Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07.01.2019
Ran by Miroslav Šušovica (08-01-2019 16:19:50)
Running from C:\Users\Miroslav Šušovica\Desktop
Windows 10 Home Version 1803 17134.472 (X64) (2018-05-21 18:59:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4254272432-1314880526-15813765-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4254272432-1314880526-15813765-503 - Limited - Disabled)
Guest (S-1-5-21-4254272432-1314880526-15813765-501 - Limited - Disabled)
Miroslav Šušovica (S-1-5-21-4254272432-1314880526-15813765-1001 - Administrator - Enabled) => C:\Users\Miroslav Šušovica
WDAGUtilityAccount (S-1-5-21-4254272432-1314880526-15813765-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . . (HKLM\...\{DB52A2D0-CAA1-4ED1-B122-29E7EDDE187F}) (Version: 2.1.28.3 - Intel) Hidden
. . . (HKLM-x32\...\{06DA421D-EE23-487D-878F-F0AF97EF69AD}) (Version: 2.6.1.4 - Intel) Hidden
18 WoS Across America (HKLM-x32\...\{BF9BA346-27AA-4EE0-8333-FEA5400D2AA0}) (Version: 0.2.0000 - ValuSoft) Hidden
18 WoS Across America (HKLM-x32\...\InstallShield_{BF9BA346-27AA-4EE0-8333-FEA5400D2AA0}) (Version: 0.2.0000 - ValuSoft)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\{39EA6AA6-F891-4D70-867D-839DA49948D2}) (Version: 12.2.9.199 - Adobe Systems, Inc)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version:  - Gameforge4d)
Airytec Switch Off (HKLM\...\Airytec Switch Off) (Version: 3.5.1 - Airytec)
Aktualizácie NVIDIA 31.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.2.0.0 - NVIDIA Corporation) Hidden
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassins Creed 3 CZ v.1.06 v.1.0 (HKLM-x32\...\Assassins Creed 3 CZ v.1.06 v.1.0) (Version: v.1.06 v.1.0 - Libbi)
Assassins Creed Black Flag CZ v.1.7 (HKLM-x32\...\Assassins Creed Black Flag CZ v.1.7) (Version: v.1.7 - Libbi)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.10 - Kakao Games Europe B.V.)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
Counter-Strike 1.6 (HKLM-x32\...\{13B792AA-C078-43A4-8A3A-8B12D629940D}) (Version: 1.00.0000 - )
Counter-Strike 1.6 verzia 4554 (HKLM-x32\...\{5A81CBD0-4C7E-4C5A-9F6D-A4C316E3560C}}_is1) (Version: 4554 - Valve)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.5521 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{68B3293E-612B-48B4-BC0F-4CCFBF83AB96}) (Version: 0.8.2.76 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
DU Meter (HKLM-x32\...\DUMeter3_is1) (Version: 4.16 Build R3102 - Hagel Technologies Ltd.)
Gameforge Live 2.0.12 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.12 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 8.0.1.303 - Huawei Technologies Co.,Ltd)
HP Deskjet 3050A J611 series Basic Device Software (HKLM\...\{1B77E249-B8D5-4E5E-8848-693ACEF84E6D}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3050A J611 series Product Improvement Study (HKLM\...\{A772BF60-20A5-4279-A18B-B9D8DBC9B30A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1025 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4474 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{3920BCB0-23AA-4D0D-93E5-404692DAF9D2}) (Version: 19.00.1621.3340 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{fe2eebd3-ee15-4538-bb19-b627e3f2a911}) (Version: 2.6.1.4 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{afe60883-1215-45d9-a7f6-ecda5e7fc13c}) (Version: 19.2.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo)
Lenovo FusionEngine  (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Nerve Sense (HKLM\...\{DCB4DFB5-93CA-4BDD-9D08-CE880626B46E}_is1) (Version: 2.6.11.8 - Lenovo)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4706 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.4706 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.) Hidden
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.)
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.022.00 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-4254272432-1314880526-15813765-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.5 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958936\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.5 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000788\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.6.5 - Lenovo)
Lenovo Solution Center (HKLM\...\{C1FC707B-AE6B-4DC4-89A5-6628A01F8103}) (Version: 3.3.003.00 - Lenovo)
LogMeIn Hamachi (HKLM-x32\...\{880A2BB9-CE06-4611-BB51-E41EA0975CD1}) (Version: 2.2.0.615 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.615 - LogMeIn, Inc.)
Malwarebytes verzia 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
MediaInfo 0.7.4.5 (HKLM-x32\...\MediaInfo) (Version: 0.7.4.5 - )
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{0513c9cf-7191-45a7-ace9-ecdad03c93a4}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{10dc8dbf-d3d7-4e23-be07-120fe5c66b78}) (Version: 12.0.40660.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{e9d78d68-c26c-4da7-9158-99355d8ef3ad}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{58b3beca-b999-4f6f-a48c-81681136a620}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Need for Speed Most Wanted 2012 v1.0.0.0 (HKLM-x32\...\Need for Speed Most Wanted 2012_is1) (Version: 1.0.0.0 - EA Games)
Noise Reduction Plug-In 2.0 (HKLM-x32\...\{36DF4580-D1B3-11E3-A23E-F04DA23A5C58}) (Version: 2.0.628 - Sony)
NVIDIA 3D Vision Driver 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.59 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Graphics Driver 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.59 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM\...\{A6668863-B0A3-4812-AAF2-E47749ECFE0E}) (Version: 3.3.00.145 - O2Micro International LTD.) Hidden
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{A6668863-B0A3-4812-AAF2-E47749ECFE0E}) (Version: 3.3.00.145 - O2Micro International LTD.)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Perfectly Clear Photo Enhancer (HKLM\...\{6EACD521-875C-4455-A653-42CDD47A57AE}) (Version: 1.0.1.3 - Athentech Imaging)
