Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20.06.2018
Ran by Luke (27-06-2018 21:49:53)
Running from C:\Users\Luke\Desktop
Windows 10 Home Version 1709 16299.492 (X64) (2017-10-31 15:44:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3447487001-1930309431-3965395725-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3447487001-1930309431-3965395725-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3447487001-1930309431-3965395725-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-3447487001-1930309431-3965395725-501 - Limited - Disabled)
Luke (S-1-5-21-3447487001-1930309431-3965395725-1001 - Administrator - Enabled) => C:\Users\Luke
WDAGUtilityAccount (S-1-5-21-3447487001-1930309431-3965395725-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3447487001-1930309431-3965395725-1001\...\uTorrent) (Version: 1.8.1 - )
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Aktualizace NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden
Andy OS (HKLM-x32\...\{430d803b-0e0e-4d7f-b156-103cce6b1f34}) (Version: 47.0.238 - Andy OS Inc.)
AndyFinalizeInstall (HKLM\...\{44EDF81A-8457-4893-A995-1914A5CF5721}) (Version: 47.0.238 - Andy OS Inc.) Hidden
AndyImagesConfigure (HKLM\...\{39F285D5-B0E4-4359-811F-12617ED95213}) (Version: 47.0.238 - Andy OS Inc.) Hidden
AndyImagesInstall (HKLM\...\{BCED1609-E00F-465A-A638-EA5C6A9CE4B2}) (Version: 47.0.238 - Andy OS Inc.) Hidden
AndyPreInstall (HKLM\...\{2D38FC97-93F6-4C48-B71B-4B46C4B84FA5}) (Version: 47.0.238 - Andy OS Inc.) Hidden
ASUS USB-N13 Wireless LAN Driver (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.0.1.3 - ASUS)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 17.04.0003 - Bloody)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CPUID CPU-Z 1.80 (HKLM\...\CPUID CPU-Z_is1) (Version:  - ) <==== ATTENTION
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0275 - Disc Soft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1004 - Intel Corporation)
Intel(R) Network Connections 21.1.30.0 (HKLM\...\PROSetDX) (Version: 21.1.30.0 - Intel)
Intel(R) Online Connect Software Asset Manager (HKLM-x32\...\{AE956AB9-CD98-4F1E-8B9E-C3C66E290D64}) (Version: 3.4.2072 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Malwarebytes verze 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.9330.2124 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3447487001-1930309431-3965395725-1001\...\OneDriveSetup.exe) (Version: 18.091.0506.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
Motorola Device Software Update (HKLM-x32\...\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}) (Version: 13.09.3001 - Motorola Mobility) Hidden
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Mystic Light (HKLM-x32\...\{B798CF0A-F060-4054-9095-52B067C723C6}}_is1) (Version: 1.0.0.34 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.10 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.12 - MSI)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9330.2124 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9330.2124 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9330.2124 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.9330.2124 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
PokerStars.cz (HKLM-x32\...\PokerStars.cz) (Version:  - PokerStars.cz)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8210 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Smartcash (64-bit) (HKU\S-1-5-21-3447487001-1930309431-3965395725-1001\...\Smartcash (64-bit)) (Version: 1.1.0 - Smartcash project)
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
VMware Player (HKLM\...\{2068E4B9-5A6D-41E3-8B50-CC2ECD49309B}) (Version: 14.1.1 - VMware, Inc.)
VMware VIX (HKLM-x32\...\{F2C392A0-8F71-4A9C-8DC4-AB388E0F47D3}) (Version: 1.17.0 - VMware, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files (x86)\Spyware Terminator\STShell64.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Player\vmdkShellExt.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Player\x64\vmdkShellExt64.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers3: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files (x86)\Spyware Terminator\STShell64.dll -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files (x86)\Spyware Terminator\STShell64.dll -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0E51196B-D366-420C-ABEF-751280E0707B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-11-16] (NVIDIA Corporation)
