Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.11.2018
Ran by Lubomir (11-11-2018 18:13:40)
Running from E:\
Windows 10 Pro Version 1809 17763.55 (X64) (2018-10-04 16:41:43)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3332989908-1278005487-3233361258-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3332989908-1278005487-3233361258-503 - Limited - Disabled)
Guest (S-1-5-21-3332989908-1278005487-3233361258-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3332989908-1278005487-3233361258-1003 - Limited - Enabled)
Lubomir (S-1-5-21-3332989908-1278005487-3233361258-1000 - Administrator - Enabled) => C:\Users\Lubomir
WDAGUtilityAccount (S-1-5-21-3332989908-1278005487-3233361258-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.07 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated)
Adobe Anchor Service x64 CS4 (HKLM\...\{887797BF-37A5-4199-B0C9-0D38D6196E9A}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps x64 CS4 (HKLM\...\{90BA8112-80B3-4617-A3C1-BD2771B60F74}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe CSI CS4 x64 (HKLM\...\{8DAA31EB-6830-4006-A99F-4DF8AB24714F}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 x64 (HKLM\...\{A3454894-144A-4D80-B605-C128FE0D7329}) (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Fonts All x64 (HKLM\...\{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_0_2) (Version: 21.0.2 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Linguistics CS4 x64 (HKLM\...\{8875A1C0-6308-4790-8CF6-D34E89880052}) (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe Media Encoder CC 2015.3 (HKLM-x32\...\AME_10_4_0) (Version: 10.4.0 - Adobe Systems Incorporated)
Adobe PDF Library Files x64 CS4 (HKLM\...\{DFFABE78-8173-4E97-9C5C-22FB26192FC5}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop (HKLM\...\{9B08B2EC-C82E-4D24-A3E0-57646E2CE480}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CS4 (64 Bit) (HKLM\...\{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (HKLM-x32\...\Adobe_faf656ef605427ee2f42989c3ad31b8) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_1_0) (Version: 11.1.0 - Adobe Systems Incorporated)
Adobe Type Support x64 CS4 (HKLM\...\{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin x64 (HKLM\...\{295CFB7C-A57E-4313-93E7-68E7CE1D0332}) (Version: 1.1 - Adobe Systems Incorporated) Hidden
ai (HKLM\...\{66C2EA78-E284-47C1-BFEA-56340D0C68CD}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Aktualizace NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
ANT Drivers Installer x64 (HKLM\...\{CC7132C7-8532-4EA7-8E3F-53260C0BE168}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira (HKLM-x32\...\{a1f6d88c-2714-495a-b414-5ee168a1f4dd}) (Version: 1.2.122.27919 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{D4EEC850-2D92-4483-B2E2-1490D753C5BF}) (Version: 1.2.122.27919 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.42.11 - Avira Operations GmbH & Co. KG)
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.17.1.14841 - Avira Operations GmbH & Co. KG)
Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 1.6.0.1583 - Avira Operations GmbH & Co. KG)
Avira Safe Shopping (HKLM-x32\...\{573F6664-99E1-40D8-921A-7C9345EC03B2}) (Version: 1.1.5.3330 - Avira Operations GmbH & Co. KG)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 4.15.0.7741 - Avira Operations GmbH & Co. KG)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Camtasia Studio 8 (HKLM-x32\...\{BFA04EE0-8240-4667-8D53-45496A901C33}) (Version: 8.1.2.1327 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Tiberian Sun™ and Firestorm™ (HKLM-x32\...\{517FAF1E-3045-49DE-8079-107C2851389E}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™: Generals and Zero Hour (HKLM-x32\...\{609F6FD5-4B22-4D7A-AD30-8C9DD480D5BE}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Connect (HKLM-x32\...\{B29AD377-CC12-490A-A480-1452337C618D}) (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD}) (Version: 15.2.0.661 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM-x32\...\{B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD}) (Version: 15.2.661 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (HKLM\...\{E3B264CE-D9CF-448B-960F-4F832FB1F990}) (Version: 15.2.661 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (HKLM-x32\...\{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (HKLM-x32\...\{CA3861BA-1D96-4D66-B577-318E1602C4F3}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (HKLM-x32\...\{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (HKLM-x32\...\{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (HKLM-x32\...\{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (HKLM-x32\...\{E34C6AA4-AE8E-4677-912A-92FC2E039DD9}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (HKLM-x32\...\{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (HKLM-x32\...\{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IPM (HKLM-x32\...\{DE6CBC04-8673-4DBA-BA81-07F1639CEB5F}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (HKLM-x32\...\{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (HKLM-x32\...\{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (HKLM-x32\...\{59123CCF-FED2-46FF-9293-D1DC80042219}) (Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (HKLM-x32\...\{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VBA (HKLM-x32\...\{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (HKLM-x32\...\{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VSTA (HKLM-x32\...\{260ED378-2B8C-4831-ADAE-D0712D119AC5}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (HKLM-x32\...\{9244E956-5939-4B88-930C-0699D4AB2B95}) (Version: 15.1 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 (HKLM-x32\...\{B399C91E-96F2-4265-9884-1C9A10E9FCF4}) (Version: 15.2 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X5 (HKLM-x32\...\_{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}) (Version: 15.2.0.661 - Corel Corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\Dropbox) (Version: 61.4.95 - Dropbox, Inc.)
Elevated Installer (HKLM-x32\...\{4694981D-8031-4526-90BE-E5F7FB80CBB8}) (Version: 3.2.29.0 - Garmin Ltd or its subsidiaries) Hidden
Far Cry 2 (HKLM-x32\...\Uplay Install 85) (Version:  - Ubisoft)
Far Cry 3 (HKLM-x32\...\Uplay Install 46) (Version:  - Ubisoft)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version:  - Ubisoft)
Far Cry Primal (HKLM-x32\...\Uplay Install 2010) (Version:  - Ubisoft)
