Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.03.2019
Ran by Administrator (13-03-2019 11:39:16)
Running from C:\Users\Administrator\Desktop
Windows 10 Pro Version 1809 17763.316 (X64) (2019-02-22 09:55:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1228164671-2776458474-1448581281-500 - Administrator - Enabled) => C:\Users\Administrator
ASPNET (S-1-5-21-1228164671-2776458474-1448581281-1002 - Limited - Enabled)
DefaultAccount (S-1-5-21-1228164671-2776458474-1448581281-503 - Limited - Disabled)
Guest (S-1-5-21-1228164671-2776458474-1448581281-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1228164671-2776458474-1448581281-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Enabled) {A60587C6-B28F-3D1C-0869-12ED515CC3C3}
FW: ESET Firewall (Disabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: GENER - Advanced Micro Devices, Inc.)
Atom (HKU\S-1-5-21-1228164671-2776458474-1448581281-500\...\atom) (Version: 1.32.2 - GitHub Inc.)
Canon MP Navigator EX 2.0 (HKLM-x32\...\MP Navigator EX 2.0) (Version:  - )
CanoScan LiDE 100 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2413) (Version:  - )
commsbepx64 (HKLM-x32\...\{4DE6220A-E1A4-4AFF-A554-97DDBCFC3341}) (Version: 1.00.0000 - Motorola) Hidden
commsbepx64 (HKLM-x32\...\InstallShield_{4DE6220A-E1A4-4AFF-A554-97DDBCFC3341}) (Version: 1.00.0000 - Motorola)
COMODO Firewall (HKLM\...\{785D9670-B355-487D-8B6A-6B28490AF489}) (Version: 11.0.0.6744 - COMODO Security Solutions Inc.) Hidden
COMODO Firewall (HKLM\...\COMODO Internet Security) (Version: 11.0.0.6744 - COMODO Security Solutions Inc.)
Customer Programming Software V8.01.02.002.EM5 (HKLM-x32\...\{A2258807-8D03-4951-AF01-766A0DC1578B}) (Version: 8.01.02.002 - )
Digital USB Driver Software (HKLM\...\Digital USB Driver) (Version: V5.30.42.0 - )
DNE Update (HKLM\...\{FA46416D-1FCB-44A5-B01C-961C29881F1B}) (Version: 4.16.2.18640 - Deterministic Networks, Inc.)
Entry Level Radio Customer Programming Software (HKLM-x32\...\{0738CFDE-6141-4464-9E10-16D84D6582D8}) (Version: 01.58 - Motorola) Hidden
Entry Level Radio Customer Programming Software (HKLM-x32\...\InstallShield_{0738CFDE-6141-4464-9E10-16D84D6582D8}) (Version: 01.58 - Motorola)
ESET Endpoint Security (HKLM\...\{29BE8E8E-E90B-4E4E-92B7-D823A7AF0D95}) (Version: 7.0.2091.0 - ESET, spol. s r.o.)
ESET Management Agent (HKLM\...\{3F509AE4-E4F1-4418-B0C2-92766748DC02}) (Version: 7.0.577.0 - ESET, spol. s r.o.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.0.0.29935 - Foxit Software Inc.)
Git version 2.19.2 (HKLM\...\Git_is1) (Version: 2.19.2 - The Git Development Community)
HM800E Programming Software V2.4.04 (HKLM-x32\...\{8091C1FF-2613-44A7-908E-6CC9259D2725}) (Version: 2.04.04 - Shenzhen HYT Science & Technology Co., Ltd.)
HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 8.3.20.2067 - HP Inc.)
ChargeMaster3 (HKLM-x32\...\{72F7C4B8-DEFD-4438-87E7-50BD2FDF5FE1}) (Version: 3.04 - SkyRC)
Check Point VPN (HKLM-x32\...\{BF7AE0E3-391A-4C69-A6E7-A5D298C126AC}) (Version: 98.61.175 - Check Point Software Technologies Ltd.)
Inkscape 0.92.3 (HKLM-x32\...\Inkscape) (Version: 0.92.3 - Inkscape Project)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1228164671-2776458474-1448581281-500\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MOTOTRBO Customer Programming Software (HKLM-x32\...\{00C96031-A55C-45ED-B9DB-3E1F194AB801}) (Version: 15.0.754.0 - Motorola Solutions, Inc.)
MOTOTRBO Flashzap Driver (HKLM-x32\...\{4C6D6A7E-A04F-4D6F-891F-F66326C33A55}) (Version: 1.5.0 - Motorola Solutions)
MOTOTRBO Radio Driver (HKLM-x32\...\{14FA5F3A-9F26-4AF8-BC0D-F45A5370A5D8}) (Version: 7.0.0 - Motorola Solutions)
Opera beta 58.0.3135.59 (HKLM-x32\...\Opera 58.0.3135.59) (Version: 58.0.3135.59 - Opera Software)
Oracle VM VirtualBox 6.0.4 (HKLM\...\{79366295-CD6A-4467-9901-4A7DFCF90F40}) (Version: 6.0.4 - Oracle Corporation)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22314 - Microsoft Corporation)