Task: {10AA97F2-F67F-449D-8209-5EB42584C575} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-11-16] (NVIDIA Corporation)
Task: {16E4CE83-E1AB-4D74-80C7-15E9F54DEB83} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe [2018-05-31] (Microsoft Corporation)
Task: {3C98DD9C-4F13-43B6-B99F-FF364E020881} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-06-18] (Microsoft Corporation)
Task: {3EB526A3-95B3-4B28-9262-B691FCDB789E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {44A5F8D4-CB5F-4E40-BF09-6A144D4EE5E9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-09] (Google Inc.)
Task: {453F8FFD-C524-4058-AA41-98BB41163067} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation)
Task: {4A7D1DEE-D68C-41F5-B28B-9109B2848855} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation)
Task: {5BF74430-BB44-4604-991C-2173E609B53D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-11-16] (NVIDIA Corporation)
Task: {6DFC550C-4523-4ACB-8561-14E8303F56DD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-06-18] (Microsoft Corporation)
Task: {6ED784EA-5720-410D-8C59-12D34BBEADED} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {72EFAA62-6C54-43EA-B302-5F97BD62A2E7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation)
Task: {8492608C-7314-4C82-AC00-B8320B7302D6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-11-16] (NVIDIA Corporation)
Task: {85057EF5-E8F0-4CD9-9038-7A639634CB70} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-06-18] (Microsoft Corporation)
Task: {85850864-6C59-4B73-BF1C-EA1B8ECAC1CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {877FC77C-9259-4853-BED8-F622DE95CD42} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {97961214-1820-478A-AE5F-7AD1555C2949} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-06-12] (Microsoft Corporation)
Task: {97F6CD05-8DF3-4BF1-8155-589D14BB617A} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-12-05] (Intel(R) Corporation)
Task: {97F80FF5-0E8D-4B68-9545-6617C63164EB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-06-18] (Microsoft Corporation)
Task: {A298AAD6-D5A4-4696-BA0F-FD6F15D70EA9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe [2018-05-31] (Microsoft Corporation)
Task: {A55F1B8D-FFBF-4FAF-9681-FB0A05E94FA2} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {AB0289D7-00B7-4440-9A24-8636255768A6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-09] (Google Inc.)
Task: {B412B7B0-8487-423E-8ED3-D673DDA9F379} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe [2018-05-31] (Microsoft Corporation)
Task: {B41B8666-DCA3-4574-BC9B-D30EE3B86E92} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
Task: {B734EF56-F4EF-4F89-BF58-CE27242E858A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe [2018-05-31] (Microsoft Corporation)
Task: {BDE50040-20C2-4B3E-88C0-A33E812F8733} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\Explorer.exe /NOUACCHECK
Task: {BEC980C8-2D02-45EF-A67B-67B85FCB9C8E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-06-18] (Microsoft Corporation)
Task: {BF5D64AA-9979-4D44-9C1A-51380AF4F7F1} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2016-09-29] (Intel Corporation)
Task: {DD140941-8436-4431-9BCD-056F6228AEB9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation)
Task: {E0D2CD30-2DE2-489B-9CC1-417FD01F28D4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-06-12] (Microsoft Corporation)
Task: {F0C2440C-8D33-4786-B0D9-64B2BFC5B995} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2016-09-29] (Intel Corporation)
Task: {F1FD81AB-987B-473D-836E-947F2CF6208C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-06-18] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\ARC Welder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=emfinbmielocnlhgmfkkmkngdoccbadn