Freemake Video Converter verze 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation)
Garmin Express (HKLM-x32\...\{A92D383B-FD85-4B9C-A5D9-3647C71E48A1}) (Version: 3.2.29.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (HKLM-x32\...\{D52EDFA2-13A7-4765-8650-4AB30E6DB77F}) (Version: 3.2.29.0 - Garmin Ltd or its subsidiaries) Hidden
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Earth Pro (HKLM-x32\...\{BF354C72-AC4C-4A87-8D42-B089862BAE58}) (Version: 7.3.2.5491 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
GoPro Studio (HKLM-x32\...\{BE06FF1A-83A0-42F2-913E-6E405393145C}) (Version: 5.12.5383 - GoPro, Inc.) Hidden
GPS Track Editor (HKLM-x32\...\GpsTrackEditor) (Version: 1.15 (build 141) - MapSphere)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.100 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.42 - Irfan Skiljan)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
kuler (HKLM-x32\...\{098727E1-775A-4450-B573-3F441F1CA243}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.11001.20074 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.11001.20074 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\OneDriveSetup.exe) (Version: 18.212.1021.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 63.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 63.0.1 (x64 cs)) (Version: 63.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 63.0.1.6877 - Mozilla)
mydlink services plugin (HKLM-x32\...\{1A9B665A-5F27-4F71-BF90-22FDFE7A1635}) (Version: 1.0.2.7 - D-Link Corporation)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20074 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11001.20074 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11001.20074 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.11001.20074 - Microsoft Corporation) Hidden
ON_OFF Charge 2 B13.0403.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) Hidden
ON_OFF Charge 2 B13.0403.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
Origin (HKLM-x32\...\Origin) (Version: 10.5.26.8488 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
PatchCleaner (HKLM-x32\...\{727DA176-50BB-452C-8DB5-96EE0A573ED4}) (Version: 1.4.20 - HomeDev)
PDF Settings CS4 (HKLM-x32\...\{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw (HKLM-x32\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw_x64 (HKLM\...\{2D74E972-5A85-44DC-9193-8A302BA8C181}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Počítačová aplikace Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.4.332 - Autodesk)
Premiere Pro (HKLM\...\{3DF5A448-80E1-43C1-8428-984429451989}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.2.2750 - Jan Fiala)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Quik (HKLM\...\{DF7EE9CB-0369-44F3-9B91-BF05A2D4891D}) (Version: 0.1.5383 - GoPro, Inc.) Hidden
Quik (HKLM-x32\...\{b15a4fb5-7637-45ca-b230-33d94af786a7}) (Version: 2.3.0.5383 - GoPro, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6849 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049499-055C-4a0c-A916-1D12314F45EB}) (Version: 1.00.0159 - REALTEK Semiconductor Corp.)
RICOH THETA (HKLM-x32\...\{DF52BCC0-DD57-3038-18C4-45ACF7112EC4}) (Version: 2.3.3 - RICOH COMPANY,LTD.) Hidden
RICOH THETA (HKLM-x32\...\com.theta360.SphericalViewer) (Version: 2.3.3 - RICOH COMPANY,LTD.)
ROCCAT Kone Pure Mouse Driver (HKLM-x32\...\{4905245D-56E7-4176-BE68-962728B803D6}) (Version:  - Roccat GmbH)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Spotify (HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\Spotify) (Version: 1.0.92.390.g2ce5ec7d - Spotify AB)
Spyware Terminator 2015 (HKLM-x32\...\{56736259-613E-4A3B-B428-6235F2E76F44}_is1) (Version: 3.0.1.112 - Crawler Group)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Suite Shared Configuration CS4 (HKLM-x32\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78716 - TeamViewer)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.44109 - TeamViewer)
TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{8CFAB044-7D2E-4655-B86D-99932E988980}) (Version: 2.45.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 21.1 - Ubisoft)
VFW_Codec32 (HKLM-x32\...\{ECDB3455-70F4-4EE6-B89E-3B4C5E9FF592}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (HKLM\...\{AE4073DE-7596-4E3B-9DE3-18BE2C3EFAA6}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
Viber (HKLM-x32\...\{EAF077BA-8EA4-4CEC-A215-4ACAE713A8BF}) (Version: 6.9.0.1048 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\{a85cbe05-cc32-4419-ad8f-7ff7bc41bc05}) (Version: 6.9.0.1048 - Viber Media Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.65  - Nullsoft, Inc)
Windows 10 Codec Pack 2.0.8 (HKLM-x32\...\Windows 10 - Codec Pack) (Version: 2.0.8 - Windows 10 Codec Pack)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2017 (HKLM-x32\...\{3CC29C1A-B5FE-123B-4321-32A2557A92C7}}_is1) (Version:  - WindowsMovieMaker)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-F5D849D21103}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} =>  -> No File
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-10-19] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files (x86)\Spyware Terminator\STShell64.dll [2017-03-16] (Crawler Group)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {ef263503-8f0e-3e6a-ae2e-fe0b4b441d52} => C:\Windows\system32\mscoree.dll [2018-09-15] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers3: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files (x86)\Spyware Terminator\STShell64.dll [2017-03-16] (Crawler Group)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers3: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {3d52b24d-33bb-3895-99ea-a0156f24a3f9} => C:\Windows\system32\mscoree.dll [2018-09-15] (Microsoft Corporation)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {cefaf456-bc17-3f4b-b7d9-75070925911b} => C:\Windows\system32\mscoree.dll [2018-09-15] (Microsoft Corporation)
ContextMenuHandlers5: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-10-19] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => C:\Program Files (x86)\Spyware Terminator\STShell64.dll [2017-03-16] (Crawler Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-3332989908-1278005487-3233361258-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-3332989908-1278005487-3233361258-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-3332989908-1278005487-3233361258-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09E39A63-C7DD-4CF7-93DB-E8140441C668} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {0E5735A1-787A-4E29-8F86-83B8A70DF3B6} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {105B4EEF-8713-41A0-BCC5-CFC161F19FC0} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [2018-11-01] (Avira)