Process Hacker 2.39 (r124) (HKLM\...\Process_Hacker2_is1) (Version: 2.39.0.124 - wj32)
Professional GP300/GM300 Series CPS (D03.02.01_EN) (HKLM-x32\...\Professional GP300/GM300_CPS (D03.02.01_EN)) (Version:  - )
Professional GP300/GM300 Series CPS (R03.11.16_EN) (HKLM-x32\...\{78CA8AC9-D3D7-4B33-B3A8-8E4C58DEFD8A}) (Version: R03.11.16_EN - )
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.2.2750 - Jan Fiala)
Python 3.7.1 (64-bit) (HKU\S-1-5-21-1228164671-2776458474-1448581281-500\...\{8a84877c-26dd-4b77-8117-80eaec80127c}) (Version: 3.7.1150.0 - Python Software Foundation)
Python 3.7.1 Add to Path (64-bit) (HKLM\...\{6846E653-89AC-47BC-8E11-FB9991EC90AA}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Core Interpreter (64-bit) (HKLM\...\{3CDB402E-5970-4DCB-8EE8-D50517AB55AE}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Development Libraries (64-bit) (HKLM\...\{61D00EE1-616D-4782-A8C5-EDD436BE9766}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Documentation (64-bit) (HKLM\...\{C66332A3-9916-4CA0-89B3-88E4F0789207}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Executables (64-bit) (HKLM\...\{C3B089F9-4BA6-45A6-91A2-C5938F8702F8}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 pip Bootstrap (64-bit) (HKLM\...\{ED677B31-8BF6-49FA-9B99-A63CD45D316A}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Standard Library (64-bit) (HKLM\...\{7627B8B4-82DD-4BD2-B33B-465E41693F0D}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Tcl/Tk Support (64-bit) (HKLM\...\{00FB4D96-77D4-4043-950E-8FA816BCAD7D}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Test Suite (64-bit) (HKLM\...\{A1CFED46-5F31-4813-A494-681BBB2B6E23}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Utility Scripts (64-bit) (HKLM\...\{96DEF82E-CD26-4AB5-A7FB-81E1B6D1DE91}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{C3A1C6B1-9096-47A7-AB5C-09114002A996}) (Version: 3.7.6501.0 - Python Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7818 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Služba Xperia Companion (HKLM\...\{034C1685-55DC-4C0F-A802-970803148AE0}) (Version: 2.4.3.0 - Sony) Hidden
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.17.15.201710271158 - Sony Mobile Communications Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.63 - Synaptics Incorporated)
Thinstuff TSX Client 2.0.24.0 (HKLM\...\{5C3BCE70-FC35-46B9-8A22-CF6824C00BFF}) (Version: 2.0.24.0 - Thinstuff s.r.o)
Unreal Commander v3.57 (HKLM-x32\...\UnrealCommander_is1) (Version: 3.5.7.1401 - Max Diesel)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C99F4AFA-B32C-4063-865C-D7B5CC0A78FB}) (Version: 2.54.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Windows Driver Package - Motorola Corporation (CommSbep) CommSbep  (08/17/2011 5.1.0.0) (HKLM\...\DCB010440345929E947922BB7FD7BA6A056D744C) (Version: 08/17/2011 5.1.0.0 - Motorola Corporation)
Windows Driver Package - Motorola Solutions, Inc. (fudally) MotorolaUSBFlashZap  (12/16/2013 03.06.00.00) (HKLM\...\2D90B67314B69A2CF262EE94A03EDAA1172E8062) (Version: 12/16/2013 03.06.00.00 - Motorola Solutions, Inc.)
Windows Driver Package - Motorola Solutions, Inc. Net  (08/14/2012 7.0.0) (HKLM\...\2CDFB2AEF8A1FAE5F8797FE0E2B260D0D5A0F25D) (Version: 08/14/2012 7.0.0 - Motorola Solutions, Inc.)
WinMerge 2.14.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.14.0 - Thingamahoochie Software)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Xperia Companion (HKLM-x32\...\{C32507B2-D80A-45DD-8D31-31858292C91C}) (Version: 2.4.3.0 - Sony) Hidden
Xperia Companion (HKLM-x32\...\{f7c475f1-4d2f-48c3-b5d1-6ffc35a6828a}) (Version: 2.4.3.0 - Sony)
