Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-02-2016
Ran by Richard (administrator) on RICHARDOV-PC (09-02-2016 20:17:13)
Running from C:\Users\Richard\Desktop
Loaded Profiles: Richard (Available Profiles: Richard)
Platform: Windows 10 Home Version 1511 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Panda Security, S.L.) C:\Config.Msi\40b87d.rbf
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Visicom Media Inc.) C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filteringb.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSPanel.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2771576 2015-12-09] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2015-01-27] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [63296 2014-08-20] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Hornet] => C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe [434176 2014-05-22] ()
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [54520 2015-10-22] (Panda Security, S.L.)
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\SysWOW64\userinit.exe,
HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-02] (Electronic Arts)
HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\Run: [uTorrent] => C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe [2065944 2016-02-06] (BitTorrent Inc.)
HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\RunOnce: [Uninstall C:\Users\Richard\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Richard\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-01-06]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
GroupPolicyScripts-x32: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1b61683c-6c97-4288-9bdf-3ce8be2ed00c}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
SearchScopes: HKU\S-1-5-21-1070751703-1546616555-1304526450-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1070751703-1546616555-1304526450-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2016-01-05] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-05] (Oracle Corporation)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-12-29] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-12-29] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-12-29] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-12-29] (McAfee, Inc.)
FireFox:
========
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2015-12-29]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
Chrome:
=======
CHR Profile: C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentácie Google) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-08]
CHR Extension: (Dokumenty Google) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-08]
CHR Extension: (Disk Google) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-08]
CHR Extension: (YouTube) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-08]
CHR Extension: (Google Search) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-08]
CHR Extension: (Tabuľky Google) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-08]
CHR Extension: (SiteAdvisor) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2016-02-08]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-08]
CHR Extension: (Gmail) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-08]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-01-28]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-01-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2014-12-02] ()
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [File not signed]
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [255040 2014-08-25] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156216 2015-12-09] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [158952 2015-12-29] (McAfee, Inc.)
S2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [142072 2015-10-18] (Panda Security, S.L.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-12-09] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8185464 2015-12-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [6477432 2015-12-09] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-02] (Electronic Arts)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [73464 2015-10-28] (Panda Security, S.L.)
R2 panda_url_filtering; C:\ProgramData\Panda Security URL Filtering\Panda_URL_Filteringb.exe [291336 2015-05-19] (Visicom Media Inc.)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-11-14] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-11-15] ()
S2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2015-10-22] (Panda Security, S.L.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-09-23] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-11-13] (Razer Inc.)
R2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2016-02-01] () [File not signed]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R0 assdv2; C:\Windows\System32\Drivers\assdv2.sys [21816 2013-12-05] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-08-26] (Disc Soft Ltd)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-12-12] ()
R3 GM312Fltr; C:\Windows\system32\drivers\GM312Fltr.sys [10624 2013-08-21] (LXD Development, Inc.)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [37448 2015-12-29] (McAfee, Inc.)
R1 MpKsldbe2fac5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8D239CB-ED57-4962-B7D1-CBD34A71385D}\MpKsldbe2fac5.sys [44928 2016-02-08] (Microsoft Corporation)
S1 NNSALPC; C:\Windows\system32\DRIVERS\NNSALPC.sys [103824 2015-07-16] (Panda Security, S.L.)
S1 NNSHTTP; C:\Windows\system32\DRIVERS\NNSHTTP.sys [211352 2015-07-16] (Panda Security, S.L.)
S1 NNSHTTPS; C:\Windows\system32\DRIVERS\NNSHTTPS.sys [120216 2015-07-16] (Panda Security, S.L.)
S1 NNSIDS; C:\Windows\system32\DRIVERS\NNSIDS.sys [120208 2015-07-16] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [58616 2015-06-19] (Panda Security, S.L.)
S1 NNSPICC; C:\Windows\system32\DRIVERS\NNSPICC.sys [112536 2015-07-16] (Panda Security, S.L.)
S4 NNSPIHSW; C:\Windows\system32\DRIVERS\NNSPIHSW.sys [89472 2015-09-01] (Panda Security, S.L.)
S1 NNSPOP3; C:\Windows\system32\DRIVERS\NNSPOP3.sys [133528 2015-07-16] (Panda Security, S.L.)
S1 NNSPROT; C:\Windows\system32\DRIVERS\NNSPROT.sys [309648 2015-07-16] (Panda Security, S.L.)
S1 NNSPRV; C:\Windows\system32\DRIVERS\NNSPRV.sys [179608 2015-07-16] (Panda Security, S.L.)
S1 NNSSMTP; C:\Windows\system32\DRIVERS\NNSSMTP.sys [122776 2015-07-16] (Panda Security, S.L.)
S1 NNSSTRM; C:\Windows\system32\DRIVERS\NNSSTRM.sys [267160 2015-07-16] (Panda Security, S.L.)
S1 NNSTLSC; C:\Windows\system32\DRIVERS\NNSTLSC.sys [115600 2015-07-16] (Panda Security, S.L.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-12-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 panda_url_filteringd; C:\ProgramData\Panda Security URL Filtering\panda_url_filteringd.sys [51288 2014-03-19] (Visicom Media Inc.)
S2 PSINAflt; C:\Windows\system32\DRIVERS\PSINAflt.sys [173464 2015-07-21] (Panda Security, S.L.)
S2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [130968 2015-07-21] (Panda Security, S.L.)
S1 PSINKNC; C:\Windows\system32\DRIVERS\PSINKNC.sys [207256 2015-07-21] (Panda Security, S.L.)
S2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [133528 2015-07-21] (Panda Security, S.L.)
S2 PSINProt; C:\Windows\system32\DRIVERS\PSINProt.sys [143768 2015-07-21] (Panda Security, S.L.)
S2 PSINReg; C:\Windows\system32\DRIVERS\PSINReg.sys [117144 2015-07-21] (Panda Security, S.L.)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-02-09 20:17 - 2016-02-09 20:17 - 00022084 _____ C:\Users\Richard\Desktop\FRST.txt
2016-02-09 19:57 - 2016-02-09 20:17 - 00000000 ____D C:\FRST
2016-02-09 19:56 - 2016-02-09 19:56 - 02370560 _____ (Farbar) C:\Users\Richard\Desktop\FRST64.exe
2016-02-08 21:19 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-02-08 21:18 - 2016-02-08 21:18 - 00000000 ____D C:\Users\Richard\AppData\Local\Colossal Order
2016-02-08 21:16 - 2015-07-21 23:27 - 00117144 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2016-02-08 21:16 - 2015-07-21 23:22 - 00173464 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2016-02-08 21:16 - 2015-07-21 23:22 - 00143768 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2016-02-08 21:16 - 2015-07-21 23:22 - 00133528 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2016-02-08 21:16 - 2015-07-21 23:22 - 00130968 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2016-02-08 21:15 - 2016-02-08 21:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus
2016-02-08 21:15 - 2015-07-21 23:22 - 00207256 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2016-02-08 20:53 - 2016-02-08 21:16 - 00000070 _____ C:\WINDOWS\RAVTC.TMP
2016-02-08 20:05 - 2016-02-08 20:05 - 00000000 ____D C:\Users\Richard\AppData\Local\ActiveSync
2016-02-08 20:02 - 2016-02-08 19:42 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-02-08 19:42 - 2016-02-08 19:57 - 00000000 ____D C:\zoek_backup
2016-02-08 19:41 - 2016-02-08 19:41 - 01309184 _____ C:\Users\Richard\Downloads\zoek.exe
2016-02-08 19:41 - 2016-02-08 19:41 - 01309184 _____ C:\Users\Richard\Desktop\zoek (1).exe
2016-02-08 18:22 - 2016-02-08 19:24 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-02-08 18:22 - 2016-02-08 18:40 - 00000000 ____D C:\ProgramData\RogueKiller
2016-02-08 18:19 - 2016-02-08 18:20 - 25154632 _____ C:\Users\Richard\Desktop\RogueKillerX64.exe
2016-02-08 18:18 - 2016-02-08 18:18 - 00000555 _____ C:\Users\Richard\Desktop\JRT.txt
2016-02-08 18:14 - 2016-02-08 18:14 - 01609032 _____ (Malwarebytes) C:\Users\Richard\Downloads\JRT (2).exe
2016-02-08 18:14 - 2016-02-08 18:14 - 01609032 _____ (Malwarebytes) C:\Users\Richard\Desktop\JRT (1).exe
2016-02-08 16:43 - 2016-02-08 16:43 - 00051396 _____ C:\Users\Richard\Downloads\Administratívny štýl.pdf
2016-02-08 16:16 - 2016-02-08 16:16 - 00001182 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-08 16:16 - 2016-02-08 16:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-02-08 16:14 - 2016-02-08 16:15 - 22908888 _____ (Malwarebytes ) C:\Users\Richard\Downloads\mbam-setup-2.2.0.1024.exe
2016-02-08 16:09 - 2016-02-08 16:09 - 01508352 _____ C:\Users\Richard\Desktop\adwcleaner_5.033.exe
2016-02-08 16:09 - 2016-02-08 16:09 - 00000000 _____ C:\Users\Richard\Downloads\w8xhTbAPSUVOqf4Q7ikSTuKhsRryH968.eq3i8e2.partial
2016-02-08 16:00 - 2016-02-08 16:04 - 01508352 _____ C:\Users\Richard\Downloads\adwcleaner_5_032_exe
2016-02-08 15:56 - 2016-02-08 15:56 - 01508352 _____ C:\Users\Richard\Downloads\AdwCleaner_exe (1)
2016-02-08 15:54 - 2016-02-08 15:54 - 01508352 _____ C:\Users\Richard\Downloads\bZ6gbwlXSPTrtB1dGO4xqkRrX9mp9QqH
2016-02-08 15:49 - 2016-02-08 15:49 - 01508352 _____ C:\Users\Richard\Downloads\AdwCleaner_exe
2016-02-08 15:48 - 2016-02-08 15:48 - 00000000 _____ C:\Users\Richard\Downloads\OFHghWzmjYHtT12JWbHnp9en63UVCFkP.nq50fd3.partial
2016-02-08 15:42 - 2016-02-08 15:42 - 01506736 _____ C:\Users\Richard\Downloads\H3TOyS3vPjYjWhIAqiwrZlrQsxNkbzxU
2016-02-08 15:39 - 2016-02-08 15:39 - 00000000 ____D C:\Users\Richard\AppData\Local\ASUS
2016-02-08 15:33 - 2016-02-08 15:33 - 00448512 _____ (OldTimer Tools) C:\Users\Richard\Downloads\TFC.exe.6e6p0y5.partial
2016-02-08 15:33 - 2016-02-08 15:33 - 00448512 _____ (OldTimer Tools) C:\Users\Richard\Downloads\TFC (1).exe
2016-02-08 15:30 - 2016-02-08 15:30 - 00050688 _____ (Atribune.org) C:\Users\Richard\Downloads\ATF-Cleaner.exe
2016-02-07 20:59 - 2016-02-07 20:59 - 00388608 _____ (Trend Micro Inc.) C:\Users\Richard\Downloads\HijackThis.exe
2016-02-07 19:11 - 2016-02-07 19:12 - 01534720 _____ C:\Users\Richard\Downloads\edukačná aktivita_prac_list.pdf
2016-02-07 16:02 - 2016-02-07 16:03 - 00002569 _____ C:\Users\Richard\Desktop\OldchoolHack.lnk
2016-02-07 16:02 - 2016-02-07 16:02 - 00001289 _____ C:\Users\Richard\Downloads\[www.OldSchoolHack.me]_MultiHack_4.3 – odkaz.lnk
2016-02-07 15:55 - 2016-02-07 15:56 - 00736256 _____ () C:\Users\Richard\Downloads\[www.OldSchoolHack.me]_MultiHack_4.3.exe
2016-02-07 15:26 - 2016-02-07 15:26 - 01609032 _____ (Malwarebytes) C:\Users\Richard\Downloads\JRT.exe
2016-02-07 15:16 - 2016-02-08 16:10 - 00000000 ____D C:\AdwCleaner
2016-02-06 21:22 - 2016-02-06 21:22 - 00000000 ____D C:\Users\Richard\Documents\Colossal Order
2016-02-06 21:22 - 2016-02-06 21:22 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Colossal Order
2016-02-06 21:22 - 2016-02-06 21:22 - 00000000 ____D C:\Users\Richard\AppData\Roaming\.mono
2016-02-06 21:22 - 2016-02-06 21:22 - 00000000 ____D C:\ProgramData\.mono
2016-02-06 17:06 - 2016-02-06 17:06 - 00000000 ____D C:\Users\Richard\Documents\Criterion Games
2016-02-06 17:03 - 2016-02-06 17:03 - 00002701 _____ C:\Users\Richard\Desktop\µTorrent.lnk