Task: {1154ABE6-B1B1-4E10-A2AD-A3DB08156B67} - System32\Tasks\AdobeAAMUpdater-1.0-Lubomir-PC-Lubomir => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {14AF7C48-0215-4AE4-87A0-E5265785676D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {1FAA022E-440E-42FE-B87F-7174A7FDEBC6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-10-23] (Piriform Ltd)
Task: {21F08086-4F9D-4D67-8558-657A6E34D905} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-10-26] (Microsoft Corporation)
Task: {237C0530-E2A4-483F-AAC5-FB2B6B8EAEC9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {2668A604-7152-462E-8DCA-EE44EC9C4447} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {26787BEC-CDC2-4D07-AE41-DC89245BBF27} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [2018-11-01] (Avira)
Task: {277478BF-0147-4CD3-B6F8-5894B4C37664} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2018-10-19] (Avira Operations GmbH & Co. KG)
Task: {2A7D6211-4D6C-4B49-BA05-C2DDDAE48416} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {305B63AE-00B7-4811-9B83-373F348D8F3C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {30B51CEC-5EFE-455D-853E-105DB60424B7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-26] (Microsoft Corporation)
Task: {4C4B126A-EE5C-4781-93B1-AC696D04A934} - System32\Tasks\S-1-5-21-3332989908-1278005487-3233361258-1000\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-09-15] (Microsoft Corporation)
Task: {5C3EBC2D-BF07-4211-811C-9430587A2458} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-11] (Google Inc.)
Task: {603A8C21-F602-4BD3-BF57-DBD576CB3041} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {62DB96F2-6DEE-428F-9CD7-EDB8C06335F0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {66A67269-F044-41D7-A74F-77E1B2CEBB27} - \{441454EE-061A-4E56-A6ED-78A0B503EC7E} -> No File <==== ATTENTION
Task: {67BE0CF8-4956-4B29-AB78-D33A9078344F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {71236809-6F91-4837-BF64-3CF34C678BFC} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3332989908-1278005487-3233361258-1000UA => C:\Users\Lubomir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {7A35A2E3-3CB4-4E28-B98D-832C02003592} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {7DA8E55C-2700-4081-AFAE-F69996A311E6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {8076338D-4A26-4E2E-BB2C-BE63BED32601} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {852815A4-356F-4374-AEF7-9D2B55DA69B4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [2018-10-26] (Microsoft Corporation)
Task: {85373D8E-1518-4996-85B2-1EEAF0B1C43C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-24] (Microsoft Corporation)
Task: {8B0F53D3-174F-4C84-B357-2510E576AFE5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-10-26] (Microsoft Corporation)
Task: {8D55B4F3-1CB1-47C2-A11A-075796C1EE12} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2018-10-10] (Microsoft Corporation)
Task: {8DBDEB3C-0F69-47AB-89C2-85E2AAB2B568} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [2018-11-09] (Avira Operations GmbH & Co. KG )
Task: {9475D1A3-281D-4097-80BF-4E64F19E6088} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-24] (Microsoft Corporation)
Task: {A11AA847-E63A-4D0C-A099-1770F90169A0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {A330A674-7BDC-456B-82C4-EA11D848BD20} - System32\Tasks\AdobeGCInvoker-1.0-Lubomir-PC-Lubomir => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {A7A82B67-0582-4604-BA2E-1C338BE56D26} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [2018-10-26] (Microsoft Corporation)
Task: {AD4E8AFB-A48C-4E13-BE83-B8D87600CFB4} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {B072B1EC-9810-4BAF-8144-B45CD1AD6F41} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-11] (Google Inc.)
Task: {B664BF22-495B-4422-B0E0-38DEA3F95482} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {BD21C377-5B30-4E5A-B6F2-37D2086885E5} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {C19F52F8-0B4E-45FD-BAEC-56D21898413C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-26] (Microsoft Corporation)
Task: {CB543D99-9983-464A-B819-560C38F9EB62} - System32\Tasks\{422CF431-AB16-0FAA-B9C8-36E08940984A} => C:\WINDOWS\system32\regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\3a29b21c\74398c44.dll" <==== ATTENTION
Task: {CBF14D7B-08E6-4681-88CB-D73A553F3B13} - System32\Tasks\{A35F0F3D-A239-4200-8E13-2E018388A19B} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.40.0.103/cs/abandoninstall?page=tsMain
Task: {CE322594-056E-4D11-84D6-8A84CBF2CC3E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3332989908-1278005487-3233361258-1000Core => C:\Users\Lubomir\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {D2CCED51-42D1-4A09-9CF1-61212E39FE82} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [2018-11-01] (Avira)
Task: {D676D0D4-9536-462B-ABD0-4A6A4276E513} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {D790479B-1881-4459-9B8D-A71D55D36737} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {E507F484-039F-4E44-80F0-6FB7DE3A329A} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {E7A39199-3E46-48B2-95B7-6D5216A4D4A0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {EB7E9B66-C2A3-432C-871B-C6517C5DFE09} - System32\Tasks\avastBCLRestartS-1-5-21-3332989908-1278005487-3233361258-1000 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3332989908-1278005487-3233361258-1000Core.job => C:\Users\Lubomir\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3332989908-1278005487-3233361258-1000UA.job => C:\Users\Lubomir\AppData\Local\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Lubomir\AppData\Local\Google\Chrome\User Data\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list
ShortcutWithArgument: C:\Users\Lubomir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\mydlink services plugin.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=ldibdoepbjbkkcbgndfljnphngpglhbb
ShortcutWithArgument: C:\Users\Lubomir\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) ==============

