----------------------------------------------------------------------------
CrystalDiskInfo 7.0.5 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 Enterprise [10.0 Build 15063] (x64)
Date : 2017/04/21 18:09:55
-- Controller Map ----------------------------------------------------------
+ Intel(R) 100 Series/C230 Chipset Family SATA AHCI Controller [ATA]
- KINGSTON SUV400S37120G
- WDC WD10EZEX-00WN4A0
- HL-DT-ST DVDRAM GH24NSD1
+ Microsoft Storage Spaces Controller [SCSI]
- Microsoft Storage Space Device
-- Disk List ---------------------------------------------------------------
(1) KINGSTON SUV400S37120G : 120,0 GB [0/0/0, pd1]
(2) WDC WD10EZEX-00WN4A0 : 1000,2 GB [1/X/X, pd1] - wd
----------------------------------------------------------------------------
(1) KINGSTON SUV400S37120G
----------------------------------------------------------------------------
Model : KINGSTON SUV400S37120G
Firmware : 0C3FD6SD
Serial Number : 50026B776503271D
Disk Size : 120,0 GB (8,4/120,0/120,0/120,0)
Buffer Size : Unknown
Queue Depth : 32
# of Sectors : 234441648
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version :
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 2765 hours
Power On Count : 475 count
Temperature : 25 C (77 F)
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA, NCQ, TRIM
APM Level : 0000h [ON]
AAM Level : ----
Drive Letter : C:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 __0 000000000000 Read Error Rate
05 100 100 _10 000000000000 Reallocated Sectors Count
09 100 100 __0 000000000ACD Power-On Hours
0C 100 100 __0 0000000001DB Power Cycle Count
64 100 100 __0 0000003C5A90 Vendor Specific
65 100 100 __0 0000000B27C0 Vendor Specific
AA 100 100 __0 000000000000 Vendor Specific
AB 100 100 __0 000000000000 Vendor Specific
AC 100 100 __0 000000000000 Vendor Specific
AE 100 100 __0 000000000017 Vendor Specific
AF 100 100 __0 000000000000 Vendor Specific
B0 100 100 __0 000000000000 Vendor Specific
B1 _93 _93 __0 000000000932 Vendor Specific
B2 100 100 __0 000000000000 Vendor Specific
B4 100 100 __0 0000000002CA Vendor Specific
B7 _97 _97 __0 000000000022 Vendor Specific
BB 100 100 __0 000000000000 Vendor Specific
C2 _25 100 __0 002600110019 Temperature
C3 100 100 __0 000000000000 Vendor Specific
C4 100 100 __0 000000000000 Reallocation Event Count
C5 100 100 __0 000000000000 Current Pending Sector Count
C7 100 100 __0 000000000000 Vendor Specific
C9 100 100 __0 000000000000 Vendor Specific
CC 100 100 __0 000000000000 Vendor Specific
E7 _93 _93 __0 000000000007 Vendor Specific
E9 100 100 __0 000000001CF9 Vendor Specific
EA 100 100 __0 00000000102B Vendor Specific
F1 100 100 __0 000000001A4D Total Host Writes
F2 100 100 __0 0000000014C3 Total Host Reads
FA 100 100 __0 000000000000 Vendor Specific
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3530 3032 3642 3737 3635 3033 3237 3144 2020 2020
020: 0000 0000 0000 3043 3346 4436 5344 4B49 4E47 5354
030: 4F4E 2053 5556 3430 3053 3337 3132 3047 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0000 0000 0007 3FFF 0010 003F FC10 00FB B910
060: 4BB0 0DF9 0000 0007 0003 0078 0078 0078 0078 4D18
070: 0000 0000 0000 0000 0000 001F E70E 0006 00CC 00CC
080: 0FFE 0028 746B 7409 4163 7069 B409 4167 407F 0002
090: 0002 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 4BB0 0DF9 0000 0000 0000 0008 6003 0000 0550 3804
110: 4001 0000 0000 0000 0000 0000 0000 0000 0000 4358
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 4D52
130: 564C 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 3737 3434 2020 2020 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0007 0001
170: 2020 2020 2020 2020 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 107F 0051 0000 0000 0000 0000 0000 0000
230: 4BB0 0DF9 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 D3A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 30 00 01 2F 00 64 64 00 00 00 00 00 00 00 05 33
010: 00 64 64 00 00 00 00 00 00 0A 09 32 00 64 64 CD
020: 0A 00 00 00 00 00 0C 32 00 64 64 DB 01 00 00 00
030: 00 00 64 32 00 64 64 90 5A 3C 00 00 00 00 65 32
040: 00 64 64 C0 27 0B 00 00 00 00 AA 32 00 64 64 00
050: 00 00 00 00 00 00 AB 32 00 64 64 00 00 00 00 00
060: 00 00 AC 32 00 64 64 00 00 00 00 00 00 00 AE 32
070: 00 64 64 17 00 00 00 00 00 00 AF 32 00 64 64 00
080: 00 00 00 00 00 00 B0 32 00 64 64 00 00 00 00 00
090: 00 00 B1 32 00 5D 5D 32 09 00 00 00 00 00 B2 02
0A0: 00 64 64 00 00 00 00 00 00 00 B4 02 00 64 64 CA
0B0: 02 00 00 00 00 00 B7 32 00 61 61 22 00 00 00 00
0C0: 00 00 BB 33 00 64 64 00 00 00 00 00 00 00 C2 22
0D0: 00 19 64 19 00 11 00 26 00 00 C3 32 00 64 64 00
0E0: 00 00 00 00 00 00 C4 32 00 64 64 00 00 00 00 00
0F0: 00 00 C5 32 00 64 64 00 00 00 00 00 00 00 C7 12
100: 00 64 64 00 00 00 00 00 00 00 C9 32 00 64 64 00
110: 00 00 00 00 00 00 CC 32 00 64 64 00 00 00 00 00
120: 00 00 E7 32 00 5D 5D 07 00 00 00 00 00 00 E9 32
130: 00 64 64 F9 1C 00 00 00 00 00 EA 32 00 64 64 2B
140: 10 00 00 00 00 00 F1 32 00 64 64 4D 1A 00 00 00
150: 00 00 F2 32 00 64 64 C3 14 00 00 00 00 00 FA 32
160: 00 64 64 00 00 00 00 00 00 00 00 00 05 00 01 71
170: 03 00 01 00 02 05 00 00 00 00 00 00 00 00 00 00
180: 00 00 61 00 00 00 00 00 00 00 00 00 56 00 00 00
190: 00 00 00 00 00 00 00 00 7F 03 00 00 00 00 00 00
1A0: 33 6A BB 49 03 00 00 00 00 20 AE 40 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 B5 9D 7D 98 02 00 00 00
1C0: 35 6C E9 99 00 00 00 00 CA 02 00 00 03 00 00 00
1D0: 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: E2 E5 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 04 08 00 00 00 00 00 6A
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 04 00 01 00 00 00 00 00 00 00 00 00 00 00 05 0A
010: 00 00 00 00 00 00 00 00 00 00 09 00 00 00 00 00
020: 00 00 00 00 00 00 0C 00 00 00 00 00 00 00 00 00
030: 00 00 64 00 00 00 00 00 00 00 00 00 00 00 65 00
040: 00 00 00 00 00 00 00 00 00 00 AA 00 00 00 00 00
050: 00 00 00 00 00 00 AB 00 00 00 00 00 00 00 00 00
060: 00 00 AC 00 00 00 00 00 00 00 00 00 00 00 AE 00
070: 00 00 00 00 00 00 00 00 00 00 AF 00 00 00 00 00
080: 00 00 00 00 00 00 B0 00 00 00 00 00 00 00 00 00
090: 00 00 B1 00 00 00 00 00 00 00 00 00 00 00 B2 00
0A0: 00 00 00 00 00 00 00 00 00 00 B4 00 00 00 00 00
0B0: 00 00 00 00 00 00 B7 00 00 00 00 00 00 00 00 00
0C0: 00 00 BB 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0E0: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
0F0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C7 00
100: 00 00 00 00 00 00 00 00 00 00 C9 00 00 00 00 00
110: 00 00 00 00 00 00 CC 00 00 00 00 00 00 00 00 00
120: 00 00 E7 00 00 00 00 00 00 00 00 00 00 00 E9 00
130: 00 00 00 00 00 00 00 00 00 00 EA 00 00 00 00 00
140: 00 00 00 00 00 00 F1 00 00 00 00 00 00 00 00 00
150: 00 00 F2 00 00 00 00 00 00 00 00 00 00 00 FA 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 76
----------------------------------------------------------------------------
(2) WDC WD10EZEX-00WN4A0
----------------------------------------------------------------------------
Model : WDC WD10EZEX-00WN4A0
Firmware : 01.01A01
Serial Number : WD-WCC6Y1FHPZDJ
Disk Size : 1000,2 GB (8,4/137,4/1000,2/----)
Buffer Size : Unknown
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-3
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 2778 hours
Power On Count : 483 count
Temperature : 28 C (82 F)
Health Status : Caution
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----
Drive Letter :
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _83 _82 _51 00000000118F Read Error Rate
03 172 171 _21 000000000960 Spin-Up Time
04 100 100 __0 0000000001E3 Start/Stop Count
05 200 200 140 000000000000 Reallocated Sectors Count
07 200 200 __0 000000000000 Seek Error Rate
09 _97 _97 __0 000000000ADA Power-On Hours
0A 100 100 __0 000000000000 Spin Retry Count
0B 100 100 __0 000000000000 Recalibration Retries
0C 100 100 __0 0000000001E3 Power Cycle Count
C0 200 200 __0 000000000015 Power-off Retract Count
C1 199 199 __0 000000000F2B Load/Unload Cycle Count
C2 115 103 __0 00000000001C Temperature
C4 200 200 __0 000000000000 Reallocation Event Count
C5 200 200 __0 00000000002E Current Pending Sector Count
C6 200 200 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
C8 200 200 __0 000000000060 Write Error Rate
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 4336 5931 4648 505A 444A
020: 0000 0000 0000 3031 2E30 3141 3031 5744 4320 5744
030: 3130 455A 4558 2D30 3057 4E34 4130 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4001 0000 0000 0006 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0D00
070: 0000 0000 0000 0000 0000 001F 970E 0006 0044 0044
080: 07FE 001F 746B 7D61 4123 7469 BC41 4123 407F 803D
090: 803D 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5001 4EE2
110: 0D4A 43DF 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3035 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 B3A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 53 52 8F 11 00 00 00 00 00 03 27
010: 00 AC AB 60 09 00 00 00 00 00 04 32 00 64 64 E3
020: 01 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 61 61 DA 0A 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 64 64 E3 01 00 00 00 00 00 C0 32
070: 00 C8 C8 15 00 00 00 00 00 00 C1 32 00 C7 C7 2B
080: 0F 00 00 00 00 00 C2 22 00 73 67 1C 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 2E 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 60 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 D4 2B 01 7B
170: 03 00 01 00 02 74 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 99
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 53 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 D4 2B 01 7B
170: 03 00 01 00 02 74 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03
Prosím o preventivní kontrolu. Dakujem
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o preventivní kontrolu. Dakujem
(2) WDC WD10EZEX-00WN4A0
000000000960 Spin-Up Time
00000000002E Current Pending Sector Count
Spin Up Time
Čas potřebný k roztočení ploten. S časem se zhoršuje, avšak poměrně pomalu. Náhlá změna značí poškození motorku otáčejícího plotny.
Current Pending Sector
Počet sektorů, jejichž stav je podezřelý. Po spuštění diagnostických utilit bývá obvykle použití sektoru zakázáno a tento nahrazen jiným sektorem ze záložní oblasti. Current Pending Sector se proto vynuluje a o stejnou hodnotu vzroste Reallocated Sector Count.
druhý disk odchází..
hry máš na prvním disku?
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
000000000960 Spin-Up Time
00000000002E Current Pending Sector Count
Spin Up Time
Čas potřebný k roztočení ploten. S časem se zhoršuje, avšak poměrně pomalu. Náhlá změna značí poškození motorku otáčejícího plotny.
Current Pending Sector
Počet sektorů, jejichž stav je podezřelý. Po spuštění diagnostických utilit bývá obvykle použití sektoru zakázáno a tento nahrazen jiným sektorem ze záložní oblasti. Current Pending Sector se proto vynuluje a o stejnou hodnotu vzroste Reallocated Sector Count.
druhý disk odchází..
hry máš na prvním disku?
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o preventivní kontrolu. Dakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-04-2017
Ran by Marek (administrator) on MAREK (22-04-2017 01:37:19)
Running from C:\Users\Marek\Desktop
Loaded Profiles: Marek (Available Profiles: defaultuser0 & Marek)
Platform: Windows 10 Enterprise Version 1703 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\spaceman.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Electronic Arts) D:\Origin\OriginWebHelperService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
() C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
() C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\AsPowerBar.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.5\Lightshot.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8899592 2016-08-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Run: [EADM] => D:\Origin\Origin.exe [3046264 2017-04-05] (Electronic Arts)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Run: [Discord] => C:\Users\Marek\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [5077792 2017-03-28] (Nota Inc.)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [150016 2017-03-18] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c4807f21-8b62-4595-af13-22eb30e04ded}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c4f21206-a020-489f-bbfe-001fdc7e4319}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-30] (AO Kaspersky Lab)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-30] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-30] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-30] (AO Kaspersky Lab)
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2016-10-25]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-03-30]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default [2017-04-21]
CHR Extension: (Prezentácie Google) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-18]
CHR Extension: (Dokumenty Google) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-18]
CHR Extension: (Disk Google) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-18]
CHR Extension: (YouTube) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-18]
CHR Extension: (Tabuľky Google) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-18]
CHR Extension: (Kaspersky Protection) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-04-21]
CHR Extension: (Avira Browser Safety) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-04-18]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-18]
CHR Extension: (Gmail) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-18]
CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\System Profile [2017-04-14]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/deta ... ijdbbplhib
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/deta ... ijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR Extension: (BetterTTV) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\deofbbdfofnmppcjbhjibgodpcdchjii [2017-04-13]
OPR Extension: (Twitch Now) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\hiahmjdojdodmjjhhddegdnhcpjmokmo [2017-04-13]
OPR Extension: (Adblock Plus) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2017-04-13]
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe [963544 2017-01-04] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe [2394072 2017-01-04] (ASUSTeK Computer Inc.)