2016-02-06 17:02 - 2016-02-09 19:54 - 00000000 ____D C:\Users\Richard\AppData\Roaming\uTorrent
2016-02-06 17:02 - 2016-02-06 17:02 - 02065944 _____ (BitTorrent Inc.) C:\Users\Richard\Downloads\uTorrent (2).exe
2016-02-06 17:00 - 2016-02-06 17:00 - 02065944 _____ (BitTorrent Inc.) C:\Users\Richard\Downloads\uTorrent (1).exe
2016-02-06 16:56 - 2016-02-06 16:56 - 02065944 _____ (BitTorrent Inc.) C:\Users\Richard\Downloads\uTorrent.exe
2016-02-03 22:01 - 2016-02-03 22:01 - 00000000 ____D C:\Users\Richard\Documents\SimCity
2016-02-03 19:03 - 2016-02-06 16:56 - 00013352 _____ C:\Users\Richard\Downloads\SimCity 2013 RePack MULTi2 DLC-SEYTER-[rarbg.com].torrent
2016-02-01 19:11 - 2016-02-01 19:11 - 02150719 _____ C:\Users\Richard\Downloads\Fašiangy-Šaša-Šaľa.pptx
2016-02-01 18:51 - 2016-02-01 18:47 - 00133920 _____ C:\Users\Richard\Documents\Potvrdenie -školenie.pdf
2016-02-01 14:42 - 2016-02-01 14:42 - 00000000 ____D C:\Program Files\Realtek
2016-01-27 21:47 - 2016-01-16 07:37 - 00202472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-01-27 21:47 - 2016-01-16 07:36 - 01173344 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-27 21:47 - 2016-01-16 07:36 - 00713568 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-27 21:47 - 2016-01-16 07:34 - 00513888 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-27 21:47 - 2016-01-16 07:24 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-01-27 21:47 - 2016-01-16 07:23 - 08728920 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-01-27 21:47 - 2016-01-16 07:23 - 00848160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-27 21:47 - 2016-01-16 07:23 - 00785088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-27 21:47 - 2016-01-16 07:23 - 00536256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-01-27 21:47 - 2016-01-16 07:23 - 00408120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-01-27 21:47 - 2016-01-16 07:23 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-01-27 21:47 - 2016-01-16 07:21 - 22572624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-01-27 21:47 - 2016-01-16 07:21 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-01-27 21:47 - 2016-01-16 07:20 - 06971752 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-01-27 21:47 - 2016-01-16 07:20 - 06600904 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-01-27 21:47 - 2016-01-16 07:20 - 00652312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-27 21:47 - 2016-01-16 07:20 - 00431240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2016-01-27 21:47 - 2016-01-16 07:20 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-01-27 21:47 - 2016-01-16 07:19 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-27 21:47 - 2016-01-16 07:19 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-01-27 21:47 - 2016-01-16 07:17 - 21125400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-01-27 21:47 - 2016-01-16 07:16 - 05238360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-01-27 21:47 - 2016-01-16 07:13 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-01-27 21:47 - 2016-01-16 07:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-01-27 21:47 - 2016-01-16 07:12 - 01415200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-01-27 21:47 - 2016-01-16 07:09 - 01089880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-01-27 21:47 - 2016-01-16 07:08 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-01-27 21:47 - 2016-01-16 07:08 - 00440152 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-01-27 21:47 - 2016-01-16 06:46 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-01-27 21:47 - 2016-01-16 06:45 - 16986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-27 21:47 - 2016-01-16 06:44 - 22394368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-27 21:47 - 2016-01-16 06:44 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-01-27 21:47 - 2016-01-16 06:44 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2016-01-27 21:47 - 2016-01-16 06:44 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2016-01-27 21:47 - 2016-01-16 06:43 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2016-01-27 21:47 - 2016-01-16 06:42 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-01-27 21:47 - 2016-01-16 06:42 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscoreext.dll
2016-01-27 21:47 - 2016-01-16 06:41 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-01-27 21:47 - 2016-01-16 06:40 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-01-27 21:47 - 2016-01-16 06:40 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2016-01-27 21:47 - 2016-01-16 06:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2016-01-27 21:47 - 2016-01-16 06:40 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasautou.exe
2016-01-27 21:47 - 2016-01-16 06:39 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2016-01-27 21:47 - 2016-01-16 06:38 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-01-27 21:47 - 2016-01-16 06:38 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-01-27 21:47 - 2016-01-16 06:38 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimCfg.dll
2016-01-27 21:47 - 2016-01-16 06:38 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2016-01-27 21:47 - 2016-01-16 06:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-01-27 21:47 - 2016-01-16 06:37 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-01-27 21:47 - 2016-01-16 06:37 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-01-27 21:47 - 2016-01-16 06:37 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-01-27 21:47 - 2016-01-16 06:36 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-01-27 21:47 - 2016-01-16 06:36 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2016-01-27 21:47 - 2016-01-16 06:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-01-27 21:47 - 2016-01-16 06:36 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SimAuth.dll
2016-01-27 21:47 - 2016-01-16 06:36 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2016-01-27 21:47 - 2016-01-16 06:35 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-01-27 21:47 - 2016-01-16 06:35 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-01-27 21:47 - 2016-01-16 06:35 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2016-01-27 21:47 - 2016-01-16 06:34 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-01-27 21:47 - 2016-01-16 06:34 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-01-27 21:47 - 2016-01-16 06:34 - 00477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2016-01-27 21:47 - 2016-01-16 06:34 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-01-27 21:47 - 2016-01-16 06:34 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2016-01-27 21:47 - 2016-01-16 06:33 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2016-01-27 21:47 - 2016-01-16 06:33 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-01-27 21:47 - 2016-01-16 06:33 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-01-27 21:47 - 2016-01-16 06:32 - 24602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-27 21:47 - 2016-01-16 06:32 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-01-27 21:47 - 2016-01-16 06:32 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2016-01-27 21:47 - 2016-01-16 06:31 - 00851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-01-27 21:47 - 2016-01-16 06:31 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-01-27 21:47 - 2016-01-16 06:31 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-01-27 21:47 - 2016-01-16 06:31 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-01-27 21:47 - 2016-01-16 06:31 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2016-01-27 21:47 - 2016-01-16 06:30 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-01-27 21:47 - 2016-01-16 06:30 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-01-27 21:47 - 2016-01-16 06:30 - 01053696 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-01-27 21:47 - 2016-01-16 06:30 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-01-27 21:47 - 2016-01-16 06:30 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimCfg.dll
2016-01-27 21:47 - 2016-01-16 06:30 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2016-01-27 21:47 - 2016-01-16 06:29 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-01-27 21:47 - 2016-01-16 06:29 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-01-27 21:47 - 2016-01-16 06:28 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-01-27 21:47 - 2016-01-16 06:28 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-01-27 21:47 - 2016-01-16 06:28 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-01-27 21:47 - 2016-01-16 06:28 - 00884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2016-01-27 21:47 - 2016-01-16 06:28 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SimAuth.dll
2016-01-27 21:47 - 2016-01-16 06:27 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-01-27 21:47 - 2016-01-16 06:26 - 19338752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-27 21:47 - 2016-01-16 06:26 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-01-27 21:47 - 2016-01-16 06:26 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-01-27 21:47 - 2016-01-16 06:26 - 00260608 _____ C:\WINDOWS\system32\MTFServer.dll
2016-01-27 21:47 - 2016-01-16 06:26 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-01-27 21:47 - 2016-01-16 06:25 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2016-01-27 21:47 - 2016-01-16 06:25 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-01-27 21:47 - 2016-01-16 06:25 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-01-27 21:47 - 2016-01-16 06:24 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-01-27 21:47 - 2016-01-16 06:24 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-01-27 21:47 - 2016-01-16 06:24 - 00613888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-01-27 21:47 - 2016-01-16 06:24 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-01-27 21:47 - 2016-01-16 06:24 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-01-27 21:47 - 2016-01-16 06:23 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-01-27 21:47 - 2016-01-16 06:23 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-01-27 21:47 - 2016-01-16 06:21 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-01-27 21:47 - 2016-01-16 06:20 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-01-27 21:47 - 2016-01-16 06:20 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-01-27 21:47 - 2016-01-16 06:20 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-01-27 21:47 - 2016-01-16 06:20 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2016-01-27 21:47 - 2016-01-16 06:19 - 12126208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-01-27 21:47 - 2016-01-16 06:19 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-01-27 21:47 - 2016-01-16 06:19 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-01-27 21:47 - 2016-01-16 06:19 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-01-27 21:47 - 2016-01-16 06:19 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-01-27 21:47 - 2016-01-16 06:18 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-01-27 21:47 - 2016-01-16 06:18 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-27 21:47 - 2016-01-16 06:17 - 05503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-01-27 21:47 - 2016-01-16 06:16 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-01-27 21:47 - 2016-01-16 06:16 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-27 21:47 - 2016-01-16 06:15 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-01-27 21:47 - 2016-01-16 06:14 - 01946624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-01-27 21:47 - 2016-01-16 06:14 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-01-27 21:47 - 2016-01-16 06:11 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-01-27 21:47 - 2016-01-16 06:09 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-01-24 19:44 - 2016-01-24 19:44 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mass Effect 2
2016-01-24 15:23 - 2016-01-24 15:23 - 00000000 ____D C:\Users\Richard\Documents\BioWare
2016-01-24 15:22 - 2016-01-24 15:22 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2016-01-24 15:12 - 2016-01-24 15:12 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2016-01-21 17:56 - 2016-01-21 17:56 - 00000000 ___RD C:\Users\Richard\Documents\Scanned Documents
2016-01-21 17:56 - 2016-01-21 17:56 - 00000000 ____D C:\Users\Richard\Documents\Fax
2016-01-18 18:40 - 2016-01-18 18:40 - 00000279 _____ C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kôš.lnk
2016-01-14 17:23 - 2016-02-08 18:18 - 00003266 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForRichard
2016-01-14 17:23 - 2016-02-08 18:18 - 00000366 _____ C:\WINDOWS\Tasks\HPCeeScheduleForRichard.job
2016-01-13 17:19 - 2016-01-05 03:51 - 07477600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 17:19 - 2016-01-05 03:51 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-01-13 17:19 - 2016-01-05 03:51 - 01141496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-01-13 17:19 - 2016-01-05 03:50 - 00671472 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-13 17:19 - 2016-01-05 03:48 - 00499432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-13 17:19 - 2016-01-05 03:45 - 02587696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-01-13 17:19 - 2016-01-05 03:42 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-01-13 17:19 - 2016-01-05 03:37 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-13 17:19 - 2016-01-05 03:37 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 17:19 - 2016-01-05 03:37 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 17:19 - 2016-01-05 03:37 - 00245840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-13 17:19 - 2016-01-05 03:37 - 00234504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-01-13 17:19 - 2016-01-05 03:36 - 00808800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-01-13 17:19 - 2016-01-05 03:33 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-13 17:19 - 2016-01-05 03:33 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-13 17:19 - 2016-01-05 03:33 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-13 17:19 - 2016-01-05 03:33 - 00208176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-01-13 17:19 - 2016-01-05 03:33 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-13 17:19 - 2016-01-05 03:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-01-13 17:19 - 2016-01-05 03:27 - 01594408 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-13 17:19 - 2016-01-05 03:24 - 00796352 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-13 17:19 - 2016-01-05 03:23 - 01804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 17:19 - 2016-01-05 03:23 - 01309376 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-13 17:19 - 2016-01-05 03:23 - 00786696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 17:19 - 2016-01-05 03:23 - 00119320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 17:19 - 2016-01-05 03:21 - 01371792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-13 17:19 - 2016-01-05 03:17 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-13 17:19 - 2016-01-05 03:16 - 00100160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-13 17:19 - 2016-01-05 02:57 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 17:19 - 2016-01-05 02:57 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 17:19 - 2016-01-05 02:56 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-01-13 17:19 - 2016-01-05 02:54 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 17:19 - 2016-01-05 02:53 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2016-01-13 17:19 - 2016-01-05 02:52 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-13 17:19 - 2016-01-05 02:51 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-01-13 17:19 - 2016-01-05 02:51 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 17:19 - 2016-01-05 02:50 - 00644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-01-13 17:19 - 2016-01-05 02:50 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-01-13 17:19 - 2016-01-05 02:49 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-01-13 17:19 - 2016-01-05 02:49 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 17:19 - 2016-01-05 02:49 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-01-13 17:19 - 2016-01-05 02:49 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-01-13 17:19 - 2016-01-05 02:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 17:19 - 2016-01-05 02:48 - 01009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 17:19 - 2016-01-05 02:48 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-13 17:19 - 2016-01-05 02:48 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-01-13 17:19 - 2016-01-05 02:47 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 17:19 - 2016-01-05 02:47 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-13 17:19 - 2016-01-05 02:47 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-13 17:19 - 2016-01-05 02:45 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-13 17:19 - 2016-01-05 02:45 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 17:19 - 2016-01-05 02:44 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2016-01-13 17:19 - 2016-01-05 02:43 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-13 17:19 - 2016-01-05 02:43 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-13 17:19 - 2016-01-05 02:43 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-13 17:19 - 2016-01-05 02:42 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-01-13 17:19 - 2016-01-05 02:41 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-13 17:19 - 2016-01-05 02:41 - 00558592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-01-13 17:19 - 2016-01-05 02:40 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-13 17:19 - 2016-01-05 02:40 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityCommon.dll
2016-01-13 17:19 - 2016-01-05 02:39 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 17:19 - 2016-01-05 02:39 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-13 17:19 - 2016-01-05 02:39 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-01-13 17:19 - 2016-01-05 02:39 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-13 17:19 - 2016-01-05 02:38 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-13 17:19 - 2016-01-05 02:36 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-13 17:19 - 2016-01-05 02:36 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-13 17:19 - 2016-01-05 02:30 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-01-13 17:19 - 2016-01-05 02:30 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-01-13 17:19 - 2016-01-05 02:29 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-01-13 17:19 - 2016-01-05 02:28 - 07826432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-01-13 17:19 - 2016-01-05 02:28 - 04894720 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-01-13 17:19 - 2016-01-05 02:25 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-01-10 18:18 - 2016-01-10 18:18 - 00000000 ____D C:\Users\Richard\AppData\Roaming\HP
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-02-09 19:55 - 2016-01-04 21:05 - 00000000 ____D C:\Users\Richard\AppData\Local\CrashDumps
2016-02-09 19:24 - 2015-11-14 13:08 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-09 19:04 - 2016-01-05 17:39 - 00000000 ____D C:\Users\Richard\AppData\Roaming\.minecraft
2016-02-09 18:59 - 2016-01-01 17:42 - 00881036 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-09 18:59 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2016-02-09 17:52 - 2015-11-14 13:08 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-09 15:28 - 2015-08-30 01:14 - 00000000 ____D C:\ProgramData\panda_url_filtering
2016-02-09 15:22 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-09 15:22 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-09 15:18 - 2016-01-05 16:51 - 00004210 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A1334D55-D310-4261-9513-606E98453655}
2016-02-08 21:57 - 2015-10-10 23:08 - 00000000 ____D C:\WINDOWS\AutoKMS
2016-02-08 21:41 - 2015-11-14 19:57 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-02-08 21:41 - 2015-08-26 17:05 - 00000000 ____D C:\ProgramData\Origin
2016-02-08 21:38 - 2015-08-26 19:49 - 00226168 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-02-08 21:15 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-02-08 20:53 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-02-08 20:48 - 2015-08-26 19:49 - 00226168 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-02-08 20:10 - 2015-12-12 18:15 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-02-08 20:02 - 2016-01-01 17:47 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-08 20:02 - 2015-10-30 07:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-02-08 20:02 - 2015-08-26 17:45 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-08 16:16 - 2015-12-12 18:14 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-02-08 15:41 - 2016-01-01 17:53 - 00000000 ____D C:\Users\Richard\AppData\Local\Comms
2016-02-07 15:20 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\vpnplugins
2016-02-07 15:13 - 2015-10-22 20:08 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Steam
2016-02-07 12:07 - 2016-01-01 17:32 - 00000000 ____D C:\Users\Richard
2016-02-06 15:49 - 2015-09-01 20:34 - 00000000 ____D C:\Users\Richard\AppData\Local\ElevatedDiagnostics
2016-02-06 13:34 - 2016-01-01 09:25 - 00000000 ____D C:\Users\Richard\AppData\Roaming\vlc
2016-02-05 22:05 - 2015-09-05 17:42 - 00000000 ____D C:\Users\Richard\Documents\FIFA 14
2016-02-05 15:24 - 2015-11-14 13:09 - 00002291 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-05 15:24 - 2015-11-14 13:09 - 00002279 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-02 21:19 - 2015-11-14 13:08 - 00004028 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-02 21:19 - 2015-11-14 13:08 - 00003796 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-02 17:48 - 2015-09-05 20:19 - 00000000 ____D C:\Program Files (x86)\Origin
2016-02-01 14:42 - 2016-01-01 17:29 - 00319059 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat
2016-02-01 14:42 - 2016-01-01 17:28 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-02-01 14:17 - 2015-12-14 19:25 - 00000000 ____D C:\Users\Richard\Desktop\kit pack
2016-02-01 13:01 - 2015-01-27 11:14 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-02-01 12:41 - 2015-01-27 11:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-29 08:30 - 2015-08-26 16:08 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-01-29 07:04 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2016-01-29 06:51 - 2015-01-27 11:43 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-01-28 22:38 - 2015-10-30 08:24 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-01-28 22:38 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-01-28 22:38 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-01-28 22:38 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-01-28 22:38 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-01-28 22:38 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-01-28 22:38 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-01-28 18:39 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-14 17:23 - 2016-01-06 14:10 - 00000000 ____D C:\Users\Richard\AppData\Local\Hewlett-Packard
2016-01-13 17:34 - 2015-08-28 17:15 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-13 17:33 - 2015-08-28 17:15 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-13 15:43 - 2016-01-06 14:20 - 00000000 ____D C:\Users\Richard\AppData\Roaming\HpUpdate
==================== Files in the root of some directories =======
2016-01-03 21:13 - 2016-01-03 21:13 - 0000017 _____ () C:\Users\Richard\AppData\Local\resmon.resmoncfg
2016-01-01 17:29 - 2016-01-01 17:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-01-06 14:16 - 2016-01-06 14:21 - 0000374 _____ () C:\ProgramData\hpzinstall.log
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-02-09 17:19
==================== End of FRST.txt ============================
Prosím o kontrolu logu Vyřešeno
Re: Prosím o kontrolu logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-02-2016
Ran by Richard (2016-02-09 20:18:13)
Running from C:\Users\Richard\Desktop
Windows 10 Home (X64) (2016-01-01 16:53:20)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1070751703-1546616555-1304526450-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1070751703-1546616555-1304526450-503 - Limited - Disabled)
Guest (S-1-5-21-1070751703-1546616555-1304526450-501 - Limited - Disabled)
Richard (S-1-5-21-1070751703-1546616555-1304526450-1001 - Administrator - Enabled) => C:\Users\Richard
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
"Batman - Arkham City" (HKLM-x32\...\{71AD83D4-6F74-4257-8398-8D1BFEA91EFF}_is1) (Version: 1.1.0.0 - )
"BioShock Infinite" (HKLM-x32\...\{D081C29C-1DDC-4C55-BCBF-DF8519636331}_is1) (Version: 1.1.25.5165 - )
µTorrent (HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Aktualizácie NVIDIA 2.5.15.54 (Version: 2.5.15.54 - NVIDIA Corporation) Hidden
Assassin's Creed II (HKLM-x32\...\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}) (Version: 1.00 - Ubisoft)
ASUS App Box (HKLM-x32\...\{F0CE6060-50B1-401E-8357-B6E24DB98D21}) (Version: 1.00.04 - ASUSTeK Computer Inc.)
