Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-07-2019
Ran by tMt-user (02-08-2019 12:36:33)
Running from C:\Users\tMt-user\Desktop
Windows 10 Pro Version 1903 18362.239 (X64) (2019-07-24 23:43:08)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2866573575-4116515599-1814928747-500 - Administrator - Disabled)
android (S-1-5-21-2866573575-4116515599-1814928747-1005 - Limited - Enabled)
DefaultAccount (S-1-5-21-2866573575-4116515599-1814928747-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2866573575-4116515599-1814928747-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-2866573575-4116515599-1814928747-501 - Limited - Disabled)
tMt (S-1-5-21-2866573575-4116515599-1814928747-1002 - Administrator - Enabled) => C:\Users\tMt
tMt-steam (S-1-5-21-2866573575-4116515599-1814928747-1006 - Administrator - Enabled) => C:\Users\tMt-steam
tMt-user (S-1-5-21-2866573575-4116515599-1814928747-1003 - Administrator - Enabled) => C:\Users\tMt-user
WDAGUtilityAccount (S-1-5-21-2866573575-4116515599-1814928747-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: COMODO Firewall (Disabled) {A60587C6-B28F-3D1C-0869-12ED515CC3C3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2064: Read Only Memories (HKLM-x32\...\1444027604_is1) (Version: 64.1.1 - GOG.com)
4K Textures DLC (HKLM-x32\...\1815334487_is1) (Version: Patch 1 Hotfix 1 v2 - GOG.com)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
A Way Out (HKLM-x32\...\A Way Out_is1) (Version:  - )
Adobe Acrobat 2017 (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0E1108756300}) (Version: 17.011.30143 - Adobe Systems Incorporated)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
ATLAS.ti 8.3 (HKLM-x32\...\{96211016-6d7b-43e7-836f-b0ff1b0bd7ae}) (Version: 8.3.20 - Scientific Software Development GmbH)
ATLAS.ti 8.3 (HKLM-x32\...\{9D39610A-6BB5-4591-8886-C857BFD88C74}) (Version: 8.3.20 - Scientific Software Development GmbH) Hidden
AutoHotkey 1.1.27.00 (HKLM\...\AutoHotkey) (Version: 1.1.27.00 - Lexikos)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.6.2383 - AVAST Software)
Backblaze (HKLM-x32\...\Backblaze) (Version:  - Backblaze, Inc)
Banner Saga 3 (HKLM-x32\...\1599390867_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Deluxe Edition Items (HKLM-x32\...\1954833607_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Kivi (HKLM-x32\...\1954301570_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Legendary Edition Content (HKLM-x32\...\1986198971_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Petrie Clan Ring (HKLM-x32\...\1219025267_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Sculptor's Tools (HKLM-x32\...\1520184657_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Shadow Walker (HKLM-x32\...\1936947648_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Shield Cleaver (HKLM-x32\...\2016659504_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Soundtrack Bonus (HKLM-x32\...\1626928857_is1) (Version: 2.57.57 - GOG.com)
Banner Saga 3: Survival Mode (HKLM-x32\...\1399959690_is1) (Version: 2.57.57 - GOG.com)
Beholder - Blissful Sleep (HKLM-x32\...\1106111796_is1) (Version: 1.5.0.10020 - GOG.com)
Beholder (HKLM-x32\...\2146639343_is1) (Version: 1.5.0.10020 - GOG.com)
BIAS AMP 2 Pack (64bit) (HKLM\...\{F31B6074-470B-43F4-B023-2FDB3CE03D4B}) (Version: 2.2.8.1409 - PositiveGrid)
calibre (HKLM-x32\...\{7EA1BF8A-65C7-4780-8F2E-3612F22FE8AA}) (Version: 3.14.0 - Kovid Goyal)
Call of Cthulhu (HKLM-x32\...\Call of Cthulhu_is1) (Version:  - )
Canon P-150 Driver (HKLM-x32\...\{8265A0B4-D9AF-4603-94B1-51452E4F9611}) (Version: 1.0.10907.27001d - Canon Electronics Inc.)
