﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by admin (28-03-2018 07:20:29)
Running from C:\Users\admin\Desktop
Windows 10 Home Version 1709 16299.309 (X64) (2018-01-25 12:44:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

admin (S-1-5-21-3273614194-3348390461-1479779135-1001 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-3273614194-3348390461-1479779135-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3273614194-3348390461-1479779135-503 - Limited - Disabled)
dgwnjxvd (S-1-5-21-3273614194-3348390461-1479779135-1002 - Limited - Disabled)
Guest (S-1-5-21-3273614194-3348390461-1479779135-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3273614194-3348390461-1479779135-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Internet Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Internet Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.113 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{87A4B547-BED7-5991-C0FE-2F1E97520784}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{A16E186C-58C4-3BDC-5CCE-714EFEF5F27F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{62098A5F-E03B-31A3-5F9C-51A7F7D25744}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{AF772A6F-FEB6-7E70-1D05-5F1CE590E127}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{1757AD9B-0E3C-05F9-FE43-4343BED7DA85}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{C765285D-6827-8477-09A8-D0D4E423F1D3}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{66B06F29-EE4F-9130-D96A-754826093FEA}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{AFC97727-1BE2-122B-9843-96DA34720A29}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{821D0A0E-F246-BE40-0D68-93883C14C410}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{AC1B3AD7-E2C4-9644-8E01-EBE104E501DB}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{0AB00982-CEDD-EEFA-5F98-DC3EAC3CE41D}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{88BD74C4-23AB-4554-915C-6E1F0C81F6CD}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{0314961F-7B6E-32EE-F93A-9AE80ACD74AC}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A48E2AB0-0866-7783-9657-E1709EB18D02}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{9684AB91-8737-0449-014A-DAB23C16DFA9}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{E61CEF9A-BAC3-EAEE-F735-E257D2354DF2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{0F778AD5-461A-E3E2-0F9A-545CE7D16385}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{DA0326BB-657D-AAFC-752C-363E8FA33755}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{E0828CC7-59F9-7A6D-98BD-4BD28643FD09}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{E42911E5-48F8-8557-ED20-D72AD1907D25}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B4C30EF4-B2C5-1395-B534-7B63BCB6E8E4}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{BB2A4B5D-E90C-D5BD-CBB6-2344C0D94E2C}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{5E323AE2-AD21-CF3E-AE82-1EEC4A8A0105}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{B873A1FB-5EA0-EE5F-A861-1E38880AD08E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{13741B9A-2AF3-AD2D-388F-80DBD6DC0410}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{EC9DF9FF-9D75-4CDD-1D58-A2E887B0A42E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{7ABACA7E-6E59-0EF9-8FA3-6B32E5F58127}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{806007AC-5257-1CD5-507E-0731D4051735}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3E196AAF-F81C-B384-E2AB-28EE2398FE5F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E67C54FB-F5FA-36A8-16D9-3A61D9E9A3BB}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{BBBD0A36-C028-713E-494F-1D799EFC081A}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DAEFFE0C-CD05-1355-6AFC-7B3D4106A820}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{3B4AFD9F-CB65-D61F-D5C0-A468F153E3F5}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{E392A425-53A7-DF90-96A0-E287A75DD3B2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{BCCA6E26-7D99-D724-6B2E-40D727E88026}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{D6F47BB4-700A-F612-0671-5F69EA311BB7}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{01FD9A26-3F61-9236-B360-BE5D043D82C0}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{234C815B-8E92-F919-6FEF-04E701B099A2}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{64D4CCC3-63DF-252D-D29D-03491670225D}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{722F7996-4358-65D7-9008-7179478EE7EC}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{8DF90937-B869-9F76-5D45-5A8BDA0A33B6}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{AC5291A7-EC20-88EA-B604-814E30C5BF93}) (Version: 2017.0720.1902.32426 - Advanced Micro Devices, Inc.) Hidden
Creative Pack Volume 1 (HKLM\...\{05DDB511-240A-4185-B1E3-B42B8451846F}) (Version: 5.0 - Corel Corporation)
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
dwdinst (HKLM-x32\...\{7B05BE2F-B871-45D1-81DC-82E4634BF209}) (Version: 1.0.0.0 - HanWIS GmbH)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESET Security (HKLM\...\{925EB551-DEBA-436C-BB93-916AB96DE0AA}) (Version: 11.1.42.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Hollywood FX Volumes 1-3 (HKLM\...\{1913AA44-CB03-4CD8-8CBD-7462A94DC786}) (Version: 4.0 - Corel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4839 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3273614194-3348390461-1479779135-1001\...\OneDriveSetup.exe) (Version: 18.025.0204.0009 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mozilla Firefox 59.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.2 (x64 en-US)) (Version: 59.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.1 - Mozilla)
Mozilla Thunderbird 52.6.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 52.6.0 (x86 cs)) (Version: 52.6.0 - Mozilla)
MyDVD Content Pack 1 (HKLM-x32\...\{ADCF7AE3-8E36-4B80-9460-66B74B56927F}) (Version: 1.00.0000 - Corel Corporation)
Pinnacle MyDVD (HKLM\...\{1C595816-FA3D-4E52-AE7B-5EE8E8E1492D}) (Version: 2.0.041 - Název společnosti:) Hidden
Pinnacle MyDVD (HKLM-x32\...\{BC22A262-0CCB-43CE-B971-70F7925C0A74}) (Version: 2.0 - Pinnacle)
Pinnacle Studio 20 - Standard Content Pack (HKLM\...\{AB90BFBE-235D-480B-B5EF-67D361842E95}) (Version: 20.2 - Corel Corporation)
Pinnacle Studio 20 (HKLM\...\{4D548AFA-B83A-4C39-A474-AAE833B320AD}) (Version: 20.6.0.322 - Corel Corporation)
Premium Pack Volumes 1-2 (HKLM-x32\...\{CF6BAFC0-1FD7-4F4F-9C92-0E3AB0667ACD}) (Version: 4.0 - Corel Corporation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7940 - Realtek Semiconductor Corp.)
ScoreFitter Volumes 1-2 (HKLM\...\{60062C59-A38D-4CB5-AD8A-13A4213EA995}) (Version: 4.0 - Corel Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Title Extreme (HKLM\...\{7E857A86-4E40-4381-9EAD-19CCB8DAF81F}) (Version: 4.0 - Corel Corporation)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-15] (ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-15] (ESET)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-07-20] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\igfxDTCM.dll [2018-01-30] (Intel Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-15] (ESET)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0309B034-4CC3-42B5-81B1-CAE0EFEB9D86} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_113_Plugin.exe [2018-03-13] (Adobe Systems Incorporated)