ASUS Manager - Ai Booting (HKLM-x32\...\{2DCE446C-D090-4458-8782-8F16DF94351E}) (Version: 2.01.15 - ASUSTeK Computer Inc.)
ASUS Manager - Backup & Recovery (HKLM-x32\...\{34D67DE5-2ECF-4E6B-A243-2C16E2792787}) (Version: 2.01.12 - ASUSTeK Computer Inc.)
ASUS Manager - Family Safety (HKLM-x32\...\{016AFF97-4E18-4560-B8E5-B684BB124E32}) (Version: 2.00.06 - ASUSTeK Computer Inc.)
ASUS Manager - PC Cleanup (HKLM-x32\...\{E22A19AE-7DDB-4959-B1DB-A0996294352A}) (Version: 2.01.12 - ASUSTeK Computer Inc.)
ASUS Manager - Power Manager (HKLM-x32\...\{DD248BEE-E925-4720-A775-9A42276BB6EA}) (Version: 2.02.05 - ASUSTeK Computer Inc.)
ASUS Manager - SyncUp (HKLM-x32\...\{C2294792-457D-4DF7-9486-B630754C73D0}) (Version: 2.00.07 - ASUSTeK Computer Inc.)
ASUS Manager - Update (HKLM-x32\...\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}) (Version: 2.02.08 - ASUSTeK Computer Inc.)
ASUS Manager (HKLM-x32\...\{F5E5AD85-4A90-4604-A887-464D3818D8FD}) (Version: 2.09.05 - ASUSTeK Computer Inc.)
ASUS Music Maker (HKLM-x32\...\MAGIX_{AB515018-7F9D-4047-B0C0-F26BAC30F3E1}) (Version: 18.0.4.1 - MAGIX AG)
ASUS Music Maker (Version: 18.0.4.1 - MAGIX AG) Hidden
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.7 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7 - Activision) Hidden
Cities Skylines (HKLM-x32\...\Cities Skylines_is1) (Version: 1.0 - Релиз от R.G. Steamgames)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Creation Master 14 Beta 2 (HKLM-x32\...\Creation Master 14_is1) (Version: - FIFA MASTER)
Čeština do NHL 14 (HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\Čeština do NHL 14) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DJ_AIO_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
DJ_AIO_Software_min (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
eManual (HKLM-x32\...\{0C84E634-EB68-4A54-B21E-A05EC87A4CC5}) (Version: 1.01.00 - ASUSTeK Computer Inc.)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.01 - Ubisoft)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts)
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.103 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Grand Theft Auto V v.1.0.350.1 (HKLM-x32\...\Grand Theft Auto V_is1) (Version: - )
Hitman Absolution (HKLM-x32\...\Hitman Absolution_is1) (Version: - )
Hornet (HKLM-x32\...\{D0E01BE3-1E25-4457-B25A-4D44F352C371}) (Version: - )
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet All-In-One Software (HKLM\...\{2CB8566A-8EA6-417A-BAB1-1B10A88C79BB}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{A806B71B-00A4-4BFC-9476-3CBEFBE440E5}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Life Is Strange (HKLM-x32\...\{33E1C9A1-60A7-4D34-A7B6-6C65FF9AE4A7}_is1) (Version: EP 1.2.3.4.5 - Square Enix)
Malwarebytes Anti-Malware verzia 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Mass Effect 2 (HKLM-x32\...\{D85A387E-6EC0-40E5-9D89-A148B3E93968}_is1) (Version: - )
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.141 - McAfee, Inc.)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
NHL® 09 (HKLM-x32\...\{F2B5A2A7-2DF9-4361-8BD5-362714528B51}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA 3D Vision radič ovládača 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.15.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.54 - NVIDIA Corporation)
NVIDIA Grafický ovládač 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.00 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 359.00 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Virtuálny zvuk Miracast 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 359.00 - NVIDIA Corporation)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Odstranění intra/Remove intro (HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\Odstranění intra/Remove intro) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 353.82 (Version: 353.82 - NVIDIA Corporation) Hidden
Panda Devices Agent (x32 Version: 1.03.05 - Panda Security) Hidden
Panda Devices Agent (x32 Version: 1.06.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 16.0.2 - Panda Security)
Panda Free Antivirus (Version: 8.04.00.0000 - Panda Security) Hidden
Panda Security Toolbar (HKLM-x32\...\pandasecuritytb) (Version: 4.3.0.3 - Panda Security and Visicom Media Inc.)
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.4.6.10930 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.30179 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 4.1.0250 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.8.1.21 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Watch Dogs (HKLM-x32\...\Watch Dogs_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.11.399 - ASUS Cloud Corporation)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.14 - WildTangent)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
사진 갤러리 (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1070751703-1546616555-1304526450-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Richard\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05094CE6-3A13-4381-AC0B-33AD60B89B41} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {0879F84C-169D-4023-A8A6-94A2E37AF7CF} - System32\Tasks\ASUS\ASUS Manager - PC Cleanup - SecureDeleteBackground => C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe [2014-06-03] ()
Task: {0A8DBBB1-8B27-4AB5-889E-ABCB96B4BF4F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-01-20] (Hewlett-Packard)
Task: {19AE8C6A-6C9C-4928-92C6-CB248CB0FE37} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {224806F4-4966-42DE-AD75-BE4E48641898} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-13] (Microsoft Corporation)
Task: {275B4B53-5799-4DCD-BD65-1C359E81CB72} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {27668EDE-97B4-4F15-9234-EBF63B7A2284} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {285A606C-71FA-4DE1-AC01-E46B3D0DF338} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {288966C6-E38D-4A67-99CB-C1021BA89AE4} - System32\Tasks\HPCeeScheduleForRichard => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {38B70730-1BE6-4D37-9382-53B9A5B283DF} - \Microsoft OneDrive Auto Update Task-S-1-5-21-1070751703-1546616555-1304526450-1001 -> No File <==== ATTENTION
Task: {3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {4420C4B5-976D-4B13-B3C3-DE4342797ABA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {650F5BDA-CE2B-4757-BB24-2E38E5E205E5} - System32\Tasks\ASUS\ASUS Manager BackgroundWindow => C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe [2013-08-24] ()
Task: {67B27433-B79A-40DD-AFA4-9D0B7C838886} - \SteamClient -> No File <==== ATTENTION
Task: {6B63798C-04AE-424F-8EDB-1DC265072DCA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7A7050BA-6910-4181-9992-DAE07FDC51B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-01-12] (Hewlett-Packard Company)
Task: {7FB872D9-6AB9-4F30-821C-AA1A4291DFC4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {812E9F50-28D3-423A-81E7-5FE5A86E0778} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {82B3F39A-8CB9-438D-A520-0039C4C1A80D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-01-06] (Hewlett-Packard)
Task: {875CCE82-137C-490E-B6B5-60C4D38E4BD6} - System32\Tasks\ASUS\ASUS Updater => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSFourceUpdater.exe [2014-03-21] ()
Task: {9F75473C-29AD-4545-8E0D-D5AC15F28295} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe [2014-03-18] ()
Task: {BD37E462-C560-4FCC-AD84-BCCE2A8A592C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {C6B05FCB-0CFA-4DB6-8487-521F66FCD165} - \AutoKMS -> No File <==== ATTENTION
Task: {C9618D6F-5271-44A9-8922-AEADDB650F71} - System32\Tasks\ASUS\ASUS Manager HotKey Service => C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe [2014-03-19] (ASUSTeK Computer Inc.)
Task: {CA85A267-8947-4730-A414-49E220F010E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {CECD8146-95AC-48C7-959E-601D71442FDB} - System32\Tasks\ASUS\Power_Manager_background => C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe [2014-09-13] (ASUSTeK)
Task: {DBE42AF6-919C-4DDA-B47C-60DCFCDCC460} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {F2817BD2-0928-41FD-A0F8-1411907A78F5} - System32\Tasks\ASUS\SyncUp => C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe [2014-11-04] (ASUSTeK Computer Inc.)