Citace PRO (HKLM-x32\...\{4919AF1F-25A4-418B-A59F-1B30C12113A3}) (Version: 3.3.0 - Citace.com)
Classic Menu for Office v9.25 (HKLM\...\{9A7CEBDF-37E2-4B63-A384-2A9FD5CE0A80}_is1) (Version: 9.25 - Addintools)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
COMODO Firewall (HKLM\...\{A1E718A7-BB83-41B8-BA96-BC219C322B8E}) (Version: 12.0.0.6818 - COMODO Security Solutions Inc.) Hidden
COMODO Firewall (HKLM\...\COMODO Internet Security) (Version: 12.0.0.6818 - COMODO Security Solutions Inc.)
Dead in Vinland (HKLM-x32\...\1990781940_is1) (Version: 1.0 - GOG.com)
Dropbox (HKLM-x32\...\Dropbox) (Version: 79.3.121 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
Duplicate Cleaner Free 4.1.0 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 4.1.0 - DigitalVolcano Software Ltd) <==== ATTENTION
EPIM ArchiverDR (HKLM-x32\...\EPIM ArchiverDR) (Version: 7.5 - )
ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B846CD8304}) (Version: 7.0.0.7123 - ExpressVPN) Hidden
ExpressVPN (HKLM-x32\...\{fe476bee-5ff9-4c88-a27c-4da4fdab099b}) (Version: 7.0.0.7123 - ExpressVPN)
f.lux (HKU\S-1-5-21-2866573575-4116515599-1814928747-1003\...\Flux) (Version:  - f.lux Software LLC)
Far Cry: Primal (HKLM-x32\...\Far Cry: Primal_is1) (Version:  - )
FlashFolder (HKLM\...\{92BF7CAE-D925-4868-8875-A154BE3CB26F}) (Version: 1.11.0.0 - zett42)
Font Xplorer 1.2.2  (HKLM-x32\...\Font Xplorer) (Version:  - )
FontForge verze 31-07-2017 (HKLM-x32\...\{56748B9C-19AE-4689-B8C5-5A45AE0A993A}_is1) (Version: 31-07-2017 - FontForgeBuilds)
Football, Tactics & Glory (HKLM\...\SKIDROW - Football, Tactics & Glory) (Version:  - SKIDROW)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Gameplay Time Tracker version 2.0.0 (HKLM-x32\...\Gameplay Time Tracker_is1) (Version: 2.0.0 - mik61)
Gameplay Time Tracker version 3.1 (HKU\S-1-5-21-2866573575-4116515599-1814928747-1003\...\Gameplay Time Tracker_is1) (Version: 3.1 - mik61)
GameSave Manager v3 (HKLM-x32\...\GameSaveManager_v3) (Version: 3.1.455.0 - InsaneMatt)
GCstar 1.6.1 (HKLM-x32\...\GCstar) (Version: 1.6.1 - Tian)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.142 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HandBrake 1.1.2 (HKLM-x32\...\HandBrake) (Version: 1.1.2 - )
IconGroups (HKLM-x32\...\IconGroups) (Version:  - )
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.6.472587.185 - Comodo)
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
LAV Filters 0.70.2 (HKLM-x32\...\lavfilters_is1) (Version: 0.70.2 - Hendrik Leppkes)
LockHunter 3.2, 32/64 bit (HKLM\...\LockHunter_is1) (Version:  - Crystal Rich Ltd)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2866573575-4116515599-1814928747-1003\...\OneDriveSetup.exe) (Version: 19.103.0527.0003 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.2.2 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
Mozilla Firefox 54.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 54.0.1 (x64 cs)) (Version: 54.0.1 - Mozilla)
Mozilla Firefox 68.0.1 (x64 cs) (HKU\S-1-5-21-2866573575-4116515599-1814928747-1003\...\Mozilla Firefox 68.0.1 (x64 cs)) (Version: 68.0.1 - Mozilla)
Mutant Year Zero - Road To Eden (HKLM-x32\...\{4DF4741F-8465-4AA8-9ABA-4B081F05FCAA}_is1) (Version:  - The Bearded Ladies)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM-x32\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM-x32\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.2.8 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
Observer (HKLM-x32\...\Observer_is1) (Version:  - )
Old Calculator for Windows 10 (HKLM-x32\...\OldCalcForWin10) (Version: 1.1 - hxxp://winaero.com)
Omen Exitio: Plague (HKLM\...\DARKSiDERS - Omen Exitio: Plague) (Version:  - DARKSiDERS)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
paint.net (HKLM\...\{6AA6EA9D-F627-45CF-BBBE-6C6223D45A9C}) (Version: 4.2 - dotPDN LLC)
Papers, Please (HKLM-x32\...\1207659209_is1) (Version: 2.5.0.11 - GOG.com)
Parsec (HKLM-x32\...\Parsec) (Version:  - Parsec Cloud Inc.)