Python 2.7.8 (64-bit) (HKLM\...\{61121B12-88BD-4261-A6EE-AB32610A56DE}) (Version: 2.7.8150 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)
RAR Password Cracker (HKLM-x32\...\RAR Password Cracker) (Version: 4.21 - dnSoft Research Group)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Remote Mouse version 3.002 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 3.002 - Remote Mouse)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Sound Forge Pro 11.0 (HKLM-x32\...\{FE1A7F80-1348-11E4-8C79-F04DA23A5C58}) (Version: 11.0.293 - Sony)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.3629 - TeamViewer)
Twin USB Vibration Gamepad (HKLM-x32\...\{1BBDD6C0-ED6F-43C3-8A9C-84E3249A5615}) (Version: 2007.01.01 - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
User Manuals (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
Vegas Pro 13.0 (64-bit) (HKLM-x32\...\Vegas Pro 13.0 (64-bit)) (Version: 13.0 (64-bit) - Exµs ™)
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-4254272432-1314880526-15813765-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958936\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000788\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinBubble (HKU\S-1-5-21-4254272432-1314880526-15813765-1001\...\WinBubble) (Version: 2.0.1.32 - Lawrence Albert)
WinBubble (HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958936\...\WinBubble) (Version: 2.0.1.32 - Lawrence Albert)
WinBubble (HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000788\...\WinBubble) (Version: 2.0.1.32 - Lawrence Albert)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2018 (HKLM-x32\...\{3CC29C1A-B5FE-457B-8F22-32A2557A92C7}}_is1) (Version:  - www.topwin-movie-maker.com)
WinRAR 4.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
XnView 1.98.2 (HKLM-x32\...\XnView_is1) (Version: 1.98.2 - Gougelet Pierre-e)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-21] (Cyberlink)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-05-28] ()
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-21] (Cyberlink)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-05-28] ()
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxDTCM.dll [2018-05-07] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-05] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-05-28] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {053353FB-05DC-4B7A-ABF0-EE56CCEB156B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {0884ED59-1E36-407B-9F41-9D981A616D23} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {125D0DEC-0A7A-41A3-92CE-C7C8BE8813B6} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {17ACE940-39C5-4899-92A3-F81511652928} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-19] (Google Inc.)
Task: {1E57DA71-DBCC-4442-8295-423010E1A73D} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2016-06-02] (Lenovo)
Task: {2950C73F-D579-464B-965C-1EB2F43D6383} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {331D555A-6B2D-4530-930E-899422F83730} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4254272432-1314880526-15813765-1001 => C:\Users\Miroslav Šušovica\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [2018-10-29] (Lenovo Group Limited)
Task: {39F5DFB7-34D0-4B72-9E26-2588B5E16286} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {4BC79B5E-3A48-4A25-8C60-CF3B410D36AF} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {4CB14957-8CFF-4994-BD2C-517FF356ED2E} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {5002978C-CE52-4868-8584-BC3614914C1F} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [2015-05-28] (CyberLink Corp.)
Task: {51B4F0C4-B707-49BD-9F43-FF4C427A0D2D} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {53C56909-22C9-498B-A579-070DB426A66A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {572501A3-6501-4C06-85BD-F81A04629489} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService
Task: {58B368E0-D343-43A9-90F9-B2EF306D13BF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4f2161ca-da79-42ff-ad4b-1385995e15fe => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-11-16] (Lenovo Group Ltd.)
Task: {5CBF49C9-B9E5-4BDC-9D62-CAF70D20C2E0} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2016-06-02] (Lenovo)
Task: {5F52D96F-B1E4-4808-8129-00B4390B934D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {62235658-7A6D-4024-BB78-DE2D3C1390AF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-05-20] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6D5B9483-DB49-4B7A-8A29-721BDB876FFE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {806718BB-2972-4288-9016-EE5F3C301848} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-19] (Google Inc.)
Task: {80BB7FAA-5F90-45A3-A4F0-C3DACA6DB252} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {82F62860-CCB4-4DA2-B210-3A30E3734F49} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Task: {8B4BFE0D-E8A8-45E6-9BED-5F755FDC2BAF} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2016-08-21] (Lenovo)
Task: {900602FA-909E-4CAF-B886-D9B2D267AA25} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-05-20] (NVIDIA Corporation)
Task: {93DAFEAD-5836-44A2-9B99-682F7FDBBF70} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2016-06-02] (Lenovo)
Task: {9C1E4B05-2557-40F2-BC1C-FAC6CE740819} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {9D4F9D48-B005-411A-AF0F-3BBBE4E95663} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe [2016-06-02] ()
Task: {A21266AA-EC01-4F21-AE4C-6C7A5B7819ED} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {AA4F389F-81D4-417E-924C-81E36F750BBD} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [2018-11-16] (Lenovo Group Ltd.)
Task: {B8ADEE55-036B-4477-A4D4-032D1D87979E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {BAD188D1-A375-42C4-9792-A9D3EFF90073} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-05-20] (NVIDIA Corporation)