Task: {1006E970-62DA-4E1F-822D-077A096D85B7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-13] (Adobe Systems Incorporated)
Task: {4B7A7440-7C1F-4B86-9B6C-31F646414669} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-07-26] (Intel(R) Corporation)
Task: {4C11E211-B9D7-429E-8C5C-A7D524715DA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-03] (Google Inc.)
Task: {6D09ABDD-7F41-472C-8198-52F923B18DB9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {A2A2CCA8-E89A-4691-B48E-40AC62C0ABE9} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {C6F6E8AD-8971-4E7C-A364-0DC8054FD1C9} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] ()
Task: {CA750D7C-1BA6-4BCD-9C94-630099106F62} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-03] (Google Inc.)
Task: {F323D726-10E2-407E-9639-2B53389C1391} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-07-20] (Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-07-26 09:58 - 2017-07-26 09:58 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\Windows\SYSTEM32\inputhost.dll
2018-03-13 19:26 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-03-13 19:26 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-03-27 12:08 - 2018-03-27 12:08 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-03-27 12:08 - 2018-03-27 12:08 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-03-27 12:08 - 2018-03-27 12:08 - 022050304 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-03-27 12:08 - 2018-03-27 12:08 - 002584576 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\skypert.dll
2018-03-27 12:08 - 2018-03-27 12:08 - 000657408 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2016-09-13 00:43 - 2016-09-13 00:43 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-13 00:43 - 2016-09-13 00:43 - 000739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-13 00:43 - 2016-09-13 00:43 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-09-13 00:43 - 2016-09-13 00:43 - 000071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-13 00:42 - 2016-09-13 00:42 - 000011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-13 00:42 - 2016-09-13 00:42 - 002013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-13 00:43 - 2016-09-13 00:43 - 000191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 000264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2016-09-14 21:25 - 2016-09-14 21:25 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2018-02-28 16:00 - 2018-01-11 04:05 - 000784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2018-02-28 16:00 - 2018-03-27 00:33 - 002631968 _____ () C:\Program Files (x86)\Steam\video.dll
2018-02-28 16:00 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2018-02-28 16:00 - 2017-12-20 03:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2018-02-28 16:00 - 2017-12-20 03:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2018-02-28 16:00 - 2017-12-20 03:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2018-02-28 16:00 - 2017-12-20 03:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2018-02-28 16:00 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2018-02-28 16:00 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2018-02-28 16:00 - 2017-12-20 03:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2018-02-28 16:00 - 2018-03-27 00:33 - 000977184 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2018-02-28 16:00 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 000341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 007955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 002144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 000028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 000127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 01:39 - 2012-09-13 01:39 - 000336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2018-02-28 16:01 - 2017-09-07 04:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2018-02-28 16:01 - 2017-12-13 23:16 - 071471392 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2018-02-28 16:00 - 2015-09-25 01:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3273614194-3348390461-1479779135-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img3.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C3D5A0B5-27CE-41A8-9265-417EA671D230}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{FD7177B7-BF20-4D2A-A02E-777A563366FB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0DBB0DFB-DF6E-460E-BD96-E5EE0B66980A}] => (Allow) C:\Program Files\Pinnacle\Studio 20\programs\RM.exe
FirewallRules: [{B9712886-4051-408F-A8C5-6CD02FFB06E5}] => (Allow) C:\Program Files\Pinnacle\Studio 20\programs\RM.exe
FirewallRules: [{BC16BF70-6CAC-400F-B901-77AD4543E26A}] => (Allow) C:\Program Files\Pinnacle\Studio 20\programs\NGStudio.exe
FirewallRules: [{7D17713F-9F4C-4213-AD19-68248F48B281}] => (Allow) C:\Program Files\Pinnacle\Studio 20\programs\NGStudio.exe
FirewallRules: [{B2CA5079-D903-438A-B579-28816B85ECC5}] => (Allow) C:\Program Files\Pinnacle\Studio 20\programs\UMI.exe
FirewallRules: [{DB91E2EA-0879-45BB-A986-05293C8610CC}] => (Allow) C:\Program Files\Pinnacle\Studio 20\programs\UMI.exe
FirewallRules: [{B7837ACE-58AF-4458-BC87-19663E8595F6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CCD310BD-4F85-467B-BA98-DDA2F9488FD2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F38D3330-5132-480D-90EA-C0D305459033}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{A0E7E453-5A8C-4BD2-8DC5-1E6BDAA4112C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{43A67C34-B70F-40BE-AB4E-C91FD7B19D1C}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO Worlds\LEGO_Worlds.exe
FirewallRules: [{C0C80C2D-B2AF-41B6-B652-3D3DED0E4B8A}] => (Allow) E:\SteamLibrary\steamapps\common\LEGO Worlds\LEGO_Worlds.exe
FirewallRules: [TCP Query User{3D761AA2-87C9-42CC-A190-FF098BF88C8E}E:\steamlibrary\steamapps\common\lego worlds\lego_worlds_dx11.exe] => (Block) E:\steamlibrary\steamapps\common\lego worlds\lego_worlds_dx11.exe
FirewallRules: [UDP Query User{C1B02EA5-B75A-47A5-A3F6-6ED83A2B6E5F}E:\steamlibrary\steamapps\common\lego worlds\lego_worlds_dx11.exe] => (Block) E:\steamlibrary\steamapps\common\lego worlds\lego_worlds_dx11.exe
FirewallRules: [{6D47905A-3324-4008-88F1-5CDBF768A4C4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{740955CE-79F6-4656-ACC7-2C385CBAE1B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{2B467456-3497-4E25-8F78-B6B26CA01C45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{C8354669-3C1F-4946-BF5D-CB56832EBCFD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{C715D674-7F36-4870-882B-3A27C7894E3B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{1D09409D-DB22-4118-A4EB-EABAE4FDBAFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{D94AD2E9-49CD-45D3-9849-647F8D4CCD59}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{CF574178-9868-4A3A-BE1C-82178188BBC6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{898D0DBD-5BCF-4DC5-A541-E7E5FB02F438}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{F3CC1189-9148-4D40-800B-822BBE659A0B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{AEB399E2-1B45-4D00-9AD3-4461D46868DF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