PDF-XChange Lite V6 Home (HKLM\...\{2AEAF904-5D25-493B-82F7-D094F760A82A}) (Version: 6.0.322.5 - Tracker Software Products (Canada) Ltd.)
Photolemur (HKLM\...\{F449674A-B2AB-4C85-BF45-E67377DE07B8}) (Version: 2.3.1.1931 - Photolemur) Hidden
Photolemur (HKLM-x32\...\{ff92c9da-ce28-49c3-8f74-032f843e6f00}) (Version: 2.3.1.1931 - Photolemur)
PhotoPad Image Editor (HKLM-x32\...\PhotoPad) (Version: 3.21 - NCH Software)
PhotoSpills4 (HKLM-x32\...\ST6UNST #1) (Version:  - )
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
QDA Miner Lite 2.0 (HKLM-x32\...\QDAMiner Lite_is1) (Version:  - Provalis Research)
Race for the Galaxy version 0.9.4 (HKLM-x32\...\{C067C316-4036-4E97-B013-21DCBE649F81}_is1) (Version: 0.9.4 - Keldon Jones)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.31.828.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7836 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
Sandboxie 5.30 (64-bit) (HKLM\...\Sandboxie) (Version: 5.30 - Sandboxie Holdings, LLC)
Scribus 1.5.3 (64bit) (HKLM\...\Scribus 1.5.3) (Version: 1.5.3 - The Scribus Team)
Send To Toys v2.71 (HKLM\...\Send To Toys_is1) (Version:  - Gabriele Ponti)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
Sigil 0.9.9 (HKLM\...\Sigil_is1) (Version:  - Sigil-Ebook)
Skype verze 8.43 (HKLM-x32\...\Skype_is1) (Version: 8.43 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteamWorld Quest: Hand of Gilgamech (HKLM-x32\...\1941294775_is1) (Version: 1.7 - GOG.com)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.4.2669 - TeamViewer)
The Age of Decadence (HKLM-x32\...\1440152251_is1) (Version: 1.6.0.117 - GOG.com)
The Darkside Detective (HKLM-x32\...\1244373161_is1) (Version: gog-6 Update 4 - GOG.com)
The Infectious Madness of Doctor Dekker (HKLM\...\SKIDROW - The Infectious Madness of Doctor Dekker) (Version:  - SKIDROW)
Thronebreaker (HKLM-x32\...\1297352383_is1) (Version: 1.0.0 - GOG.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
Types (HKLM\...\Types) (Version: 2.6.5 - Evgeny Strunnikov)
Unforeseen Incidents (HKLM-x32\...\1378946365_is1) (Version: 1.0.9.1 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 0.17.7 - Black Tree Gaming Ltd.)
WD Desktop App 2.1.0.245 (HKLM-x32\...\{d303f1fe-6729-4693-b2e1-51d13b450de5}) (Version: 2.1.0.245 - Western Digital Corporation) Hidden
WD Desktop App 2.1.0.245 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.245 - Western Digital Corporation) Hidden
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 3.3.34 - Western Digital Technologies, Inc.)