Task: {F73AA408-0D64-4B79-9064-9E9CC179778F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForRichard.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-08-26 19:49 - 2015-11-15 20:23 - 00076152 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-09-23 21:41 - 2015-09-23 21:41 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-02-01 13:00 - 2016-02-01 13:00 - 00010752 ____N () C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
2016-01-04 17:56 - 2015-12-09 02:52 - 00217720 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-03-04 04:52 - 2014-12-02 03:17 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-01-01 17:29 - 2015-08-07 01:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-01-01 17:17 - 2016-01-01 17:17 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-03-04 04:54 - 2014-06-03 23:59 - 00930448 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
2016-01-01 17:17 - 2016-01-01 17:17 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-03-04 04:54 - 2014-03-12 23:51 - 00907776 _____ () C:\Windows\PCCleanupContextMenu\x64\ContextMenuHandler.dll
2016-01-01 17:17 - 2016-01-01 17:17 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-01-01 17:17 - 2016-01-01 17:17 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-13 17:19 - 2016-01-05 02:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-13 17:19 - 2016-01-05 02:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-27 21:47 - 2016-01-16 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-27 21:47 - 2016-01-16 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-09 15:41 - 2014-05-22 09:43 - 00434176 _____ () C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe
2016-01-22 15:07 - 2016-01-22 15:11 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-03-04 04:52 - 2016-02-08 20:05 - 00033936 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2015-03-04 04:52 - 2010-06-29 03:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2015-03-04 04:47 - 2013-09-16 21:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-03-04 04:54 - 2014-01-22 19:36 - 00753664 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\WiMoveHelp.dll
2015-03-04 04:54 - 2014-01-22 19:35 - 00684032 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\PhoneCtrlAPI.dll
2015-08-26 17:36 - 2015-12-09 02:53 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-01-09 15:41 - 2014-05-22 10:02 - 00057344 _____ () C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\lan.dll
2016-01-22 15:07 - 2016-01-22 15:11 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-01-22 15:07 - 2016-01-22 15:12 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-02-05 15:24 - 2016-02-03 08:27 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.103\libglesv2.dll
2016-02-05 15:24 - 2016-02-03 08:27 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.103\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2016-02-08 19:43 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Richard\Pictures\Wallapers\Diamond.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: MaxthonUpdateSvc => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: PnkBstrA => 2
MSCONFIG\Services: SkypeUpdate => 2
HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6E342719-E9B0-4AC9-BDBC-E849C1EB0493}] => (Allow) D:\Games\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{C6AE1E6F-BCFF-403E-8D2A-F22B86E9B8B4}] => (Allow) D:\Games\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [UDP Query User{118D07F5-42D3-4707-B45E-D0B9AF7C940B}D:\games\kcd\kingdom.come.deliverance.v0.4\bin64\game.exe] => (Allow) D:\games\kcd\kingdom.come.deliverance.v0.4\bin64\game.exe
FirewallRules: [TCP Query User{4D2CF096-9C30-440E-ACEF-A565C8C06B6C}D:\games\kcd\kingdom.come.deliverance.v0.4\bin64\game.exe] => (Allow) D:\games\kcd\kingdom.come.deliverance.v0.4\bin64\game.exe
FirewallRules: [UDP Query User{D56844AE-7330-488C-94BC-DC4DA78BE039}D:\games\7dtd\7.days.to.die.alpha.12.5.x64\7daystodie.exe] => (Allow) D:\games\7dtd\7.days.to.die.alpha.12.5.x64\7daystodie.exe
FirewallRules: [TCP Query User{C16594A8-2632-4CA6-AF77-05EB904F890D}D:\games\7dtd\7.days.to.die.alpha.12.5.x64\7daystodie.exe] => (Allow) D:\games\7dtd\7.days.to.die.alpha.12.5.x64\7daystodie.exe
FirewallRules: [{9E3E4616-B06B-452E-9670-B64D62FB4AD6}] => (Allow) D:\Games\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{1408889C-ABDA-4D8F-B780-4D2C362AF2D6}] => (Allow) D:\Games\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{83236928-8FD4-4848-9584-E4F73A36DC08}] => (Allow) D:\Games\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{DD56C64F-D5AA-4B94-965F-290CB062AC3F}] => (Allow) D:\Games\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [UDP Query User{CBAB316C-65AF-47E0-9CA9-6DF8F1F02B3E}D:\games\the witcher 2 - assassins of kings - enhanced edition\bin\witcher2.exe] => (Allow) D:\games\the witcher 2 - assassins of kings - enhanced edition\bin\witcher2.exe
FirewallRules: [TCP Query User{36C55AA8-A550-422A-9472-A7ECA0203DD1}D:\games\the witcher 2 - assassins of kings - enhanced edition\bin\witcher2.exe] => (Allow) D:\games\the witcher 2 - assassins of kings - enhanced edition\bin\witcher2.exe
FirewallRules: [{B9AD74E4-5C40-41CD-87AD-4EE9B6208124}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{4E53C033-499D-4D9F-815C-22AF222B72A1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{060C9158-30F8-4977-A04B-FB1C1833585E}] => (Allow) D:\Games\Assassins Creed II\UPlayBrowser.exe
FirewallRules: [{58A5EAAD-C387-41FD-A7A2-12054700EF67}] => (Allow) D:\Games\Assassins Creed II\UPlayBrowser.exe
FirewallRules: [{1D6D47FA-0FC6-4E02-80BC-7245E51AA9EB}] => (Allow) D:\Games\Assassins Creed II\AssassinsCreedII.exe
FirewallRules: [{D416F181-3151-4740-A99C-7CB06AADA9A1}] => (Allow) D:\Games\Assassins Creed II\AssassinsCreedII.exe
FirewallRules: [{E2AC7864-6713-4A61-9F8C-BCD680107BFE}] => (Allow) D:\Games\Assassins Creed II\AssassinsCreedIIGame.exe
FirewallRules: [{3EB959B5-1C17-4B95-B61A-91F957E60E96}] => (Allow) D:\Games\Assassins Creed II\AssassinsCreedIIGame.exe
FirewallRules: [{CB1349C3-8B46-493A-A801-6E4E4B1C8556}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3EDBE710-9F34-4B44-8E90-FDAB21D35374}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B3ABF363-8BAA-4B3A-8F94-94EDD428CB5A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{15E17900-AE06-476C-AB79-E8C0ECE971DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [UDP Query User{787BC5F3-1A1F-4E5C-8E29-172A941AE486}D:\games\assassins creed iii\ac3sp.exe] => (Allow) D:\games\assassins creed iii\ac3sp.exe
FirewallRules: [TCP Query User{9C3BF7BB-2A68-4288-9C94-5336BD06FBFA}D:\games\assassins creed iii\ac3sp.exe] => (Allow) D:\games\assassins creed iii\ac3sp.exe
FirewallRules: [UDP Query User{6CEF1981-BB3F-40AD-8BC5-1B3C3BFEA3B5}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{8F266A7A-4AF9-49AF-9BF8-C886820D2110}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{EF628143-C9AA-4B20-BBED-7CD337FA42DA}D:\games\pro evolution soccer 2016\pes2016.exe] => (Allow) D:\games\pro evolution soccer 2016\pes2016.exe
FirewallRules: [TCP Query User{C8B14FCA-552A-4A40-8152-20C13BD45B56}D:\games\pro evolution soccer 2016\pes2016.exe] => (Allow) D:\games\pro evolution soccer 2016\pes2016.exe
FirewallRules: [UDP Query User{25697846-CF66-4F91-9F13-186E8609CF58}D:\games\assassins creed iv black flag\ac4bfmp.exe] => (Allow) D:\games\assassins creed iv black flag\ac4bfmp.exe
FirewallRules: [TCP Query User{752D609E-B556-487C-A1E7-E009186B88A5}D:\games\assassins creed iv black flag\ac4bfmp.exe] => (Allow) D:\games\assassins creed iv black flag\ac4bfmp.exe
FirewallRules: [{307700BE-E53C-48BD-9837-44799EC132F6}] => (Allow) D:\Games\Life Is Strange\steam_api64.exe
FirewallRules: [{D63E7743-8C7C-4965-86C4-F6A632D607A7}] => (Allow) D:\Games\Life Is Strange\steam_api64.exe
FirewallRules: [UDP Query User{34269E25-888E-4ED8-AC61-85E1ACF58075}D:\games\origin games\fifa 14\fifa 16 demo\fifa16_demo.exe] => (Allow) D:\games\origin games\fifa 14\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{83309DDA-E549-4B92-84A2-1E0F33879B48}D:\games\origin games\fifa 14\fifa 16 demo\fifa16_demo.exe] => (Allow) D:\games\origin games\fifa 14\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{DEC1E580-F4A2-4CD1-99DD-A067AD0FBDE0}D:\office 13\microsoft office 2013 professional plus\microsoft toolkit 2.4.5.exe] => (Allow) D:\office 13\microsoft office 2013 professional plus\microsoft toolkit 2.4.5.exe
FirewallRules: [TCP Query User{20E3D7EE-105B-4895-A364-11605F2BB8EC}D:\office 13\microsoft office 2013 professional plus\microsoft toolkit 2.4.5.exe] => (Allow) D:\office 13\microsoft office 2013 professional plus\microsoft toolkit 2.4.5.exe
FirewallRules: [UDP Query User{9455E036-0979-40A4-B2C7-BF587044CB01}D:\games\grand theft auto v\gta5.exe] => (Allow) D:\games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{D4551D76-C949-4FDA-A473-B1E803EF673D}D:\games\grand theft auto v\gta5.exe] => (Allow) D:\games\grand theft auto v\gta5.exe
FirewallRules: [{C4C1A5DD-573D-400F-B5B0-D466F26DFD43}] => (Allow) C:\Users\Richard\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{16B3694E-04D9-4266-9BF9-AECE11A1A30F}] => (Allow) D:\Games\Batman - Arkham City\Binaries\Win32\BatmanAC.exe
FirewallRules: [{D2B4C3E3-60D8-4A68-898D-76D7845C641E}] => (Allow) D:\Games\Batman - Arkham City\Binaries\Win32\BatmanAC.exe
FirewallRules: [{157BEFCF-8CD6-485A-A4B7-11CDAAB2ADF0}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{4089F7B8-CD8A-430D-ACD8-8499A172EBA1}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{82034297-1DBC-4E6F-AAD4-BA847B212CCB}] => (Allow) C:\Program Files (x86)\pandasecuritytb\dtuser.exe
FirewallRules: [{65E61B9F-AF31-4D43-97A5-422A130325D7}] => (Allow) C:\Program Files (x86)\pandasecuritytb\dtuser.exe
FirewallRules: [{66674041-8E8F-41CD-A6EF-412F282F9148}] => (Allow) D:\Games\Far Cry 3\bin\FC3Editor.exe
FirewallRules: [{3BFFA221-F8CD-4459-85FF-DBE76245D59D}] => (Allow) D:\Games\Far Cry 3\bin\FC3Editor.exe
FirewallRules: [{3FCC0698-97B6-4544-A64C-60ACC89DB70A}] => (Allow) D:\Games\Far Cry 3\bin\FC3Updater.exe
FirewallRules: [{399AA549-221D-48DE-A4A0-3076EEB084D4}] => (Allow) D:\Games\Far Cry 3\bin\FC3Updater.exe
FirewallRules: [{B17E1B41-3B80-4932-9CAE-FE066CD0B4C1}] => (Allow) D:\Games\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{DC716149-AF88-4D51-BBB1-70DEAD5763C1}] => (Allow) D:\Games\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{04539218-BC2A-454F-A49E-E4A4E22BE59F}] => (Allow) D:\Games\Far Cry 3\bin\farcry3.exe
FirewallRules: [{2DC6F7DF-8E3B-4E3F-839C-0DF1CC0FDAD2}] => (Allow) D:\Games\Far Cry 3\bin\farcry3.exe