08-03-2018 20:25:14 Naplánovaný kontrolní bod
13-03-2018 19:26:00 Windows Update
21-03-2018 20:23:55 Naplánovaný kontrolní bod
27-03-2018 18:44:59 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/28/2018 07:05:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Název chybujícího modulu: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000355f
ID chybujícího procesu: 0xcc8
Čas spuštění chybující aplikace: 0x01d3c60b52c58911
Cesta k chybující aplikaci: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
Cesta k chybujícímu modulu: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
ID zprávy: ab6d4308-1f3a-482b-90bd-1cbf59a47644
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/27/2018 09:05:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Název chybujícího modulu: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000355f
ID chybujícího procesu: 0xc88
Čas spuštění chybující aplikace: 0x01d3c5e819d08ef8
Cesta k chybující aplikaci: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
Cesta k chybujícímu modulu: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
ID zprávy: 7157691d-16a6-4ab2-961a-53f9ff1c60fa
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/27/2018 03:15:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Název chybujícího modulu: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000355f
ID chybujícího procesu: 0xbd8
Čas spuštění chybující aplikace: 0x01d3c5b3117b605a
Cesta k chybující aplikaci: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
Cesta k chybujícímu modulu: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
ID zprávy: 37e0575f-7ddd-4c9c-b67a-3b21d8618991
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/26/2018 08:41:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Název chybujícího modulu: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000355f
ID chybujícího procesu: 0xb9c
Čas spuštění chybující aplikace: 0x01d3c523dff0edbd
Cesta k chybující aplikaci: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
Cesta k chybujícímu modulu: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
ID zprávy: f3fe30f8-0ad9-444d-bc21-b638978bc9d0
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/26/2018 01:12:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Název chybujícího modulu: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000355f
ID chybujícího procesu: 0xbdc
Čas spuštění chybující aplikace: 0x01d3c4caa4a48c4a
Cesta k chybující aplikaci: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
Cesta k chybujícímu modulu: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
ID zprávy: b988e040-a479-4bfe-b023-bbac728c9059
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/25/2018 06:53:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Název chybujícího modulu: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000355f
ID chybujícího procesu: 0xb8c
Čas spuštění chybující aplikace: 0x01d3c44a0e845112
Cesta k chybující aplikaci: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
Cesta k chybujícímu modulu: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
ID zprávy: a7b3d039-eb27-483b-9505-53f3e259f845
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/23/2018 11:31:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Název chybujícího modulu: IntelCpHDCPSvc.exe, verze: 1.0.0.1, časové razítko: 0x59e8e4eb
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000355f
ID chybujícího procesu: 0xb98
Čas spuštění chybující aplikace: 0x01d3c2d6278de4a3
Cesta k chybující aplikaci: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
Cesta k chybujícímu modulu: C:\Windows\System32\DriverStore\FileRepository\igdlh64_4839_64bit.inf_amd64_d6aee56abac60177\IntelCpHDCPSvc.exe
ID zprávy: a84b3938-c4b2-4544-b464-d1fc681c0e69
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/22/2018 10:48:09 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-8IPFSNK)
Description: Balíček Microsoft.Windows.Photos_2018.18021.12420.0_x64__8wekyb3d8bbwe+App se ukončil, protože jeho pozastavování trvalo moc dlouho.