WD Drive Manager (x64) (HKLM\...\{94794BBD-1FB4-428B-8F2D-E368BEF2C237}) (Version: 2.116 - Western Digital)
WD Drive Utilities (HKLM-x32\...\{C24328D2-3D94-4281-B174-3AD6F92012F7}) (Version: 2.0.0.63 - Western Digital Technologies, Inc.) Hidden
WD Drive Utilities (HKLM-x32\...\{d4b2783c-7832-4902-bca3-bbfccdda2fad}) (Version: 2.0.0.63 - Western Digital Technologies, Inc.)
WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden
WhatsApp (HKU\S-1-5-21-2866573575-4116515599-1814928747-1003\...\WhatsApp) (Version: 0.3.3330 - WhatsApp)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
Wolfenstein - The New Order (HKLM-x32\...\Wolfenstein - The New Order_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
YTD (pepak) (HKLM-x32\...\YTD_Pepak) (Version:  - )
Zotero (HKLM-x32\...\Zotero 5.0.23 (x86 en-US)) (Version: 5.0.23 - Corporation for Digital Scholarship)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-05-28] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_5.8.4.0_x86__kgqvnymyfvs32 [2019-07-20] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.143.600.0_x86__kgqvnymyfvs32 [2019-07-11] (king.com)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt [2019-03-29] (Facebook Inc)
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-30] (Keeper Security Inc)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.2.0.9_x86__h6adky7gbf63m [2019-07-31] (Gameloft.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2019-07-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2019-06-15] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.12.28.0_x64__8wekyb3d8bbwe [2019-07-11] (Microsoft Studios)
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe [2019-07-11] (Microsoft Corporation) [MS Ad]
Royal Revolt 2 -> C:\Program Files\WindowsApps\flaregamesGmbH.RoyalRevolt2_5.1.0.0_x86__g0q0z3kw54rap [2019-07-11] (flaregames GmbH)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2866573575-4116515599-1814928747-1003_Classes\CLSID\{04271989-C4D2-47E9-A580-1A231B8D5E26} -> [OneDrive - Fakulta humanitních studií] => I:\ONE DRIVE DATA\OneDrive - Fakulta humanitních studií [2018-05-12 09:42]
CustomCLSID: HKU\S-1-5-21-2866573575-4116515599-1814928747-1003_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => E:\Dropbox [2018-05-12 21:08]
SSODL: WDFSMountNotificator-wdfsconnect2017 - {EF827576-5FD7-464B-8FAE-F897AC11289E} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {EF827576-5FD7-464B-8FAE-F897AC11289E} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects: Virtual Storage Mount Notification -> {EF827576-5FD7-464B-8FAE-F897AC11289E} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {EF827576-5FD7-464B-8FAE-F897AC11289E} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellIconOverlayIdentifiers: [       WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:/Program Files/WD Desktop App/kda.DLL [2019-05-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [       WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:/Program Files/WD Desktop App/kda.DLL [2019-05-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [       WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:/Program Files/WD Desktop App/kda.DLL [2019-05-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [       WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:/Program Files/WD Desktop App/kda.DLL [2019-05-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [       WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:/Program Files/WD Desktop App/kda.DLL [2019-05-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [       WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:/Program Files/WD Desktop App/kda.DLL [2019-05-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast\ashShell.dll [2019-07-20] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Apps\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Apps\Adobe Acrobat Pro 2017\Acrobat Elements\ContextMenuShim64.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast\ashShell.dll [2019-07-20] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Apps\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd -> Crystal Rich Ltd)