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1465352 2017-01-13] ()
S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [689152 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_1a456e5; C:\WINDOWS\system32\svchost.exe [47664 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_1a456e5; C:\WINDOWS\SysWOW64\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [302592 2017-03-18] (Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [64000 2017-03-18] (Microsoft Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [723968 2017-03-18] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-04-01] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-04-01] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-04-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-04-01] (NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2146704 2017-04-05] (Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3115928 2017-04-05] (Electronic Arts)
S4 PuranDefrag; C:\WINDOWS\SYSTEM32\PuranDefragS.exe [292736 2013-08-15] (Puran Software) [File not signed]
R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [335808 2017-03-18] (Microsoft Corporation)
S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1191424 2017-03-18] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
S2 SkypeUpdate; D:\Skype\Updater\Updater.exe [317400 2017-01-16] (Skype Technologies)
S3 spectrum; C:\WINDOWS\system32\spectrum.exe [891904 2017-03-18] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1054720 2017-03-18] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [799232 2017-03-18] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [555008 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1295360 2017-03-18] (Microsoft Corporation)
S3 xbgm; C:\WINDOWS\System32\xbgmsvc.dll [301216 2017-03-18] (Microsoft Corporation)
S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [18944 2017-03-18] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-09-21] (Intel(R) Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [22192 2015-10-19] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
S3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [53664 2017-03-18] (Microsoft Corporation)
S2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [12288 2017-03-18] (Microsoft Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [559080 2016-04-19] (Intel Corporation)
S3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504 2017-03-18] (Intel Corporation)
S3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448 2017-03-18] (Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-09-21] (Intel Corporation)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2015-05-14] (ASUSTeK Computer Inc.)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
S0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
S1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197336 2017-04-19] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [509728 2017-03-30] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1018592 2017-04-19] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-03-30] (AO Kaspersky Lab)
S3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R4 klkbdflt2; C:\WINDOWS\system32\DRIVERS\klkbdflt2.sys [43440 2016-05-23] (AO Kaspersky Lab)
S3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
U0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [229288 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_arkmon_66516A70; C:\ProgramData\Kaspersky Lab\AVP17.0.0\temp\66516A704F1D378E58B85D79633C103D\klupd_klif_arkmon.sys [218920 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_arkmon_E3769B27; C:\ProgramData\Kaspersky Lab\AVP17.0.0\temp\E3769B2713E1E013FACB78E3D4369EE8\klupd_klif_arkmon.sys [229288 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [252232 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_klark_1A484781; C:\ProgramData\Kaspersky Lab\AVP17.0.0\temp\1A4847813BF6A06C6D3D65BA7B59A3BD\klupd_klif_klark.sys [251664 2017-04-19] (AO Kaspersky Lab)
U0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [112912 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [164888 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_mark_2AAA2931; C:\ProgramData\Kaspersky Lab\AVP17.0.0\temp\2AAA2931E01B8D8D0BC3929F122C00D8\klupd_klif_mark.sys [173144 2017-04-19] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-03-30] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-04-19] (AO Kaspersky Lab)
S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [405408 2017-03-18] (Microsoft Corporation)
S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [51104 2017-03-18] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [122368 2017-03-18] (Microsoft Corporation)
S3 nvdimmn; C:\WINDOWS\System32\drivers\nvdimmn.sys [80896 2017-03-18] (Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e69a53b8ddde469c\nvlddmkm.sys [14841784 2017-04-03] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2017-04-01] (NVIDIA Corporation)
U5 NvStUSB; C:\Windows\System32\Drivers\NvStUSB.sys [485320 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [66608 2017-04-01] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation)
S3 pmem; C:\WINDOWS\System32\drivers\pmem.sys [101376 2017-03-18] (Microsoft Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S3 SpatialGraphFilter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [40352 2017-03-20] (Microsoft Corporation)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2017-04-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [217088 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation)
NETSVC: xbgm -> C:\Windows\System32\xbgmsvc.dll (Microsoft Corporation)
NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation)
NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation)
NETSVCx32: TokenBroker -> C:\Windows\SysWOW64\TokenBroker.dll (Microsoft Corporation)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-22 01:37 - 2017-04-22 01:37 - 00023777 _____ C:\Users\Marek\Desktop\FRST.txt
2017-04-22 01:37 - 2017-04-22 01:37 - 00000000 ____D C:\FRST
2017-04-22 01:36 - 2017-04-22 01:33 - 02424832 _____ (Farbar) C:\Users\Marek\Desktop\FRST64.exe
2017-04-21 19:16 - 2017-04-21 19:16 - 00000662 _____ C:\Users\Marek\Desktop\Puran Utilities.lnk
2017-04-21 19:16 - 2017-04-21 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Puran Utilities
2017-04-21 19:16 - 2013-08-15 16:39 - 01367424 _____ (Puran Software) C:\WINDOWS\system32\PuranFD.exe
2017-04-21 19:16 - 2013-08-15 16:39 - 00292736 _____ (Puran Software) C:\WINDOWS\system32\PuranDefragS.exe
2017-04-21 19:16 - 2013-08-15 16:39 - 00287616 _____ (Puran Software) C:\WINDOWS\system32\PuranDC.exe
2017-04-21 19:16 - 2013-08-15 16:39 - 00256896 _____ (Puran Software) C:\WINDOWS\system32\PuranDefrag.dll
2017-04-21 19:16 - 2013-08-15 16:39 - 00132480 _____ (Puran Software) C:\WINDOWS\system32\PuranDefragBT.exe
2017-04-21 18:17 - 2017-04-21 18:17 - 00000759 _____ C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk
2017-04-21 18:17 - 2017-04-21 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2017-04-21 18:05 - 2017-04-21 18:05 - 00000743 _____ C:\Users\Marek\Desktop\CrystalDiskInfo.lnk
2017-04-21 18:05 - 2017-04-21 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2017-04-20 21:26 - 2017-04-20 21:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2017-04-20 21:26 - 2017-04-20 21:26 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2017-04-20 21:25 - 2017-04-20 21:25 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Gyazo
2017-04-20 21:24 - 2017-04-21 15:33 - 00000000 ____D C:\Program Files (x86)\Gyazo
2017-04-20 21:24 - 2017-04-20 21:24 - 00003504 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2017-04-20 21:24 - 2017-04-20 21:24 - 00003368 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2017-04-20 21:24 - 2017-04-20 21:24 - 00001055 _____ C:\Users\Public\Desktop\Gyazo.lnk
2017-04-20 21:24 - 2017-04-20 21:24 - 00001055 _____ C:\Users\Public\Desktop\Gyazo GIF.lnk
2017-04-20 21:24 - 2017-04-20 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2017-04-19 18:27 - 2017-04-19 18:27 - 00000000 ____D C:\Users\Marek\AppData\Local\PeerDistRepub
2017-04-19 18:11 - 2017-04-19 18:11 - 00229288 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2017-04-19 18:11 - 2017-04-19 18:11 - 00112912 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2017-04-19 18:04 - 2017-04-19 18:04 - 00252232 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2017-04-19 17:54 - 2017-04-19 17:54 - 00164888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2017-04-19 17:54 - 2017-04-19 17:54 - 00087584 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
2017-04-19 17:53 - 2017-04-22 00:15 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-04-19 17:53 - 2017-04-19 18:11 - 00197336 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2017-04-19 17:53 - 2017-04-19 18:10 - 01018592 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2017-04-19 17:53 - 2017-04-19 17:53 - 00002156 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2017-04-19 17:53 - 2017-04-19 17:53 - 00001447 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2017-04-19 17:53 - 2017-04-19 17:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2017-04-19 17:53 - 2017-04-19 17:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2017-04-19 17:53 - 2017-04-19 17:53 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2017-04-19 17:53 - 2017-03-30 06:19 - 00509728 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2017-04-19 17:53 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2017-04-19 16:11 - 2017-04-19 16:11 - 00000000 ____D C:\Users\Marek\AppData\Local\DBG
2017-04-18 22:09 - 2017-04-18 22:09 - 00001397 _____ C:\Users\Marek\Desktop\DelFix.txt
2017-04-18 22:08 - 2017-04-18 22:08 - 00001397 _____ C:\DelFix.txt
2017-04-18 19:57 - 2017-04-18 19:57 - 00000000 ____D C:\Program Files (x86)\Origin Games
2017-04-18 19:24 - 2017-04-18 19:18 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2017-04-17 23:21 - 2017-04-18 18:45 - 00000000 ____D C:\ProgramData\Codemasters
2017-04-17 23:00 - 2017-04-17 23:00 - 00000202 _____ C:\Users\Marek\Desktop\DiRT 3 Complete Edition.url
2017-04-17 12:21 - 2017-04-17 12:21 - 00000000 ____D C:\Users\Marek\AppData\Local\CEF
2017-04-17 11:59 - 2017-04-17 12:13 - 00000000 ____D C:\ProgramData\RogueKiller
2017-04-17 11:40 - 2017-04-17 11:40 - 00002683 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-04-17 11:40 - 2017-04-17 11:40 - 00000000 ____D C:\ProgramData\Sophos
2017-04-17 11:40 - 2017-04-17 11:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-04-16 09:51 - 2017-04-18 10:08 - 00000000 ____D C:\WINDOWS\Minidump
2017-04-14 13:39 - 2017-04-14 13:39 - 00000000 ____D C:\Users\Marek\AppData\Roaming\NVIDIA
2017-04-13 17:54 - 2017-04-13 17:54 - 00000659 _____ C:\Users\Public\Desktop\TruckersMP.lnk
2017-04-13 16:32 - 2017-04-13 16:32 - 00017138 _____ C:\Users\Marek\Downloads\betterttv.nex
2017-04-13 16:01 - 2017-04-13 16:01 - 00003940 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1492092065
2017-04-13 16:01 - 2017-04-13 16:01 - 00001166 _____ C:\Users\Public\Desktop\Opera.lnk
2017-04-13 16:01 - 2017-04-13 16:01 - 00001166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-04-13 16:01 - 2017-04-13 16:01 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Opera Software
2017-04-13 16:01 - 2017-04-13 16:01 - 00000000 ____D C:\Users\Marek\AppData\Local\Opera Software
2017-04-13 16:00 - 2017-04-13 16:01 - 00000000 ____D C:\Program Files\Opera
2017-04-13 13:32 - 2017-04-13 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disable Autorun
2017-04-13 12:25 - 2017-04-13 12:25 - 00000000 ____D C:\Users\Marek\AppData\Local\NVIDIA
2017-04-12 14:28 - 2017-04-12 14:28 - 23680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 23675392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 19334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 11869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 08319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 08247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 06756920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 02444184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01411640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01323880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 00986592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-04-12 14:28 - 2017-04-12 14:28 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-04-12 14:28 - 2017-04-12 14:28 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-04-12 14:28 - 2017-04-12 14:28 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00205728 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-04-12 14:27 - 2017-04-12 14:27 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-04-12 14:27 - 2017-04-12 14:27 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-04-12 14:27 - 2017-04-12 14:27 - 00000000 ____D C:\Program Files\MSBuild
2017-04-12 14:27 - 2017-04-12 14:27 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-04-12 14:27 - 2017-04-12 14:27 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-04-12 14:27 - 2017-04-12 13:30 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-04-12 14:26 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-04-12 14:26 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-04-12 14:26 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-04-12 14:26 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-04-12 14:26 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-04-12 14:26 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-04-12 13:52 - 2017-04-12 13:52 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-12 13:52 - 2017-04-01 05:27 - 01882168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 01756728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 01470520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 01318968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 00121912 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-04-12 13:51 - 2017-04-21 15:16 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-12 13:51 - 2017-04-13 12:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-12 13:51 - 2017-04-12 13:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-04-12 13:51 - 2017-04-12 13:51 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-04-12 13:51 - 2017-04-01 05:27 - 00512960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-04-12 13:51 - 2017-04-01 05:27 - 00420408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 06437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 02481208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 00549944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-04-12 13:51 - 2017-04-01 03:36 - 00136248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-04-12 13:51 - 2017-03-31 12:15 - 07851747 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-04-12 13:51 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-04-12 13:51 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-04-12 13:51 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-04-12 13:51 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-04-12 13:50 - 2017-04-02 18:12 - 01600560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-04-12 13:50 - 2017-04-02 18:12 - 00218040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-04-12 13:50 - 2017-04-02 18:12 - 00046008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 40201152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 35354048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 35280320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 28592184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 11111392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 11056272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 10635192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 09316648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 09014792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 08876272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 04085712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 03790904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 03602296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 03246016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01988032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438165.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01591352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438165.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01276128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01055800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00995920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00993872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00990144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00960448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00911296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00821184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00776048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00652856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00577544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-04-12 13:50 - 2017-04-01 05:27 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-04-12 13:50 - 2017-04-01 05:27 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-04-12 13:50 - 2017-04-01 02:41 - 00172592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-04-12 13:50 - 2017-04-01 02:41 - 00146480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-04-12 13:50 - 2017-04-01 02:41 - 00076840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-04-12 13:50 - 2017-04-01 02:41 - 00066608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-04-12 13:49 - 2017-04-12 13:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-12 13:48 - 2017-04-12 13:48 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-04-12 13:40 - 2017-04-19 17:56 - 06861548 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-12 13:38 - 2017-04-12 13:38 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-04-12 13:36 - 2017-04-12 13:36 - 00000640 __RSH C:\Users\Marek\ntuser.pol
