Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02.01.2018
Ran by Hombre (05-01-2018 16:51:06)
Running from C:\Users\Hombre\Desktop
Windows 10 Pro Version 1709 16299.125 (X64) (2017-12-22 14:08:03)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1316363965-161402098-3267105952-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1316363965-161402098-3267105952-503 - Limited - Disabled)
Guest (S-1-5-21-1316363965-161402098-3267105952-501 - Limited - Disabled)
Hombre (S-1-5-21-1316363965-161402098-3267105952-1002 - Administrator - Enabled) => C:\Users\Hombre
OEM (S-1-5-21-1316363965-161402098-3267105952-1001 - Administrator - Enabled) => C:\Users\OEM
WDAGUtilityAccount (S-1-5-21-1316363965-161402098-3267105952-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1316363965-161402098-3267105952-1002\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_7_1) (Version: 7.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0_1) (Version: 19.0.1 - Adobe Systems Incorporated)
Dell Command | Power Manager (HKLM\...\{DDDAF4A7-8B7D-4088-AECC-6F50E594B4F5}) (Version: 2.2.1 - Dell Inc.)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.2207.101.108 - ALPS ELECTRIC CO., LTD.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 40.4.46 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.108 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
IrfanView 4.50 (64-bit) (HKLM\...\IrfanView64) (Version: 4.50 - Irfan Skiljan)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8006.3 - Waves Audio Ltd.) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.8730.2127 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1316363965-161402098-3267105952-1002\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 57.0.4 (x64 en-US) (HKLM\...\Mozilla Firefox 57.0.4 (x64 en-US)) (Version: 57.0.4 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: 2.7.0 - Microleaves) Hidden <==== ATTENTION
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.7145 - Kakao Corp.)
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6105 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Spotify (HKU\S-1-5-21-1316363965-161402098-3267105952-1002\...\Spotify) (Version: 1.0.70.388.g8e1ed5af - Spotify AB)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.12 - Ghisler Software GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{17515373-7495-4995-9089-B7D6DF455C38}) (Version: 2.6.0.0 - Microsoft Corporation)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22334 - Microsoft Corporation)
Wondershare Video Converter Ultimate(Build 10.0.7.97) (HKLM-x32\...\Video Converter Ultimate_is1) (Version: 10.0.7.97 - Wondershare Software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1316363965-161402098-3267105952-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-FEAF0A67C64F}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-1316363965-161402098-3267105952-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-10-24] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1FE431F1-DF4F-41CC-8995-3455506A4BE9} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-12-07] (Microsoft Corporation)
Task: {29A0E44D-7898-46B2-B22D-76BFECC7A5DA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-12-28] (Microsoft Corporation)
Task: {2E3B872A-BEED-4720-B2A8-E8880BC85DFC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-12-28] (Microsoft Corporation)
Task: {2F533857-BF9A-4175-B139-70CD44CA7DDE} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-12-22] (Dropbox, Inc.)
Task: {3742FAEC-D9AC-4E39-886C-4B3696F3AF16} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-07-29] (Realtek Semiconductor)
Task: {3BF0036E-9159-4A7A-AFD8-D3FFD4508E3E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-12-28] (Microsoft Corporation)
Task: {430D4A16-7F00-4D03-80FB-E43D08C7A34E} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {45BC683A-4ECB-4DBC-901D-02A59399F95A} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe [2017-11-02] (Microleaves) <==== ATTENTION
Task: {58C92EEF-A9BA-4135-8AA9-E818EDC950A5} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {5C75DE98-7A76-43FD-A5EA-7F1788D0B618} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-G63PH12-Hombre => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {5F09EDB3-F3F8-4E1D-8CD6-630547F8E727} - System32\Tasks\Githulg0 => C:\WINDOWS\system32\rundll32.exe "C:\Program Files\Githulg0\Githulg0.dll",bthpkycEqV <==== ATTENTION
Task: {6CF6B592-B44C-4562-AEEB-31318414776E} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {9AC36FDC-2EE2-4F4E-8DB7-E858AB2FCF22} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-22] (Google Inc.)
Task: {9C28CF1B-6E8B-4F1E-9C85-93FC10095003} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-11-11] ()
Task: {A4D56D1E-4837-41DC-8A97-D2C9746DE9EC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-22] (Google Inc.)
Task: {B23FE69D-43FC-4162-959F-96E3C06662C3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {B50867DE-8B04-477E-B95B-229C2BC50BAB} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [2015-08-10] (MSFree Inc.)
Task: {B62DC704-3982-4A3B-92F2-F94D9C86C209} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-12-22] (Dropbox, Inc.)
Task: {B6D8E66D-53AC-41E9-8A88-D7B293B29BEB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {BD24B572-2AA7-435B-B19B-23FE247F110A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-12-28] (Microsoft Corporation)
Task: {D2470697-4A06-40B4-AB4E-F3F95BDF93DD} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {D67FAA8F-D73C-4D33-97E2-65B3E9065B87} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {D8D7155E-3126-4452-9817-76963DEFC07C} - System32\Tasks\AdobeAAMUpdater-1.0-HOMBRE-Hombre => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {E778BCC6-78DF-4B5C-BCD3-13F12B8BBF29} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {EA67689A-7146-41C7-A424-6B4050AAB469} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-12-07] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\One System CarePeriod.job => C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G2.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G4.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G5.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G6.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== ATTENTION