2014-11-25 12:58 - 2017-09-01 08:19 - 000076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2017-10-20 16:42 - 2017-10-20 16:42 - 000393200 _____ () C:\WINDOWS\SYSTEM32\IGFXTRAY.EXE
2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-23 13:52 - 2018-10-23 13:53 - 000183808 _____ () C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.SKYPEAPP_14.33.41.0_X64__KZF8QXF38ZG5C\SKYPEBACKGROUNDHOST.EXE
2017-03-16 16:15 - 2017-03-16 16:15 - 000866224 _____ () C:\PROGRAM FILES\GOPRO\GOPRO DESKTOP APP\GOPRODESKTOPSYSTEMTRAY.EXE
2018-10-23 13:52 - 2018-10-23 13:52 - 035118592 _____ () C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.ZUNEVIDEO_10.18082.13811.0_X64__8WEKYB3D8BBWE\VIDEO.UI.EXE
2018-10-23 13:52 - 2018-10-23 13:52 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-10-23 13:52 - 2018-10-23 13:52 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 20:02 - 2017-09-26 20:02 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-16 06:09 - 2018-10-16 06:09 - 004183040 _____ () C:\PROGRAM FILES\WINDOWSAPPS\MICROSOFT.WINDOWSCALCULATOR_10.1809.2731.0_X64__8WEKYB3D8BBWE\CALCULATOR.EXE
2018-09-26 09:27 - 2018-09-26 09:27 - 004472952 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1809.2731.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-03-16 16:15 - 2017-03-16 16:15 - 000037808 _____ () C:\PROGRAM FILES\GOPRO\GOPRO DESKTOP APP\GOPRODEVICEDETECTION.EXE
2018-08-16 10:30 - 2018-10-16 06:18 - 001437784 _____ () C:\Program Files\Microsoft Office\Root\Office16\ADDINS\UmOutlookAddin.dll
2018-08-16 10:30 - 2018-10-16 06:19 - 000235800 _____ () C:\Program Files\Microsoft Office\root\Office16\JitV.dll
2018-10-28 12:34 - 2017-01-06 06:53 - 000061944 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
2018-10-28 12:34 - 2017-01-06 06:53 - 000110584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
2018-11-09 23:59 - 2018-10-19 18:48 - 001204472 _____ () C:\Program Files (x86)\Avira\Antivirus\crypto-42.dll
2018-11-09 23:59 - 2018-10-19 18:48 - 000243352 _____ () C:\Program Files (x86)\Avira\Antivirus\ssl-44.dll
2015-08-31 20:22 - 2009-12-09 20:20 - 000126976 _____ () C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\EnumDevLib.dll
2015-05-05 23:28 - 2016-06-15 02:14 - 000020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2018-11-07 20:15 - 2018-11-06 14:06 - 001141064 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll
2018-11-07 20:15 - 2018-11-06 14:06 - 002103112 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\dropbox_crashpad.dll
2018-05-17 12:17 - 2018-11-06 14:09 - 000023376 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\tornado.speedups.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000025456 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000142312 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\_cffi_backend.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 001953640 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000025960 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:06 - 000118232 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\pywintypes35.dll
2018-05-17 12:17 - 2018-11-06 14:06 - 000109024 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32api.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000083784 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\fastpath.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:06 - 000418776 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\pythoncom35.dll
2018-11-07 20:15 - 2018-11-06 14:08 - 000074072 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000027616 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32event.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000049128 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32process.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000026600 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32clipboard.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000131552 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32file.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000182752 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32gui.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000027616 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32pipe.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000119272 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32security.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000401752 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32com.shell.shell.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000028640 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32job.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000034664 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000061792 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winshell.compiled._winshell.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:06 - 000023520 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\mmapfile.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000053736 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32service.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000065504 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32evtlog.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000025944 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000068968 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000028520 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000027488 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000032224 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32ts.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000156504 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000092488 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\sip.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 001778000 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000518992 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000052056 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 001929552 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 003821392 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000044888 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000132944 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000218456 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000205656 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000061408 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32print.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000051552 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000027624 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\win32profile.cp35-win32.pyd
2018-08-01 20:46 - 2018-11-06 14:09 - 000033632 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winreindex.compiled._winreindex.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000028008 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000025960 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000025448 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000025960 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000031600 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:06 - 000486880 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winxpgui.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000102736 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtWinExtras.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000029040 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 011144016 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\nucleus_python.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000029024 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:06 - 000036312 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\librsync.dll
2018-11-07 20:15 - 2018-11-06 14:08 - 000036712 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000272208 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2018-05-17 12:17 - 2018-11-06 14:09 - 000025960 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000433992 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2018-05-17 12:17 - 2018-11-06 14:09 - 000035680 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000025920 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\libEGL.DLL
2018-11-07 20:15 - 2018-11-06 14:08 - 001592128 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2018-05-17 12:17 - 2018-11-06 14:09 - 000025960 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.shcore.compiled._winffi_shcore.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000095592 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\windisplaytoast.compiled._DisplayToast.cp35-win32.pyd
2018-10-25 19:47 - 2018-11-06 14:09 - 000025448 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.gdi32.compiled._winffi_gdi32.cp35-win32.pyd
2018-09-14 03:29 - 2018-11-06 14:09 - 000028520 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.shell32.compiled._winffi_shell32.cp35-win32.pyd
2018-05-17 12:17 - 2018-11-06 14:09 - 000029544 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000530768 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000348496 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.cp35-win32.pyd
2018-11-07 20:15 - 2018-11-06 14:08 - 000037200 _____ () C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngine.cp35-win32.pyd
2018-10-28 12:34 - 2013-09-23 18:52 - 000043912 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_MFCMigrationFramework_Ad_2.dll
2018-10-28 12:34 - 2015-11-05 13:07 - 000052224 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qoauth_Ad_1.dll
2018-10-28 12:34 - 2015-11-05 13:07 - 000195584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson_Ad_0.dll
2018-10-28 12:34 - 2015-11-05 13:07 - 000742400 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qca_Ad_2.dll
2018-10-28 12:34 - 2017-01-06 06:25 - 000280488 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\cs-CZ\AdWingManRes.dll
2018-10-28 12:34 - 2015-09-08 07:31 - 040640808 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libcef.dll
2018-10-28 12:34 - 2014-09-03 01:29 - 000912384 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libglesv2.dll
2018-10-28 12:34 - 2014-09-03 01:29 - 000134144 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libegl.dll
2018-10-28 12:34 - 2014-09-03 01:29 - 000950272 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\ffmpegsumo.dll
2018-11-01 11:43 - 2018-11-01 11:43 - 000078992 _____ () C:\Program Files (x86)\Avira\Safe Shopping\ScreenClick.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\Software\Classes\.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\kmpmedia.net -> player.kmpmedia.net