2017-04-12 13:36 - 2017-04-12 13:36 - 00000020 ___SH C:\Users\Marek\ntuser.ini
2017-04-12 13:36 - 2017-04-12 13:36 - 00000000 ____D C:\ProgramData\USOShared
2017-04-12 13:35 - 2017-04-12 13:35 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2017-04-12 13:35 - 2017-04-12 13:35 - 00011433 _____ C:\WINDOWS\diagerr.xml
2017-04-12 13:34 - 2017-04-21 21:31 - 00004212 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BF196AAC-1490-46E4-AE92-7ECC3A967083}
2017-04-12 13:34 - 2017-04-19 17:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-12 13:34 - 2017-04-14 11:49 - 00000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2017-04-12 13:34 - 2017-04-12 13:47 - 00003636 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2017-04-12 13:34 - 2017-04-12 13:38 - 00003270 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-04-12 13:34 - 2017-04-12 13:34 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-04-12 13:34 - 2017-04-12 13:34 - 00003764 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-04-12 13:34 - 2017-04-12 13:34 - 00003446 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-04-12 13:34 - 2017-04-12 13:34 - 00003382 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-12 13:34 - 2017-04-12 13:34 - 00003158 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-12 13:34 - 2017-04-12 13:34 - 00002472 _____ C:\WINDOWS\System32\Tasks\GIGABYTE OC GURU
2017-04-12 13:34 - 2017-04-12 13:34 - 00002320 _____ C:\WINDOWS\System32\Tasks\CAM
2017-04-12 13:34 - 2017-04-12 13:34 - 00002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-04-12 13:34 - 2017-04-12 13:34 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2017-04-12 13:34 - 2017-04-12 13:34 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-04-12 13:34 - 2016-08-09 17:16 - 00000000 _____ C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
2017-04-12 13:34 - 2016-08-09 17:16 - 00000000 _____ C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
2017-04-12 13:32 - 2017-04-12 13:32 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-04-12 13:32 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-04-12 13:31 - 2017-04-21 17:07 - 00000000 ____D C:\Users\Marek
2017-04-12 13:31 - 2017-04-12 13:34 - 00000000 ____D C:\Users\defaultuser0
2017-04-12 13:31 - 2017-04-12 13:32 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-04-12 13:30 - 2017-04-21 22:48 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-12 13:30 - 2017-04-12 13:47 - 00217344 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-12 13:30 - 2017-04-12 13:30 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-04-12 13:30 - 2017-04-12 13:30 - 00000000 ____D C:\Program Files\Realtek
2017-04-12 13:30 - 2017-04-01 05:27 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-04-12 13:05 - 2017-04-14 10:01 - 00000000 ___DC C:\WINDOWS\Panther
2017-04-12 12:59 - 2017-04-12 12:59 - 00001256 _____ C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nastavenia aktualizácií a ochrany osobných údajov.lnk
2017-04-12 12:59 - 2017-04-12 12:59 - 00000000 ____D C:\Users\Marek\AppData\Local\UNP
2017-04-12 12:44 - 2017-04-12 13:32 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-04-12 12:44 - 2017-04-12 12:45 - 00000000 ____D C:\Program Files\UNP
2017-04-12 08:10 - 2017-04-13 20:49 - 00000902 _____ C:\Users\Public\Desktop\FIFA 17.lnk
2017-04-12 07:16 - 2017-03-28 07:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2017-04-12 07:16 - 2017-03-28 07:28 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-04-07 21:59 - 2017-04-07 21:59 - 00000559 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2017-04-07 21:11 - 2017-04-12 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-04-07 21:11 - 2017-04-07 21:11 - 00000642 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-04-02 15:01 - 2017-04-02 15:01 - 00000000 ____D C:\Users\Marek\AppData\Local\Stardock
2017-04-02 15:01 - 2017-04-02 15:01 - 00000000 ____D C:\ProgramData\Stardock
2017-04-02 08:15 - 2017-04-02 08:15 - 00087904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UNPUXWorker.exe
2017-03-30 23:00 - 2017-03-30 22:59 - 00156160 _____ C:\WINDOWS\system32\FW1FontWrapper_x64.dll
2017-03-30 23:00 - 2017-03-30 22:59 - 00129536 _____ C:\WINDOWS\SysWOW64\FW1FontWrapper.dll
2017-03-30 06:19 - 2017-03-30 06:19 - 00136416 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2017-03-30 06:19 - 2017-03-30 06:19 - 00057424 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klim6.sys
2017-03-29 15:02 - 2017-04-13 12:25 - 00000000 ____D C:\Users\Marek\AppData\Local\NVIDIA Corporation
2017-03-25 17:22 - 2017-03-25 17:22 - 00000000 ____D C:\Users\Public\Documents\Sports Interactive
2017-03-25 17:22 - 2017-03-25 17:22 - 00000000 ____D C:\Users\Marek\Documents\Sports Interactive
2017-03-25 14:00 - 2017-03-25 14:00 - 00000000 ____D C:\Users\Marek\AppData\Local\ElevatedDiagnostics
Ran by Marek (administrator) on MAREK (22-04-2017 01:37:19)
Running from C:\Users\Marek\Desktop
Loaded Profiles: Marek (Available Profiles: defaultuser0 & Marek)
Platform: Windows 10 Enterprise Version 1703 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\spaceman.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Electronic Arts) D:\Origin\OriginWebHelperService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
() C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
() C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
() C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\AsPowerBar.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.5\Lightshot.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8899592 2016-08-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Run: [EADM] => D:\Origin\Origin.exe [3046264 2017-04-05] (Electronic Arts)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Run: [Discord] => C:\Users\Marek\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [5077792 2017-03-28] (Nota Inc.)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [150016 2017-03-18] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c4807f21-8b62-4595-af13-22eb30e04ded}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c4f21206-a020-489f-bbfe-001fdc7e4319}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-30] (AO Kaspersky Lab)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-30] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-30] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-30] (AO Kaspersky Lab)
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2016-10-25]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-03-30]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-11] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default [2017-04-21]
CHR Extension: (Prezentácie Google) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-18]
CHR Extension: (Dokumenty Google) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-18]
CHR Extension: (Disk Google) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-18]
CHR Extension: (YouTube) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-18]
CHR Extension: (Tabuľky Google) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-18]
CHR Extension: (Kaspersky Protection) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-04-21]
CHR Extension: (Avira Browser Safety) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-04-18]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-18]
CHR Extension: (Gmail) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-18]
CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\System Profile [2017-04-14]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/deta ... ijdbbplhib
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/deta ... ijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR Extension: (BetterTTV) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\deofbbdfofnmppcjbhjibgodpcdchjii [2017-04-13]
OPR Extension: (Twitch Now) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\hiahmjdojdodmjjhhddegdnhcpjmokmo [2017-04-13]
OPR Extension: (Adblock Plus) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2017-04-13]
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe [963544 2017-01-04] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe [2394072 2017-01-04] (ASUSTeK Computer Inc.)
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1465352 2017-01-13] ()
S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [689152 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_1a456e5; C:\WINDOWS\system32\svchost.exe [47664 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_1a456e5; C:\WINDOWS\SysWOW64\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [302592 2017-03-18] (Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [64000 2017-03-18] (Microsoft Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [723968 2017-03-18] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-04-01] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-04-01] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-04-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-04-01] (NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2146704 2017-04-05] (Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3115928 2017-04-05] (Electronic Arts)
S4 PuranDefrag; C:\WINDOWS\SYSTEM32\PuranDefragS.exe [292736 2013-08-15] (Puran Software) [File not signed]
R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [335808 2017-03-18] (Microsoft Corporation)
S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1191424 2017-03-18] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
S2 SkypeUpdate; D:\Skype\Updater\Updater.exe [317400 2017-01-16] (Skype Technologies)
S3 spectrum; C:\WINDOWS\system32\spectrum.exe [891904 2017-03-18] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1054720 2017-03-18] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [799232 2017-03-18] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [555008 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1295360 2017-03-18] (Microsoft Corporation)
S3 xbgm; C:\WINDOWS\System32\xbgmsvc.dll [301216 2017-03-18] (Microsoft Corporation)
S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [18944 2017-03-18] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-09-21] (Intel(R) Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [22192 2015-10-19] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
S3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [53664 2017-03-18] (Microsoft Corporation)
S2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [12288 2017-03-18] (Microsoft Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [559080 2016-04-19] (Intel Corporation)
S3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504 2017-03-18] (Intel Corporation)
S3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448 2017-03-18] (Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-09-21] (Intel Corporation)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2015-05-14] (ASUSTeK Computer Inc.)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
S0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
S1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197336 2017-04-19] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [509728 2017-03-30] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1018592 2017-04-19] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-03-30] (AO Kaspersky Lab)
S3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R4 klkbdflt2; C:\WINDOWS\system32\DRIVERS\klkbdflt2.sys [43440 2016-05-23] (AO Kaspersky Lab)
S3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
U0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [229288 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_arkmon_66516A70; C:\ProgramData\Kaspersky Lab\AVP17.0.0\temp\66516A704F1D378E58B85D79633C103D\klupd_klif_arkmon.sys [218920 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_arkmon_E3769B27; C:\ProgramData\Kaspersky Lab\AVP17.0.0\temp\E3769B2713E1E013FACB78E3D4369EE8\klupd_klif_arkmon.sys [229288 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [252232 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_klark_1A484781; C:\ProgramData\Kaspersky Lab\AVP17.0.0\temp\1A4847813BF6A06C6D3D65BA7B59A3BD\klupd_klif_klark.sys [251664 2017-04-19] (AO Kaspersky Lab)
U0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [112912 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [164888 2017-04-19] (AO Kaspersky Lab)
U3 klupd_klif_mark_2AAA2931; C:\ProgramData\Kaspersky Lab\AVP17.0.0\temp\2AAA2931E01B8D8D0BC3929F122C00D8\klupd_klif_mark.sys [173144 2017-04-19] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-03-30] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-04-19] (AO Kaspersky Lab)
S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [405408 2017-03-18] (Microsoft Corporation)
S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [51104 2017-03-18] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [122368 2017-03-18] (Microsoft Corporation)
S3 nvdimmn; C:\WINDOWS\System32\drivers\nvdimmn.sys [80896 2017-03-18] (Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e69a53b8ddde469c\nvlddmkm.sys [14841784 2017-04-03] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2017-04-01] (NVIDIA Corporation)
U5 NvStUSB; C:\Windows\System32\Drivers\NvStUSB.sys [485320 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [66608 2017-04-01] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation)
S3 pmem; C:\WINDOWS\System32\drivers\pmem.sys [101376 2017-03-18] (Microsoft Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S3 SpatialGraphFilter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [40352 2017-03-20] (Microsoft Corporation)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2017-04-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [217088 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation)
NETSVC: xbgm -> C:\Windows\System32\xbgmsvc.dll (Microsoft Corporation)
NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation)
NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation)
NETSVCx32: TokenBroker -> C:\Windows\SysWOW64\TokenBroker.dll (Microsoft Corporation)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-22 01:37 - 2017-04-22 01:37 - 00023777 _____ C:\Users\Marek\Desktop\FRST.txt
2017-04-22 01:37 - 2017-04-22 01:37 - 00000000 ____D C:\FRST
2017-04-22 01:36 - 2017-04-22 01:33 - 02424832 _____ (Farbar) C:\Users\Marek\Desktop\FRST64.exe
2017-04-21 19:16 - 2017-04-21 19:16 - 00000662 _____ C:\Users\Marek\Desktop\Puran Utilities.lnk
2017-04-21 19:16 - 2017-04-21 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Puran Utilities
2017-04-21 19:16 - 2013-08-15 16:39 - 01367424 _____ (Puran Software) C:\WINDOWS\system32\PuranFD.exe
2017-04-21 19:16 - 2013-08-15 16:39 - 00292736 _____ (Puran Software) C:\WINDOWS\system32\PuranDefragS.exe
2017-04-21 19:16 - 2013-08-15 16:39 - 00287616 _____ (Puran Software) C:\WINDOWS\system32\PuranDC.exe
2017-04-21 19:16 - 2013-08-15 16:39 - 00256896 _____ (Puran Software) C:\WINDOWS\system32\PuranDefrag.dll
2017-04-21 19:16 - 2013-08-15 16:39 - 00132480 _____ (Puran Software) C:\WINDOWS\system32\PuranDefragBT.exe
2017-04-21 18:17 - 2017-04-21 18:17 - 00000759 _____ C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk
2017-04-21 18:17 - 2017-04-21 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2017-04-21 18:05 - 2017-04-21 18:05 - 00000743 _____ C:\Users\Marek\Desktop\CrystalDiskInfo.lnk
2017-04-21 18:05 - 2017-04-21 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2017-04-20 21:26 - 2017-04-20 21:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2017-04-20 21:26 - 2017-04-20 21:26 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2017-04-20 21:25 - 2017-04-20 21:25 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Gyazo
2017-04-20 21:24 - 2017-04-21 15:33 - 00000000 ____D C:\Program Files (x86)\Gyazo
2017-04-20 21:24 - 2017-04-20 21:24 - 00003504 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2017-04-20 21:24 - 2017-04-20 21:24 - 00003368 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2017-04-20 21:24 - 2017-04-20 21:24 - 00001055 _____ C:\Users\Public\Desktop\Gyazo.lnk
2017-04-20 21:24 - 2017-04-20 21:24 - 00001055 _____ C:\Users\Public\Desktop\Gyazo GIF.lnk
2017-04-20 21:24 - 2017-04-20 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2017-04-19 18:27 - 2017-04-19 18:27 - 00000000 ____D C:\Users\Marek\AppData\Local\PeerDistRepub