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI_ActiveScriptEventConsumer_DellCommandPowerManagerAlertEventConsumer: 
WMI_ActiveScriptEventConsumer_DellCommandPowerManagerPolicyChangeEventConsumer: 

ShortcutWithArgument: C:\Users\Hombre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\CSS - Shack.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=geiccgjkigajaicecnhdokggninehdlp
ShortcutWithArgument: C:\Users\Hombre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Hangouts.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl

==================== Loaded Modules (Whitelisted) ==============

2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-11-02 11:51 - 2017-11-02 11:51 - 000199864 _____ () C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
2016-10-24 18:08 - 2016-10-24 18:08 - 000401912 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-09-26 02:52 - 2017-09-26 02:52 - 000491600 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2018-01-05 14:13 - 2018-01-05 00:43 - 001218048 _____ () C:\Program Files (x86)\Multitimer\66248.exe
2018-01-05 14:15 - 2018-01-05 00:43 - 001218048 _____ () C:\Program Files (x86)\Multitimer\63797.exe
2017-12-14 02:34 - 2017-12-14 02:34 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-12-14 02:34 - 2017-12-14 02:34 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-01-03 08:45 - 2018-01-03 08:45 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-01-03 08:45 - 2018-01-03 08:45 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-01-03 08:45 - 2018-01-03 08:45 - 024670720 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-01-03 08:45 - 2018-01-03 08:45 - 002550272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\skypert.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-RVKCP.tmp\ifiih3o1lsa.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-RVKCO.tmp\tpkgki0vvle.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4B7H6.tmp\lahki4julkp.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4L91D.tmp\nt4ecie2ry4.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-ALLR0.tmp\ezy5d2ybmbo.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-5NLQ4.tmp\x2hs0brickr.tmp
2018-01-05 14:41 - 2018-01-05 16:13 - 000570368 _____ () C:\WINDOWS\TEMP\g1A4A.tmp.exe
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-H1VTC.tmp\was1yi5mvjy.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-MJ9ES.tmp\0v4bca4sqrc.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-L7TEK.tmp\pknqmwxuxsv.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-N3GV6.tmp\t5raspm312o.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-ODKO4.tmp\qy0k4vmenrs.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-9F3KI.tmp\mpwh51kh20q.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-274BC.tmp\rdpagdwzhhe.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-42NRT.tmp\rwadgably52.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-OQ9H7.tmp\jqqm0wgxfgq.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-LV796.tmp\gskkv3cqeeh.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-EAH7D.tmp\q45lzprh0l1.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-TD6JU.tmp\o1ll0jsdmcm.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4M85S.tmp\0cqqc3xclui.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-6H26J.tmp\tmavkwunhpj.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4INE5.tmp\oqcvkiwoiv1.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-BI08N.tmp\lisz3rs3x4p.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-2M6EN.tmp\3qqb5njgyzd.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-ELF1O.tmp\rmq2pstfy43.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-FL6I3.tmp\ng2xaefskgv.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-RR1T5.tmp\l40lxzqb2ad.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-N8KCK.tmp\v5j4qnaqgrm.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-Q5GDL.tmp\r321dcn5xis.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8N4Q2.tmp\tr23ysvksgr.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-P1CM8.tmp\hbpj2ebbcwh.tmp
2018-01-05 16:13 - 2018-01-05 16:13 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-6B7PL.tmp\gs2pvnod24h.tmp
2018-01-05 16:13 - 2018-01-05 16:14 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-BL53A.tmp\ifiih3o1lsa.tmp
2018-01-05 16:14 - 2018-01-05 16:14 - 000713728 _____ () C:\Users\Hombre\AppData\Local\Temp\is-LUJE0.tmp\tpkgki0vvle.tmp
2018-01-05 14:21 - 2017-08-10 18:45 - 000028896 _____ () C:\Program Files (x86)\Wondershare\Video Converter Ultimate\WSVCUUpdateHelper.exe
2017-09-26 02:52 - 2017-09-26 02:52 - 034879568 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-7QKNO.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-7QKNO.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-NSORO.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-NSORO.tmp\itdownload.dll
2017-12-22 10:43 - 2017-12-22 10:43 - 000102088 _____ () C:\Users\Hombre\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\UpdateRingSettings.dll