Task: {CB267F63-CA21-4E32-9B44-4FB5C839E7C3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {CDE98BF1-F921-4ADC-A5ED-3D427F65E081} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {D4077828-F177-4C96-95BB-0220B3D2BA3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {D4477ECA-C6FD-4FFC-A481-004C99957B0A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {D6CFAE45-1FA4-4AE9-B160-6BE35733664A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4200e862-b111-41ab-8528-fe1818892971 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-11-16] (Lenovo Group Ltd.)
Task: {DBFCADF9-1538-4E2F-A462-AB056C5A14BD} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fb95d20b-1ab8-4b12-b6ff-b6dd637a62d4 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-11-16] (Lenovo Group Ltd.)
Task: {E08E18BD-FC99-4599-96E4-6BC82618B66E} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {E3CB56F9-BC2A-47FD-A052-BB248486FE83} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {E4028D59-9912-404B-9A68-2DB2A7D07084} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {F167B6C2-CEBD-47CD-8D8D-AD5509A67A0F} - System32\Tasks\NerveCenterUpdate => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterUpdateAgent.exe [2017-04-28] (Lenovo(beijing) Limited)
Task: {FCC1176A-E7DF-4BB6-9465-37E210527F6D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\906699ba-f054-4133-ab11-5870b72f9e32 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-11-16] (Lenovo Group Ltd.)
Task: {FF700A5E-F654-4AEB-AD6A-BEF3CB2A8BF9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-08-23 13:42 - 2018-08-23 13:42 - 000190784 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2018-06-05 16:47 - 2018-05-20 18:36 - 001315296 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-20 18:25 - 2016-06-25 07:52 - 000018432 _____ () C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe
2016-06-08 17:04 - 2016-06-08 17:04 - 000117400 _____ () C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
2017-11-17 13:32 - 2017-04-28 19:08 - 000141664 _____ () C:\Program Files\Lenovo\Nerve Center\bin\x64\Xmlparser.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-11-20 04:46 - 2018-11-20 04:46 - 004310296 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-12 15:57 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2016-08-25 06:55 - 2011-05-28 21:05 - 000164864 _____ () C:\Program Files\WinRAR\rarext.dll
2018-12-20 16:02 - 2018-12-14 07:50 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-12-15 11:17 - 2018-12-15 11:17 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-04 15:07 - 2018-10-04 15:07 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-15 11:17 - 2018-12-15 11:17 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-09 15:16 - 2018-12-09 15:16 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-12-09 15:16 - 2018-12-09 15:16 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll
2017-12-01 16:26 - 2017-12-01 16:26 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-29 17:56 - 2018-11-29 17:56 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-09 15:16 - 2018-12-09 15:16 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-12-09 15:16 - 2018-12-09 15:16 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-12-18 16:44 - 2018-12-12 06:12 - 002682336 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\swiftshader\libglesv2.dll
2018-12-18 16:44 - 2018-12-12 06:12 - 000156640 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\swiftshader\libegl.dll
2018-12-06 16:57 - 2018-12-06 16:57 - 031311872 _____ () C:\WINDOWS\system32\Macromed\Flash\pepflashplayer64_32_0_0_101.dll
2018-11-04 13:05 - 2019-01-08 16:03 - 000336715 _____ () C:\Users\Miroslav Šušovica\AppData\Roaming\System\update-client.exe
2018-06-05 16:47 - 2018-05-20 18:36 - 095437792 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-06-05 16:47 - 2018-05-20 18:36 - 003029472 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-06-05 16:47 - 2018-05-20 18:36 - 000149984 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll
2015-08-07 10:09 - 2015-08-07 10:09 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2018-06-05 16:47 - 2018-05-20 18:36 - 001033184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000417280 _____ () C:\Program Files (x86)\Winamp\nsutil.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000078848 _____ () C:\Program Files (x86)\Winamp\nde.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000023552 _____ () C:\Program Files (x86)\Winamp\System\albumart.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000174080 _____ () C:\Program Files (x86)\Winamp\System\auth.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000019456 _____ () C:\Program Files (x86)\Winamp\System\bmp.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000064512 _____ () C:\Program Files (x86)\Winamp\zlib.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000044544 _____ () C:\Program Files (x86)\Winamp\System\devices.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000016896 _____ () C:\Program Files (x86)\Winamp\System\dlmgr.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000014336 _____ () C:\Program Files (x86)\Winamp\System\filereader.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000019456 _____ () C:\Program Files (x86)\Winamp\System\gif.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000016384 _____ () C:\Program Files (x86)\Winamp\System\gracenote.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000623616 _____ () C:\Program Files (x86)\Winamp\System\jnetlib.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000154624 _____ () C:\Program Files (x86)\Winamp\System\jpeg.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000084480 _____ () C:\Program Files (x86)\Winamp\System\playlist.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000087552 _____ () C:\Program Files (x86)\Winamp\System\png.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000013824 _____ () C:\Program Files (x86)\Winamp\System\primo.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000021504 _____ () C:\Program Files (x86)\Winamp\System\tagz.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000035328 _____ () C:\Program Files (x86)\Winamp\System\timer.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000091136 _____ () C:\Program Files (x86)\Winamp\System\xml.w5s