2017-04-19 18:11 - 2017-04-19 18:11 - 00229288 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2017-04-19 18:11 - 2017-04-19 18:11 - 00112912 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2017-04-19 18:04 - 2017-04-19 18:04 - 00252232 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2017-04-19 17:54 - 2017-04-19 17:54 - 00164888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2017-04-19 17:54 - 2017-04-19 17:54 - 00087584 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
2017-04-19 17:53 - 2017-04-22 00:15 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-04-19 17:53 - 2017-04-19 18:11 - 00197336 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2017-04-19 17:53 - 2017-04-19 18:10 - 01018592 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2017-04-19 17:53 - 2017-04-19 17:53 - 00002156 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2017-04-19 17:53 - 2017-04-19 17:53 - 00001447 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2017-04-19 17:53 - 2017-04-19 17:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2017-04-19 17:53 - 2017-04-19 17:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2017-04-19 17:53 - 2017-04-19 17:53 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2017-04-19 17:53 - 2017-03-30 06:19 - 00509728 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2017-04-19 17:53 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2017-04-19 16:11 - 2017-04-19 16:11 - 00000000 ____D C:\Users\Marek\AppData\Local\DBG
2017-04-18 22:09 - 2017-04-18 22:09 - 00001397 _____ C:\Users\Marek\Desktop\DelFix.txt
2017-04-18 22:08 - 2017-04-18 22:08 - 00001397 _____ C:\DelFix.txt
2017-04-18 19:57 - 2017-04-18 19:57 - 00000000 ____D C:\Program Files (x86)\Origin Games
2017-04-18 19:24 - 2017-04-18 19:18 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2017-04-17 23:21 - 2017-04-18 18:45 - 00000000 ____D C:\ProgramData\Codemasters
2017-04-17 23:00 - 2017-04-17 23:00 - 00000202 _____ C:\Users\Marek\Desktop\DiRT 3 Complete Edition.url
2017-04-17 12:21 - 2017-04-17 12:21 - 00000000 ____D C:\Users\Marek\AppData\Local\CEF
2017-04-17 11:59 - 2017-04-17 12:13 - 00000000 ____D C:\ProgramData\RogueKiller
2017-04-17 11:40 - 2017-04-17 11:40 - 00002683 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-04-17 11:40 - 2017-04-17 11:40 - 00000000 ____D C:\ProgramData\Sophos
2017-04-17 11:40 - 2017-04-17 11:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-04-16 09:51 - 2017-04-18 10:08 - 00000000 ____D C:\WINDOWS\Minidump
2017-04-14 13:39 - 2017-04-14 13:39 - 00000000 ____D C:\Users\Marek\AppData\Roaming\NVIDIA
2017-04-13 17:54 - 2017-04-13 17:54 - 00000659 _____ C:\Users\Public\Desktop\TruckersMP.lnk
2017-04-13 16:32 - 2017-04-13 16:32 - 00017138 _____ C:\Users\Marek\Downloads\betterttv.nex
2017-04-13 16:01 - 2017-04-13 16:01 - 00003940 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1492092065
2017-04-13 16:01 - 2017-04-13 16:01 - 00001166 _____ C:\Users\Public\Desktop\Opera.lnk
2017-04-13 16:01 - 2017-04-13 16:01 - 00001166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-04-13 16:01 - 2017-04-13 16:01 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Opera Software
2017-04-13 16:01 - 2017-04-13 16:01 - 00000000 ____D C:\Users\Marek\AppData\Local\Opera Software
2017-04-13 16:00 - 2017-04-13 16:01 - 00000000 ____D C:\Program Files\Opera
2017-04-13 13:32 - 2017-04-13 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disable Autorun
2017-04-13 12:25 - 2017-04-13 12:25 - 00000000 ____D C:\Users\Marek\AppData\Local\NVIDIA
2017-04-12 14:28 - 2017-04-12 14:28 - 23680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 23675392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 19334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 11869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 08319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 08247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 06756920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 02444184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01411640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01323880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 00986592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-04-12 14:28 - 2017-04-12 14:28 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-04-12 14:28 - 2017-04-12 14:28 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-04-12 14:28 - 2017-04-12 14:28 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-04-12 14:28 - 2017-04-12 14:28 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00205728 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-04-12 14:28 - 2017-04-12 14:28 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-12 14:28 - 2017-04-12 14:28 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-04-12 14:27 - 2017-04-12 14:27 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-04-12 14:27 - 2017-04-12 14:27 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-04-12 14:27 - 2017-04-12 14:27 - 00000000 ____D C:\Program Files\MSBuild
2017-04-12 14:27 - 2017-04-12 14:27 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-04-12 14:27 - 2017-04-12 14:27 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-04-12 14:27 - 2017-04-12 13:30 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-04-12 14:26 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-04-12 14:26 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-04-12 14:26 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-04-12 14:26 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-04-12 14:26 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-04-12 14:26 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-04-12 13:52 - 2017-04-12 13:52 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-12 13:52 - 2017-04-12 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-12 13:52 - 2017-04-01 05:27 - 01882168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 01756728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 01470520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 01318968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 00121912 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-04-12 13:51 - 2017-04-21 15:16 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-12 13:51 - 2017-04-13 12:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-12 13:51 - 2017-04-12 13:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-04-12 13:51 - 2017-04-12 13:51 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-04-12 13:51 - 2017-04-01 05:27 - 00512960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-04-12 13:51 - 2017-04-01 05:27 - 00420408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 06437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 02481208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 00549944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-04-12 13:51 - 2017-04-01 04:10 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-04-12 13:51 - 2017-04-01 03:36 - 00136248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-04-12 13:51 - 2017-03-31 12:15 - 07851747 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-04-12 13:51 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-04-12 13:51 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-04-12 13:51 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-04-12 13:51 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-04-12 13:50 - 2017-04-02 18:12 - 01600560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-04-12 13:50 - 2017-04-02 18:12 - 00218040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-04-12 13:50 - 2017-04-02 18:12 - 00046008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 40201152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 35354048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 35280320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 28592184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 11111392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 11056272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 10635192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 09316648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 09014792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 08876272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 04085712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 03790904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 03602296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 03246016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01988032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438165.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01591352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438165.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01276128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 01055800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00995920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00993872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00990144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00960448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00911296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00821184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00776048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00652856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00577544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-04-12 13:50 - 2017-04-01 05:27 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-04-12 13:50 - 2017-04-01 05:27 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-04-12 13:50 - 2017-04-01 05:27 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-04-12 13:50 - 2017-04-01 02:41 - 00172592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-04-12 13:50 - 2017-04-01 02:41 - 00146480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-04-12 13:50 - 2017-04-01 02:41 - 00076840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-04-12 13:50 - 2017-04-01 02:41 - 00066608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-04-12 13:49 - 2017-04-12 13:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-12 13:48 - 2017-04-12 13:48 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-04-12 13:40 - 2017-04-19 17:56 - 06861548 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-12 13:38 - 2017-04-12 13:38 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-04-12 13:36 - 2017-04-12 13:36 - 00000640 __RSH C:\Users\Marek\ntuser.pol
2017-04-12 13:36 - 2017-04-12 13:36 - 00000020 ___SH C:\Users\Marek\ntuser.ini
2017-04-12 13:36 - 2017-04-12 13:36 - 00000000 ____D C:\ProgramData\USOShared
2017-04-12 13:35 - 2017-04-12 13:35 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2017-04-12 13:35 - 2017-04-12 13:35 - 00011433 _____ C:\WINDOWS\diagerr.xml
2017-04-12 13:34 - 2017-04-21 21:31 - 00004212 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BF196AAC-1490-46E4-AE92-7ECC3A967083}
2017-04-12 13:34 - 2017-04-19 17:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-12 13:34 - 2017-04-14 11:49 - 00000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2017-04-12 13:34 - 2017-04-12 13:47 - 00003636 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2017-04-12 13:34 - 2017-04-12 13:38 - 00003270 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-04-12 13:34 - 2017-04-12 13:34 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-04-12 13:34 - 2017-04-12 13:34 - 00003764 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-04-12 13:34 - 2017-04-12 13:34 - 00003446 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-04-12 13:34 - 2017-04-12 13:34 - 00003382 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-12 13:34 - 2017-04-12 13:34 - 00003158 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-12 13:34 - 2017-04-12 13:34 - 00002472 _____ C:\WINDOWS\System32\Tasks\GIGABYTE OC GURU
2017-04-12 13:34 - 2017-04-12 13:34 - 00002320 _____ C:\WINDOWS\System32\Tasks\CAM
2017-04-12 13:34 - 2017-04-12 13:34 - 00002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-04-12 13:34 - 2017-04-12 13:34 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2017-04-12 13:34 - 2017-04-12 13:34 - 00000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2017-04-12 13:34 - 2016-08-09 17:16 - 00000000 _____ C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
2017-04-12 13:34 - 2016-08-09 17:16 - 00000000 _____ C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
2017-04-12 13:32 - 2017-04-12 13:32 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-04-12 13:32 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-04-12 13:31 - 2017-04-21 17:07 - 00000000 ____D C:\Users\Marek
2017-04-12 13:31 - 2017-04-12 13:34 - 00000000 ____D C:\Users\defaultuser0
2017-04-12 13:31 - 2017-04-12 13:32 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-04-12 13:30 - 2017-04-21 22:48 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-12 13:30 - 2017-04-12 13:47 - 00217344 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-12 13:30 - 2017-04-12 13:30 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-04-12 13:30 - 2017-04-12 13:30 - 00000000 ____D C:\Program Files\Realtek
2017-04-12 13:30 - 2017-04-01 05:27 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-04-12 13:05 - 2017-04-14 10:01 - 00000000 ___DC C:\WINDOWS\Panther
2017-04-12 12:59 - 2017-04-12 12:59 - 00001256 _____ C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nastavenia aktualizácií a ochrany osobných údajov.lnk
2017-04-12 12:59 - 2017-04-12 12:59 - 00000000 ____D C:\Users\Marek\AppData\Local\UNP
2017-04-12 12:44 - 2017-04-12 13:32 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-04-12 12:44 - 2017-04-12 12:45 - 00000000 ____D C:\Program Files\UNP
2017-04-12 08:10 - 2017-04-13 20:49 - 00000902 _____ C:\Users\Public\Desktop\FIFA 17.lnk
2017-04-12 07:16 - 2017-03-28 07:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2017-04-12 07:16 - 2017-03-28 07:28 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-04-07 21:59 - 2017-04-07 21:59 - 00000559 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2017-04-07 21:11 - 2017-04-12 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-04-07 21:11 - 2017-04-07 21:11 - 00000642 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-04-02 15:01 - 2017-04-02 15:01 - 00000000 ____D C:\Users\Marek\AppData\Local\Stardock
2017-04-02 15:01 - 2017-04-02 15:01 - 00000000 ____D C:\ProgramData\Stardock
2017-04-02 08:15 - 2017-04-02 08:15 - 00087904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UNPUXWorker.exe
2017-03-30 23:00 - 2017-03-30 22:59 - 00156160 _____ C:\WINDOWS\system32\FW1FontWrapper_x64.dll
2017-03-30 23:00 - 2017-03-30 22:59 - 00129536 _____ C:\WINDOWS\SysWOW64\FW1FontWrapper.dll
2017-03-30 06:19 - 2017-03-30 06:19 - 00136416 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2017-03-30 06:19 - 2017-03-30 06:19 - 00057424 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klim6.sys
2017-03-29 15:02 - 2017-04-13 12:25 - 00000000 ____D C:\Users\Marek\AppData\Local\NVIDIA Corporation
2017-03-25 17:22 - 2017-03-25 17:22 - 00000000 ____D C:\Users\Public\Documents\Sports Interactive
2017-03-25 17:22 - 2017-03-25 17:22 - 00000000 ____D C:\Users\Marek\Documents\Sports Interactive
2017-03-25 14:00 - 2017-03-25 14:00 - 00000000 ____D C:\Users\Marek\AppData\Local\ElevatedDiagnostics
Re: Prosím o preventivní kontrolu. Dakujem
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-22 01:36 - 2016-08-12 13:28 - 00000000 ____D C:\ProgramData\Origin
2017-04-21 22:54 - 2016-08-12 13:28 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Origin
2017-04-21 18:06 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-04-21 15:16 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-21 15:16 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-19 18:10 - 2016-06-14 17:47 - 00199392 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kneps.sys
2017-04-19 18:00 - 2016-08-13 10:30 - 00000000 ____D C:\Users\Marek\AppData\Local\CrashDumps
2017-04-19 17:59 - 2017-02-23 22:18 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-04-19 17:58 - 2016-08-10 12:11 - 00000000 ____D C:\Users\Marek\AppData\Roaming\TS3Client
2017-04-19 17:56 - 2016-09-29 19:46 - 04404402 _____ C:\WINDOWS\system32\perfh01B.dat
2017-04-19 17:56 - 2016-09-29 19:46 - 01363604 _____ C:\WINDOWS\system32\perfc01B.dat
2017-04-19 17:54 - 2016-08-07 17:45 - 00000000 ____D C:\Program Files\Common Files\AV
2017-04-19 17:53 - 2017-03-18 23:03 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-04-19 17:53 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-04-19 17:52 - 2016-12-15 22:22 - 00000000 ____D C:\ProgramData\Avira
2017-04-19 17:49 - 2017-03-18 13:40 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-04-19 17:49 - 2016-12-15 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-04-19 17:49 - 2016-08-05 14:49 - 00532136 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-04-18 22:18 - 2016-08-09 00:24 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-04-18 19:23 - 2016-08-05 10:24 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-04-18 18:53 - 2016-08-05 21:34 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-04-18 13:04 - 2016-08-06 16:45 - 00000000 ____D C:\Users\Marek\Documents\My Games
2017-04-18 10:34 - 2016-08-05 10:21 - 00000000 ____D C:\Users\Marek\AppData\Local\Comms
2017-04-18 01:56 - 2016-08-21 14:19 - 00000166 _____ C:\Users\Marek\Documents\Nový textový dokument.txt