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-30 23:42 - 2016-10-29 20:57 - 000001025 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 practivate.adobe.com 
127.0.0.1 activate.adobe.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lubomir\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeUpdateService => 2
MSCONFIG\Services: AGSService => 2
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\StartupApproved\Run: => "GarminExpressTrayApp"
HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3332989908-1278005487-3233361258-1000\...\StartupApproved\Run: => "Viber"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [UDP Query User{FF959B87-C435-4925-A461-72B793457F8F}G:\games\far cry 3\bin\fc3editor.exe] => (Allow) G:\games\far cry 3\bin\fc3editor.exe
FirewallRules: [TCP Query User{0343481E-DCF4-4495-A935-6A63FBE1E3FB}G:\games\far cry 3\bin\fc3editor.exe] => (Allow) G:\games\far cry 3\bin\fc3editor.exe
FirewallRules: [{EC377F5F-BC52-4D89-A9F0-FF192F8F4250}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [UDP Query User{AAAA5638-8027-46C0-ACE1-F18818625176}G:\games\far cry 3\bin\farcry3.exe] => (Allow) G:\games\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{8AB6F37E-1F7F-4AA3-A29B-52159887116C}G:\games\far cry 3\bin\farcry3.exe] => (Allow) G:\games\far cry 3\bin\farcry3.exe
FirewallRules: [{11069340-2D42-42B0-8F7F-AA8B24D46B5B}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
FirewallRules: [{8ED8CF2C-3891-41B0-89AA-891BFC76F6FF}] => (Block) %ProgramFiles% (x86)\Corel\CorelDRAW Graphics Suite X5\Programs\CorelDRW.exe
FirewallRules: [{DB881689-A28E-4FB8-B224-4FADCFAB3323}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{E713EAA3-1073-429C-B1B5-FB5C13C5FF81}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B0EDBC56-A23D-4FA4-BED3-064EA0F23F43}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9F3A8B13-6039-4FE4-87AA-2A53A6B98FE5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{39A9E559-C37C-4DA3-8C0F-763C2A2D75DC}] => (Allow) G:\Games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{D1B1FDA0-D0FE-4CFF-9DD0-A1DA38F27A47}] => (Allow) G:\Games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{79A2E8F5-5C5E-4AC2-97C4-F29C3B9C815A}] => (Allow) G:\Games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{E844D436-2A21-4E54-8E41-789BA1D22902}] => (Allow) G:\Games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{2441F69E-1E5B-4758-BEF0-2EC0462A8963}] => (Allow) G:\Games\Far Cry Primal\bin\FCPrimal.exe
FirewallRules: [{DDF8CBBA-9D28-4C67-921A-1D18FAB4A5FB}] => (Allow) C:\Users\Lubomir\AppData\Local\Apowersoft\Online Video Downloader\Online Video Downloader.exe
FirewallRules: [{693DD5FF-C1F9-4611-98B2-588B0951BF76}] => (Allow) C:\Users\Lubomir\AppData\Local\Apowersoft\Online Video Downloader\Online Video Downloader.exe
FirewallRules: [{51AF5B7B-9947-4076-A6E8-3049E024A609}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{7E1E7BA1-2C57-4DB5-B477-9A88B2FBBD28}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{3FB1EC76-F8B9-47EB-A300-437E63F4D88A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{500AAAE0-7469-4B6E-9DAB-1BEE505D17F5}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{49FDF7DC-F7D4-45F2-B4A8-8FA27F99A0AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe
FirewallRules: [{FB69FF20-7FD0-4B2F-879D-90F0DE489171}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe
FirewallRules: [{D92A657F-585F-430F-9C09-78DE1B820319}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe
FirewallRules: [{45579D19-C40F-4104-83F6-68F8A5C9B1CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe
FirewallRules: [{6CF43C9D-97CA-45CF-9A3D-70CF118C8175}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{241F8F7C-AC89-4ABF-9963-9DD5C57D48CE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6EC3C9C2-E16E-4F6D-94DD-5B115E5A40EB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{23F84E39-1F6C-4F34-A24A-E25E4B658EF0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{24057DA9-A4F2-4B0F-A269-1614D73A843F}] => (Allow) H:\Advanced\autorun.exe
FirewallRules: [UDP Query User{D1C42B6C-97E9-42DD-A723-9541D14EA4DC}C:\users\lubomir\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\lubomir\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{D12E9AE9-7C47-4B18-B829-17D1D979D99B}C:\users\lubomir\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\lubomir\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{182841B4-6A26-4C69-A9B1-EE5FDCD054C7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3070845A-3930-4C2C-B1E9-802F39CC4B56}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{0EB3C3AA-62AD-4601-8908-60B70D5AE902}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{CA6F16EF-8EAB-4076-A118-B92481481033}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{36C44D05-B5A5-4CE3-BA91-D27F3C7E597B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B23BE7B6-AC7B-4F0F-84E8-C83BD699D8F8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CE4DE8CD-AB74-469B-B3BB-6A924B218FD7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C2968BC8-402D-4869-A1B4-E8F883756428}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{73562787-BB7E-4C05-AEA7-0865D7D33683}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{43CAB927-DCF4-4EB6-9EE7-3EFC5F10E42D}] => (Allow) C:\Users\Lubomir\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{CC149C04-AE6C-4109-B459-BB9E11E827CB}] => (Allow) C:\Users\Lubomir\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{B4DE45B4-6C2E-4BB7-904F-9C9947F19F64}] => (Allow) LPort=1886
