857571-1092624148-1139369411-1000 => Rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\adeam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {1253EDBF-A399-417B-B499-52380AC6065F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)
Task: {2B02FE6E-3562-4FF9-97EA-B50AD992079F} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-01-18] ()
Task: {2DC54416-C975-4E9E-8E7C-B82982546FAE} - System32\Tasks\Opera scheduled Autoupdate 1483548606 => C:\Program Files (x86)\Opera\launcher.exe [2017-02-27] (Opera Software)
Task: {30EC2152-3C14-4D3D-835C-9E03DA8652D7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {369D8060-3B0F-46B8-8D89-9119296695D0} - System32\Tasks\update-S-1-5-21-3770857571-1092624148-1139369411-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {3C580D6B-B870-4A40-83FE-1678C8EBD3E8} - System32\Tasks\RtHDVBg_LENOVO_MICPKEY => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-02-23] (Realtek Semiconductor)
Task: {3DA1E065-B0B2-4C81-B10D-0B4AF8DA987B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02] (Adobe Systems Incorporated)
Task: {419B35D1-365D-4AC2-9A65-F1F844C37B68} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-03-26] (Microsoft Corporation)
Task: {4690EE4C-1329-43E4-8377-7FA623A746E7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)
Task: {4E0E2223-0624-4536-8E0C-AEB3DC2BBB43} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-02-23] (Realtek Semiconductor)
Task: {80D13F7B-5F91-4653-A96E-C2BC4CD76A7B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {872B2AB5-37A6-4077-93C8-404FD77171EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-04] (Google Inc.)
Task: {93544FD7-6BEA-4092-9FBD-9A9D5024BBC9} - System32\Tasks\Lenovo Active Protection System => C:\Windows\system32\TpShUI.exe [2017-03-21] (Lenovo.)
Task: {9CADFCA7-70A3-401C-A327-E66BA9392110} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3770857571-1092624148-1139369411-1000Core => C:\Users\adeam\AppData\Local\Google\Update\GoogleUpdate.exe [2017-04-26] (Google Inc.)
Task: {A1FD3534-DEAD-4B39-B4B3-D69420ECB2AD} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {A6823CE9-87BB-46AC-90CC-A7B47C87F808} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3770857571-1092624148-1139369411-1000UA => C:\Users\adeam\AppData\Local\Google\Update\GoogleUpdate.exe [2017-04-26] (Google Inc.)
Task: {AA459A1B-4353-495E-8ABB-6EE505BA7DA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-04] (Google Inc.)
Task: {B4EB957D-53BC-4F9C-99FD-F1F6D07D9B46} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-01-18] ()
Task: {BEB64E55-18DC-4FE1-B77D-D15B77D999F4} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-02-23] (Realtek Semiconductor)
Task: {C7443ABA-90FD-49E2-B1AB-10CBF4312C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd)
Task: {F728753A-13E0-4E79-A714-84A6754FD12B} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {FD711BEB-E587-4F7F-A519-3E6BE65FE168} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2017-02-21] (Lenovo Group Limited)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Lenovo Active Protection System.job => C:\Windows\system32\TpShUI.exe
Task: C:\Windows\Tasks\update-S-1-5-21-3770857571-1092624148-1139369411-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\adeam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\maxima-5.38.1\Configure default LISP for Maxima.lnk -> C:\maxima-5.38.1\bin\lispselector.bat ()
Shortcut: C:\Users\adeam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\maxima-5.38.1\Maxima (command line).lnk -> C:\maxima-5.38.1\bin\maxima.bat ()
Shortcut: C:\Users\adeam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\maxima-5.38.1\XMaxima (simple GUI).lnk -> C:\maxima-5.38.1\bin\xmaxima.bat ()

ShortcutWithArgument: C:\Users\adeam\Desktop 2\Ninja - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\adeam\Desktop 2\Osoba 1 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\adeam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Videostream for Google Chromecast™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=cnciopoikihiagdjbjpnocolokfelagl