2017-04-17 21:35 - 2016-09-18 09:00 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-15 15:09 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-04-15 13:33 - 2016-08-06 13:09 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Skype
2017-04-15 11:36 - 2016-10-28 20:42 - 00000000 ____D C:\Users\Marek\Documents\Euro Truck Simulator 2
2017-04-14 23:40 - 2016-12-14 18:13 - 00000000 ____D C:\ProgramData\TruckersMP
2017-04-14 11:49 - 2016-08-22 01:17 - 00000000 ____D C:\Users\Marek\AppData\LocalLow\Temp
2017-04-14 10:01 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-04-13 23:02 - 2016-08-06 12:36 - 00000000 ____D C:\Users\Marek\AppData\Local\Ubisoft Game Launcher
2017-04-13 17:54 - 2017-01-28 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP Launcher
2017-04-13 11:56 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-04-12 14:29 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-04-12 14:28 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-04-12 14:27 - 2017-03-18 22:56 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-04-12 14:27 - 2017-03-18 22:56 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-04-12 14:27 - 2017-03-18 22:56 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-04-12 14:27 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2017-04-12 13:52 - 2016-12-17 01:37 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-04-12 13:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-04-12 13:49 - 2016-08-05 19:04 - 00000000 ____D C:\Users\Marek\AppData\Local\Packages
2017-04-12 13:39 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-12 13:38 - 2016-08-05 19:06 - 00002371 _____ C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-12 13:38 - 2016-08-05 19:06 - 00000000 ___RD C:\Users\Marek\OneDrive
2017-04-12 13:38 - 2016-08-05 19:04 - 00000000 ____D C:\Users\Marek\AppData\Local\ConnectedDevicesPlatform
2017-04-12 13:36 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-12 13:36 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-04-12 13:36 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-04-12 13:36 - 2016-08-05 19:04 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-12 13:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-04-12 13:35 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-12 13:35 - 2017-01-28 10:38 - 00002284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-12 13:35 - 2017-01-28 10:38 - 00002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-12 13:35 - 2016-08-05 10:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-04-12 13:34 - 2017-03-20 06:12 - 00000000 ____D C:\WINDOWS\HoloShell
2017-04-12 13:34 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-04-12 13:34 - 2016-08-05 10:24 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicyUsers
2017-04-12 13:32 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-04-12 13:32 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-04-12 13:32 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-04-12 13:32 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-04-12 13:32 - 2017-03-11 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2017-04-12 13:32 - 2017-03-06 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17
2017-04-12 13:32 - 2017-02-23 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-04-12 13:32 - 2016-12-28 18:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-04-12 13:32 - 2016-12-02 18:24 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
2017-04-12 13:32 - 2016-11-19 15:32 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2017-04-12 13:32 - 2016-10-02 11:15 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2017-04-12 13:32 - 2016-09-18 09:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2017-04-12 13:32 - 2016-08-31 11:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2017-04-12 13:32 - 2016-08-06 20:54 - 00000000 ____D C:\WINDOWS\sk
2017-04-12 13:32 - 2016-08-05 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-04-12 13:31 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-04-12 13:31 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-04-12 13:31 - 2017-02-03 13:33 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-04-12 13:31 - 2016-11-01 13:53 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-04-12 13:31 - 2016-08-19 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-04-12 13:31 - 2016-08-07 00:25 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-04-12 13:31 - 2016-08-06 13:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-04-12 13:31 - 2016-08-06 12:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2017-04-12 13:31 - 2016-08-05 19:04 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2017-04-12 13:31 - 2016-08-05 10:21 - 00000000 ____D C:\Program Files\Intel
2017-04-12 07:36 - 2016-08-09 20:20 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-04-12 07:35 - 2016-08-09 20:20 - 148601744 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-04-07 21:44 - 2017-02-26 22:32 - 00000000 ____D C:\Users\Marek\Desktop\HRY
2017-04-03 18:56 - 2017-03-18 23:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-03 18:56 - 2017-03-18 23:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-01 05:27 - 2017-01-09 21:15 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-03-25 14:32 - 2017-03-11 21:59 - 00000726 _____ C:\Users\Marek\Desktop\Core Temp.lnk
2017-03-25 13:54 - 2016-08-05 10:21 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-03-25 13:54 - 2016-08-05 10:21 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-03-24 22:38 - 2016-08-06 12:32 - 00000724 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
==================== Files in the root of some directories =======
2016-10-22 08:53 - 2016-10-22 08:53 - 0007605 _____ () C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
2016-08-05 12:50 - 2016-08-05 12:50 - 0000424 _____ () C:\Users\Marek\AppData\Local\UserProducts.xml
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-04-12 13:30
==================== End of FRST.txt ============================
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-22 01:36 - 2016-08-12 13:28 - 00000000 ____D C:\ProgramData\Origin
2017-04-21 22:54 - 2016-08-12 13:28 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Origin
2017-04-21 18:06 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-04-21 15:16 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-21 15:16 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-19 18:10 - 2016-06-14 17:47 - 00199392 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kneps.sys
2017-04-19 18:00 - 2016-08-13 10:30 - 00000000 ____D C:\Users\Marek\AppData\Local\CrashDumps
2017-04-19 17:59 - 2017-02-23 22:18 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-04-19 17:58 - 2016-08-10 12:11 - 00000000 ____D C:\Users\Marek\AppData\Roaming\TS3Client
2017-04-19 17:56 - 2016-09-29 19:46 - 04404402 _____ C:\WINDOWS\system32\perfh01B.dat
2017-04-19 17:56 - 2016-09-29 19:46 - 01363604 _____ C:\WINDOWS\system32\perfc01B.dat
2017-04-19 17:54 - 2016-08-07 17:45 - 00000000 ____D C:\Program Files\Common Files\AV
2017-04-19 17:53 - 2017-03-18 23:03 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-04-19 17:53 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-04-19 17:52 - 2016-12-15 22:22 - 00000000 ____D C:\ProgramData\Avira
2017-04-19 17:49 - 2017-03-18 13:40 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-04-19 17:49 - 2016-12-15 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-04-19 17:49 - 2016-08-05 14:49 - 00532136 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-04-18 22:18 - 2016-08-09 00:24 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-04-18 19:23 - 2016-08-05 10:24 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-04-18 18:53 - 2016-08-05 21:34 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-04-18 13:04 - 2016-08-06 16:45 - 00000000 ____D C:\Users\Marek\Documents\My Games
2017-04-18 10:34 - 2016-08-05 10:21 - 00000000 ____D C:\Users\Marek\AppData\Local\Comms
2017-04-18 01:56 - 2016-08-21 14:19 - 00000166 _____ C:\Users\Marek\Documents\Nový textový dokument.txt
2017-04-17 21:35 - 2016-09-18 09:00 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-15 15:09 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-04-15 13:33 - 2016-08-06 13:09 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Skype
2017-04-15 11:36 - 2016-10-28 20:42 - 00000000 ____D C:\Users\Marek\Documents\Euro Truck Simulator 2
2017-04-14 23:40 - 2016-12-14 18:13 - 00000000 ____D C:\ProgramData\TruckersMP
2017-04-14 11:49 - 2016-08-22 01:17 - 00000000 ____D C:\Users\Marek\AppData\LocalLow\Temp
2017-04-14 10:01 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-04-13 23:02 - 2016-08-06 12:36 - 00000000 ____D C:\Users\Marek\AppData\Local\Ubisoft Game Launcher
2017-04-13 17:54 - 2017-01-28 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP Launcher
2017-04-13 11:56 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-04-12 14:29 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-04-12 14:28 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-04-12 14:27 - 2017-03-18 22:56 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-04-12 14:27 - 2017-03-18 22:56 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-04-12 14:27 - 2017-03-18 22:56 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-04-12 14:27 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-04-12 14:27 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2017-04-12 13:52 - 2016-12-17 01:37 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-04-12 13:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-04-12 13:49 - 2016-08-05 19:04 - 00000000 ____D C:\Users\Marek\AppData\Local\Packages
2017-04-12 13:39 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-12 13:38 - 2016-08-05 19:06 - 00002371 _____ C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-12 13:38 - 2016-08-05 19:06 - 00000000 ___RD C:\Users\Marek\OneDrive
2017-04-12 13:38 - 2016-08-05 19:04 - 00000000 ____D C:\Users\Marek\AppData\Local\ConnectedDevicesPlatform
2017-04-12 13:36 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-12 13:36 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-04-12 13:36 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-04-12 13:36 - 2016-08-05 19:04 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-12 13:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-04-12 13:35 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-12 13:35 - 2017-01-28 10:38 - 00002284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-12 13:35 - 2017-01-28 10:38 - 00002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-12 13:35 - 2016-08-05 10:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-04-12 13:34 - 2017-03-20 06:12 - 00000000 ____D C:\WINDOWS\HoloShell
2017-04-12 13:34 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-04-12 13:34 - 2016-08-05 10:24 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicyUsers
2017-04-12 13:32 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-04-12 13:32 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-04-12 13:32 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-04-12 13:32 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-04-12 13:32 - 2017-03-11 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2017-04-12 13:32 - 2017-03-06 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17
2017-04-12 13:32 - 2017-02-23 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-04-12 13:32 - 2016-12-28 18:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-04-12 13:32 - 2016-12-02 18:24 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
2017-04-12 13:32 - 2016-11-19 15:32 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2017-04-12 13:32 - 2016-10-02 11:15 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2017-04-12 13:32 - 2016-09-18 09:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2017-04-12 13:32 - 2016-08-31 11:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2017-04-12 13:32 - 2016-08-06 20:54 - 00000000 ____D C:\WINDOWS\sk
2017-04-12 13:32 - 2016-08-05 10:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-04-12 13:31 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-04-12 13:31 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-04-12 13:31 - 2017-02-03 13:33 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-04-12 13:31 - 2016-11-01 13:53 - 00000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-04-12 13:31 - 2016-08-19 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-04-12 13:31 - 2016-08-07 00:25 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-04-12 13:31 - 2016-08-06 13:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-04-12 13:31 - 2016-08-06 12:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2017-04-12 13:31 - 2016-08-05 19:04 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2017-04-12 13:31 - 2016-08-05 10:21 - 00000000 ____D C:\Program Files\Intel
2017-04-12 07:36 - 2016-08-09 20:20 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-04-12 07:35 - 2016-08-09 20:20 - 148601744 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-04-07 21:44 - 2017-02-26 22:32 - 00000000 ____D C:\Users\Marek\Desktop\HRY
2017-04-03 18:56 - 2017-03-18 23:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-03 18:56 - 2017-03-18 23:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-01 05:27 - 2017-01-09 21:15 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-03-25 14:32 - 2017-03-11 21:59 - 00000726 _____ C:\Users\Marek\Desktop\Core Temp.lnk
2017-03-25 13:54 - 2016-08-05 10:21 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-03-25 13:54 - 2016-08-05 10:21 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-03-24 22:38 - 2016-08-06 12:32 - 00000724 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
==================== Files in the root of some directories =======
2016-10-22 08:53 - 2016-10-22 08:53 - 0007605 _____ () C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
2016-08-05 12:50 - 2016-08-05 12:50 - 0000424 _____ () C:\Users\Marek\AppData\Local\UserProducts.xml
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-04-12 13:30
==================== End of FRST.txt ============================
Re: Prosím o preventivní kontrolu. Dakujem
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-04-2017
Ran by Marek (22-04-2017 01:37:41)
Running from C:\Users\Marek\Desktop
Windows 10 Enterprise Version 1703 (X64) (2017-04-12 11:36:44)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1716883906-1395262932-1576560517-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1716883906-1395262932-1576560517-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1716883906-1395262932-1576560517-1000 - Limited - Disabled) => C:\Users\defaultuser0
gabri (S-1-5-21-1716883906-1395262932-1576560517-1003 - Limited - Disabled)
Guest (S-1-5-21-1716883906-1395262932-1576560517-501 - Limited - Disabled)
Marek (S-1-5-21-1716883906-1395262932-1576560517-1001 - Administrator - Enabled) => C:\Users\Marek
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 1.01.59 - ASUSTeK Computer Inc.)
Aktualizácie NVIDIA 23.23.30.0 (Version: 23.23.30.0 - NVIDIA Corporation) Hidden
Ansel (Version: 381.65 - NVIDIA Corporation) Hidden
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.33.1 - Asmedia Technology)
CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform)
Core Temp 1.7 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.7 - ALCPU)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.31 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 7.0.5 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Data Lifeguard Diagnostic for Windows 1.31 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
DiRT 3 Complete Edition (HKLM\...\Steam App 321040) (Version: - Codemasters Racing Studio)
Disable Autorun (HKLM-x32\...\{53A1CC4F-5332-442B-B9E2-0F57C254B818}_is1) (Version: - www.disableautorun.com)
Discord (HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
Far Cry 4 (HKLM\...\Steam App 298110) (Version: - Ubisoft Montreal, Red Storm, Shanghai, Toronto, Kiev)
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.47.16140 - Electronic Arts)
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.33.3 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
Gyazo 3.3.1 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel® Chipset Device Software (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.42 - Irfan Skiljan)
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Lightshot-5.4.0.5 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.5 - Skillbrains)
Malwarebytes Anti-Malware verzia 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
NVIDIA 3D Vision radič ovládača 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation)
NVIDIA Grafický ovládač 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 381.65 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.5.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Opera Stable 44.0.2510.1218 (HKLM-x32\...\Opera 44.0.2510.1218) (Version: 44.0.2510.1218 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.4.8.36918 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 381.65 (Version: 381.65 - NVIDIA Corporation) Hidden
Puran Utilities 3.1 (HKLM\...\Puran Utilities_is1) (Version: - Puran Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7910 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.)