FirewallRules: [{A9FEAF1C-996B-4659-A0D7-96D30A9CA7B3}] => (Allow) LPort=1886
FirewallRules: [{67E07BC6-DA6E-43A8-A3BE-12833C7D6AB4}] => (Allow) C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{E490EEB1-7FCE-45A9-9F87-C117A9A5E9AB}] => (Allow) C:\Users\Lubomir\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{41F7FDE2-1626-40CB-80B5-971D163D868A}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{BC0B2048-9CF3-49E1-A000-59D24DE980F4}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{A33DAA5F-752C-4C2A-8E84-564552DE402D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{CF702166-5F35-4FD3-A128-0DA3B63E0EF8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{094AECAD-7215-47FE-9428-CFF548EE2250}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{400D9471-500A-4723-A3AA-7472AEEE6737}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{78F4671F-815F-4393-9A55-27B248733565}C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe] => (Allow) C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe
FirewallRules: [UDP Query User{F5AC441F-E285-4004-B09D-247FD240FE42}C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe] => (Allow) C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe
FirewallRules: [{4B5581F2-858E-4336-8E2B-AF164D6E5FD3}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
FirewallRules: [{567FBF96-6B0F-432B-B2D4-FEEF5E867526}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
FirewallRules: [{F513B484-8A3A-4970-8F5D-4C35DF31B785}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{0DFA7379-EC3E-4E60-A7AA-DC4FC0E82E2B}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{754F4571-62C0-4350-8F0C-1787E9A42131}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro Quik.exe
FirewallRules: [{BEF57FAD-75D8-4F8A-A628-8DB71A53DF82}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe
FirewallRules: [{B5D945A3-493C-40EC-97FD-6D715C47166E}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe
FirewallRules: [{115216F0-D6A8-4AD7-B2CD-C23EF0D4107C}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe
FirewallRules: [{2B78ACF5-1158-487C-8023-35DE3F17AEB5}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{20205E8E-BBDB-49B8-B4BD-A4468D0C3A7F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{EF749D05-C5C9-4AAD-A17F-47DB487D941A}] => (Allow) LPort=2869
FirewallRules: [{96A4819D-0BDA-4861-AECD-2CD10D94E5D0}] => (Allow) LPort=1900
FirewallRules: [{EDB0C545-FD38-4F1D-AFDC-BED5AD38961D}] => (Block) %ProgramFiles% (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe
FirewallRules: [{9D1753B0-1BF6-4599-8AC0-AF4358350EBF}] => (Block) %ProgramFiles% (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe
FirewallRules: [TCP Query User{D6E4656E-8302-403C-B501-7969EE42E529}C:\users\lubomir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\lubomir\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A4CBB129-4C8B-4F40-8179-74F83D09C53B}C:\users\lubomir\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\lubomir\appdata\roaming\spotify\spotify.exe
FirewallRules: [{2F8CEE2A-44E4-4490-9A6B-8F6134E00F44}] => (Block) %ProgramFiles% (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe
FirewallRules: [{C6CABDAC-AD80-4124-8A70-BB152C1E7E99}] => (Block) %ProgramFiles% (x86)\Freemake\Freemake Video Converter\FreemakeVC.exe
FirewallRules: [{08B4F98B-4A74-4421-B804-1E65C5ADC6CB}] => (Block) %ProgramFiles% (x86)\Freemake\Freemake Video Converter\FreemakeVC.exe
FirewallRules: [{3E22E005-4493-46EA-8D1A-3767D79DD6C4}] => (Block) %ProgramFiles% (x86)\Corel\CorelDRAW Graphics Suite X5\Programs\CorelDRW.exe
FirewallRules: [{393F8382-FC1D-40E3-981E-03FF869E1E92}] => (Block) %ProgramFiles% (x86)\Corel\CorelDRAW Graphics Suite X5\Programs\CorelDRW.exe
FirewallRules: [TCP Query User{45AD1CC3-F2FD-450D-83DB-8B3438FEC54E}G:\games\far cry 4\bin\farcry4.exe] => (Allow) G:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{9998896E-757A-4271-A9D1-63D1588AADF6}G:\games\far cry 4\bin\farcry4.exe] => (Allow) G:\games\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{BADDB9B4-8E2F-49EB-9036-FADA5429DB2C}G:\games\hidden & dangerous 2\hd2.exe] => (Allow) G:\games\hidden & dangerous 2\hd2.exe
FirewallRules: [UDP Query User{74E64489-F3E5-4B33-BAC6-E686EC08E078}G:\games\hidden & dangerous 2\hd2.exe] => (Allow) G:\games\hidden & dangerous 2\hd2.exe
FirewallRules: [TCP Query User{E30E18E0-5F2C-4379-986B-81127E834845}C:\users\lubomir\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lubomir\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{161BFAAD-E73F-4F72-A598-8632FF7A7E9C}C:\users\lubomir\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lubomir\appdata\roaming\spotify\spotify.exe
FirewallRules: [{6B97B2C0-5EF5-47ED-A3EB-AFA9542C8F11}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{0ABE37C3-0DCD-4D00-A357-D72B2AA952E8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{B9762A5C-D09B-4AE2-BAC4-5769791C3DC4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{99436945-735E-477C-937C-D6E5A7FAB3EA}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{F559E02D-90C7-4283-AA4A-5EBEDD51A2CC}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{AF782974-3D63-45D3-A440-EB73AE5FB025}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{30DB0E19-621C-42B2-BDD3-4ADA2585B3CA}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Neznámé zařízení USB (nastavení adresy se nezdařilo)
Description: Neznámé zařízení USB (nastavení adresy se nezdařilo)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standardní hostitelský řadič USB)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 