ContextMenuHandlers1: [WDDesktopContextMenu] -> {4961b028-350a-3bb9-9d6c-079dc724e5f0} => C:/Program Files/WD Desktop App/kda.DLL [2019-05-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Apps\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers2: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Apps\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd -> Crystal Rich Ltd)
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Apps\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast\ashShell.dll [2019-07-20] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Apps\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Apps\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd -> Crystal Rich Ltd)
ContextMenuHandlers4: [WDDesktopContextMenu] -> {4961b028-350a-3bb9-9d6c-079dc724e5f0} => C:/Program Files/WD Desktop App/kda.DLL [2019-05-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-07-17] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-07-17] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Apps\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Apps\Adobe Acrobat Pro 2017\Acrobat Elements\ContextMenuShim64.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast\ashShell.dll [2019-07-20] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Apps\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft)
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Apps\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\tMt-user\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm
Shortcut: C:\Users\tMt-user\AppData\Local\IconGroups\groups\files\GCstar.lnk -> C:\Apps\GCstar\bin\gcstar.bat ()

==================== Loaded Modules (Whitelisted) ==============

2017-04-24 13:40 - 2017-04-24 13:40 - 000010240 _____ () [File not signed] C:\Apps\Adobe Acrobat Pro 2017\Acrobat\locale\cs_cz\acrotray.cze
2017-11-16 00:37 - 2015-05-23 15:53 - 002281984 _____ () [File not signed] C:\Apps\HTC\Clock.exe
2017-07-12 17:24 - 2016-09-19 12:09 - 000813056 _____ () [File not signed] C:\Apps\Networx\sqlite.dll
2018-01-10 15:23 - 2016-11-06 18:15 - 000494592 _____ () [File not signed] C:\Apps\OpenHardwareMonitor\OpenHardwareMonitor.exe
2017-08-22 14:44 - 2011-10-30 15:02 - 000038912 _____ () [File not signed] C:\Apps\RBTray\RBHook.dll
2017-08-22 14:44 - 2011-10-30 15:02 - 000045568 _____ () [File not signed] C:\Apps\RBTray\RBTray.exe
2014-12-20 20:26 - 2014-12-20 20:26 - 003614720 _____ () [File not signed] C:\Apps\VeBest Icon Groups\x64\IconGroups.exe
2014-12-20 20:25 - 2014-12-20 20:25 - 000245760 _____ () [File not signed] C:\Apps\VeBest Icon Groups\x64\IconGroupsHook.dll
2019-03-14 16:05 - 2019-03-14 16:05 - 000303104 _____ () [File not signed] C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.SplitTunnel.dll
2019-07-11 18:36 - 2019-07-11 18:36 - 001987072 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll
2019-07-11 18:36 - 2019-07-11 18:36 - 000117248 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libegl.dll
2019-07-11 18:36 - 2019-07-11 18:36 - 002250240 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libglesv2.dll
2018-11-20 15:32 - 2018-11-20 15:32 - 002637985 _____ () [File not signed] C:\Program Files\WD Desktop App\libfusewdfs.dll
2017-04-24 13:40 - 2017-04-24 13:40 - 000013312 _____ (Adobe Systems Inc.) [File not signed] C:\Apps\Adobe Acrobat Pro 2017\Acrobat\locale\cs_cz\Acrobat Elements\ContextMenuShim64.cze
2017-07-12 16:44 - 2015-12-28 21:20 - 004766208 _____ (Alexandr Irza) [File not signed] C:\Apps\Volume2\Volume2.exe