2012-06-28 16:42 - 2016-08-21 19:31 - 000068608 _____ () C:\Program Files (x86)\Winamp\Plugins\in_avi.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000102400 _____ () C:\Program Files (x86)\Winamp\Plugins\in_cdda.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000072192 _____ () C:\Program Files (x86)\Winamp\Plugins\in_dshow.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000061440 _____ () C:\Program Files (x86)\Winamp\Plugins\in_flac.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000043008 _____ () C:\Program Files (x86)\Winamp\Plugins\in_flv.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000007168 _____ () C:\Program Files (x86)\Winamp\Plugins\in_linein.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000109568 _____ () C:\Program Files (x86)\Winamp\Plugins\in_midi.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000049152 _____ () C:\Program Files (x86)\Winamp\Plugins\in_mkv.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000164864 _____ () C:\Program Files (x86)\Winamp\Plugins\in_mod.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000290816 _____ () C:\Program Files (x86)\Winamp\Plugins\in_mp3.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000052736 _____ () C:\Program Files (x86)\Winamp\Plugins\in_mp4.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000075264 _____ () C:\Program Files (x86)\Winamp\Plugins\in_nsv.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000023552 _____ () C:\Program Files (x86)\Winamp\Plugins\in_swf.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000253440 _____ () C:\Program Files (x86)\Winamp\Plugins\in_vorbis.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000016896 _____ () C:\Program Files (x86)\Winamp\Plugins\in_wave.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000253440 _____ () C:\Program Files (x86)\Winamp\libsndfile.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000313344 _____ () C:\Program Files (x86)\Winamp\Plugins\in_wm.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000022528 _____ () C:\Program Files (x86)\Winamp\Plugins\out_disk.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000052224 _____ () C:\Program Files (x86)\Winamp\Plugins\out_ds.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000018432 _____ () C:\Program Files (x86)\Winamp\Plugins\out_wave.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 001737728 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_ff.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000083968 _____ () C:\Program Files (x86)\Winamp\tataki.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000340992 _____ () C:\Program Files (x86)\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2012-06-28 16:42 - 2016-08-21 19:31 - 000028160 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_hotkeys.dll
2011-11-10 23:10 - 2016-08-21 19:31 - 000185344 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_jumpex.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000318976 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_ml.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000294912 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_local.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000084480 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_playlists.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000124928 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_online.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000249856 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_devices.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000201728 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_disc.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000240640 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_pmp.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000060928 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_android.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000170496 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_ipod.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000020480 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_njb.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000118272 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_p4s.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000053760 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_usb.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000113664 _____ () C:\Program Files (x86)\Winamp\Plugins\pmp_wifi.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000028672 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_bookmarks.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000052224 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_history.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000028672 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_autotag.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000057344 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_impex.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000083456 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_plg.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000033792 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_rg.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000032256 _____ () C:\Program Files (x86)\Winamp\Plugins\ml_transcode.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000057344 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_orgler.dll
2012-06-28 16:42 - 2016-08-21 19:31 - 000025600 _____ () C:\Program Files (x86)\Winamp\Plugins\gen_tray.dll