2017-12-27 11:35 - 2017-12-27 11:35 - 068214160 _____ () C:\Users\Hombre\AppData\Roaming\Spotify\libcef.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-08C07.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-08C07.tmp\itdownload.dll
2017-12-27 11:35 - 2017-12-27 11:35 - 003112848 _____ () C:\Users\Hombre\AppData\Roaming\Spotify\libglesv2.dll
2017-12-27 11:35 - 2017-12-27 11:35 - 000089488 _____ () C:\Users\Hombre\AppData\Roaming\Spotify\libegl.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-HC5CK.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-HC5CK.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8AIAE.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8AIAE.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8D7IQ.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8D7IQ.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4LHQ9.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4LHQ9.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-G7KT9.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-G7KT9.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4QUAI.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4QUAI.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-KK56J.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-KK56J.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-DT6TH.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-DT6TH.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-5VJJN.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-5VJJN.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-UNKAG.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-UNKAG.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-UN7IJ.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-UN7IJ.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-PBAHC.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-PBAHC.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8MT5T.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8MT5T.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-Q5HID.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-Q5HID.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-HSKH3.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-HSKH3.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-474TP.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-474TP.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-BLIVV.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-BLIVV.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-VSR5E.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-VSR5E.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-589F7.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-589F7.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4BJV5.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-4BJV5.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-JB9AV.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-JB9AV.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-3LH75.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-3LH75.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-CV81F.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-CV81F.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8NLH1.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-8NLH1.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-5JO0H.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-5JO0H.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-P61M6.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-P61M6.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-OI9E5.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-OI9E5.tmp\itdownload.dll
2018-01-05 16:13 - 2018-01-05 16:13 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-5S4HI.tmp\_isetup\_isdecmp.dll
2018-01-05 16:13 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-5S4HI.tmp\itdownload.dll
2018-01-05 16:14 - 2018-01-05 16:14 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-39818.tmp\_isetup\_isdecmp.dll
2018-01-05 16:14 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-39818.tmp\itdownload.dll
2018-01-05 16:14 - 2018-01-05 16:14 - 000024240 _____ () C:\Users\Hombre\AppData\Local\Temp\is-0GV0L.tmp\_isetup\_isdecmp.dll
2018-01-05 16:14 - 2008-10-15 16:44 - 000205312 _____ () C:\Users\Hombre\AppData\Local\Temp\is-0GV0L.tmp\itdownload.dll