2019-01-29 16:05 - 2009-12-16 19:01 - 000181760 _____ (Canon Electronics) [File not signed] C:\Windows\System32\P150SVC.dll
2019-01-14 10:31 - 2012-11-08 21:17 - 001717872 _____ (Ditto -> ) [File not signed] C:\Apps\Ditto\Ditto.exe
2019-01-14 10:31 - 2012-11-08 21:17 - 000052848 _____ (Ditto -> Ditto Utility Addin) [File not signed] C:\Apps\Ditto\Addins\DittoUtil.dll
2018-09-11 15:35 - 2017-02-15 09:57 - 000975360 _____ (Firebird Project) [File not signed] C:\Apps\EssentialPIM Pro 8\gds32.dll
2017-11-05 16:10 - 2015-08-29 14:25 - 000153088 _____ (Gabriele Ponti) [File not signed] C:\Apps\Send To Toys\SendToClipboardAsContentShellExt.dll
2017-11-05 16:10 - 2015-08-29 14:25 - 000178176 _____ (Gabriele Ponti) [File not signed] C:\Apps\Send To Toys\SendToClipboardAsNameShellExt.dll
2017-11-05 16:10 - 2015-08-29 14:25 - 000176128 _____ (Gabriele Ponti) [File not signed] C:\Apps\Send To Toys\SendToFolderShellExt.dll
2019-03-14 16:05 - 2019-03-14 16:05 - 000368640 _____ (Iain Patterson) [File not signed] C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
2018-09-11 15:35 - 2014-12-04 08:18 - 000420864 _____ (IBM Corporation and others) [File not signed] C:\Apps\EssentialPIM Pro 8\icudt30.dll
2018-09-11 15:35 - 2014-12-04 08:18 - 000323584 _____ (IBM Corporation and others) [File not signed] C:\Apps\EssentialPIM Pro 8\icuuc30.dll
2017-08-27 14:17 - 2016-10-04 16:51 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Apps\7-Zip\7-zip.dll
2019-03-04 11:30 - 2012-09-06 02:46 - 000912896 _____ (KARPOLAN) [File not signed] C:\Apps\Keyboard Leds\KeyboardLeds.exe
2018-09-11 15:35 - 2013-10-05 02:38 - 000386560 _____ (Microsoft Corporation) [File not signed] C:\Apps\EssentialPIM Pro 8\MSVCR120.dll
2009-07-12 00:14 - 2009-07-12 00:14 - 001655296 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Western Digital\WD Drive Manager\MFC80U.DLL
2017-07-12 17:57 - 2018-09-17 16:18 - 000932472 _____ (mik61 (independent software developer) -> mik61) [File not signed] C:\Apps\Gameplay Time Tracker\GameplayTimeTracker.exe
2017-07-12 17:57 - 2018-09-17 16:18 - 000105592 _____ (mik61 (independent software developer) -> mik61) [File not signed] C:\Apps\Gameplay Time Tracker\Support64.exe
2017-07-12 17:19 - 2017-07-07 12:23 - 000578560 _____ (Nenad Hrg SoftwareOK) [File not signed] C:\Apps\DesktopOK\DesktopOK_x64.exe
2018-07-23 22:59 - 2018-03-02 07:51 - 001149440 _____ (Robert Simpson, et al.) [File not signed] C:\Apps\Gameplay Time Tracker\x86\SQLite.Interop.dll
2015-09-25 23:34 - 2015-09-28 20:08 - 000255488 _____ (Sysprogs OU) [File not signed] C:\Apps\WinCDEmu\x64\WinCDEmuContextMenu.dll
2018-09-11 15:35 - 2016-09-22 20:16 - 000490496 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Apps\EssentialPIM Pro 8\libeay32.dll
2018-09-11 15:35 - 2016-09-22 20:16 - 000101376 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Apps\EssentialPIM Pro 8\ssleay32.dll
2012-05-01 13:26 - 2012-05-01 13:26 - 000119296 _____ (WDC) [File not signed] C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
2012-05-01 13:26 - 2012-05-01 13:26 - 000480768 _____ (WDC) [File not signed] C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
2012-07-21 21:55 - 2012-08-31 22:57 - 000629248 _____ (zett42) [File not signed] C:\Apps\FlashFolder\fflib6439.dll
2012-07-21 22:05 - 2012-08-31 22:46 - 003306496 _____ (zett42) [File not signed] C:\Apps\FlashFolder\fflib6439_64.dll
2012-07-21 21:56 - 2012-07-21 21:56 - 000567296 _____ (zett42) [File not signed] C:\Apps\FlashFolder\FlashFolder.exe