==================== Loaded Modules (Whitelisted) ==============

2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-10-05 13:15 - 2016-10-05 13:15 - 000107752 _____ () C:\Program Files\Intel\Intel(R) Online Connect Access\libglog.dll
2016-10-05 13:15 - 2016-10-05 13:15 - 000412904 _____ () C:\Program Files\Intel\Intel(R) Online Connect Access\JsonCpp.dll
2017-03-09 01:24 - 2017-11-16 03:41 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-12-14 13:41 - 2014-05-06 12:19 - 000096768 ____N () C:\Program Files (x86)\ASUS USB-N13 Wireless LAN Driver\WPSService20.exe
2017-09-29 15:41 - 2017-09-29 15:41 - 000184832 _____ () C:\WINDOWS\system32\BthpanContextHandler.dll
2018-06-13 17:10 - 2018-06-08 08:00 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-06-13 17:10 - 2018-06-08 07:56 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-10-04 18:09 - 2016-10-04 18:09 - 000253664 _____ () C:\Program Files\Intel\Intel(R) Online Connect\CSLibWrapper.dll
2018-06-26 22:08 - 2018-06-22 21:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-06-26 22:08 - 2018-06-22 21:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll
2016-10-07 16:48 - 2016-10-07 16:48 - 000282168 ____R () C:\Program Files\Intel\NCS2\Agent\AdapterAgnt.DLL
2017-09-29 15:41 - 2017-09-29 15:41 - 000047616 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2018-06-13 17:10 - 2018-06-08 08:00 - 004173824 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2018-06-13 17:10 - 2018-06-08 08:01 - 003662336 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2014-04-07 16:31 - 2014-04-07 16:31 - 000172032 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
2018-01-08 02:05 - 2018-01-08 02:05 - 000087016 _____ () C:\Program Files (x86)\VMware\VMware Player\zlib1.dll
2017-03-09 01:24 - 2017-11-16 03:41 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-08-17 17:51 - 2017-08-17 17:51 - 001993184 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2017-02-19 09:52 - 2017-02-19 09:52 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3447487001-1930309431-3965395725-1001\...\sharepoint.com -> hxxps://vutbr-files.sharepoint.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3447487001-1930309431-3965395725-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Luke\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{dd10dd62-baf8-4682-b7ae-eabfc80451cd}.jpg
DNS Servers: 147.229.190.143 - 147.229.191.143
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9B2A6A6C-0F1E-4883-8A4A-5D05FEF25766}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8DDF5A33-77E2-4E6E-AEDF-908F5A073C86}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{86AE8685-7543-4E85-AC3C-97B4CCC41326}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{33589D2E-435F-4FC4-BA78-3FB7678B4843}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{E6E1856F-FA62-4AFF-BA40-0B01466EDB4A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D5BD2152-74F4-4AED-BF7A-F1B501AB255B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{304A3B13-5735-442E-8AC2-DB6DACB13284}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6D597C7C-2599-46A3-BAB4-AEB0743E39C7}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{10E2AF36-E24F-46F3-B01C-102733645548}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9292CC75-44B3-4128-ADC3-633A8817D524}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{364B81A1-D590-4984-B409-9EF0FB4E7E16}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6E4D51BC-25DC-48DF-8AE6-04DDBC2F5E3B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{FF769650-A32B-4680-9C81-6D666472D836}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3C7B6547-1C88-479C-826B-6ECBB1E68C9E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [UDP Query User{1C00062D-2CD0-4526-BC7E-6E82A7DCED07}C:\program files (x86)\blizzard app\battle.net.9397\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.9397\battle.net.exe
FirewallRules: [TCP Query User{697DD8E4-CD8F-4018-A892-4FFF18A8CAC5}C:\program files (x86)\blizzard app\battle.net.9397\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.9397\battle.net.exe
FirewallRules: [UDP Query User{F06EF940-A9BB-47F8-8E6D-AD286EDDF8BD}D:\starcraft ii\versions\base57507\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base57507\sc2_x64.exe
FirewallRules: [TCP Query User{7E593A88-1C08-481D-9295-A73B7C25B537}D:\starcraft ii\versions\base57507\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base57507\sc2_x64.exe
FirewallRules: [{78FBC10E-92A4-4D4F-A0B1-CE1DDEC6432F}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5992869F-2125-4AD3-8143-AC83B3CE1D38}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CD40BCE0-8AD6-4F9E-AAA3-5795F4935BBC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{70A5F08D-D78D-43E7-96F9-6C2AAAD491F9}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DFB792FA-7765-4560-B839-3D4208D309B2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9A361BEB-3CDD-4B53-BD7C-91E0A11E9A89}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5612F6F4-9D1B-41CA-BC86-226891D88D5A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{15659E7B-6600-4351-9000-D48267C5C15B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D7209573-D803-4217-983F-823EBB5BCF16}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{47E1E173-37DE-4ECC-992D-DBF193730290}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F705BAEE-EA19-42E4-A9F0-34C6777CDBF6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9ADC851D-6A66-4347-B25C-60E8EB1992C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{204EB2B2-07C2-4093-A41D-FB6CA260591D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{450116E2-557F-4BA3-A694-EB7FD11BAD7B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{70E3D2BF-F5B5-4DA1-A245-C6D5D63CA259}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{42EB655B-44C3-4449-ABFE-4B3E8EFCDAF8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{8A8408C9-6429-4902-A22D-E5709841AA04}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A2594CED-7979-4291-9B9F-05054F543258}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{97C36765-A903-4C68-8834-FF082CA7CE03}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{1CBADD8C-B148-48F2-A8EF-888D228DD871}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{91C72878-AAB6-4690-BE5F-104C9F55E194}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{D2496396-AB3A-46F5-98D9-978376BD309D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FEC1EB73-6651-4AB9-A28F-44C749F11CF4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{70CA4EB2-4B4A-41AD-B850-2D0112130779}C:\users\luke\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\luke\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{3A8667F2-CFE7-4057-83D9-187CDDEFF61B}C:\users\luke\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\luke\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{B6716FED-46B0-4B30-8C4E-A36606FB47C9}D:\games\grand theft auto v\gta5.exe] => (Block) D:\games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{2FA1EC36-290A-441F-BCC7-CD75FF901437}D:\games\grand theft auto v\gta5.exe] => (Block) D:\games\grand theft auto v\gta5.exe