==================== Loaded Modules (Whitelisted) ==============

2017-01-05 18:02 - 2010-03-31 12:51 - 00407040 _____ () C:\Windows\System32\HPM1210LM.DLL
2017-01-05 18:02 - 2010-03-31 12:51 - 00074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HPM1210PP.DLL
2017-01-04 19:38 - 2017-02-21 06:08 - 00107008 ____N () C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.DLL
2017-02-06 19:54 - 2013-02-18 09:23 - 00695808 _____ () C:\Program Files (x86)\Dual Monitor\ExplorerHook64.dll
2017-01-05 14:09 - 2012-01-29 17:55 - 00657920 _____ () C:\Program Files\TeraCopy\TeraCopy64.dll
2017-01-05 14:09 - 2012-01-20 15:55 - 00678400 _____ () C:\Program Files\TeraCopy\TeraCopyExt64.dll
2017-01-01 21:30 - 2017-01-01 21:30 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2017-01-04 19:31 - 2016-03-23 13:03 - 00382496 _____ () C:\Program Files\Lenovo\Password Manager\pwm_website_config.dll
2017-01-18 17:31 - 2017-01-18 17:31 - 00025976 _____ () C:\Program Files (x86)\Lenovo\System Update\UNCServer.exe
2017-01-06 14:19 - 2013-02-03 12:14 - 01864704 _____ () C:\Explorer++.exe
2017-04-26 17:04 - 2017-04-26 13:21 - 03814232 _____ () C:\Users\adeam\AppData\Local\Google\Chrome SxS\Application\60.0.3081.0\libglesv2.dll
2017-04-26 17:04 - 2017-04-26 13:21 - 00100184 _____ () C:\Users\adeam\AppData\Local\Google\Chrome SxS\Application\60.0.3081.0\libegl.dll
2017-02-14 05:33 - 2016-12-14 20:56 - 00925240 _____ () C:\Program Files (x86)\Connectify\log4cplus.dll
2016-03-23 12:59 - 2016-03-23 12:59 - 00948256 _____ () C:\Program Files (x86)\Lenovo\Password Manager\pwm_website_config.dll
2016-12-15 19:15 - 2016-12-15 19:15 - 00693272 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers_proxy.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\...\sharepoint.com -> hxxps://vutbr-files.sharepoint.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2017-04-25 10:49 - 00000873 ____A C:\Windows\system32\Drivers\etc\hosts