2015-11-13 15:10 - 2014-07-04 05:35 - 000627672 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2014-07-04 21:35 - 2014-07-04 21:35 - 000016856 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2017-05-23 05:54 - 2016-07-21 09:54 - 000137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2017-05-23 05:54 - 2016-10-08 15:48 - 001506304 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4254272432-1314880526-15813765-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4254272432-1314880526-15813765-1001\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958936\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958936\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000788\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000788\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 12:04 - 2017-09-15 16:58 - 000000826 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\Lenovo\FusionEngine;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958735\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000688\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958820\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000738\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-4254272432-1314880526-15813765-1001\Control Panel\Desktop\\Wallpaper -> D:\wallpapers\1920x1080-maxresdefault.jpg
HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958936\Control Panel\Desktop\\Wallpaper -> D:\wallpapers\1920x1080-maxresdefault.jpg
HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000788\Control Panel\Desktop\\Wallpaper -> D:\wallpapers\1920x1080-maxresdefault.jpg
DNS Servers: 1.1.1.1 - 1.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "WinampAgent"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-4254272432-1314880526-15813765-1001\...\StartupApproved\StartupFolder: => "Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk"
HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019154958936\...\StartupApproved\StartupFolder: => "Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk"
HKU\S-1-5-21-4254272432-1314880526-15813765-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01072019155000788\...\StartupApproved\StartupFolder: => "Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{DA23F3C7-CEA1-494A-B002-04912C8CFC0A}D:\assassins creed 3 cz\liberation cz\ac3lhd_32.exe] => (Allow) D:\assassins creed 3 cz\liberation cz\ac3lhd_32.exe No File
FirewallRules: [TCP Query User{9C0DA671-9EDD-4490-A01B-A923AA57C070}D:\assassins creed 3 cz\liberation cz\ac3lhd_32.exe] => (Allow) D:\assassins creed 3 cz\liberation cz\ac3lhd_32.exe No File
FirewallRules: [{D75CA94F-1B27-4485-98EA-C17E5065896A}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett-Packard Co.)
FirewallRules: [{8FF55B62-782E-4C7F-A8B5-4C51564CFAFB}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe (Hewlett-Packard Co.)
FirewallRules: [{AE7F19CF-7914-4578-B3B0-014141D21FF9}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\DeviceSetup.exe (Hewlett-Packard Co.)
FirewallRules: [UDP Query User{A60BC5FE-A672-4054-A5E2-1D14838FC4FA}D:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) D:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{EF3C78AE-7E00-4354-A743-82C2DE1C282B}D:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) D:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [{A378DBA0-9B59-487C-B6F8-87BCB97E447F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{EDF213DE-2781-4A99-AD30-1D35AFD31DBD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{0570DB1E-A34E-43CC-B713-E1C47E5D439E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{A9D37494-7818-45C3-9C52-9804FA85805B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{68F34A74-9176-495F-B716-6B2801EECE18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{44F303A0-AA3C-4B44-9CEE-06CF4ED8CB51}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe (RemoteMouse.net)
FirewallRules: [{719A8A97-01DD-4B06-9420-10ED237E4A8D}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe (RemoteMouse.net)
FirewallRules: [{F746E673-46FB-4145-BEF8-7C854990C4C2}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe (RemoteMouse.net)
FirewallRules: [{6D94270A-42DF-4007-9CC4-5066632E6345}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe (RemoteMouse.net)
FirewallRules: [{F39CA9B3-9ADA-4FB9-A800-423607E2DE5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{6DCAE9AE-0959-4BC3-835A-2B8E2F9F89D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{179D349F-62DF-4BCD-87D9-3F0777B3B08C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [TCP Query User{0CED8178-EBE2-4949-9938-BFE7724085B0}C:\users\miroslav šušovica\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\miroslav šušovica\appdata\roaming\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{A9F8020E-C955-4506-92EE-1E2F9F7B3538}C:\users\miroslav šušovica\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\miroslav šušovica\appdata\roaming\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [TCP Query User{5DD93C41-DDEE-47E1-A5C2-7A9A576D7A58}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft, Inc.)
FirewallRules: [UDP Query User{90E35BEB-DEC1-4F33-B27D-8DE8050C2DD4}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft, Inc.)
FirewallRules: [{DDEC5B4A-957E-4FB2-94D0-83799D6A10D8}] => (Allow) D:\Program Files (x86)\GameforgeLive\gfl_client.exe No File
FirewallRules: [{23A2BA5C-FD24-428A-B6F3-52E865CF25F9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{20E146AA-49C3-4B78-9730-BBF698D3413A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{FA1E1E61-F463-47BF-B581-B9F871D719CB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{E6DBB1CE-769A-40C5-9A15-94532B2A2C69}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{14B027C6-C00C-4B37-8BC5-94C715A54937}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
FirewallRules: [TCP Query User{03C0A82F-C0ED-4584-ADB0-C34C58EC8434}C:\users\miroslav šušovica\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\miroslav šušovica\appdata\roaming\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{3B14303E-2E34-4419-A31A-3E5B45944CF9}C:\users\miroslav šušovica\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\miroslav šušovica\appdata\roaming\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [TCP Query User{2F076546-5745-4EC9-8B07-C26955685F26}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft, Inc.)