2012-07-21 22:06 - 2012-07-21 22:06 - 000596992 _____ (zett42) [File not signed] C:\Apps\FlashFolder\FlashFolder64.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:728B799F [372]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2866573575-4116515599-1814928747-1003\...\sharepoint.com -> hxxps://mailfhscuni-files.sharepoint.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-06-27 20:02 - 2019-01-04 15:29 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;E:\Calibre2\;E:\Calibre\;C:\WINDOWS\System32\OpenSSH\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2866573575-4116515599-1814928747-1003\Control Panel\Desktop\\Wallpaper -> C:\Apps\_WP\Stranger Things.png
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CB7CC363-C760-44FD-A08F-CDC6DA1339EC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{18B02C1B-90B5-433B-8F21-A9634ADFABC5}] => (Allow) C:\Apps\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{988C491F-E538-47D1-9770-0B6E1A58381F}] => (Allow) C:\Apps\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{F4156546-A3F5-4B42-BA22-00DE80347A1C}] => (Allow) C:\Apps\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{48567115-01A1-4248-A8CA-956EDD6AD498}] => (Allow) C:\Apps\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{CFD7673E-D3FD-4649-8B05-8302C76E4B29}] => (Allow) C:\Program Files\Parsec\parsecd.exe (Parsec Cloud, Inc. -> Parsec)
FirewallRules: [UDP Query User{A33208AA-F528-46C0-9D43-2EDE921C9EA9}C:\apps\essentialpim pro 8\essentialpim.exe] => (Allow) C:\apps\essentialpim pro 8\essentialpim.exe (Astonsoft Ltd. -> Astonsoft)
FirewallRules: [TCP Query User{AD78A009-1EC3-44D3-8194-D847B5CDFC19}C:\apps\essentialpim pro 8\essentialpim.exe] => (Allow) C:\apps\essentialpim pro 8\essentialpim.exe (Astonsoft Ltd. -> Astonsoft)
FirewallRules: [UDP Query User{F809C33E-F7B9-4365-BEC9-89D83E65919F}C:\apps\essentialpim pro 8\essentialpim.exe] => (Block) C:\apps\essentialpim pro 8\essentialpim.exe (Astonsoft Ltd. -> Astonsoft)
FirewallRules: [TCP Query User{FB985F04-C053-4C00-9320-71C5513AAE1A}C:\apps\essentialpim pro 8\essentialpim.exe] => (Block) C:\apps\essentialpim pro 8\essentialpim.exe (Astonsoft Ltd. -> Astonsoft)
FirewallRules: [{7EC4BA92-4688-4177-BA22-2A43FBF493AA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A450B95F-582E-4912-A230-BF2B1E9F9802}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A5DF5DE8-6DCE-4036-A3FB-E183451B2D73}] => (Allow) C:\Apps\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{440CB754-1DE7-45CB-B079-C531F6FD6DEC}] => (Allow) C:\Apps\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0398C24B-DBD6-4FD8-BF04-6B3BB5376039}] => (Allow) C:\Apps\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3982EF9B-C477-49B5-894A-2EDD2CEBC365}] => (Allow) C:\Apps\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C9ADB41F-577D-4877-9B58-99E7755A60CD}] => (Allow) C:\Apps\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{70C9D6B6-4F71-4334-AA3C-103AA77D287A}] => (Allow) C:\Apps\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6D6AEB7F-E80F-4AE3-B7CA-6149616A81C4}C:\apps - share\dcplusplus\dcplusplus.exe] => (Block) C:\apps - share\dcplusplus\dcplusplus.exe () [File not signed]
FirewallRules: [UDP Query User{929832E9-54D3-4D1A-B6CD-6CF9C29312B4}C:\apps - share\dcplusplus\dcplusplus.exe] => (Block) C:\apps - share\dcplusplus\dcplusplus.exe () [File not signed]
FirewallRules: [{FD1E0EC6-E16E-4347-92D3-025E8BF94557}] => (Allow) F:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{04EFABF0-FF39-47FA-9646-58D50F7025C6}] => (Allow) F:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{977F8AB8-E9ED-4082-8D6E-D78D0E2C83D8}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

02-08-2019 00:02:26 Revo Uninstaller Pro's restore point - NVIDIA GeForce Experience 3.19.0.107
02-08-2019 00:03:16 Revo Uninstaller Pro's restore point - NVIDIA GeForce Experience 3.19.0.107

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/02/2019 10:25:17 AM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Objekt nebo vlastnost nebyly nalezeny.