==================== Event log errors: =========================

Application errors:
==================
Error: (11/11/2018 06:03:42 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (11/11/2018 05:56:02 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (11/10/2018 11:24:35 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (11/10/2018 11:14:35 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (11/10/2018 11:04:35 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (11/10/2018 10:54:35 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (11/10/2018 10:44:35 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (11/10/2018 10:34:35 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.


System errors:
=============
Error: (11/11/2018 05:56:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.SecurityAppBroker
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/11/2018 05:56:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscBrokerManager
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/11/2018 05:53:32 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error: (11/11/2018 05:53:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba luafv neuspěla při spuštění v důsledku následující chyby: 
Načtení tohoto ovladače je blokováno.

Error: (11/10/2018 11:21:13 PM) (Source: DCOM) (EventID: 10016) (User: Lubomir-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli Lubomir-PC\Lubomir (SID: S-1-5-21-3332989908-1278005487-3233361258-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/10/2018 11:21:13 PM) (Source: DCOM) (EventID: 10016) (User: Lubomir-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli Lubomir-PC\Lubomir (SID: S-1-5-21-3332989908-1278005487-3233361258-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/10/2018 11:20:24 PM) (Source: DCOM) (EventID: 10016) (User: Lubomir-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli Lubomir-PC\Lubomir (SID: S-1-5-21-3332989908-1278005487-3233361258-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/10/2018 11:20:24 PM) (Source: DCOM) (EventID: 10016) (User: Lubomir-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli Lubomir-PC\Lubomir (SID: S-1-5-21-3332989908-1278005487-3233361258-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2018-11-09 23:53:25.046
Description: 
Řízený přístup ke složkám zablokoval pro C:\Users\Lubomir\AppData\Local\Temp\is-KNMJP.tmp\SpywareTerminatorSetup.tmp možnost upravit %common_desktop%\.
Čas detekce: 2018-11-09T22:53:25.046Z
Uživatel: Lubomir-PC\Lubomir
Cesta: %common_desktop%\
Název procesu: C:\Users\Lubomir\AppData\Local\Temp\is-KNMJP.tmp\SpywareTerminatorSetup.tmp
Verze podpisu: 1.279.1518.0
Verze stroje: 1.1.15400.4
Verze produktu: 4.18.1810.5