2017-12-22 12:41 - 2017-12-05 02:06 - 000725312 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-12-22 12:41 - 2017-12-05 02:06 - 002075456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-12-22 12:41 - 2017-12-05 02:06 - 000100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-12-22 12:41 - 2017-12-05 02:08 - 000020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000130512 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 001856848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-12-22 12:41 - 2017-12-05 02:06 - 000105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-12-22 12:41 - 2017-12-05 02:08 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-12-22 12:41 - 2017-12-05 02:08 - 000392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-12-22 12:41 - 2017-12-05 02:08 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000026056 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000021824 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-12-22 12:41 - 2017-12-05 02:09 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000022856 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.pyd
2017-12-22 12:41 - 2017-12-05 02:08 - 000066392 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 001796920 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000084424 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 001956152 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 003859264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000155464 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000521024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000050496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000042304 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000131384 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000218944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000204096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-12-22 12:41 - 2017-12-05 02:09 - 000025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-12-22 12:41 - 2017-12-05 02:09 - 000054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-12-22 12:41 - 2017-12-05 02:09 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-12-22 12:41 - 2017-12-05 02:08 - 000100688 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-12-22 12:41 - 2017-12-05 02:08 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-12-22 12:41 - 2017-12-05 02:09 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-12-22 12:41 - 2017-12-05 02:09 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000101184 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2017-12-22 12:41 - 2017-12-05 02:09 - 000023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000025424 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-12-22 12:41 - 2017-12-05 02:07 - 000032600 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-12-22 12:41 - 2017-12-05 02:06 - 000293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-12-22 12:41 - 2017-12-05 02:07 - 000181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-12-22 12:41 - 2017-12-05 02:08 - 000030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2017-12-22 12:41 - 2017-12-05 02:07 - 001638200 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-12-22 12:41 - 2017-12-05 02:09 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000545080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000359224 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-12-22 12:41 - 2017-12-05 02:07 - 000038208 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.pyd
2017-09-20 02:42 - 2017-09-20 02:42 - 067115616 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2017-09-06 18:11 - 2017-09-06 18:11 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-09-06 18:11 - 2017-09-06 18:11 - 000214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-09-06 18:11 - 2017-09-06 18:11 - 000117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2017-09-06 18:11 - 2017-09-06 18:11 - 000125952 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-09-20 03:04 - 2017-09-20 03:04 - 000099424 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2017-09-06 18:11 - 2017-09-06 18:11 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2017-09-12 20:11 - 2017-09-12 20:11 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-09-12 20:10 - 2017-09-12 20:10 - 000117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2017-09-12 20:11 - 2017-09-12 20:11 - 000125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-09-12 20:11 - 2017-09-12 20:11 - 000214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-09-20 02:59 - 2017-09-20 02:59 - 000099424 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2017-09-12 20:11 - 2017-09-12 20:11 - 000098816 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2017-09-12 20:11 - 2017-09-12 20:11 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-1316363965-161402098-3267105952-1002\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1316363965-161402098-3267105952-1002\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-07-26 05:08 - 2018-01-05 16:27 - 000001332 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 mydownloaddomain.com
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 plugpackdownload.net
127.0.0.1 texttotalk.org
127.0.0.1 gambling577.xyz
127.0.0.1 htagdownload.space
127.0.0.1 mybcnmonetize.com
127.0.0.1 360devtraking.website
127.0.0.1 dscdn.pw
127.0.0.1 bcnmonetize.go2affise.com
127.0.0.1 beautifllink.xyz