109.201.137.57 api.hide.me # Added by Hide.me VPN

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3770857571-1092624148-1139369411-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 147.229.190.143 - 147.229.191.143
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: AcrSch2Svc => 2
MSCONFIG\Services: AdAppMgrSvc => 2
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: afcdpsrv => 2
MSCONFIG\Services: Ext2Srv => 2
MSCONFIG\Services: FirmwareUpdaterService => 2
MSCONFIG\Services: FlexNet Licensing Service 64 => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: hmevpnsvc => 2
MSCONFIG\Services: HPM1210RcvFaxSrvc => 2
MSCONFIG\Services: HPSIService => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: SUService => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: syncagentsrv => 2
MSCONFIG\startupfolder: C:^Users^adeam^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Odoslanie do aplikácie OneNote.lnk => C:\Windows\pss\Odoslanie do aplikácie OneNote.lnk.Startup
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeBridge => 
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\adeam\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: Autodesk Desktop App => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: Messenger for Desktop => "C:\Users\adeam\AppData\Local\messengerfordesktop\Update.exe" --processStart "Messenger for Desktop.exe" --process-start-args "--os-startup"
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Toastify => "C:\Program Files (x86)\Toastify\Toastify.exe"
MSCONFIG\startupreg: TrueImageMonitor.exe => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{B16967DC-C95F-4BF1-BFF2-BE93A735BA5E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FCCB548D-43AE-43ED-926A-0E5CB26C56D7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6323D164-4288-42DE-8E34-943937DE9B3E}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [TCP Query User{74ABC920-CF43-499B-A20C-01D231503C3D}C:\users\adeam\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\adeam\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{DEA27FA4-A745-49B2-8C63-BCC90BB21FFA}C:\users\adeam\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\adeam\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E86602EF-BCE7-487B-A9C3-EEDBAC6A19BF}] => (Allow) LPort=9100
FirewallRules: [{0F397A5F-770F-4FDA-91E9-B747DE52739C}] => (Allow) LPort=427
FirewallRules: [{27F92FBA-1A39-400F-8F03-7E5335EDA8CB}] => (Allow) LPort=161
FirewallRules: [{F881EEBD-939E-46AA-BA4E-25C6D40BED79}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{5AC6C4D3-F703-42F1-A568-9EEEF9CD4CCB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A284B4B4-1C4D-448E-86BA-29E1FC3133CC}] => (Allow) LPort=5556
FirewallRules: [{BE7CFF6F-2DAE-43EE-81C3-2FA2B0FF2B42}] => (Allow) LPort=5558
FirewallRules: [{EA745A1F-A67D-4B18-BE0A-ECB1D5B49AA9}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{20EA25EA-A715-491C-AC05-621EEA6EA9DD}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{0A65F864-AEE3-4760-B45D-45ECFEB85506}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{1F4C19B8-01C0-48CB-A5BD-F70C27FEEDB8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{0C103172-C067-4A08-A735-FB54C2880F8A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{F03EDB31-3715-4D43-A41E-3A753289BD65}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{00DD4E98-B226-463E-AA35-3F5D57B369D6}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [TCP Query User{B49F00E7-4FF2-4CDD-A702-23465A0FA685}C:\users\adeam\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\adeam\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{497A9D2D-BD43-436A-8B7C-20C5DC83F102}C:\users\adeam\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\adeam\appdata\local\akamai\netsession_win.exe
FirewallRules: [{BE0A4868-6889-4139-A84D-60824DC9B5FE}] => (Block) C:\users\adeam\appdata\local\akamai\netsession_win.exe
FirewallRules: [{3C32F3D0-4F19-4086-9D21-FA50D0FCDC4B}] => (Block) C:\users\adeam\appdata\local\akamai\netsession_win.exe
FirewallRules: [{2EFDD404-7E19-4E20-8C48-51A641E30C66}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{817A762A-C711-42F9-A8A0-79CE432E31B8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{7785FC24-2831-4959-894D-2790EECF6CCD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{FBAA5A22-1D5C-4922-8459-8756DFF89C02}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3FDEA817-84D9-4C45-A5A8-CF9D4DE7E5C1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{77EF17B9-7DCF-474E-9730-0DE1FB0422F8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{EAC077EA-347C-44BA-8156-920DD1E36D13}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{FFB29184-1FC6-4A1E-A68C-DA26AD340944}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0D5BFA30-9794-4491-B261-C8467CC3AB81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{CC965628-7058-48F0-A352-BFDC082D620F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C3733532-617C-4FC8-96C8-2581B46FDA39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EDGE\edge.exe
FirewallRules: [{B4F0DD0E-2F58-4311-A210-D302D9994147}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EDGE\edge.exe