Error: (08/02/2019 10:24:51 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Western Digital\WD Drive Manager\MFC80U.DLL se nezdařilo.
Závislé sestavení Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (08/02/2019 10:23:48 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Western Digital\WD Drive Manager\MFC80U.DLL se nezdařilo.
Závislé sestavení Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (08/02/2019 09:43:05 AM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Objekt nebo vlastnost nebyly nalezeny.

Error: (08/02/2019 09:42:36 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Western Digital\WD Drive Manager\MFC80U.DLL se nezdařilo.
Závislé sestavení Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (08/02/2019 09:41:31 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Western Digital\WD Drive Manager\MFC80U.DLL se nezdařilo.
Závislé sestavení Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (08/02/2019 09:08:09 AM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Objekt nebo vlastnost nebyly nalezeny.

Error: (08/02/2019 09:07:55 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Western Digital\WD Drive Manager\MFC80U.DLL se nezdařilo.
Závislé sestavení Microsoft.VC80.MFCLOC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.


System errors:
=============
Error: (08/02/2019 10:22:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ExpressVPN Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/02/2019 10:22:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba isesrv byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/02/2019 10:22:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Parsec byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/02/2019 10:22:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba WD Drive Manager Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/02/2019 10:22:48 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Telemetry Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (08/02/2019 10:22:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba WD Drive Manager byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/02/2019 10:22:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Genuine Monitor Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/02/2019 10:22:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Genuine Software Integrity Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


CodeIntegrity:
===================================

Date: 2019-08-02 12:28:45.340
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-02 10:53:33.181
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-02 10:26:21.229
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-08-02 10:25:47.353
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-08-02 10:25:47.221
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-08-02 10:25:47.125
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-08-02 10:25:47.065
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-08-02 10:25:10.735
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 2801 12/14/2015
Motherboard: ASUSTeK COMPUTER INC. A88XM-A
Processor: AMD Athlon(tm) X4 870K Quad Core Processor 
Percentage of memory in use: 31%
Total physical RAM: 16326.13 MB
Available physical RAM: 11168.95 MB
Total Virtual: 18350.13 MB
Available Virtual: 12506.25 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:221.81 GB) (Free:14.46 GB) NTFS
Drive e: (DROPBOX_SG) (Fixed) (Total:62.49 GB) (Free:4.71 GB) NTFS
Drive f: (GAMES_SG) (Fixed) (Total:195.31 GB) (Free:15.85 GB) NTFS
Drive g: (4TB_RPG_AUDIO) (Fixed) (Total:500 GB) (Free:2.88 GB) NTFS
Drive h: (MOVIES_SG) (Fixed) (Total:673.71 GB) (Free:74.58 GB) NTFS
Drive i: (4TB_ANT) (Fixed) (Total:678.01 GB) (Free:419.17 GB) NTFS
Drive k: (4TB_VERU) (Fixed) (Total:500 GB) (Free:247.85 GB) NTFS
Drive l: (ISO) (Fixed) (Total:931.51 GB) (Free:61.11 GB) NTFS
Drive q: (4TB_FOTO) (Fixed) (Total:2048 GB) (Free:1005.58 GB) NTFS

\\?\Volume{041669bd-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{041669bd-0000-0000-0000-e09237000000}\ () (Fixed) (Total:0.81 GB) (Free:0.39 GB) NTFS

==================== MBR & Partition Table ==================

==================== End of Addition.txt ============================