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1316363965-161402098-3267105952-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Hombre\Dropbox\domore1920.jpg
DNS Servers: 192.168.10.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: WsAppService => 2
MSCONFIG\Services: WsDrvInst => 3

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D917236B-9A8A-477A-921F-9CCD64B8D5BF}] => (Allow) C:\Users\Hombre\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E3708013-AAAA-4589-AB71-9C6675CE3BA0}] => (Allow) C:\Users\Hombre\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{37A3A692-516C-437B-BF6F-339A5041B3EA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6F8182A0-2BA7-4925-82CB-840B56D95ACE}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [TCP Query User{AFCFD081-66D3-409B-9B55-AD258AA6349E}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{A48B6548-E8F7-4126-A15B-864508DBF8A0}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{FE6D3D6F-EA21-4A33-94D1-DE1BF1F05302}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{B86935E0-80C9-4103-B256-A966950F8957}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{5E99B75E-63E9-4400-BD78-A0C7C08BE8F4}C:\users\hombre\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hombre\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{1A2F2C64-7B6B-46D2-BFAB-90F0E60E7638}C:\users\hombre\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hombre\appdata\roaming\spotify\spotify.exe
FirewallRules: [{1A499163-2EF6-4A73-A4B3-EA9F55E59C35}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{F8D6F7B8-5D86-4C2E-8595-C0C6F3318359}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A2B3A69D-54D5-4BBE-9BE6-5AEA3A449E64}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{C62FF403-75E7-42D6-82C3-51BC4694D81E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{8C69CD39-D77F-4D2A-8D65-03A58AAEA1DB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{74C1F442-85B9-4B07-A418-2A89CC9F9B83}C:\users\hombre\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hombre\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{00DE301B-2703-4835-921D-C0A14F06B939}C:\users\hombre\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hombre\appdata\roaming\spotify\spotify.exe
FirewallRules: [{F437CDDB-CE34-40B0-9050-91244AAB77F6}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{865F4AE7-7BF1-4F13-B438-DDDFC7162F22}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{6EE4A808-158A-40CB-94A9-E54F790EA40E}] => (Allow) C:\Windows\System32\rundll32.exe

==================== Restore Points =========================

30-12-2017 11:04:54 Windows Update
05-01-2018 14:51:13 Windows Update
05-01-2018 16:08:27 Operace obnovení

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/05/2018 04:14:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: linker.exe, verze: 1.0.0.1, časové razítko: 0x5a4f93ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.16299.64, časové razítko: 0xac8afc81
Kód výjimky: 0xc0000028
Posun chyby: 0x00061564
ID chybujícího procesu: 0x3ce0
Čas spuštění chybující aplikace: 0x01d38637c7f71718
Cesta k chybující aplikaci: C:\Users\Hombre\AppData\Local\Temp\zp869jh7k\linker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 74ce41c5-722f-469c-90eb-5ae7158e1420
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/05/2018 04:14:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: linker.exe, verze: 1.0.0.1, časové razítko: 0x5a4f93ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.16299.64, časové razítko: 0xac8afc81
Kód výjimky: 0xc0000028
Posun chyby: 0x00061564
ID chybujícího procesu: 0x2af0
Čas spuštění chybující aplikace: 0x01d38637c6bb9124
Cesta k chybující aplikaci: C:\Users\Hombre\AppData\Local\Temp\WgedZNoXV\linker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 810ce16e-2753-47f1-a428-319b48ab065e
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/05/2018 04:14:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: linker.exe, verze: 1.0.0.1, časové razítko: 0x5a4f93ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.16299.64, časové razítko: 0xac8afc81
Kód výjimky: 0xc0000028
Posun chyby: 0x00061564
ID chybujícího procesu: 0x25d4
Čas spuštění chybující aplikace: 0x01d38637aca5cf7a
Cesta k chybující aplikaci: C:\Users\Hombre\AppData\Local\Temp\ije5htyql1a\linker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: c459b7aa-60b4-4f46-8814-abcf8968e06c
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/05/2018 04:13:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: linker.exe, verze: 1.0.0.1, časové razítko: 0x5a4f93ea
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc00001a5
Posun chyby: 0x00ca0e2a
ID chybujícího procesu: 0x3ce0
Čas spuštění chybující aplikace: 0x01d38637c7f71718
Cesta k chybující aplikaci: C:\Users\Hombre\AppData\Local\Temp\zp869jh7k\linker.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: d7a75a1d-4fa5-4c0b-b3a9-395fbfc75d66
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/05/2018 04:13:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: linker.exe, verze: 1.0.0.1, časové razítko: 0x5a4f93ea
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc00001a5
Posun chyby: 0x00450e2a
ID chybujícího procesu: 0x2af0
Čas spuštění chybující aplikace: 0x01d38637c6bb9124
Cesta k chybující aplikaci: C:\Users\Hombre\AppData\Local\Temp\WgedZNoXV\linker.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: d344331a-4fdc-4d69-beff-28726be52f52
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/05/2018 04:13:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: linker.exe, verze: 1.0.0.1, časové razítko: 0x5a4f93ea
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc00001a5
Posun chyby: 0x00450e2a
ID chybujícího procesu: 0x2640
Čas spuštění chybující aplikace: 0x01d38637aec76be9
Cesta k chybující aplikaci: C:\Users\Hombre\AppData\Local\Temp\vonir10suwe\linker.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 40dfcb96-bf1d-4d8c-883b-75320400bd2a
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/05/2018 04:13:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: linker.exe, verze: 1.0.0.1, časové razítko: 0x5a4f93ea
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc00001a5
Posun chyby: 0x00450e2a
ID chybujícího procesu: 0x25d4
Čas spuštění chybující aplikace: 0x01d38637aca5cf7a
Cesta k chybující aplikaci: C:\Users\Hombre\AppData\Local\Temp\ije5htyql1a\linker.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: dba4a6cc-a434-47d3-9a2c-40281428e35c
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/05/2018 04:12:51 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4228,R,0) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU0039B.log došlo k chybě -1811 (0xfffff8ed).