FirewallRules: [{D9CFF491-54CD-4B3A-8D38-38A11258E56F}] => (Allow) C:\Program Files (x86)\Zona\Zona.exe
FirewallRules: [{387237AF-0488-4656-A054-287AE105EE0C}] => (Allow) C:\Program Files (x86)\Zona\Zona.exe
FirewallRules: [{FA4F7712-A7C9-49FD-BCD7-66E6A55B70DA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{6542740A-456C-47C8-BA83-1F86EF5D5BAF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{3C367B35-1E3C-4BB5-B969-DBE04F05D260}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3ADC2040-C7C5-4F82-9EFB-B7FBE057E448}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BE728A63-C02A-4C6A-8A07-14E111E6B8AD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{E0C3A187-C842-485F-BB87-76E92BD241C4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{FA496B68-54CC-4A23-97A5-B569FA322D86}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{43963851-352C-4E7E-A24B-2754B04091DE}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe
FirewallRules: [{49B32B37-0AF1-4B39-A23C-6FD5A84EB6A2}] => (Allow) C:\Users\Luke\AppData\Local\Temp\FlowSpritSetup_slnt_5016.exe
FirewallRules: [{DBECBE12-7DA7-49E4-884A-0F1FFDBD941E}] => (Allow) C:\Windows\system32\rundll32.exe
FirewallRules: [{753464A1-3F82-4371-9319-D83A68E288E0}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{B80D4E30-A60A-4F20-A836-4BF5D84BD3F9}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{6F38AB3F-EF98-4565-AFAF-2AAE909487E9}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CE72973A-160A-49B6-AA79-905E44F437F5}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [TCP Query User{062367F1-C8CA-4DA2-9263-F52D1A2EF4BC}C:\program files\smartcash\smartcash-qt.exe] => (Allow) C:\program files\smartcash\smartcash-qt.exe
FirewallRules: [UDP Query User{8B369502-F72B-464E-A60E-902BD38B920E}C:\program files\smartcash\smartcash-qt.exe] => (Allow) C:\program files\smartcash\smartcash-qt.exe
FirewallRules: [{93CEA6BD-EEAD-4373-9241-FA7125A1A3F2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{70A62A09-735B-4DB6-AFCF-AC262C562298}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5E0332F6-37D4-4CD4-93BD-0BE390A6C2EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{184CFFEC-E948-43DB-97AC-49D42810A4D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{4FE7D956-48A8-42B5-B1D5-CF9FA1CB8689}] => (Allow) C:\Program Files\Andy\Andy.exe
FirewallRules: [{A887CB74-0673-429B-9F30-2788A59CAE02}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{A900586F-8F22-4AD9-9746-BACE3910DA01}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{CCBAE3CC-E73C-4A3E-A325-894D4211461C}] => (Allow) C:\Program Files\Andy\VMwareCheck.exe
FirewallRules: [{6285E7AA-7C6D-472F-90B1-59481449FD9B}] => (Allow) C:\Program Files\Andy\AndyDoctor.exe
FirewallRules: [{00EB0D74-E046-4BC5-8FCB-7567E3BB02CB}] => (Allow) C:\Program Files\Andy\Andy.exe
FirewallRules: [{41DEB779-F6C7-46FA-8CD2-7804DD728003}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{039970F2-04FC-434E-84B9-C58B706EBF6B}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{ED8281F9-736B-4D48-A0BF-BE861D929E9D}] => (Allow) C:\Program Files\Andy\VMwareCheck.exe
FirewallRules: [{BABC739F-F324-43EC-84DB-18A4081244FA}] => (Allow) C:\Program Files\Andy\AndyDoctor.exe
FirewallRules: [{122A554E-1D29-40B3-AF41-04C746216950}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{64A021DF-2D09-4C09-941E-2429413CE898}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E3900140-94F3-4F5B-BECF-A3B6A7C049FA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D02F957A-B61C-4DBB-A9E0-F7DB04B211CA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{475FE20D-D467-4F81-9C66-0B96F0E3D38A}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{BC7ECC16-DC13-42C8-BB7C-22A2CCD406E1}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{A429725A-EDE7-4165-AEC9-26A2746B1AD3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{F4C5F33D-C0B8-4B2D-A9BA-6E126E2D2779}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A6185B9A-B7EE-4D91-B96D-C8580F711EFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{6CBD29DD-67B3-4D35-8730-038494BD1349}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{59F86925-1B47-4012-91CB-9EA2A4AC3EE7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8802F2A9-9883-40AB-9436-55E44684DD50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8B527BFD-4AF0-4562-845B-6179ACF924A9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Myš Microsoft PS/2
Description: Myš Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/27/2018 09:28:07 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/26/2018 10:05:03 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (06/26/2018 09:28:06 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/25/2018 09:28:07 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/24/2018 09:28:06 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/23/2018 09:28:06 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/22/2018 10:47:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.16299.15, časové razítko: 0xbf7b6630
Kód výjimky: 0xc000041d
Posun chyby: 0x00005b36
ID chybujícího procesu: 0x4718
Čas spuštění chybující aplikace: 0x01d4080d292c999e
Cesta k chybující aplikaci: C:\Users\Luke\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 58756523-7299-4fd5-ace1-2043cf9d5acc
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (06/22/2018 09:28:06 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (06/27/2018 09:31:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 a APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/27/2018 09:31:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/27/2018 09:31:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
 a APPID 
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/27/2018 09:31:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 a APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (06/27/2018 08:39:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.