Rocket League (HKLM\...\Steam App 252950) (Version: - Psyonix, Inc.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
USB Vibration Joystick (BM) (HKLM-x32\...\{61A994FF-D39B-4937-9DB9-87EC4FF1BB88}) (Version: 1.00.0000 - ShanWan)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WinDirStat 1.1.2 (HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\WinDirStat) (Version: - )
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
XTUPackage (HKLM-x32\...\{84D11A20-6E7F-4FBB-A2FB-117FCF871040}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0317038F-C1D3-434A-A1D9-23F36097DF2B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-01] (NVIDIA Corporation)
Task: {06563932-A179-49A9-A23E-E5D87A23BD48} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe [2017-04-11] (Adobe Systems Incorporated)
Task: {068DBD13-BA50-49AB-8821-D2AB009ED964} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {126CEEAF-E2F5-42C3-96A9-83B06558058C} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [2016-09-20] (TODO: <Company name>)
Task: {34300B4D-15AD-45E4-A1A6-D9A33E53B677} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-01] (NVIDIA Corporation)
Task: {3DBFD9DF-D85B-4BFD-807B-C6F78F13D568} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-04-01] (NVIDIA Corporation)
Task: {58DE9D4C-958A-40DB-A425-FC71FB55B1B3} - System32\Tasks\ASUS\Push Notice Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [2014-05-28] (ASUSTeK Computer Inc.)
Task: {60AFD820-A869-4051-A348-955EC89B85FE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-04-01] (NVIDIA Corporation)
Task: {64B63520-C783-4598-9E6F-1CC0E3A50535} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-01] (NVIDIA Corporation)
Task: {64D227A1-CAF2-4F62-893C-CB71B7F5593F} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task
Task: {693F02EA-12F7-4661-8730-A5DF1AFD642F} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh
Task: {6A183DC4-D711-40ED-AA62-AA050C58719C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {6BD9FDA3-C8EE-4C02-95CB-1B221BF24F79} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged
Task: {7692E74E-BC95-4DA5-A4B1-2C51E01F1A05} - System32\Tasks\CAM => D:\NZXT\CAM\CAM_V3.exe
Task: {773A931D-F1B0-48E8-888C-78939559EC67} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2016-11-29] ()
Task: {77B6780B-7458-4C46-BA9A-8A5C01D04FBA} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [2017-03-20] (Microsoft Corporation)
Task: {77F13EEA-555B-4DBE-95C2-947A8ED9830D} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2016-11-28] (ASUSTeK Computer Inc.)
Task: {797E30D4-1F40-429E-88A6-B13F1F002D11} - System32\Tasks\GIGABYTE OC GURU => C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
Task: {7BC2EB75-7406-4607-94A3-4F72D466685E} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [2015-11-11] ()
Task: {7E48EB16-2459-437A-B3B5-DD91866302CC} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task
Task: {8B200375-827A-4A6A-9F32-1134F6B9C0C4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd)
Task: {9BFBFF63-27D1-4C7C-ADFA-AE5B98B90F78} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask
Task: {A4217535-138F-4294-9053-0D92E8E92F8B} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [2017-03-20] (Microsoft Corporation)
Task: {A6681086-56DC-4C69-840A-9E929EAD061F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {A756501E-3AA5-4415-B02B-B1E2A86B10B4} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-03-28] ()
Task: {AD995DA7-3BF3-4AC3-AADB-5335EC3B864C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-11] (Adobe Systems Incorporated)
Task: {C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.EXE /NOUACCHECK
Task: {CC8177EC-CA32-4275-B6A8-79D7B3B49121} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-03-28] ()
Task: {CE35FECE-4ED1-403C-B32C-CE72958B0312} - System32\Tasks\Opera scheduled Autoupdate 1492092065 => C:\Program Files\Opera\launcher.exe [2017-04-12] (Opera Software)
Task: {DC102A29-36DF-4981-902F-CCCCD25DEA1E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-04-01] (NVIDIA Corporation)
Task: {DC690259-2B08-4A85-99AE-E27007805AFF} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-01] (NVIDIA Corporation)
Task: {E742A439-1402-4EE6-AD65-BA76B754C362} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2013-07-24] (ASUSTeK Computer Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-08-05 10:21 - 2014-07-23 03:59 - 00936728 ____R () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2016-08-05 10:21 - 2014-07-23 03:59 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2017-04-12 13:52 - 2017-04-01 05:27 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-08-19 15:17 - 2016-11-29 00:09 - 01290200 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
2016-08-19 15:18 - 2015-11-11 10:55 - 01460176 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-08-19 15:18 - 2016-02-01 17:35 - 01056256 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
2016-08-19 15:18 - 2014-08-28 10:37 - 00033424 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
2016-08-19 15:17 - 2016-09-09 11:46 - 01530328 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\AsPowerBar.exe
2016-08-18 17:49 - 2016-08-18 17:49 - 00105312 _____ () C:\WINDOWS\SYSTEM32\audioLibVc.dll
2017-04-05 12:32 - 2017-04-05 12:32 - 10650112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-04-05 12:32 - 2017-04-05 12:32 - 02653184 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-04-05 12:32 - 2017-04-05 12:32 - 00761344 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-03-18 22:59 - 2017-03-20 06:12 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-04-11 00:57 - 2017-04-11 00:57 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1051.dll
2016-08-05 10:21 - 2017-04-19 17:50 - 00038672 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2016-08-05 10:21 - 2014-07-23 03:59 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2017-04-18 10:07 - 2017-04-05 10:09 - 02493440 _____ () D:\Origin\libGLESv2.dll
2015-07-10 23:37 - 2015-07-10 23:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\kpcengine.2.3.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 00901688 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 03776056 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-08-19 15:17 - 2016-11-25 17:53 - 00268760 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4cTDPAction.dll
2016-08-19 15:17 - 2016-05-04 22:46 - 00786416 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2016-08-19 15:17 - 2016-11-25 12:40 - 00901592 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2016-08-19 15:17 - 2016-04-21 00:52 - 00828376 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2016-08-19 15:17 - 2016-11-25 17:54 - 00851928 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2016-08-19 15:17 - 2015-09-17 11:58 - 00091648 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Log4cxxWrapper.dll
2016-08-19 15:17 - 2015-09-17 11:58 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2016-08-19 15:17 - 2015-02-09 17:53 - 00872960 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AI Charger+\AIChargerPlus.dll
2016-08-19 15:17 - 2016-11-29 00:07 - 04817880 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2016-08-19 15:17 - 2016-03-07 22:42 - 00091648 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\Log4cxxWrapper.dll
2016-08-19 15:18 - 2015-05-21 22:57 - 01141248 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2016-08-19 15:18 - 2015-06-26 13:50 - 00906240 _____ () C:\Program Files (x86)\ASUS\AI Suite III\LED Control\LEDControl.dll
2016-08-19 15:18 - 2015-12-28 11:02 - 01464832 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Mobo Connect\MoboConnect.dll
2016-08-19 15:17 - 2015-09-17 11:58 - 00838456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Version\Version.dll
2017-01-04 21:08 - 2017-01-04 21:08 - 00061440 _____ () C:\Program Files (x86)\ASUS\VGA COM\1.00.32\Exeio.dll
2017-01-04 21:08 - 2017-01-04 21:08 - 01752576 _____ () C:\Program Files (x86)\ASUS\VGA COM\1.00.32\Vender.dll
2017-01-04 21:08 - 2017-01-04 21:08 - 00669656 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMLib.dll
2016-08-19 15:18 - 2015-09-10 16:06 - 00237568 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2016-08-19 15:18 - 2015-08-14 11:23 - 00621056 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll
2016-08-19 15:18 - 2014-02-24 17:49 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2016-08-19 15:18 - 2013-11-20 10:10 - 00662016 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\aaHMLib.dll
2016-08-19 15:18 - 2013-07-02 10:40 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\pngio.dll
2016-08-19 15:17 - 2016-03-07 22:42 - 00743424 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\EPU.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2017-04-12 13:52 - 2017-04-01 05:27 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2017-04-12 13:52 - 2017-04-01 05:27 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2017-04-12 13:52 - 2017-04-01 05:27 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2017-04-12 13:52 - 2017-04-01 05:27 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2017-04-12 13:52 - 2017-04-01 05:27 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetSetupSvc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-08-05 10:24 - 2017-04-18 19:18 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\Control Panel\Desktop\\Wallpaper -> D:\SOFT\a_wooden_house_forest-wallpaper-1920x1080.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "AO Link Server"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "CAM"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_76888AFBA486CCF068F690F0F6295975"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "World of Tanks"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8639619E-C6A1-4EA4-A147-0EEBB4D4F6D9}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{89B46EDB-5389-41A7-A7C3-22B10BB35B74}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{D96AEBA9-9503-49FE-8DB6-BCD4D2C8BCE3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [UDP Query User{EB3EFDAF-9B39-45AA-9A4E-D5F564C95369}D:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) D:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [TCP Query User{D9CDF7B0-3E78-456C-9327-7712C69056F4}D:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) D:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [{E8BA12AD-48C3-4D2E-AB5D-98E59A1FE08B}] => (Allow) LPort=2333
FirewallRules: [{067BFC97-796E-438E-9906-0BDA60C8E298}] => (Allow) LPort=9143
FirewallRules: [{86C9202D-C2E8-4901-8192-F7B5740C3024}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C9DDA72B-11C9-4C8A-B54A-E6F012EE54B3}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{E47BBFFB-BF62-4228-A632-20D052E95C11}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{E649A22D-CB20-4C5A-8490-8CF6FED07A19}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [UDP Query User{0F340D7D-51C6-433F-8A0C-395E7C02034F}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{22C7429F-A179-4119-B890-9F21D95C798C}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{421F3F97-8F06-4986-92BF-452B0363DA7B}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{A3CBA7F8-5D56-427A-A789-AC1783325014}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{EACB4E2A-E6BF-42D0-864F-C1C8313E1BDA}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{39F24773-161E-449E-B0C4-8582DC3DC08C}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [UDP Query User{37311786-D07A-4688-ACC4-4F515FDB52DD}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [TCP Query User{4710FFB5-38BA-4956-B1A3-A7814456E27A}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{6C6CAD12-6429-403D-85B7-F164CD65B92E}] => (Allow) D:\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{74C46DDB-9612-4600-B312-D69EB7F48653}] => (Allow) D:\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [UDP Query User{51BD4F94-2F97-4C21-9BC6-242B25441F49}E:\motogp2 demo\motogp2_demo.exe] => (Block) E:\motogp2 demo\motogp2_demo.exe
FirewallRules: [TCP Query User{DF8F7FE6-B002-430F-985E-339CAA40C308}E:\motogp2 demo\motogp2_demo.exe] => (Block) E:\motogp2 demo\motogp2_demo.exe
FirewallRules: [{FE4BDCAA-D6CA-4AFA-BD30-9B82A3BE4EB6}] => (Allow) D:\Steam\steamapps\common\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{4DA56BA2-DB07-4EB9-9E27-DB97F03447FC}] => (Allow) D:\Steam\steamapps\common\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{2BB9191A-97F6-4840-8B4B-CC3ABA93B456}] => (Allow) D:\Steam\steamapps\common\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{F8D9D274-50E1-4A14-82D0-D5BFC1655EF7}] => (Allow) D:\Steam\steamapps\common\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{B84056A3-5D37-4539-9CC8-8DC5B6716251}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{61FAE127-DC09-49A3-9B7B-7564E9F255B9}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E169037D-EE6A-49EE-8A67-8E62C3B70A5C}] => (Allow) LPort=1900
FirewallRules: [{447AB936-5AFE-437C-8542-0E31F2816D08}] => (Allow) LPort=2869
FirewallRules: [{7817807F-579F-4154-8BDB-A4B0CA29F454}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{399EFBEF-6136-46DA-B53B-68C423A263E9}] => (Allow) D:\Skype\Phone\Skype.exe
FirewallRules: [{1ADB3123-E266-4850-87F6-030B571D1BCD}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{D3011D57-06F4-41C6-AE1A-CC77DDFD97C3}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{0F3AA304-60D5-4A9F-A362-1BA956DC73D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{2F72003C-F8FF-48B4-83CF-A22DD727F957}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{FBF09D10-0DFD-40DA-BCC9-CE2D19012642}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C7D95C99-C38A-4C84-9864-1901045FDBB2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1108EEA1-C773-4453-A2D2-5774FAE41404}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{90AB7066-7100-4117-9DE9-84F3B4FA801F}] => (Allow) C:\Program Files\Opera\44.0.2510.1218\opera.exe
FirewallRules: [{7532E311-5ABD-4AC7-8AD3-B2C34D1E4030}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{98E5BC97-FEDC-4285-8EAD-E77DE246334A}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{00BC9294-A3BA-42C4-87D7-166DF4D16998}] => (Allow) D:\Steam\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{7C24FA75-BAA4-43DE-B48A-D9CBEC9E3418}] => (Allow) D:\Steam\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{EFF692B2-DA12-4CBC-B73B-C37BD95BAE4C}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{76E7FCC7-D3DA-49E0-985E-2A4BA2A6560E}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BD5537FD-1914-4156-91DE-B54D008C11FA}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{F8AD8374-D8E8-4133-9CF4-531DE13F5B85}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C6D14A15-094E-41F1-AA34-95DA0302BB8B}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
FirewallRules: [{0EFD23E8-B060-4602-8980-5DBB6087BAD6}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
==================== Restore Points =========================
19-04-2017 17:50:55 Revo Uninstaller's restore point - Avira Connect
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/21/2017 03:13:47 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=UserLogon;SessionId=4
Error: (04/21/2017 03:13:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007139F
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/20/2017 10:37:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: NVDisplay.Container.exe, verzia: 1.2.0.0, časová značka: 0x58df0aaf
Názov chybujúceho modulu: nvxdsyncplugin.dll_unloaded, verzia: 8.17.13.8165, časová značka: 0x58df02a5
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000047bc1
Identifikácia chybujúceho procesu: 0x27f8
Čas spustenia chybujúcej aplikácie: 0x01d2ba15f410c508
Cesta chybujúcej aplikácie: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
Cesta chybujúceho modulu: nvxdsyncplugin.dll
Identifikácia hlásenia: 3440182c-eed3-44d5-9193-aeab0f303798
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (04/20/2017 03:26:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
Error: (04/20/2017 03:26:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: NVDisplay.Container.exe, verzia: 1.2.0.0, časová značka: 0x58df0aaf
Názov chybujúceho modulu: combase.dll, verzia: 10.0.15063.0, časová značka: 0x3a54a041
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000000beab5
Identifikácia chybujúceho procesu: 0x664
Čas spustenia chybujúcej aplikácie: 0x01d2b924a270c654
Cesta chybujúcej aplikácie: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\combase.dll
Identifikácia hlásenia: db6ae5b9-470f-4234-b61a-9faa90bbaaf3
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (04/20/2017 03:26:01 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007139F
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/19/2017 10:42:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MAREK)
Description: Aktivácia aplikácie Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI zlyhala pre chybu: -2144927141 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.