FirewallRules: [{FB437A0B-F474-43BE-B4E9-322A14A0A7FC}] => (Allow) D:\Games\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{D5078FEA-6736-4048-9182-F3E442BD5B63}] => (Allow) D:\Games\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{8FDDD119-F3EE-45A9-8027-F8609831CF6D}] => (Allow) D:\Games\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D7A78404-536E-4839-9526-9DFCEB7A6BBB}] => (Allow) D:\Games\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D173574C-4AF1-436E-8549-13F2F1CA9E61}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{306795DD-28B7-415F-ADA4-72DCADDA0B3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0707D918-0277-4BD9-94D1-4AC4EAB3407E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B2704CA3-96FC-42A2-8D68-880CD1673A64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{936D31D3-A043-4DC2-9911-25DABDB1AA3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{31C5550F-B779-43A8-B645-E59C20D2127C}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{8A1D1F26-8B08-4F60-B9B8-6EEAD275B597}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{ABAC7601-4EE6-4811-9594-2CD6A486F51D}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{108599CE-5DDB-4B4A-9DC1-7891EB1017B6}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{B710D94F-AFCA-47B8-A016-BF325A487DA9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A90A1EA4-0886-43FD-A82F-ED05CC13B6D2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{069FC698-080D-4A30-A252-98761B58E9EC}] => (Allow) LPort=1900
FirewallRules: [{54AAAC76-1583-443B-B043-C7F87DC6B5D4}] => (Allow) LPort=2869
FirewallRules: [{7795AA55-E607-449E-AD5E-B436AD54B5A2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5B5B714C-2FF6-4085-880A-4484D921E090}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{A1BF06A9-4E80-42B8-96C9-210D75F302F0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{EE71DCF8-3F38-49A4-A0E1-C99A72AFD231}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{80126EAB-341A-435D-A71F-EFA1EC78A604}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{212D6009-3115-43A8-81B7-674D8602E2CA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{7BE8DBA9-19DA-400B-AA9E-4D5158DDBAF1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{617F8866-A30C-4B14-90E0-CC2FBB1DD6CC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{EAD6E0F5-986A-4A11-B9CD-70A93D4717FE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{46BE8017-5A15-42FF-B717-E7E58ED216C9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{F4BB4B6A-80F4-48BC-9302-E38501D8CA9C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{91D5D7FF-76CF-4560-83CC-79C92CE4C39C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{1BFDA113-B654-427F-8655-8A0DF0097A29}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{EDFC7819-6484-4075-9206-A3D46AFD2CA7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{16134ED0-B41C-45CF-A302-12201D379148}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [TCP Query User{4EF57E05-CAE0-40F0-9A8A-5D35223694E4}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{A664E61A-898F-4EB6-8FF5-CB86BD1DAA2D}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{29015FEC-ADE0-4317-BCEF-3559DEF79849}] => (Allow) D:\Games\Origin Games\FIFA 14\FIFA 14\Game\fifa14.exe
FirewallRules: [{AC9A4B65-A941-4D4F-AB64-6F0E6138E645}] => (Allow) D:\Games\Origin Games\FIFA 14\FIFA 14\Game\fifa14.exe
FirewallRules: [TCP Query User{012CF915-0F1E-4388-9A0B-236F312710CD}D:\games\mass effect 2\binaries\masseffect2.exe] => (Allow) D:\games\mass effect 2\binaries\masseffect2.exe
FirewallRules: [UDP Query User{10AAE519-4251-4B18-A3D3-951CC6F63138}D:\games\mass effect 2\binaries\masseffect2.exe] => (Allow) D:\games\mass effect 2\binaries\masseffect2.exe
FirewallRules: [{E472BCFE-67E1-47AA-90D1-8E0FE31DED40}] => (Allow) D:\Games\Call of Duty 4\iw3mp.exe
FirewallRules: [{40DCDAA1-67D2-41AF-84A1-9416FC71C87E}] => (Allow) D:\Games\Call of Duty 4\iw3mp.exe
FirewallRules: [{E5B49E11-25D4-4DD5-AA14-82E1989109DF}] => (Allow) D:\Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{2A9DF43E-88A9-4769-A844-1AC8FEB965DE}] => (Allow) D:\Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{339FB528-0402-441C-ACD2-C49E2D4D3CF0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CB02F7BA-FC26-4D02-86DC-80F0D0C3A22E}] => (Allow) D:\Games\Origin Games\FIFA 14\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{57955046-61AE-492B-AE5F-AA379E2E2B89}] => (Allow) D:\Games\Origin Games\FIFA 14\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [TCP Query User{B5FB7D76-CAE5-482D-BB9E-924FF67F15DC}C:\users\richard\appdata\roaming\utorrent\updates\3.4.5_41712.exe] => (Allow) C:\users\richard\appdata\roaming\utorrent\updates\3.4.5_41712.exe
FirewallRules: [UDP Query User{07314C65-6A78-45C1-B7A2-828749E6C2F8}C:\users\richard\appdata\roaming\utorrent\updates\3.4.5_41712.exe] => (Allow) C:\users\richard\appdata\roaming\utorrent\updates\3.4.5_41712.exe
FirewallRules: [{53D9F6CA-7732-4F5D-8D9C-7604387B669C}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{ECB301F1-47D1-4DA8-B84E-1300053604F0}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BC1D8A7E-ABD0-4F47-ABDC-F610CEF84434}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F68DC589-0675-46B2-A882-9D5CFA4DDC19}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{81428529-BDFB-414C-B8C3-190E88B85E4A}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3E29E944-D301-4CBF-A5D7-3D7B7BD2AB95}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E119F361-BBDB-4CB4-BC66-4FCBA318A2C2}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe
FirewallRules: [{8A7D9A68-CC4A-46E1-95BE-98F198193E2A}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe
FirewallRules: [{A8332D5E-B52B-46A7-9700-5BD99FF4BA9C}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\ASUSDMS.exe
FirewallRules: [{85CF5EED-AFF5-4F0C-8973-030FC08427BD}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\ASUSDMS.exe
==================== Restore Points =========================
28-01-2016 18:37:43 Windows Update
01-02-2016 12:37:14 Installed Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
06-02-2016 16:42:38 Installed DirectX
07-02-2016 15:27:41 JRT Pre-Junkware Removal
08-02-2016 18:16:12 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/09/2016 07:55:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: PSUAMain.exe, verzia: 4.0.0.646, časová značka: 0x56291049
Názov chybujúceho modulu: CC3290MT.DLL, verzia: 9.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x0005d522
Identifikácia chybujúceho procesu: 0x78
Čas spustenia chybujúcej aplikácie: 0xPSUAMain.exe0
Cesta chybujúcej aplikácie: PSUAMain.exe1
Cesta chybujúceho modulu: PSUAMain.exe2
Identifikácia hlásenia: PSUAMain.exe3
Celé meno chybujúceho balíka: PSUAMain.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: PSUAMain.exe5
Error: (02/09/2016 07:55:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: PSUAMain.exe, verzia: 4.0.0.646, časová značka: 0x56291049
Názov chybujúceho modulu: CC3290MT.DLL, verzia: 9.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x000193ee
Identifikácia chybujúceho procesu: 0x78
Čas spustenia chybujúcej aplikácie: 0xPSUAMain.exe0
Cesta chybujúcej aplikácie: PSUAMain.exe1
Cesta chybujúceho modulu: PSUAMain.exe2
Identifikácia hlásenia: PSUAMain.exe3
Celé meno chybujúceho balíka: PSUAMain.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: PSUAMain.exe5
Error: (02/09/2016 06:59:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/09/2016 06:59:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/09/2016 05:57:12 PM) (Source: MsiInstaller) (EventID: 1002) (User: RICHARDOV-PC)
Description: Neočakávaná alebo chýbajúca hodnota (názov: PackageName, hodnota: ) v kľúči HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList
Error: (02/09/2016 05:57:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
Error: (02/09/2016 03:21:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: PSUAMain.exe, verzia: 4.0.0.646, časová značka: 0x56291049
Názov chybujúceho modulu: CC3290MT.DLL, verzia: 9.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x0005d522
Identifikácia chybujúceho procesu: 0x2274
Čas spustenia chybujúcej aplikácie: 0xPSUAMain.exe0
Cesta chybujúcej aplikácie: PSUAMain.exe1
Cesta chybujúceho modulu: PSUAMain.exe2
Identifikácia hlásenia: PSUAMain.exe3
Celé meno chybujúceho balíka: PSUAMain.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: PSUAMain.exe5
Error: (02/09/2016 03:21:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: PSUAMain.exe, verzia: 4.0.0.646, časová značka: 0x56291049
Názov chybujúceho modulu: CC3290MT.DLL, verzia: 9.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x000193ee
Identifikácia chybujúceho procesu: 0x2274
Čas spustenia chybujúcej aplikácie: 0xPSUAMain.exe0
Cesta chybujúcej aplikácie: PSUAMain.exe1
Cesta chybujúceho modulu: PSUAMain.exe2
Identifikácia hlásenia: PSUAMain.exe3
Celé meno chybujúceho balíka: PSUAMain.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: PSUAMain.exe5
Error: (02/09/2016 03:20:11 PM) (Source: MsiInstaller) (EventID: 1002) (User: RICHARDOV-PC)
Description: Neočakávaná alebo chýbajúca hodnota (názov: PackageName, hodnota: ) v kľúči HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList
Error: (02/08/2016 09:31:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Cities.exe, verzia: 5.0.0.59127, časová značka: 0x54dc75a7
Názov chybujúceho modulu: d3d11.dll_unloaded, verzia: 10.0.10586.17, časová značka: 0x56518954
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000006433b
Identifikácia chybujúceho procesu: 0xcfc
Čas spustenia chybujúcej aplikácie: 0xCities.exe0
Cesta chybujúcej aplikácie: Cities.exe1
Cesta chybujúceho modulu: Cities.exe2
Identifikácia hlásenia: Cities.exe3
Celé meno chybujúceho balíka: Cities.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: Cities.exe5
System errors:
=============
Error: (02/09/2016 05:54:51 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:54:51 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:51 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
CodeIntegrity:
===================================
Date: 2016-02-09 18:34:56.309
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-29 06:52:57.508
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-14 14:53:53.259
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-09 09:42:34.882
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 13:24:27.313
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-05 10:16:12.404
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-04 16:47:03.505
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-03 22:00:21.025
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-02 20:49:04.206
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-01 17:43:59.110
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4460S CPU @ 2.90GHz
Percentage of memory in use: 22%
Total physical RAM: 8131.16 MB
Available physical RAM: 6283.97 MB
Total Virtual: 14234.23 MB
Available Virtual: 12266.36 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:150 GB) (Free:105.83 GB) NTFS
Drive d: (Data) (Fixed) (Total:764.19 GB) (Free:465.53 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: CC9E2BA3)
Partition: GPT.