ZoneAlarm Security (HKLM-x32\...\{A51FEF33-C7A2-492E-840B-35A85D1F007E}) (Version: 15.1.504.17269 - Check Point Software Technologies Ltd.) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1228164671-2776458474-1448581281-500_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-1228164671-2776458474-1448581281-500_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-12-17] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-10-21] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-12-17] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-01-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2018-12-17] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-10-21] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1228164671-2776458474-1448581281-500: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D53544B-A58F-4210-8A21-8EB2E5CA35B0} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Comodo Security Solutions, Inc. -> COMODO)
Task: {1DFBF197-0C20-4EFB-8061-414FB4631E9F} - \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Logon -> No File <==== ATTENTION
Task: {33EF9584-C4AC-47F6-9CF3-3A01AD2C06DF} - \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\OnIdle -> No File <==== ATTENTION
Task: {3696C29C-913B-43B9-ACF3-054580591607} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {6AC5213F-DF18-446D-800D-9A01F3166606} - System32\Tasks\Opera scheduled Autoupdate 1516800245 => C:\Program Files\Opera beta\launcher.exe (Opera Software AS -> Opera Software)
Task: {6F7FB756-AF9E-478E-8795-1AEC34C2DC16} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
Task: {7D9FC245-DA99-4231-8268-15C03ECA8976} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {8128A145-2BFB-4D47-BE7D-33B3C00B9BCA} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_pepper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
"C:\Windows\System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202}" was unlocked. <==== ATTENTION
Task: {898DE1B3-C971-464A-A3BC-6ABD86C3A278} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\WINDOWS\system32\gpupdate.exe (Microsoft Windows -> Microsoft Corporation)
Task: {8D18C5CC-75B9-4515-86CA-FE2E3E311BEB} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (Comodo Security Solutions, Inc. -> COMODO)
Task: {978D740F-EC1D-4684-A6D8-CA98E653DAA2} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe (Comodo Security Solutions, Inc. -> COMODO)
Task: {A0FACF04-F41D-4CD5-8B76-EBF43B946EC0} - \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\OutOfIdle -> No File <==== ATTENTION
Task: {BFBAFEE1-E5B4-429C-BB36-80CA7698B681} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\WINDOWS\system32\gpupdate.exe (Microsoft Windows -> Microsoft Corporation)
Task: {CE15F5AC-A1AC-48A4-979C-A2C0A884B68E} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (Comodo Security Solutions, Inc. -> COMODO)
Task: {DA63D355-16D9-42BB-BE89-6D6C02A8162A} - \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\RunCampaignManager2 -> No File <==== ATTENTION
Task: {E6BD20F4-21D3-4E48-9F07-A9D7665F7078} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {E79230EE-BBF1-4E77-9565-DC40D1BA88C8} - \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Unlock -> No File <==== ATTENTION
Task: {E8AD6763-0E12-43AB-B2E9-31645E1431A9} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe (Comodo Security Solutions, Inc. -> COMODO)
Task: {E999A4D8-61A3-438E-AA03-DC91671FD79B} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe (Comodo Security Solutions, Inc. -> COMODO)
Task: {ED73438F-4633-46E3-831F-72ECCA6F8757} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe (Comodo Security Solutions, Inc. -> COMODO)
Task: {ED9B4941-85DE-4DC8-8D37-79F9E806A3FB} - \Microsoft\Windows\UNP\Campaigns\{91be532c-f9f1-406a-9858-43697c6f437a}\Time -> No File <==== ATTENTION
Task: {F0D607E5-341B-4025-AAE9-FB610753FFA4} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-12-12 12:11 - 2018-12-12 12:11 - 002191360 _____ (Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
2018-08-14 06:18 - 2013-02-02 14:41 - 000079360 _____ (hxxp://winmerge.org) [File not signed] C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll
2017-11-27 20:53 - 2014-11-02 18:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000359936 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 003700224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 005603840 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 076160000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 006321152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 003559424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000187904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 002822144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-01-23 18:36 - 2019-01-23 18:36 - 005812224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 001412608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-06-27 21:34 - 2018-06-27 21:34 - 002552832 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000502272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000328192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000059904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000053248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-06-27 21:34 - 2018-06-27 21:34 - 000137728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2018-01-02 05:07 - 2018-01-02 05:07 - 000299520 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\AMD\CNext\CCCSlim\MOM.exe
2018-01-02 05:07 - 2018-01-02 05:07 - 000300032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\AMD\CNext\CCCSlim\CCC.exe
2019-03-01 08:11 - 2019-03-01 08:11 - 000076800 _____ (DigitalPersona) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DPTraceTools\5bcca8906f1435958b27a6d6920d8b96\DPTraceTools.ni.dll
2019-03-01 08:12 - 2019-03-01 08:12 - 000175616 _____ (DigitalPersona, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DigitalPersfb926b4b#\7d0e0520b909cd794cd49ec26bec3a74\DigitalPersona.Toolkit.ni.dll
2019-03-01 08:12 - 2019-03-01 08:12 - 000814592 _____ (DigitalPersona, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DPMvvmPassw7d2838dd#\d7525811207c2327c29a8ff48a814072\DPMvvmPasswordManager.ni.dll
2019-03-01 08:12 - 2019-03-01 08:12 - 000688640 _____ (DigitalPersona, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DigitalPers925524c9#\41d926b16e6b0688f8496eb5bc758776\DigitalPersona.PasswordManager.ni.dll
2019-03-01 08:11 - 2019-03-01 08:11 - 000228352 _____ (DigitalPersona, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DPUsageTracking\cdf9c7c1d5c000d24cca2d708386a42b\DPUsageTracking.ni.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\Drivers\iaStorB.sys:com.dropbox.attributes [168]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\iaStorS.sys:com.dropbox.attributes [168]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\rccfg.sys:com.dropbox.attributes [168]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\rcraid.sys:com.dropbox.attributes [168]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 08:24 - 2015-10-30 08:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Git\cmd;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1228164671-2776458474-1448581281-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\Pictures\windows-10-image-best-hd-wallpaper.png
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "Check Point VPN"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C0DD21AD-6BED-41D2-BCB3-6F12989E6D93}] => (Allow) C:\Program Files\Opera beta\58.0.3135.59\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{BE7AFEBB-7ACD-481C-B3A9-46B857EDC14F}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe No File
FirewallRules: [{AFC78702-FC21-44EF-AA16-023150FC66AE}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe No File
FirewallRules: [{22FFD1A6-3307-47F6-81BB-7676ECED9770}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe No File
FirewallRules: [{1EF14A37-CDA4-4C7A-B975-54E5803D6405}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe No File
FirewallRules: [{06C2BB35-99F4-4C32-949C-63EB97DB69E8}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{3919EA7A-CC75-44DA-959F-4F07A4BB8714}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{C6DDB9F9-5C86-4058-97A0-8C761C34366D}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{3310EF88-0CBD-4853-9B93-94D3B3F48497}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{76F7B299-53B8-478B-84F3-BFF2592673CC}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe No File