Error: (06/27/2018 08:39:45 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Luke\AppData\Local\Temp\ehdrv.sys

Error: (06/27/2018 08:39:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.

Error: (06/27/2018 08:39:45 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Luke\AppData\Local\Temp\ehdrv.sys


Windows Defender:
===================================
Date: 2018-06-27 21:44:34.159
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0
Název: Trojan:Win32/Tiggre!rfn
ID: 2147723625
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Luke\Downloads\FRSTLauncher.exe;webfile:_C:\Users\Luke\Downloads\FRSTLauncher.exe|http://viry.xf.cz/pro_usery/FRSTLauncher.exe|pid:1364,ProcessStart:131745190307132664
Původ zjišťování: Internet
Typ zjišťování: Konkrétní
Zdroj zjišťování: Soubory ke stažení a přílohy
Uživatel: DESKTOP-8L186BJ\Luke
Název procesu: Unknown
Verze podpisu: AV: 1.271.55.0, AS: 1.271.55.0, NIS: 1.271.55.0
Verze modulu: AM: 1.1.15000.2, NIS: 1.1.15000.2

Date: 2018-06-27 21:44:12.846
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0
Název: Trojan:Win32/Tiggre!rfn
ID: 2147723625
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Luke\Downloads\Nepotvrzeno 391492.crdownload
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-8L186BJ\Luke
Název procesu: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Verze podpisu: AV: 1.271.55.0, AS: 1.271.55.0, NIS: 1.271.55.0
Verze modulu: AM: 1.1.15000.2, NIS: 1.1.15000.2

Date: 2018-05-04 17:24:41.635
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {193AC74E-1790-4CE2-8A76-BCE276FBEFBE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-05-04 17:19:47.669
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {43C14513-F5E7-47D7-86AD-D54E8594387B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-06-26 14:45:22.113
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.269.1752.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14901.4
Kód chyby: 0x80072f8f
Popis chyby :Došlo k chybě zabezpečení. 

Date: 2018-06-26 14:45:22.113
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.269.1752.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14901.4
Kód chyby: 0x80072f8f
Popis chyby :Došlo k chybě zabezpečení. 

Date: 2018-06-26 14:45:22.113
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.269.1752.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14901.4
Kód chyby: 0x80072f8f
Popis chyby :Došlo k chybě zabezpečení. 

Date: 2018-06-26 14:45:22.099
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.269.1752.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14901.4
Kód chyby: 0x80072f8f
Popis chyby :Došlo k chybě zabezpečení. 

Date: 2018-06-26 14:45:22.099
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.269.1752.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.14901.4
Kód chyby: 0x80072f8f
Popis chyby :Došlo k chybě zabezpečení. 

CodeIntegrity:
===================================

Date: 2018-06-27 21:48:25.304
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-06-27 21:48:25.303
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-06-27 21:47:28.770
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-06-27 21:47:28.769
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-06-27 21:36:08.179
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-06-27 21:36:08.178
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-06-27 21:36:06.489
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-06-27 21:36:06.488
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Percentage of memory in use: 47%
Total physical RAM: 16342.21 MB
Available physical RAM: 8617.5 MB
Total Virtual: 33750.21 MB
Available Virtual: 19309.27 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:118.69 GB) (Free:32.92 GB) NTFS
Drive d: (Data) (Fixed) (Total:1863.01 GB) (Free:768.31 GB) NTFS

\\?\Volume{808be0d4-81d7-4fa5-8279-907cf76b2dfb}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.07 GB) NTFS
\\?\Volume{9d765285-dffc-4b00-9e3b-e2ac531f9f09}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: F4E2C001)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Protective MBR) (Size: 119.2 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================