FirewallRules: [UDP Query User{E5D5182C-D4E3-4655-B820-1F2846BA537C}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft, Inc.)
FirewallRules: [TCP Query User{4FB75265-E2BB-4026-846C-DC74D13BFEE2}D:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) D:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [UDP Query User{B274288E-CBF8-43C5-A30F-434648DA0EEE}D:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) D:\program files (x86)\counter-strike 1.6\hl.exe No File
FirewallRules: [TCP Query User{123F325A-4D5A-42A2-B991-C6F90C65FF53}D:\assassins creed 3 cz\ac3sp.exe] => (Block) D:\assassins creed 3 cz\ac3sp.exe No File
FirewallRules: [UDP Query User{CCC38C9A-24E4-4D12-AF82-B3C38E65174D}D:\assassins creed 3 cz\ac3sp.exe] => (Block) D:\assassins creed 3 cz\ac3sp.exe No File
FirewallRules: [{78A24489-F435-4577-991C-CADF7975AFAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{65A58221-C00E-41A2-BE7B-19A46F203453}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{D44CC389-3CFB-453C-8FF3-D760B32A5307}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{93972547-900D-4D22-88E2-E6AD51034ADA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{6210C064-1A53-4903-A2F7-50D649230A22}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{62AFC5E9-C733-42A1-9416-35E55007F5A9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{B6790853-C719-4079-80D3-428BC4DB1AD5}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc.)
FirewallRules: [{4AF001A8-38D9-4A9D-9034-5AA99E518A1C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
FirewallRules: [{4A350E3F-235D-4642-9F18-66FD2AD2F3CB}] => (Allow) LPort=2869
FirewallRules: [{D9FD88C2-2916-4085-BD5F-FD698D74EE38}] => (Allow) LPort=1900
FirewallRules: [{9EDC0BF6-696A-4DA1-92B3-5F143A6CAC51}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{ECD01926-B95F-49E0-A131-552DF090AECD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{FA209D48-3FAF-4069-B9CF-D02CBABB267E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{78296C13-07E7-4CFD-90BD-F5876E0DC2FF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [TCP Query User{B4867612-143E-4144-B60B-59DC6B84B5C5}C:\users\miroslav šušovica\appdata\local\gpmdp_3\app-4.6.1\google play music desktop player.exe] => (Allow) C:\users\miroslav šušovica\appdata\local\gpmdp_3\app-4.6.1\google play music desktop player.exe (Samuel Attard)
FirewallRules: [UDP Query User{59DE5D36-460B-40D1-8EBE-C80CE63C3D3D}C:\users\miroslav šušovica\appdata\local\gpmdp_3\app-4.6.1\google play music desktop player.exe] => (Allow) C:\users\miroslav šušovica\appdata\local\gpmdp_3\app-4.6.1\google play music desktop player.exe (Samuel Attard)
FirewallRules: [TCP Query User{AF2191A5-8F45-43E9-A756-E04412F17335}C:\program files (x86)\lenovo moto smart assistant\lenovo moto smart assistant.exe] => (Allow) C:\program files (x86)\lenovo moto smart assistant\lenovo moto smart assistant.exe No File
FirewallRules: [UDP Query User{D39B7AD8-26F3-4C02-80C6-CC3D17AD0314}C:\program files (x86)\lenovo moto smart assistant\lenovo moto smart assistant.exe] => (Allow) C:\program files (x86)\lenovo moto smart assistant\lenovo moto smart assistant.exe No File
FirewallRules: [TCP Query User{710CA5B2-1A25-42B5-BF4A-E8FBEF00D5CD}C:\program files (x86)\magicplus\magicplus.exe] => (Allow) C:\program files (x86)\magicplus\magicplus.exe No File
FirewallRules: [UDP Query User{76F4C08A-0B2C-4775-B9EB-E52B6FB2A309}C:\program files (x86)\magicplus\magicplus.exe] => (Allow) C:\program files (x86)\magicplus\magicplus.exe No File
FirewallRules: [{6A32FCFC-0BB7-42C5-95BE-17541BFA75C6}] => (Allow) C:\Users\Miroslav Šušovica\Downloads\bin\BlackDesert32.exe No File
FirewallRules: [{DE7DD4A5-BF62-41EC-9338-A9408825A312}] => (Allow) C:\Users\Miroslav Šušovica\Downloads\bin64\BlackDesert64.exe No File
FirewallRules: [{01051A6A-68BA-406E-A35E-9470207CF1D7}] => (Allow) C:\Users\Miroslav Šušovica\Downloads\BlackDesert_Launcher.exe No File
FirewallRules: [{2B807704-BE9F-4EBF-9924-D53B7A37915E}] => (Allow) C:\Users\Miroslav Šušovica\Downloads\BlackDesert_Downloader.exe No File
FirewallRules: [TCP Query User{CB204E41-2CA0-4B16-831F-DA5926757020}D:\program files (x86)\counter-strike global offensive\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\counter-strike global offensive\steam\steamapps\common\counter-strike global offensive\csgo.exe No File
FirewallRules: [UDP Query User{46A3A4F9-73A4-4954-847D-FD6B1195A3E9}D:\program files (x86)\counter-strike global offensive\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\counter-strike global offensive\steam\steamapps\common\counter-strike global offensive\csgo.exe No File
FirewallRules: [TCP Query User{683D2F88-EC8D-4717-BA8D-1C235B165051}C:\users\miroslav šušovica\appdata\local\temp\rar$ex46.824\rmp.exe] => (Allow) C:\users\miroslav šušovica\appdata\local\temp\rar$ex46.824\rmp.exe No File
FirewallRules: [UDP Query User{74DDB53D-8E1B-4130-BCBA-AF147562D04D}C:\users\miroslav šušovica\appdata\local\temp\rar$ex46.824\rmp.exe] => (Allow) C:\users\miroslav šušovica\appdata\local\temp\rar$ex46.824\rmp.exe No File
FirewallRules: [TCP Query User{D8D86618-D47E-422A-97E1-806DEE3DDD57}D:\program files (x86)\valve\hl.exe] => (Allow) D:\program files (x86)\valve\hl.exe (Valve)
FirewallRules: [UDP Query User{B98488C8-D336-4BFA-878D-4F4B15D0E132}D:\program files (x86)\valve\hl.exe] => (Allow) D:\program files (x86)\valve\hl.exe (Valve)
FirewallRules: [{8A783D5C-F1EE-4798-9F5B-03DC79487A1A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{94DDDFDB-E811-4FA2-829E-2E3356C9D532}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Corporation)
FirewallRules: [{70291712-38B1-45CC-94B5-0F129AB36E70}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Corporation)
FirewallRules: [{5F3105B1-5ACB-4E11-9CD9-81E19015766D}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Corporation)
FirewallRules: [{4F384A7A-079E-4583-BE0C-611B856FCDAA}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/08/2019 04:08:53 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-5C7J0K94)
Description: httphttp-2147467263