FirewallRules: [{61D8BA50-7161-4B9A-8ED7-3D9C8A906E94}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe No File
FirewallRules: [{802FB463-8ECA-4F6F-9909-5993AE72A7AE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe No File
FirewallRules: [{DA7D818E-A12D-432A-B2C6-1192FD24EB5F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe No File
FirewallRules: [{26585051-F44F-43AF-9DE7-80E8D8141235}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{FA4DB3DE-411F-431D-8BD6-AE9C792F2483}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{3BBF87EA-D5CB-4C59-B32D-6A8AEE00CEA0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe No File
FirewallRules: [TCP Query User{F7A442E6-D67A-4575-802B-38B567DE1D9D}C:\program files\dell sonicwall\global vpn client\swgvc.exe] => (Allow) C:\program files\dell sonicwall\global vpn client\swgvc.exe No File
FirewallRules: [UDP Query User{F9B2921C-E347-4B89-B741-0FD57EC5BB73}C:\program files\dell sonicwall\global vpn client\swgvc.exe] => (Allow) C:\program files\dell sonicwall\global vpn client\swgvc.exe No File
FirewallRules: [{E46E3269-961F-4E7C-8712-C68047956B61}] => (Block) C:\program files\dell sonicwall\global vpn client\swgvc.exe No File
FirewallRules: [{266986B9-6CA1-4B61-AEBA-35E14F57FD33}] => (Block) C:\program files\dell sonicwall\global vpn client\swgvc.exe No File
FirewallRules: [{100D32BF-87AB-4E96-B264-65F37FFEBB6C}] => (Allow) C:\Program Files (x86)\Micos\SpravceClient\mcsspravce.exe (MiCoS SOFTWARE s.r.o. -> MiCoS Software s.r.o.)
FirewallRules: [{08395577-EF98-4D64-A2C8-05217A7EEF20}] => (Allow) C:\Program Files (x86)\Micos\SpravceClient\mcsspravce.exe (MiCoS SOFTWARE s.r.o. -> MiCoS Software s.r.o.)
FirewallRules: [{77E4333C-79A8-431E-BB5D-37F9905B79A0}] => (Allow) C:\Program Files (x86)\Micos\SpravceClient\mcsspravce.exe (MiCoS SOFTWARE s.r.o. -> MiCoS Software s.r.o.)
FirewallRules: [{55DF17E2-DB26-4E66-B161-FE9996FE9D92}] => (Allow) C:\Program Files (x86)\Micos\SpravceClient\mcsspravce.exe (MiCoS SOFTWARE s.r.o. -> MiCoS Software s.r.o.)
FirewallRules: [TCP Query User{82FF4A96-8A45-413E-AF69-D0AA3A631F50}C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe No File
FirewallRules: [UDP Query User{1DD88038-4D7A-47FF-BAC6-95E5890A8C3A}C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe No File
FirewallRules: [TCP Query User{EA89D5D9-F634-4C0F-BF11-7C4CA453EBB7}C:\program files (x86)\java\jre1.8.0_161\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_161\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{1056B490-D477-4AEA-A4C4-ABA21CC6556A}C:\program files (x86)\java\jre1.8.0_161\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_161\launch4j-tmp\frd.exe No File
FirewallRules: [{37C7D69D-FD6B-4EC6-9F5E-EF45E7B047EA}] => (Allow) LPort=3389
FirewallRules: [TCP Query User{D2C32872-878E-442F-865C-FFAFD9703781}C:\program files (x86)\java\jre1.8.0_171\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_171\bin\javaw.exe No File
FirewallRules: [UDP Query User{87DCA87B-FD43-49FA-A34C-05AEA7269671}C:\program files (x86)\java\jre1.8.0_171\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_171\bin\javaw.exe No File
FirewallRules: [{228654D0-8027-4DB1-BFE0-7D5744A14959}] => (Allow) C:\Program Files\Opera beta\58.0.3135.45\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{F24D2FC4-081F-4247-AF42-3B2D4B2B0FFF}] => (Allow) C:\Program Files (x86)\CheckPoint\Endpoint Connect\TrGUI.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
FirewallRules: [{2B0E60BC-47E9-4EC4-9D33-182F1CADA761}] => (Allow) C:\Program Files (x86)\CheckPoint\Endpoint Connect\TracSrvWrapper.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
FirewallRules: [{1F3E0F28-3DC1-44E8-A520-7B07DFFBC7B5}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)