==================== End of Addition.txt ============================
Ran by Richard (2016-02-09 20:18:13)
Running from C:\Users\Richard\Desktop
Windows 10 Home (X64) (2016-01-01 16:53:20)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1070751703-1546616555-1304526450-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1070751703-1546616555-1304526450-503 - Limited - Disabled)
Guest (S-1-5-21-1070751703-1546616555-1304526450-501 - Limited - Disabled)
Richard (S-1-5-21-1070751703-1546616555-1304526450-1001 - Administrator - Enabled) => C:\Users\Richard
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
"Batman - Arkham City" (HKLM-x32\...\{71AD83D4-6F74-4257-8398-8D1BFEA91EFF}_is1) (Version: 1.1.0.0 - )
"BioShock Infinite" (HKLM-x32\...\{D081C29C-1DDC-4C55-BCBF-DF8519636331}_is1) (Version: 1.1.25.5165 - )
µTorrent (HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Aktualizácie NVIDIA 2.5.15.54 (Version: 2.5.15.54 - NVIDIA Corporation) Hidden
Assassin's Creed II (HKLM-x32\...\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}) (Version: 1.00 - Ubisoft)
ASUS App Box (HKLM-x32\...\{F0CE6060-50B1-401E-8357-B6E24DB98D21}) (Version: 1.00.04 - ASUSTeK Computer Inc.)
ASUS Manager - Ai Booting (HKLM-x32\...\{2DCE446C-D090-4458-8782-8F16DF94351E}) (Version: 2.01.15 - ASUSTeK Computer Inc.)
ASUS Manager - Backup & Recovery (HKLM-x32\...\{34D67DE5-2ECF-4E6B-A243-2C16E2792787}) (Version: 2.01.12 - ASUSTeK Computer Inc.)
ASUS Manager - Family Safety (HKLM-x32\...\{016AFF97-4E18-4560-B8E5-B684BB124E32}) (Version: 2.00.06 - ASUSTeK Computer Inc.)
ASUS Manager - PC Cleanup (HKLM-x32\...\{E22A19AE-7DDB-4959-B1DB-A0996294352A}) (Version: 2.01.12 - ASUSTeK Computer Inc.)
ASUS Manager - Power Manager (HKLM-x32\...\{DD248BEE-E925-4720-A775-9A42276BB6EA}) (Version: 2.02.05 - ASUSTeK Computer Inc.)
ASUS Manager - SyncUp (HKLM-x32\...\{C2294792-457D-4DF7-9486-B630754C73D0}) (Version: 2.00.07 - ASUSTeK Computer Inc.)
ASUS Manager - Update (HKLM-x32\...\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}) (Version: 2.02.08 - ASUSTeK Computer Inc.)
ASUS Manager (HKLM-x32\...\{F5E5AD85-4A90-4604-A887-464D3818D8FD}) (Version: 2.09.05 - ASUSTeK Computer Inc.)
ASUS Music Maker (HKLM-x32\...\MAGIX_{AB515018-7F9D-4047-B0C0-F26BAC30F3E1}) (Version: 18.0.4.1 - MAGIX AG)
ASUS Music Maker (Version: 18.0.4.1 - MAGIX AG) Hidden
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.7 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7 - Activision) Hidden
Cities Skylines (HKLM-x32\...\Cities Skylines_is1) (Version: 1.0 - Релиз от R.G. Steamgames)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Creation Master 14 Beta 2 (HKLM-x32\...\Creation Master 14_is1) (Version: - FIFA MASTER)
Čeština do NHL 14 (HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\Čeština do NHL 14) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DJ_AIO_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
DJ_AIO_Software_min (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
eManual (HKLM-x32\...\{0C84E634-EB68-4A54-B21E-A05EC87A4CC5}) (Version: 1.01.00 - ASUSTeK Computer Inc.)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.01 - Ubisoft)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts)
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.103 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Grand Theft Auto V v.1.0.350.1 (HKLM-x32\...\Grand Theft Auto V_is1) (Version: - )
Hitman Absolution (HKLM-x32\...\Hitman Absolution_is1) (Version: - )
Hornet (HKLM-x32\...\{D0E01BE3-1E25-4457-B25A-4D44F352C371}) (Version: - )
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet All-In-One Software (HKLM\...\{2CB8566A-8EA6-417A-BAB1-1B10A88C79BB}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{A806B71B-00A4-4BFC-9476-3CBEFBE440E5}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Life Is Strange (HKLM-x32\...\{33E1C9A1-60A7-4D34-A7B6-6C65FF9AE4A7}_is1) (Version: EP 1.2.3.4.5 - Square Enix)
Malwarebytes Anti-Malware verzia 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Mass Effect 2 (HKLM-x32\...\{D85A387E-6EC0-40E5-9D89-A148B3E93968}_is1) (Version: - )
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.141 - McAfee, Inc.)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
NHL® 09 (HKLM-x32\...\{F2B5A2A7-2DF9-4361-8BD5-362714528B51}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA 3D Vision radič ovládača 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.15.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.15.54 - NVIDIA Corporation)
NVIDIA Grafický ovládač 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.00 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 359.00 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Virtuálny zvuk Miracast 359.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 359.00 - NVIDIA Corporation)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Odstranění intra/Remove intro (HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\Odstranění intra/Remove intro) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 353.82 (Version: 353.82 - NVIDIA Corporation) Hidden
Panda Devices Agent (x32 Version: 1.03.05 - Panda Security) Hidden
Panda Devices Agent (x32 Version: 1.06.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 16.0.2 - Panda Security)
Panda Free Antivirus (Version: 8.04.00.0000 - Panda Security) Hidden
Panda Security Toolbar (HKLM-x32\...\pandasecuritytb) (Version: 4.3.0.3 - Panda Security and Visicom Media Inc.)
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.4.6.10930 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.30179 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 4.1.0250 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.8.1.21 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Watch Dogs (HKLM-x32\...\Watch Dogs_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.11.399 - ASUS Cloud Corporation)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.14 - WildTangent)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
사진 갤러리 (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1070751703-1546616555-1304526450-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Richard\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05094CE6-3A13-4381-AC0B-33AD60B89B41} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {0879F84C-169D-4023-A8A6-94A2E37AF7CF} - System32\Tasks\ASUS\ASUS Manager - PC Cleanup - SecureDeleteBackground => C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe [2014-06-03] ()
Task: {0A8DBBB1-8B27-4AB5-889E-ABCB96B4BF4F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-01-20] (Hewlett-Packard)
Task: {19AE8C6A-6C9C-4928-92C6-CB248CB0FE37} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {224806F4-4966-42DE-AD75-BE4E48641898} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-13] (Microsoft Corporation)
Task: {275B4B53-5799-4DCD-BD65-1C359E81CB72} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {27668EDE-97B4-4F15-9234-EBF63B7A2284} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {285A606C-71FA-4DE1-AC01-E46B3D0DF338} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {288966C6-E38D-4A67-99CB-C1021BA89AE4} - System32\Tasks\HPCeeScheduleForRichard => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {38B70730-1BE6-4D37-9382-53B9A5B283DF} - \Microsoft OneDrive Auto Update Task-S-1-5-21-1070751703-1546616555-1304526450-1001 -> No File <==== ATTENTION
Task: {3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {4420C4B5-976D-4B13-B3C3-DE4342797ABA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {650F5BDA-CE2B-4757-BB24-2E38E5E205E5} - System32\Tasks\ASUS\ASUS Manager BackgroundWindow => C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe [2013-08-24] ()
Task: {67B27433-B79A-40DD-AFA4-9D0B7C838886} - \SteamClient -> No File <==== ATTENTION
Task: {6B63798C-04AE-424F-8EDB-1DC265072DCA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7A7050BA-6910-4181-9992-DAE07FDC51B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-01-12] (Hewlett-Packard Company)
Task: {7FB872D9-6AB9-4F30-821C-AA1A4291DFC4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {812E9F50-28D3-423A-81E7-5FE5A86E0778} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {82B3F39A-8CB9-438D-A520-0039C4C1A80D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-01-06] (Hewlett-Packard)
Task: {875CCE82-137C-490E-B6B5-60C4D38E4BD6} - System32\Tasks\ASUS\ASUS Updater => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSFourceUpdater.exe [2014-03-21] ()
Task: {9F75473C-29AD-4545-8E0D-D5AC15F28295} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe [2014-03-18] ()
Task: {BD37E462-C560-4FCC-AD84-BCCE2A8A592C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {C6B05FCB-0CFA-4DB6-8487-521F66FCD165} - \AutoKMS -> No File <==== ATTENTION
Task: {C9618D6F-5271-44A9-8922-AEADDB650F71} - System32\Tasks\ASUS\ASUS Manager HotKey Service => C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe [2014-03-19] (ASUSTeK Computer Inc.)
Task: {CA85A267-8947-4730-A414-49E220F010E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {CECD8146-95AC-48C7-959E-601D71442FDB} - System32\Tasks\ASUS\Power_Manager_background => C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe [2014-09-13] (ASUSTeK)
Task: {DBE42AF6-919C-4DDA-B47C-60DCFCDCC460} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {F2817BD2-0928-41FD-A0F8-1411907A78F5} - System32\Tasks\ASUS\SyncUp => C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe [2014-11-04] (ASUSTeK Computer Inc.)