Error: (01/03/2019 06:12:19 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-5C7J0K94)
Description: httphttp-2147467263

Error: (12/20/2018 03:56:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: update-client.exe, verzia: 0.0.0.0, časová značka: 0x5bbbf659
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000003b94c2
Identifikácia chybujúceho procesu: 0x4660
Čas spustenia chybujúcej aplikácie: 0x01d498742c9bd51a
Cesta chybujúcej aplikácie: C:\Users\Miroslav Šušovica\AppData\Roaming\System\update-client.exe
Cesta chybujúceho modulu: unknown
Identifikácia hlásenia: 533f50e3-bd33-4a6e-86ec-00132ba469b5
Celé meno chybujúceho balíka: 
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (12/19/2018 11:27:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: update-client.exe, verzia: 0.0.0.0, časová značka: 0x5bbbf659
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000003b94c2
Identifikácia chybujúceho procesu: 0x10c8
Čas spustenia chybujúcej aplikácie: 0x01d497856efeac3b
Cesta chybujúcej aplikácie: C:\Users\Miroslav Šušovica\AppData\Roaming\System\update-client.exe
Cesta chybujúceho modulu: unknown
Identifikácia hlásenia: 6bb77146-9958-42f5-becd-e80d5d0fcef0
Celé meno chybujúceho balíka: 
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (12/18/2018 06:08:30 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-5C7J0K94)
Description: httphttp-2147467263