==================== Restore Points =========================

27-02-2019 08:56:03 Windows Update
04-03-2019 08:17:48 Xperia Companion
11-03-2019 11:03:52 Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/13/2019 11:37:27 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (03/12/2019 01:29:35 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (03/12/2019 11:36:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RadeonSettings.exe, verze: 10.1.2.1748, časové razítko: 0x5c48fa83
Název chybujícího modulu: ntdll.dll, verze: 10.0.17763.292, časové razítko: 0x7ded7809
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000faf49
ID chybujícího procesu: 0x910
Čas spuštění chybující aplikace: 0x01d4d8963b7b8eba
Cesta k chybující aplikaci: C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 6841ee87-8f22-40f0-b5af-6c8791632fe9
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/11/2019 11:56:02 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (03/11/2019 10:57:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program PDF_reader.exe verze 4.3.4.15595 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1bb8

Čas spuštění: 01d4d7f0889bce6e

Čas ukončení: 0

Cesta k aplikaci: F:\Adobe PDF\PDF_reader.exe

ID hlášení: 5b5d2772-752b-4486-aa32-ec3dfb49457f

Úplný název balíčku s chybou: 

ID aplikace relativní podle balíčku s chybou: 

Typ zablokování: Unknown

Error: (03/11/2019 10:36:17 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (03/11/2019 10:35:39 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (03/11/2019 10:34:27 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.


System errors:
=============
Error: (03/13/2019 11:24:47 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: NT AUTHORITY)
Description: Zpracování zásad skupiny selhalo v důsledku toho, že se nebylo v síti možné připojit k řadiči domény. Může se jednat o přechodný stav. Po připojení počítače k řadiči domény a úspěšném zpracování zásad skupiny bude odeslána zpráva o úspěšném provedení těchto akcí. Pokud se tato zpráva nezobrazí během několika hodin, obraťte se na správce.

Error: (03/13/2019 10:58:10 AM) (Source: DCOM) (EventID: 10016) (User: NOVAK-NTB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli NOVAK-NTB\Administrator (SID: S-1-5-21-1228164671-2776458474-1448581281-500) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/13/2019 10:39:25 AM) (Source: DCOM) (EventID: 10016) (User: NOVAK-NTB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli NOVAK-NTB\Administrator (SID: S-1-5-21-1228164671-2776458474-1448581281-500) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/13/2019 10:36:09 AM) (Source: DCOM) (EventID: 10016) (User: NOVAK-NTB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli NOVAK-NTB\Administrator (SID: S-1-5-21-1228164671-2776458474-1448581281-500) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/13/2019 10:24:46 AM) (Source: DCOM) (EventID: 10016) (User: NOVAK-NTB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli NOVAK-NTB\Administrator (SID: S-1-5-21-1228164671-2776458474-1448581281-500) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/13/2019 10:02:50 AM) (Source: DCOM) (EventID: 10016) (User: NOVAK-NTB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 a APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 uživateli NOVAK-NTB\Administrator (SID: S-1-5-21-1228164671-2776458474-1448581281-500) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/13/2019 09:39:31 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.

Error: (03/13/2019 09:29:47 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: NT AUTHORITY)
Description: Zpracování zásad skupiny selhalo v důsledku toho, že se nebylo v síti možné připojit k řadiči domény. Může se jednat o přechodný stav. Po připojení počítače k řadiči domény a úspěšném zpracování zásad skupiny bude odeslána zpráva o úspěšném provedení těchto akcí. Pokud se tato zpráva nezobrazí během několika hodin, obraťte se na správce.


CodeIntegrity:
===================================

Date: 2019-03-13 11:36:09.542
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-13 10:56:20.610
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-13 10:38:53.979
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-13 10:32:13.374
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-13 10:26:35.675
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-13 10:25:50.141
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-13 10:25:50.056
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-13 10:12:35.527
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz
Percentage of memory in use: 49%
Total physical RAM: 7587.11 MB
Available physical RAM: 3828.93 MB
Total Virtual: 9152.13 MB
Available Virtual: 4980.54 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:219.55 GB) (Free:140.87 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:15.92 GB) (Free:1.75 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.88 GB) FAT32

\\?\Volume{292260bf-0000-0000-0000-100000000000}\ (SYSTEM) (Fixed) (Total:1 GB) (Free:0.59 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 292260BF)
Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=219.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15.9 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0B)

==================== End of Addition.txt ============================