Error: (04/19/2017 06:42:15 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Zväzok Lokálny disk (D:) sa neoptimalizoval, pretože sa vyskytla chyba: Presun súborov zlyhal. (0x89000016)
Error: (04/19/2017 05:57:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/19/2017 05:54:50 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
System errors:
=============
Error: (04/21/2017 09:55:00 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
Error: (04/21/2017 09:55:00 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:54:48 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
Error: (04/21/2017 09:53:29 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:45:45 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
Error: (04/21/2017 09:45:45 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:45:41 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:45:33 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
Error: (04/21/2017 09:45:33 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:45:20 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
CodeIntegrity:
===================================
Date: 2017-04-21 17:36:49.427
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-21 17:36:49.399
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-20 19:27:23.745
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-20 16:09:58.207
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-20 16:09:58.070
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-19 20:12:56.323
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-19 20:12:56.281
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-19 16:54:48.534
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-19 16:54:48.457
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-17 15:49:51.134
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Percentage of memory in use: 24%
Total physical RAM: 8132.56 MB
Available physical RAM: 6156.32 MB
Total Virtual: 16324.56 MB
Available Virtual: 13629.39 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.24 GB) (Free:74.29 GB) NTFS
Drive d: (Lokálny disk ) (Fixed) (Total:929.87 GB) (Free:737.19 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 111.8 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt ============================
Ran by Marek (22-04-2017 01:37:41)
Running from C:\Users\Marek\Desktop
Windows 10 Enterprise Version 1703 (X64) (2017-04-12 11:36:44)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1716883906-1395262932-1576560517-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1716883906-1395262932-1576560517-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1716883906-1395262932-1576560517-1000 - Limited - Disabled) => C:\Users\defaultuser0
gabri (S-1-5-21-1716883906-1395262932-1576560517-1003 - Limited - Disabled)
Guest (S-1-5-21-1716883906-1395262932-1576560517-501 - Limited - Disabled)
Marek (S-1-5-21-1716883906-1395262932-1576560517-1001 - Administrator - Enabled) => C:\Users\Marek
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 1.01.59 - ASUSTeK Computer Inc.)
Aktualizácie NVIDIA 23.23.30.0 (Version: 23.23.30.0 - NVIDIA Corporation) Hidden
Ansel (Version: 381.65 - NVIDIA Corporation) Hidden
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.33.1 - Asmedia Technology)
CCleaner (HKLM\...\CCleaner) (Version: 5.29 - Piriform)
Core Temp 1.7 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.7 - ALCPU)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.31 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 7.0.5 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Data Lifeguard Diagnostic for Windows 1.31 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
DiRT 3 Complete Edition (HKLM\...\Steam App 321040) (Version: - Codemasters Racing Studio)
Disable Autorun (HKLM-x32\...\{53A1CC4F-5332-442B-B9E2-0F57C254B818}_is1) (Version: - www.disableautorun.com)
Discord (HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
Far Cry 4 (HKLM\...\Steam App 298110) (Version: - Ubisoft Montreal, Red Storm, Shanghai, Toronto, Kiev)
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.47.16140 - Electronic Arts)
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.33.3 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
Gyazo 3.3.1 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel® Chipset Device Software (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.42 - Irfan Skiljan)
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Lightshot-5.4.0.5 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.5 - Skillbrains)
Malwarebytes Anti-Malware verzia 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
NVIDIA 3D Vision radič ovládača 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation)
NVIDIA Grafický ovládač 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 381.65 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.5.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Opera Stable 44.0.2510.1218 (HKLM-x32\...\Opera 44.0.2510.1218) (Version: 44.0.2510.1218 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.4.8.36918 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 381.65 (Version: 381.65 - NVIDIA Corporation) Hidden
Puran Utilities 3.1 (HKLM\...\Puran Utilities_is1) (Version: - Puran Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7910 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.)
Rocket League (HKLM\...\Steam App 252950) (Version: - Psyonix, Inc.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
USB Vibration Joystick (BM) (HKLM-x32\...\{61A994FF-D39B-4937-9DB9-87EC4FF1BB88}) (Version: 1.00.0000 - ShanWan)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
WinDirStat 1.1.2 (HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\WinDirStat) (Version: - )
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
XTUPackage (HKLM-x32\...\{84D11A20-6E7F-4FBB-A2FB-117FCF871040}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0317038F-C1D3-434A-A1D9-23F36097DF2B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-01] (NVIDIA Corporation)
Task: {06563932-A179-49A9-A23E-E5D87A23BD48} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe [2017-04-11] (Adobe Systems Incorporated)
Task: {068DBD13-BA50-49AB-8821-D2AB009ED964} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {126CEEAF-E2F5-42C3-96A9-83B06558058C} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [2016-09-20] (TODO: <Company name>)
Task: {34300B4D-15AD-45E4-A1A6-D9A33E53B677} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-01] (NVIDIA Corporation)
Task: {3DBFD9DF-D85B-4BFD-807B-C6F78F13D568} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-04-01] (NVIDIA Corporation)
Task: {58DE9D4C-958A-40DB-A425-FC71FB55B1B3} - System32\Tasks\ASUS\Push Notice Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [2014-05-28] (ASUSTeK Computer Inc.)
Task: {60AFD820-A869-4051-A348-955EC89B85FE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-04-01] (NVIDIA Corporation)
Task: {64B63520-C783-4598-9E6F-1CC0E3A50535} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-01] (NVIDIA Corporation)
Task: {64D227A1-CAF2-4F62-893C-CB71B7F5593F} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task
Task: {693F02EA-12F7-4661-8730-A5DF1AFD642F} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh
Task: {6A183DC4-D711-40ED-AA62-AA050C58719C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {6BD9FDA3-C8EE-4C02-95CB-1B221BF24F79} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged
Task: {7692E74E-BC95-4DA5-A4B1-2C51E01F1A05} - System32\Tasks\CAM => D:\NZXT\CAM\CAM_V3.exe
Task: {773A931D-F1B0-48E8-888C-78939559EC67} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2016-11-29] ()
Task: {77B6780B-7458-4C46-BA9A-8A5C01D04FBA} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [2017-03-20] (Microsoft Corporation)
Task: {77F13EEA-555B-4DBE-95C2-947A8ED9830D} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2016-11-28] (ASUSTeK Computer Inc.)
Task: {797E30D4-1F40-429E-88A6-B13F1F002D11} - System32\Tasks\GIGABYTE OC GURU => C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
Task: {7BC2EB75-7406-4607-94A3-4F72D466685E} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [2015-11-11] ()
Task: {7E48EB16-2459-437A-B3B5-DD91866302CC} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task
Task: {8B200375-827A-4A6A-9F32-1134F6B9C0C4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-04-11] (Piriform Ltd)
Task: {9BFBFF63-27D1-4C7C-ADFA-AE5B98B90F78} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask
Task: {A4217535-138F-4294-9053-0D92E8E92F8B} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [2017-03-20] (Microsoft Corporation)
Task: {A6681086-56DC-4C69-840A-9E929EAD061F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {A756501E-3AA5-4415-B02B-B1E2A86B10B4} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-03-28] ()
Task: {AD995DA7-3BF3-4AC3-AADB-5335EC3B864C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-11] (Adobe Systems Incorporated)
Task: {C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.EXE /NOUACCHECK
Task: {CC8177EC-CA32-4275-B6A8-79D7B3B49121} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-03-28] ()
Task: {CE35FECE-4ED1-403C-B32C-CE72958B0312} - System32\Tasks\Opera scheduled Autoupdate 1492092065 => C:\Program Files\Opera\launcher.exe [2017-04-12] (Opera Software)
Task: {DC102A29-36DF-4981-902F-CCCCD25DEA1E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-04-01] (NVIDIA Corporation)
Task: {DC690259-2B08-4A85-99AE-E27007805AFF} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-01] (NVIDIA Corporation)
Task: {E742A439-1402-4EE6-AD65-BA76B754C362} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2013-07-24] (ASUSTeK Computer Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-08-05 10:21 - 2014-07-23 03:59 - 00936728 ____R () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2016-08-05 10:21 - 2014-07-23 03:59 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2017-04-12 13:52 - 2017-04-01 05:27 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-08-19 15:17 - 2016-11-29 00:09 - 01290200 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
2016-08-19 15:18 - 2015-11-11 10:55 - 01460176 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-08-19 15:18 - 2016-02-01 17:35 - 01056256 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
2016-08-19 15:18 - 2014-08-28 10:37 - 00033424 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
2016-08-19 15:17 - 2016-09-09 11:46 - 01530328 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\AsPowerBar.exe
2016-08-18 17:49 - 2016-08-18 17:49 - 00105312 _____ () C:\WINDOWS\SYSTEM32\audioLibVc.dll
2017-04-05 12:32 - 2017-04-05 12:32 - 10650112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-04-05 12:32 - 2017-04-05 12:32 - 02653184 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-04-05 12:32 - 2017-04-05 12:32 - 00761344 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-03-18 22:59 - 2017-03-20 06:12 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-04-11 00:57 - 2017-04-11 00:57 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1051.dll
2016-08-05 10:21 - 2017-04-19 17:50 - 00038672 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2016-08-05 10:21 - 2014-07-23 03:59 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2017-04-18 10:07 - 2017-04-05 10:09 - 02493440 _____ () D:\Origin\libGLESv2.dll
2015-07-10 23:37 - 2015-07-10 23:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\kpcengine.2.3.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 00901688 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 03776056 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-08-19 15:17 - 2016-11-25 17:53 - 00268760 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4cTDPAction.dll
2016-08-19 15:17 - 2016-05-04 22:46 - 00786416 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2016-08-19 15:17 - 2016-11-25 12:40 - 00901592 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2016-08-19 15:17 - 2016-04-21 00:52 - 00828376 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2016-08-19 15:17 - 2016-11-25 17:54 - 00851928 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2016-08-19 15:17 - 2015-09-17 11:58 - 00091648 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Log4cxxWrapper.dll
2016-08-19 15:17 - 2015-09-17 11:58 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2016-08-19 15:17 - 2015-02-09 17:53 - 00872960 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AI Charger+\AIChargerPlus.dll
2016-08-19 15:17 - 2016-11-29 00:07 - 04817880 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2016-08-19 15:17 - 2016-03-07 22:42 - 00091648 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\Log4cxxWrapper.dll
2016-08-19 15:18 - 2015-05-21 22:57 - 01141248 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2016-08-19 15:18 - 2015-06-26 13:50 - 00906240 _____ () C:\Program Files (x86)\ASUS\AI Suite III\LED Control\LEDControl.dll
2016-08-19 15:18 - 2015-12-28 11:02 - 01464832 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Mobo Connect\MoboConnect.dll
2016-08-19 15:17 - 2015-09-17 11:58 - 00838456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Version\Version.dll
2017-01-04 21:08 - 2017-01-04 21:08 - 00061440 _____ () C:\Program Files (x86)\ASUS\VGA COM\1.00.32\Exeio.dll
2017-01-04 21:08 - 2017-01-04 21:08 - 01752576 _____ () C:\Program Files (x86)\ASUS\VGA COM\1.00.32\Vender.dll
2017-01-04 21:08 - 2017-01-04 21:08 - 00669656 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMLib.dll
2016-08-19 15:18 - 2015-09-10 16:06 - 00237568 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2016-08-19 15:18 - 2015-08-14 11:23 - 00621056 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll
2016-08-19 15:18 - 2014-02-24 17:49 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2016-08-19 15:18 - 2013-11-20 10:10 - 00662016 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\aaHMLib.dll
2016-08-19 15:18 - 2013-07-02 10:40 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\pngio.dll
2016-08-19 15:17 - 2016-03-07 22:42 - 00743424 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\EPU.dll
2017-04-12 13:52 - 2017-04-01 05:27 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2017-04-12 13:52 - 2017-04-01 05:27 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2017-04-12 13:52 - 2017-04-01 05:27 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2017-04-12 13:52 - 2017-04-01 05:27 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2017-04-12 13:52 - 2017-04-01 05:27 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2017-04-12 13:52 - 2017-04-01 05:27 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetSetupSvc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-08-05 10:24 - 2017-04-18 19:18 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\Control Panel\Desktop\\Wallpaper -> D:\SOFT\a_wooden_house_forest-wallpaper-1920x1080.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "AO Link Server"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "CAM"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_76888AFBA486CCF068F690F0F6295975"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\...\StartupApproved\Run: => "World of Tanks"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8639619E-C6A1-4EA4-A147-0EEBB4D4F6D9}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{89B46EDB-5389-41A7-A7C3-22B10BB35B74}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{D96AEBA9-9503-49FE-8DB6-BCD4D2C8BCE3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [UDP Query User{EB3EFDAF-9B39-45AA-9A4E-D5F564C95369}D:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) D:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [TCP Query User{D9CDF7B0-3E78-456C-9327-7712C69056F4}D:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) D:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [{E8BA12AD-48C3-4D2E-AB5D-98E59A1FE08B}] => (Allow) LPort=2333