System errors:
=============
Error: (03/28/2018 07:05:45 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8IPFSNK)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli DESKTOP-8IPFSNK\admin (SID: S-1-5-21-3273614194-3348390461-1479779135-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0 – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/28/2018 07:05:26 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Content Protection HDCP Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (03/27/2018 11:08:59 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8IPFSNK)
Description: Server Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX6jbm6fjqte5wzzrf5807m7eq0z44q5gf.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/27/2018 10:37:06 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-8IPFSNK)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli DESKTOP-8IPFSNK\admin (SID: S-1-5-21-3273614194-3348390461-1479779135-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací SpotifyAB.SpotifyMusic_1.75.483.0_x86__zpdnekdrzrea0 – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/27/2018 10:37:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 a APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/27/2018 10:37:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/27/2018 10:37:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 a APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/27/2018 10:37:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2018-02-03 12:41:17.042
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3086C506-8A67-4EBD-B928-83459B68948A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-02-03 12:25:00.549
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Střední
Kategorie: Nástroj
Cesta: file:_C:\$Recycle.Bin\S-1-5-21-3273614194-3348390461-1479779135-1001\$R5S58CY.exe;file:_C:\Users\admin\Downloads\Microsoft Toolkit.exe;file:_E:\Microsoft Toolkit.exe;process:_pid:6156,ProcessStart:131621303605553973
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-8IPFSNK\admin
Název procesu: C:\Windows\explorer.exe
Verze podpisu: AV: 1.261.707.0, AS: 1.261.707.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14500.5, NIS: 2.1.14202.0