Error: (12/18/2018 06:07:37 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-5C7J0K94)
Description: httphttp-2147467263

Error: (12/18/2018 06:07:27 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-5C7J0K94)
Description: httphttp-2147467263

Error: (12/18/2018 06:03:27 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-5C7J0K94)
Description: httphttp-2147467263


System errors:
=============
Error: (01/08/2019 04:06:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/08/2019 04:03:38 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-5C7J0K94)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user LAPTOP-5C7J0K94\Miroslav Šušovica SID (S-1-5-21-4254272432-1314880526-15813765-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/08/2019 04:03:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/07/2019 07:18:14 PM) (Source: TPM) (EventID: 12) (User: )
Description: The device driver for the Trusted Platform Module (TPM) encountered an error in the TPM hardware, which might prevent some applications using TPM services from operating correctly.  Please restart your computer to reset the TPM hardware.  For further assistance on this hardware issue, please contact the computer manufacturer for more information.

Error: (01/07/2019 03:55:01 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/07/2019 03:51:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscBrokerManager
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/07/2019 03:51:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscBrokerManager
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/07/2019 03:51:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscDataProtection
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


Windows Defender:
===================================
Date: 2019-01-08 16:03:55.363
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Fuery.B!cl&threatid=2147718514&enterprise=0
Name: Trojan:Win32/Fuery.B!cl
ID: 2147718514
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Miroslav Šušovica\AppData\Roaming\System\V2.dat
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\SysWOW64\msiexec.exe
Signature Version: AV: 1.283.2404.0, AS: 1.283.2404.0, NIS: 1.283.2404.0
Engine Version: AM: 1.1.15500.2, NIS: 1.1.15500.2

Date: 2019-01-07 15:50:28.986
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Fuery.B!cl&threatid=2147718514&enterprise=0
Name: Trojan:Win32/Fuery.B!cl
ID: 2147718514
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Miroslav Šušovica\AppData\Roaming\System\V2.dat
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\SysWOW64\msiexec.exe
Signature Version: AV: 1.283.2404.0, AS: 1.283.2404.0, NIS: 1.283.2404.0
Engine Version: AM: 1.1.15500.2, NIS: 1.1.15500.2

Date: 2019-01-07 15:45:35.238
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Fuery.B!cl&threatid=2147718514&enterprise=0
Name: Trojan:Win32/Fuery.B!cl
ID: 2147718514
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Miroslav Šušovica\AppData\Roaming\System\V2.dat
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\SysWOW64\msiexec.exe
Signature Version: AV: 1.283.2355.0, AS: 1.283.2355.0, NIS: 1.283.2355.0
Engine Version: AM: 1.1.15500.2, NIS: 1.1.15500.2

Date: 2019-01-06 10:16:30.328
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Cloxer.D!cl&threatid=2147726003&enterprise=0
Name: Trojan:Win32/Cloxer.D!cl
ID: 2147726003
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Miroslav Šušovica\AppData\Roaming\System\V2.dat
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\SysWOW64\msiexec.exe
Signature Version: AV: 1.283.2225.0, AS: 1.283.2225.0, NIS: 1.283.2225.0
Engine Version: AM: 1.1.15500.2, NIS: 1.1.15500.2

Date: 2019-01-05 10:14:07.986
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Cloxer.D!cl&threatid=2147726003&enterprise=0
Name: Trojan:Win32/Cloxer.D!cl
ID: 2147726003
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Miroslav Šušovica\AppData\Roaming\System\V2.dat
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\SysWOW64\msiexec.exe
Signature Version: AV: 1.283.2225.0, AS: 1.283.2225.0, NIS: 1.283.2225.0
Engine Version: AM: 1.1.15500.2, NIS: 1.1.15500.2

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Percentage of memory in use: 58%
Total physical RAM: 8051.78 MB
Available physical RAM: 3305.64 MB
Total Virtual: 9331.78 MB
Available Virtual: 4151.84 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:96.09 GB) (Free:37.33 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Nový zväzok) (Fixed) (Total:931.51 GB) (Free:817.39 GB) NTFS

\\?\Volume{5e77bffe-7a1e-434a-96a5-c165e3c50da3}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.52 GB) NTFS
\\?\Volume{69949436-f9ba-4b89-8044-996284b20ed8}\ (LENOVO_PART) (Fixed) (Total:20.93 GB) (Free:4.05 GB) NTFS
\\?\Volume{5bd1ce27-935d-45c4-9233-1885e17c6c7e}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: AC8902A4)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: CD8893E8)

Partition: GPT.

==================== End of Addition.txt ============================