FirewallRules: [{000FFCEA-5A81-403F-A276-5BDCF6B17008}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{103AFDB5-83AE-4559-9464-1733F1620183}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{E3E3B03F-9D4E-437F-ABE4-9937CF9113AE}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\HP1006MC.EXE
FirewallRules: [{EC7EB45F-329E-46EE-9C10-617D2C2084EB}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\HP1006MC.EXE
FirewallRules: [{CD674F95-84C2-40AA-91CE-0D1BCBD50FFE}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{3A09B5F8-F03D-4EE0-B48D-27DA95602A6C}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{8FA79699-C613-4A25-9A79-CDDD4BF6DE6E}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{F62FE957-5376-47B1-8DA3-02BB7734D6D1}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{1118C569-085B-483F-A279-1BB3E7DA84A9}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{3FF10080-FD73-4ACE-A3A0-C0B90D7999B5}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.991\opera.exe
FirewallRules: [{87B46633-54AC-4B93-A0C1-A4D0FE32F4F1}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
FirewallRules: [TCP Query User{BF15B102-BA19-493D-90D3-DC3EEE97C9A2}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{BD65D71E-2F6D-49B7-9E33-3D1252DAA840}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{F3E11D8B-2B68-4681-A1FA-FEEBD20A8CBB}] => (Allow) C:\Users\adeam\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{CD77DB18-9AE3-486B-B548-996EA17B31F3}] => (Allow) C:\Users\adeam\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{4E98C996-9E20-4166-9FDA-FFB9EACEC359}] => (Allow) C:\Users\adeam\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{A47A9104-9A18-4DE1-A306-51DFFA4250FD}] => (Allow) C:\Users\adeam\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{1ECAA0DA-D7D0-4602-AC5A-7086560F65EB}] => (Allow) C:\Users\adeam\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{0958F0C5-C6AA-4636-B1E4-B6D3D5240173}] => (Allow) C:\Users\adeam\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{1F4073EF-2959-4B7F-8E70-624CE81B7BC2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{19E99950-BEEC-4A6F-8081-0A8601171E61}C:\program files (x86)\winscp\winscp.exe] => (Allow) C:\program files (x86)\winscp\winscp.exe
FirewallRules: [UDP Query User{31A97D23-67A1-4733-B0C2-8DDDDAB40200}C:\program files (x86)\winscp\winscp.exe] => (Allow) C:\program files (x86)\winscp\winscp.exe
FirewallRules: [{9B2B5312-CF20-4571-A45E-396F7D1789AD}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{976CBD6B-AA9F-421C-B7DD-B10152A95967}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{94FC96FF-1A73-4D8B-8AD1-AD25479F0B6E}] => (Allow) C:\Program Files (x86)\Connectify\Connectifyd.exe
FirewallRules: [{D95C1A1D-10D8-4EAC-B9BE-314A6B02AF55}] => (Allow) C:\Program Files (x86)\Connectify\Connectifyd.exe
FirewallRules: [{974C6208-9E7B-4FC4-833D-1CE659B5B703}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{7F3B3F39-5547-4A1F-A0BB-9B72E2ACDD46}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{0C21490A-D288-4770-9AD7-25CA65A1CC9D}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{C3A4EB0C-EC2D-44A9-9642-9A7815C98748}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{77DE3CBD-7E6B-4543-B135-19E7264D4C6C}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{B0EA6EAF-AA78-4305-8E57-5B5DAA2E7C29}] => (Allow) C:\Program Files (x86)\Connectify\Connectifyd.exe
FirewallRules: [{1A4AEAC3-9BC9-485D-BF79-B122C3929043}] => (Allow) C:\Program Files (x86)\Connectify\Connectifyd.exe
FirewallRules: [{CC60B4E7-4C03-4888-B030-380512B2E56E}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{936CD9F2-DC68-4A5F-9050-89F3C26F05D7}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{DC45432A-ABEA-42F1-8BBB-0E276FBF723C}] => (Allow) C:\Program Files (x86)\Connectify\Connectifyd.exe
FirewallRules: [{D09858F9-A53C-48D2-A635-C44D97561292}] => (Allow) C:\Program Files (x86)\Connectify\Connectifyd.exe
FirewallRules: [{EEDCCF35-A056-492D-8308-5FD4A102D4D4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{96C90D9B-1270-4D81-83E6-C94BF4D68059}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{1A3890DF-B417-4D5E-B250-46EAA912F237}] => (Allow) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
FirewallRules: [{132517BF-FD66-430A-957D-C488D096C94D}] => (Allow) C:\Program Files (x86)\Connectify\Connectifyd.exe
FirewallRules: [{AF6FB8DE-E8AE-4FAC-89D9-D3DADCFF96F0}] => (Allow) C:\Program Files (x86)\Connectify\Connectifyd.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/26/2017 05:15:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybovej aplikácie: FRSTLauncher.exe, verzia: 30.9.13.1, časová značka: 0x2a425e19
Názov chybového modulu: KERNELBASE.dll, verzia: 6.1.7601.23714, časová značka: 0x58bf87bb
Kód výnimky: 0x0eedfade
Odstup chyby: 0x0000c54f
Identifikácia chybného procesu: 0x145c
Čas spustenia chybnej aplikácie: 0x01d2be9ff581a9cf
Cesta chybnej aplikácie: C:\Users\adeam\Desktop 2\FRSTLauncher.exe
Cesta chybného modulu: C:\Windows\syswow64\KERNELBASE.dll
Identifikácia hlásenia: 333875c5-2a93-11e7-859f-00aa00178795