FirewallRules: [{067BFC97-796E-438E-9906-0BDA60C8E298}] => (Allow) LPort=9143
FirewallRules: [{86C9202D-C2E8-4901-8192-F7B5740C3024}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C9DDA72B-11C9-4C8A-B54A-E6F012EE54B3}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{E47BBFFB-BF62-4228-A632-20D052E95C11}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{E649A22D-CB20-4C5A-8490-8CF6FED07A19}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [UDP Query User{0F340D7D-51C6-433F-8A0C-395E7C02034F}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{22C7429F-A179-4119-B890-9F21D95C798C}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{421F3F97-8F06-4986-92BF-452B0363DA7B}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{A3CBA7F8-5D56-427A-A789-AC1783325014}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{EACB4E2A-E6BF-42D0-864F-C1C8313E1BDA}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{39F24773-161E-449E-B0C4-8582DC3DC08C}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [UDP Query User{37311786-D07A-4688-ACC4-4F515FDB52DD}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [TCP Query User{4710FFB5-38BA-4956-B1A3-A7814456E27A}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{6C6CAD12-6429-403D-85B7-F164CD65B92E}] => (Allow) D:\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{74C46DDB-9612-4600-B312-D69EB7F48653}] => (Allow) D:\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [UDP Query User{51BD4F94-2F97-4C21-9BC6-242B25441F49}E:\motogp2 demo\motogp2_demo.exe] => (Block) E:\motogp2 demo\motogp2_demo.exe
FirewallRules: [TCP Query User{DF8F7FE6-B002-430F-985E-339CAA40C308}E:\motogp2 demo\motogp2_demo.exe] => (Block) E:\motogp2 demo\motogp2_demo.exe
FirewallRules: [{FE4BDCAA-D6CA-4AFA-BD30-9B82A3BE4EB6}] => (Allow) D:\Steam\steamapps\common\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{4DA56BA2-DB07-4EB9-9E27-DB97F03447FC}] => (Allow) D:\Steam\steamapps\common\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{2BB9191A-97F6-4840-8B4B-CC3ABA93B456}] => (Allow) D:\Steam\steamapps\common\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{F8D9D274-50E1-4A14-82D0-D5BFC1655EF7}] => (Allow) D:\Steam\steamapps\common\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{B84056A3-5D37-4539-9CC8-8DC5B6716251}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{61FAE127-DC09-49A3-9B7B-7564E9F255B9}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E169037D-EE6A-49EE-8A67-8E62C3B70A5C}] => (Allow) LPort=1900
FirewallRules: [{447AB936-5AFE-437C-8542-0E31F2816D08}] => (Allow) LPort=2869
FirewallRules: [{7817807F-579F-4154-8BDB-A4B0CA29F454}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{399EFBEF-6136-46DA-B53B-68C423A263E9}] => (Allow) D:\Skype\Phone\Skype.exe
FirewallRules: [{1ADB3123-E266-4850-87F6-030B571D1BCD}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{D3011D57-06F4-41C6-AE1A-CC77DDFD97C3}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{0F3AA304-60D5-4A9F-A362-1BA956DC73D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{2F72003C-F8FF-48B4-83CF-A22DD727F957}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{FBF09D10-0DFD-40DA-BCC9-CE2D19012642}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C7D95C99-C38A-4C84-9864-1901045FDBB2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1108EEA1-C773-4453-A2D2-5774FAE41404}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{90AB7066-7100-4117-9DE9-84F3B4FA801F}] => (Allow) C:\Program Files\Opera\44.0.2510.1218\opera.exe
FirewallRules: [{7532E311-5ABD-4AC7-8AD3-B2C34D1E4030}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{98E5BC97-FEDC-4285-8EAD-E77DE246334A}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{00BC9294-A3BA-42C4-87D7-166DF4D16998}] => (Allow) D:\Steam\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{7C24FA75-BAA4-43DE-B48A-D9CBEC9E3418}] => (Allow) D:\Steam\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{EFF692B2-DA12-4CBC-B73B-C37BD95BAE4C}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{76E7FCC7-D3DA-49E0-985E-2A4BA2A6560E}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BD5537FD-1914-4156-91DE-B54D008C11FA}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{F8AD8374-D8E8-4133-9CF4-531DE13F5B85}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C6D14A15-094E-41F1-AA34-95DA0302BB8B}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
FirewallRules: [{0EFD23E8-B060-4602-8980-5DBB6087BAD6}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
==================== Restore Points =========================
19-04-2017 17:50:55 Revo Uninstaller's restore point - Avira Connect
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/21/2017 03:13:47 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=UserLogon;SessionId=4
Error: (04/21/2017 03:13:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007139F
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/20/2017 10:37:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: NVDisplay.Container.exe, verzia: 1.2.0.0, časová značka: 0x58df0aaf
Názov chybujúceho modulu: nvxdsyncplugin.dll_unloaded, verzia: 8.17.13.8165, časová značka: 0x58df02a5
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000047bc1
Identifikácia chybujúceho procesu: 0x27f8
Čas spustenia chybujúcej aplikácie: 0x01d2ba15f410c508
Cesta chybujúcej aplikácie: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
Cesta chybujúceho modulu: nvxdsyncplugin.dll
Identifikácia hlásenia: 3440182c-eed3-44d5-9193-aeab0f303798
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (04/20/2017 03:26:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
Error: (04/20/2017 03:26:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: NVDisplay.Container.exe, verzia: 1.2.0.0, časová značka: 0x58df0aaf
Názov chybujúceho modulu: combase.dll, verzia: 10.0.15063.0, časová značka: 0x3a54a041
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000000beab5
Identifikácia chybujúceho procesu: 0x664
Čas spustenia chybujúcej aplikácie: 0x01d2b924a270c654
Cesta chybujúcej aplikácie: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\combase.dll
Identifikácia hlásenia: db6ae5b9-470f-4234-b61a-9faa90bbaaf3
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (04/20/2017 03:26:01 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007139F
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/19/2017 10:42:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MAREK)
Description: Aktivácia aplikácie Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI zlyhala pre chybu: -2144927141 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.
Error: (04/19/2017 06:42:15 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Zväzok Lokálny disk (D:) sa neoptimalizoval, pretože sa vyskytla chyba: Presun súborov zlyhal. (0x89000016)
Error: (04/19/2017 05:57:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/19/2017 05:54:50 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=73111121-5638-40f6-bc11-f1d7b0d64300;NotificationInterval=1440;Trigger=NetworkAvailable
System errors:
=============
Error: (04/21/2017 09:55:00 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
Error: (04/21/2017 09:55:00 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:54:48 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
Error: (04/21/2017 09:53:29 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:45:45 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
Error: (04/21/2017 09:45:45 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:45:41 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:45:33 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
Error: (04/21/2017 09:45:33 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
Error: (04/21/2017 09:45:20 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.
CodeIntegrity:
===================================
Date: 2017-04-21 17:36:49.427
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-21 17:36:49.399
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-20 19:27:23.745
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-20 16:09:58.207
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-20 16:09:58.070
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-19 20:12:56.323
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-19 20:12:56.281
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-19 16:54:48.534
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-19 16:54:48.457
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-04-17 15:49:51.134
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Percentage of memory in use: 24%
Total physical RAM: 8132.56 MB
Available physical RAM: 6156.32 MB
Total Virtual: 16324.56 MB
Available Virtual: 13629.39 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.24 GB) (Free:74.29 GB) NTFS
Drive d: (Lokálny disk ) (Fixed) (Total:929.87 GB) (Free:737.19 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 111.8 GB) (Disk ID: 00000000)Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or
(Size: 931.5 GB) (Disk ID: 00000000)Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt ============================
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o preventivní kontrolu. Dakujem
Odinstaluj:
Avira Browser Safety (CHR Extension)
Avira (pokud najdeš)
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Error: (04/21/2017 09:55:00 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
https://social.technet.microsoft.com/Fo ... 7itproperf
druhý disk neopravitelný , zazálohuj si potřebné.
hry máš na prvním disku?
Avira Browser Safety (CHR Extension)
Avira (pokud najdeš)
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
S2 SkypeUpdate; D:\Skype\Updater\Updater.exe [317400 2017-01-16] (Skype Technologies)
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
C:\Users\Marek\AppData\Local\UserProducts.xml
Task: {068DBD13-BA50-49AB-8821-D2AB009ED964} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {6A183DC4-D711-40ED-AA62-AA050C58719C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.EXE /NOUACCHECK
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
EmptyTemp:
End(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Error: (04/21/2017 09:55:00 PM) (Source: Disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
https://social.technet.microsoft.com/Fo ... 7itproperf
druhý disk neopravitelný , zazálohuj si potřebné.
hry máš na prvním disku?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o preventivní kontrolu. Dakujem
hry mam na HDD
Fix result of Farbar Recovery Scan Tool (x64) Version: 22-04-2017
Ran by Marek (22-04-2017 12:12:39) Run:1
Running from C:\Users\Marek\Desktop
Loaded Profiles: Marek (Available Profiles: defaultuser0 & Marek)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
S2 SkypeUpdate; D:\Skype\Updater\Updater.exe [317400 2017-01-16] (Skype Technologies)
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
C:\Users\Marek\AppData\Local\UserProducts.xml
Task: {068DBD13-BA50-49AB-8821-D2AB009ED964} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {6A183DC4-D711-40ED-AA62-AA050C58719C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.EXE /NOUACCHECK
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => key removed successfully
HKLM\System\CurrentControlSet\Services\SkypeUpdate => key removed successfully
SkypeUpdate => service removed successfully
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82} => moved successfully
C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805} => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira => moved successfully
C:\Users\Marek\AppData\Local\Resmon.ResmonCfg => moved successfully
C:\Users\Marek\AppData\Local\UserProducts.xml => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{068DBD13-BA50-49AB-8821-D2AB009ED964} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{068DBD13-BA50-49AB-8821-D2AB009ED964} => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A183DC4-D711-40ED-AA62-AA050C58719C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A183DC4-D711-40ED-AA62-AA050C58719C} => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} => key removed successfully
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CreateExplorerShellUnelevatedTask => key removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25543227 B
Java, Flash, Steam htmlcache => 367678086 B
Windows/system/drivers => 7977161 B
Edge => 11085 B
Chrome => 16953043 B
Firefox => 0 B
Opera => 429535151 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
defaultuser0 => 0 B
Marek => 79451696 B
RecycleBin => 0 B
EmptyTemp: => 890 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 12:12:44 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 22-04-2017
Ran by Marek (22-04-2017 12:12:39) Run:1
Running from C:\Users\Marek\Desktop
Loaded Profiles: Marek (Available Profiles: defaultuser0 & Marek)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1716883906-1395262932-1576560517-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
S2 SkypeUpdate; D:\Skype\Updater\Updater.exe [317400 2017-01-16] (Skype Technologies)
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
C:\Users\Marek\AppData\Local\Resmon.ResmonCfg
C:\Users\Marek\AppData\Local\UserProducts.xml
Task: {068DBD13-BA50-49AB-8821-D2AB009ED964} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {6A183DC4-D711-40ED-AA62-AA050C58719C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-28] (Google Inc.)
Task: {C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.EXE /NOUACCHECK
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-1716883906-1395262932-1576560517-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => key removed successfully
HKLM\System\CurrentControlSet\Services\SkypeUpdate => key removed successfully
SkypeUpdate => service removed successfully
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82} => moved successfully
C:\WINDOWS\System32\Tasks\CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805} => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira => moved successfully
C:\Users\Marek\AppData\Local\Resmon.ResmonCfg => moved successfully
C:\Users\Marek\AppData\Local\UserProducts.xml => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{068DBD13-BA50-49AB-8821-D2AB009ED964} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{068DBD13-BA50-49AB-8821-D2AB009ED964} => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A183DC4-D711-40ED-AA62-AA050C58719C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A183DC4-D711-40ED-AA62-AA050C58719C} => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C54ED4DB-E9F8-42E9-A8E3-26DDC77B41B2} => key removed successfully
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CreateExplorerShellUnelevatedTask => key removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25543227 B
Java, Flash, Steam htmlcache => 367678086 B
Windows/system/drivers => 7977161 B
Edge => 11085 B
Chrome => 16953043 B
Firefox => 0 B
Opera => 429535151 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
defaultuser0 => 0 B
Marek => 79451696 B
RecycleBin => 0 B
EmptyTemp: => 890 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 12:12:44 ====
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Prosím o preventivní kontrolu. Dakujem
Tudíž je máš na vadném disku.
Co jinak problémy?
Co jinak problémy?
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Prosím o preventivní kontrolu. Dakujem
problemy teraz nejsu
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o preventivní kontrolu. Dakujem
Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
https://toolslib.net/downloads/viewdownload/2-delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 8 hostů