Date: 2018-11-09 23:01:58.487
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {DFC85DFF-8CFC-4506-B970-17834ABE5245}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Úplné prohledávání
Uživatel: Lubomir-PC\Lubomir

Date: 2018-11-09 22:55:07.564
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Unwaders.C!ml&threatid=242874&enterprise=0
Název: Program:Win32/Unwaders.C!ml
ID: 242874
Závažnost: Vážné
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\Lubomir\AppData\Local\Temp\is-470HT.tmp\dwddfu.dll
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.279.1518.0, AS: 1.279.1518.0, NIS: 1.279.1518.0
Verze modulu: AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-09 22:54:43.717
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Gandcrab.AF&threatid=2147727324&enterprise=0
Název: Trojan:Win32/Gandcrab.AF
ID: 2147727324
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Lubomir\AppData\Local\Temp\41433703\ic-0.6f3c128793d4d4.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: Lubomir-PC\Lubomir
Název procesu: C:\Program Files\CCleaner\CCleaner64.exe
Verze podpisu: AV: 1.279.1518.0, AS: 1.279.1518.0, NIS: 1.279.1518.0
Verze modulu: AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-09 22:54:30.140
Description: 
Řízený přístup ke složkám zablokoval pro C:\Program Files\CCleaner\CCleaner64.exe provádění změn v paměti.
Čas zjištění: 2018-11-09T21:54:30.140Z
Uživatel:  Lubomir-PC\Lubomir
Cesta:  \Device\Harddisk0\DR0
Název procesu:  C:\Program Files\CCleaner\CCleaner64.exe
Verze podpisu:  1.279.1518.0
Verze modulu:  1.1.15400.4
Verze produktu:  4.18.1810.5

Date: 2018-11-09 22:16:30.859
Description: 
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.  
Důvod: Antimalwarová ochrana přestala z neznámých důvodů fungovat. V některých případech lze tento problém vyřešit restartováním služby.

Date: 2018-11-09 22:08:26.882
Description: 
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.  
Důvod: Antimalwarová ochrana přestala z neznámých důvodů fungovat. V některých případech lze tento problém vyřešit restartováním služby.

CodeIntegrity:
===================================

Date: 2018-11-09 22:21:58.423
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\ProgramData\Voyasollam\DongPlus.dll that did not meet the Microsoft signing level requirements.

Date: 2018-11-09 22:14:55.092
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\ProgramData\Voyasollam\DongPlus.dll that did not meet the Microsoft signing level requirements.

Date: 2018-11-09 22:12:03.198
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\ProgramData\Voyasollam\DongPlus.dll that did not meet the Microsoft signing level requirements.

Date: 2018-11-09 22:03:15.332
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\ProgramData\Voyasollam\DongPlus.dll that did not meet the Microsoft signing level requirements.

Date: 2018-11-09 22:01:17.701
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\ProgramData\Voyasollam\DongPlus.dll that did not meet the Microsoft signing level requirements.

Date: 2018-11-09 21:31:40.289
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\ProgramData\Voyasollam\DongPlus.dll that did not meet the Microsoft signing level requirements.

Date: 2018-11-09 20:56:04.601
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-11-09 20:56:04.596
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Percentage of memory in use: 21%
Total physical RAM: 16263.14 MB
Available physical RAM: 12756.96 MB
Total Virtual: 32647.14 MB
Available Virtual: 28849.98 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.25 GB) (Free:10.04 GB) NTFS
Drive d: (Data) (Fixed) (Total:298.09 GB) (Free:98.44 GB) NTFS
Drive e: (Data-Lubomir) (Fixed) (Total:931.32 GB) (Free:58.65 GB) NTFS
Drive f: (Films GoPro) (Fixed) (Total:2794.39 GB) (Free:1715.62 GB) NTFS
Drive g: (Games) (Fixed) (Total:298.08 GB) (Free:18.28 GB) NTFS
Drive h: () (Removable) (Total:7.66 GB) (Free:6.98 GB) FAT32
Drive s: (Serials) (Fixed) (Total:931.51 GB) (Free:29.84 GB) NTFS

\\?\Volume{07db44cb-733c-11e4-8440-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{fad6d332-0000-0000-0000-60d61b000000}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: FAD6D332)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: 1A02E41C)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: 000EC1C5)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: 969BDBC4)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=0F Extended)

========================================================
Disk: 4 (Size: 931.5 GB) (Disk ID: 00037ED3)
Partition 2: (Not Active) - (Size=931.3 GB) - (Type=07 NTFS)

========================================================
Disk: 5 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 6 (Size: 7.7 GB) (Disk ID: 5822BCF7)
Partition 1: (Not Active) - (Size=7.7 GB) - (Type=0C)

==================== End of Addition.txt ============================