Date: 2018-02-03 12:21:18.132
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Střední
Kategorie: Nástroj
Cesta: file:_C:\Users\admin\Downloads\Microsoft Toolkit.exe;file:_E:\Microsoft Toolkit.exe;process:_pid:6156,ProcessStart:131621303605553973
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-8IPFSNK\admin
Název procesu: C:\Windows\explorer.exe
Verze podpisu: AV: 1.261.707.0, AS: 1.261.707.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14500.5, NIS: 2.1.14202.0

Date: 2018-02-03 12:19:36.427
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Střední
Kategorie: Nástroj
Cesta: file:_C:\Users\admin\Downloads\Microsoft Toolkit.exe;file:_E:\Microsoft Toolkit.exe;process:_pid:6156,ProcessStart:131621303605553973
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-8IPFSNK\admin
Název procesu: C:\Windows\explorer.exe
Verze podpisu: AV: 1.261.707.0, AS: 1.261.707.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14500.5, NIS: 2.1.14202.0

Date: 2018-02-03 12:19:34.490
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Střední
Kategorie: Nástroj
Cesta: file:_C:\Users\admin\Downloads\Microsoft Toolkit.exe;file:_E:\Microsoft Toolkit.exe;process:_pid:6156,ProcessStart:131621303605553973
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-8IPFSNK\admin
Název procesu: C:\Users\admin\Downloads\Microsoft Toolkit.exe
Verze podpisu: AV: 1.261.707.0, AS: 1.261.707.0, NIS: 118.2.0.0
Verze modulu: AM: 1.1.14500.5, NIS: 2.1.14202.0

CodeIntegrity:
===================================

Date: 2018-03-27 21:19:39.137
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\wd\WdBoot.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-02-17 14:48:25.892
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2018-02-17 14:48:25.260
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2018-02-15 19:10:29.202
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2018-02-15 19:10:22.574
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2018-02-15 18:50:33.195
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2018-02-15 18:50:18.376
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

Date: 2018-02-15 18:45:16.880
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i3-7100 CPU @ 3.90GHz
Percentage of memory in use: 36%
Total physical RAM: 8137.68 MB
Available physical RAM: 5204.27 MB
Total Virtual: 9417.68 MB
Available Virtual: 6093.31 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.97 GB) (Free:145.1 GB) NTFS
Drive e: (Uloziste) (Fixed) (Total:931.39 GB) (Free:730.34 GB) NTFS

\\?\Volume{6c9826b7-022c-4972-9eb0-00e86f7cf01f}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.14 GB) NTFS
\\?\Volume{fcdf3ad6-7a99-4901-b60f-6e4f7162c387}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================