Error: (01/05/2018 03:54:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ShellExperienceHost.exe, verze: 10.0.16299.15, časové razítko: 0x59cda974
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.16299.98, časové razítko: 0x950216af
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006e7ae9
ID chybujícího procesu: 0xec8
Čas spuštění chybující aplikace: 0x01d386348cf5edac
Cesta k chybující aplikaci: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\Windows.UI.Xaml.dll
ID zprávy: a6d590d4-afe4-4122-b37c-33955561ab13
Úplný název chybujícího balíčku: Microsoft.Windows.ShellExperienceHost_10.0.16299.15_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: App

Error: (01/05/2018 03:53:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: girafe.exe, verze: 1.0.0.1, časové razítko: 0x5a4f8ce1
Název chybujícího modulu: ntdll.dll, verze: 10.0.16299.64, časové razítko: 0xac8afc81
Kód výjimky: 0xc0000028
Posun chyby: 0x00061564
ID chybujícího procesu: 0x3924
Čas spuštění chybující aplikace: 0x01d38635010bce43
Cesta k chybující aplikaci: C:\Users\Hombre\AppData\Local\Temp\f1hdplp1kvt\girafe.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 99ed207d-a956-4d02-b8cb-3edcbac9760b
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (01/05/2018 04:33:12 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070643): 2018-01 Kumulativní aktualizace pro Windows 10 Version 1709 pro systémy typu x64 (KB4056892).

Error: (01/05/2018 04:30:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.

Error: (01/05/2018 04:30:36 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hombre\AppData\Local\Temp\ehdrv.sys

Error: (01/05/2018 04:30:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.

Error: (01/05/2018 04:30:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hombre\AppData\Local\Temp\ehdrv.sys

Error: (01/05/2018 04:30:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.

Error: (01/05/2018 04:30:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hombre\AppData\Local\Temp\ehdrv.sys

Error: (01/05/2018 04:30:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.

Error: (01/05/2018 04:30:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hombre\AppData\Local\Temp\ehdrv.sys

Error: (01/05/2018 04:30:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-5300U CPU @ 2.30GHz
Percentage of memory in use: 53%
Total physical RAM: 8064.3 MB
Available physical RAM: 3771.41 MB
Total Virtual: 10624.3 MB
Available Virtual: 5279.61 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.14 GB) (Free:121.68 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 2F610EE9)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=868 MB) - (Type=27)

==================== End of Addition.txt ============================