Error: (04/26/2017 05:15:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybovej aplikácie: FRSTLauncher.exe, verzia: 30.9.13.1, časová značka: 0x2a425e19
Názov chybového modulu: KERNELBASE.dll, verzia: 6.1.7601.23714, časová značka: 0x58bf87bb
Kód výnimky: 0x0eedfade
Odstup chyby: 0x0000c54f
Identifikácia chybného procesu: 0xf90
Čas spustenia chybnej aplikácie: 0x01d2be9fdf01c0e8
Cesta chybnej aplikácie: C:\Users\adeam\Downloads\FRSTLauncher.exe
Cesta chybného modulu: C:\Windows\syswow64\KERNELBASE.dll
Identifikácia hlásenia: 1d822641-2a93-11e7-859f-00aa00178795

Error: (04/26/2017 05:05:17 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (04/26/2017 05:05:17 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (04/26/2017 04:58:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (04/26/2017 02:29:11 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (04/26/2017 04:54:22 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (04/25/2017 06:44:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybovej aplikácie: AUDIODG.EXE, verzia: 6.1.7601.23471, časová značka: 0x57601f74
Názov chybového modulu: ntdll.dll, verzia: 6.1.7601.23714, časová značka: 0x58bf89e8
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000048f24
Identifikácia chybného procesu: 0xe18
Čas spustenia chybnej aplikácie: 0x01d2bdc3d769011f
Cesta chybnej aplikácie: C:\Windows\system32\AUDIODG.EXE
Cesta chybného modulu: C:\Windows\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 83af1a6a-29d6-11e7-b298-00aa00178795

Error: (04/25/2017 12:33:02 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službe Windows Search sa nepodarilo spracovať zoznam zahrnutých a vylúčených umiestnení, pretože sa vyskytla chyba <30, 0x80040d07, "iehistory://{S-1-5-21-3770857571-1092624148-1139369411-1000}/">.

Error: (04/25/2017 12:15:49 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.


System errors:
=============
Error: (04/26/2017 04:58:24 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní: 
cdrom

Error: (04/26/2017 04:58:18 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 16:55:41 on ‎26. ‎4. ‎2017 was unexpected.

Error: (04/26/2017 04:58:16 PM) (Source: volsnap) (EventID: 25) (User: )
Description: The shadow copies of volume C: were deleted because the shadow copy storage could not grow in time.  Consider reducing the IO load on the system or choose a shadow copy storage volume that is not being shadow copied.

Error: (04/25/2017 12:48:03 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 147.229.216.138.
The computer with the IP address 147.229.218.51 did not allow the name to be claimed by
this computer.

Error: (04/25/2017 12:09:01 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní: 
cdrom

Error: (04/25/2017 12:07:49 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní: 
cdrom

Error: (04/25/2017 12:03:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070103: SteelSeries ApS - HIDClass - 12/19/2016 12:00:00 AM - 2.4.0.0.

Error: (04/25/2017 11:39:41 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní: 
cdrom

Error: (04/25/2017 11:39:24 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 11:38:05 on ‎25. ‎4. ‎2017 was unexpected.

Error: (04/25/2017 10:48:44 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní: 
cdrom


CodeIntegrity:
===================================
  Date: 2017-04-09 13:21:28.630
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-09 13:21:28.629
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-09 13:10:05.323
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-09 13:10:05.322
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-03 10:18:38.382
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-04-03 10:18:38.381
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-03-27 22:47:17.932
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-03-27 22:47:17.930
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-15 13:19:51.594
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-15 13:19:51.593
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Lenovo\System Update\ApsIns64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4600U CPU @ 2.10GHz
Percentage of memory in use: 26%
Total physical RAM: 11970.7 MB
Available physical RAM: 8840.54 MB
Total Virtual: 23939.59 MB
Available Virtual: 20666.47 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:124.9 GB) (Free:7.94 GB) NTFS
Drive d: (adeam_RED) (Fixed) (Total:931.48 GB) (Free:6.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 7730C77E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=124.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=34.2 GB) - (Type=83)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 00023F15)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================