Task: {F73AA408-0D64-4B79-9064-9E9CC179778F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForRichard.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-08-26 19:49 - 2015-11-15 20:23 - 00076152 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-09-23 21:41 - 2015-09-23 21:41 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-02-01 13:00 - 2016-02-01 13:00 - 00010752 ____N () C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
2016-01-04 17:56 - 2015-12-09 02:52 - 00217720 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-03-04 04:52 - 2014-12-02 03:17 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-01-01 17:29 - 2015-08-07 01:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-01-01 17:17 - 2016-01-01 17:17 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-03-04 04:54 - 2014-06-03 23:59 - 00930448 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
2016-01-01 17:17 - 2016-01-01 17:17 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-03-04 04:54 - 2014-03-12 23:51 - 00907776 _____ () C:\Windows\PCCleanupContextMenu\x64\ContextMenuHandler.dll
2016-01-01 17:17 - 2016-01-01 17:17 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-01-01 17:17 - 2016-01-01 17:17 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-13 17:19 - 2016-01-05 02:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-13 17:19 - 2016-01-05 02:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-27 21:47 - 2016-01-16 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-27 21:47 - 2016-01-16 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-09 15:41 - 2014-05-22 09:43 - 00434176 _____ () C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\Monitor.exe
2016-01-22 15:07 - 2016-01-22 15:11 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-03-04 04:52 - 2016-02-08 20:05 - 00033936 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2015-03-04 04:52 - 2010-06-29 03:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2015-03-04 04:47 - 2013-09-16 21:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-03-04 04:54 - 2014-01-22 19:36 - 00753664 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\WiMoveHelp.dll
2015-03-04 04:54 - 2014-01-22 19:35 - 00684032 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\PhoneCtrlAPI.dll
2015-08-26 17:36 - 2015-12-09 02:53 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-01-09 15:41 - 2014-05-22 10:02 - 00057344 _____ () C:\Program Files (x86)\Yenkee\Gaming Mouse Driver\lan.dll
2016-01-22 15:07 - 2016-01-22 15:11 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-01-22 15:07 - 2016-01-22 15:12 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-02-05 15:24 - 2016-02-03 08:27 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.103\libglesv2.dll
2016-02-05 15:24 - 2016-02-03 08:27 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.103\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2016-02-08 19:43 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Richard\Pictures\Wallapers\Diamond.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: MaxthonUpdateSvc => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: PnkBstrA => 2
MSCONFIG\Services: SkypeUpdate => 2
HKU\S-1-5-21-1070751703-1546616555-1304526450-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6E342719-E9B0-4AC9-BDBC-E849C1EB0493}] => (Allow) D:\Games\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{C6AE1E6F-BCFF-403E-8D2A-F22B86E9B8B4}] => (Allow) D:\Games\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [UDP Query User{118D07F5-42D3-4707-B45E-D0B9AF7C940B}D:\games\kcd\kingdom.come.deliverance.v0.4\bin64\game.exe] => (Allow) D:\games\kcd\kingdom.come.deliverance.v0.4\bin64\game.exe
FirewallRules: [TCP Query User{4D2CF096-9C30-440E-ACEF-A565C8C06B6C}D:\games\kcd\kingdom.come.deliverance.v0.4\bin64\game.exe] => (Allow) D:\games\kcd\kingdom.come.deliverance.v0.4\bin64\game.exe
FirewallRules: [UDP Query User{D56844AE-7330-488C-94BC-DC4DA78BE039}D:\games\7dtd\7.days.to.die.alpha.12.5.x64\7daystodie.exe] => (Allow) D:\games\7dtd\7.days.to.die.alpha.12.5.x64\7daystodie.exe
FirewallRules: [TCP Query User{C16594A8-2632-4CA6-AF77-05EB904F890D}D:\games\7dtd\7.days.to.die.alpha.12.5.x64\7daystodie.exe] => (Allow) D:\games\7dtd\7.days.to.die.alpha.12.5.x64\7daystodie.exe
FirewallRules: [{9E3E4616-B06B-452E-9670-B64D62FB4AD6}] => (Allow) D:\Games\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{1408889C-ABDA-4D8F-B780-4D2C362AF2D6}] => (Allow) D:\Games\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{83236928-8FD4-4848-9584-E4F73A36DC08}] => (Allow) D:\Games\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{DD56C64F-D5AA-4B94-965F-290CB062AC3F}] => (Allow) D:\Games\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [UDP Query User{CBAB316C-65AF-47E0-9CA9-6DF8F1F02B3E}D:\games\the witcher 2 - assassins of kings - enhanced edition\bin\witcher2.exe] => (Allow) D:\games\the witcher 2 - assassins of kings - enhanced edition\bin\witcher2.exe
FirewallRules: [TCP Query User{36C55AA8-A550-422A-9472-A7ECA0203DD1}D:\games\the witcher 2 - assassins of kings - enhanced edition\bin\witcher2.exe] => (Allow) D:\games\the witcher 2 - assassins of kings - enhanced edition\bin\witcher2.exe
FirewallRules: [{B9AD74E4-5C40-41CD-87AD-4EE9B6208124}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{4E53C033-499D-4D9F-815C-22AF222B72A1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{060C9158-30F8-4977-A04B-FB1C1833585E}] => (Allow) D:\Games\Assassins Creed II\UPlayBrowser.exe
FirewallRules: [{58A5EAAD-C387-41FD-A7A2-12054700EF67}] => (Allow) D:\Games\Assassins Creed II\UPlayBrowser.exe
FirewallRules: [{1D6D47FA-0FC6-4E02-80BC-7245E51AA9EB}] => (Allow) D:\Games\Assassins Creed II\AssassinsCreedII.exe
FirewallRules: [{D416F181-3151-4740-A99C-7CB06AADA9A1}] => (Allow) D:\Games\Assassins Creed II\AssassinsCreedII.exe
FirewallRules: [{E2AC7864-6713-4A61-9F8C-BCD680107BFE}] => (Allow) D:\Games\Assassins Creed II\AssassinsCreedIIGame.exe
FirewallRules: [{3EB959B5-1C17-4B95-B61A-91F957E60E96}] => (Allow) D:\Games\Assassins Creed II\AssassinsCreedIIGame.exe
FirewallRules: [{CB1349C3-8B46-493A-A801-6E4E4B1C8556}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3EDBE710-9F34-4B44-8E90-FDAB21D35374}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B3ABF363-8BAA-4B3A-8F94-94EDD428CB5A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{15E17900-AE06-476C-AB79-E8C0ECE971DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [UDP Query User{787BC5F3-1A1F-4E5C-8E29-172A941AE486}D:\games\assassins creed iii\ac3sp.exe] => (Allow) D:\games\assassins creed iii\ac3sp.exe
FirewallRules: [TCP Query User{9C3BF7BB-2A68-4288-9C94-5336BD06FBFA}D:\games\assassins creed iii\ac3sp.exe] => (Allow) D:\games\assassins creed iii\ac3sp.exe
FirewallRules: [UDP Query User{6CEF1981-BB3F-40AD-8BC5-1B3C3BFEA3B5}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{8F266A7A-4AF9-49AF-9BF8-C886820D2110}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{EF628143-C9AA-4B20-BBED-7CD337FA42DA}D:\games\pro evolution soccer 2016\pes2016.exe] => (Allow) D:\games\pro evolution soccer 2016\pes2016.exe
FirewallRules: [TCP Query User{C8B14FCA-552A-4A40-8152-20C13BD45B56}D:\games\pro evolution soccer 2016\pes2016.exe] => (Allow) D:\games\pro evolution soccer 2016\pes2016.exe
FirewallRules: [UDP Query User{25697846-CF66-4F91-9F13-186E8609CF58}D:\games\assassins creed iv black flag\ac4bfmp.exe] => (Allow) D:\games\assassins creed iv black flag\ac4bfmp.exe
FirewallRules: [TCP Query User{752D609E-B556-487C-A1E7-E009186B88A5}D:\games\assassins creed iv black flag\ac4bfmp.exe] => (Allow) D:\games\assassins creed iv black flag\ac4bfmp.exe
FirewallRules: [{307700BE-E53C-48BD-9837-44799EC132F6}] => (Allow) D:\Games\Life Is Strange\steam_api64.exe
FirewallRules: [{D63E7743-8C7C-4965-86C4-F6A632D607A7}] => (Allow) D:\Games\Life Is Strange\steam_api64.exe
FirewallRules: [UDP Query User{34269E25-888E-4ED8-AC61-85E1ACF58075}D:\games\origin games\fifa 14\fifa 16 demo\fifa16_demo.exe] => (Allow) D:\games\origin games\fifa 14\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{83309DDA-E549-4B92-84A2-1E0F33879B48}D:\games\origin games\fifa 14\fifa 16 demo\fifa16_demo.exe] => (Allow) D:\games\origin games\fifa 14\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{DEC1E580-F4A2-4CD1-99DD-A067AD0FBDE0}D:\office 13\microsoft office 2013 professional plus\microsoft toolkit 2.4.5.exe] => (Allow) D:\office 13\microsoft office 2013 professional plus\microsoft toolkit 2.4.5.exe
FirewallRules: [TCP Query User{20E3D7EE-105B-4895-A364-11605F2BB8EC}D:\office 13\microsoft office 2013 professional plus\microsoft toolkit 2.4.5.exe] => (Allow) D:\office 13\microsoft office 2013 professional plus\microsoft toolkit 2.4.5.exe
FirewallRules: [UDP Query User{9455E036-0979-40A4-B2C7-BF587044CB01}D:\games\grand theft auto v\gta5.exe] => (Allow) D:\games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{D4551D76-C949-4FDA-A473-B1E803EF673D}D:\games\grand theft auto v\gta5.exe] => (Allow) D:\games\grand theft auto v\gta5.exe
FirewallRules: [{C4C1A5DD-573D-400F-B5B0-D466F26DFD43}] => (Allow) C:\Users\Richard\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{16B3694E-04D9-4266-9BF9-AECE11A1A30F}] => (Allow) D:\Games\Batman - Arkham City\Binaries\Win32\BatmanAC.exe
FirewallRules: [{D2B4C3E3-60D8-4A68-898D-76D7845C641E}] => (Allow) D:\Games\Batman - Arkham City\Binaries\Win32\BatmanAC.exe
FirewallRules: [{157BEFCF-8CD6-485A-A4B7-11CDAAB2ADF0}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{4089F7B8-CD8A-430D-ACD8-8499A172EBA1}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{82034297-1DBC-4E6F-AAD4-BA847B212CCB}] => (Allow) C:\Program Files (x86)\pandasecuritytb\dtuser.exe
FirewallRules: [{65E61B9F-AF31-4D43-97A5-422A130325D7}] => (Allow) C:\Program Files (x86)\pandasecuritytb\dtuser.exe
FirewallRules: [{66674041-8E8F-41CD-A6EF-412F282F9148}] => (Allow) D:\Games\Far Cry 3\bin\FC3Editor.exe
FirewallRules: [{3BFFA221-F8CD-4459-85FF-DBE76245D59D}] => (Allow) D:\Games\Far Cry 3\bin\FC3Editor.exe
FirewallRules: [{3FCC0698-97B6-4544-A64C-60ACC89DB70A}] => (Allow) D:\Games\Far Cry 3\bin\FC3Updater.exe
FirewallRules: [{399AA549-221D-48DE-A4A0-3076EEB084D4}] => (Allow) D:\Games\Far Cry 3\bin\FC3Updater.exe
FirewallRules: [{B17E1B41-3B80-4932-9CAE-FE066CD0B4C1}] => (Allow) D:\Games\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{DC716149-AF88-4D51-BBB1-70DEAD5763C1}] => (Allow) D:\Games\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{04539218-BC2A-454F-A49E-E4A4E22BE59F}] => (Allow) D:\Games\Far Cry 3\bin\farcry3.exe
FirewallRules: [{2DC6F7DF-8E3B-4E3F-839C-0DF1CC0FDAD2}] => (Allow) D:\Games\Far Cry 3\bin\farcry3.exe
FirewallRules: [{FB437A0B-F474-43BE-B4E9-322A14A0A7FC}] => (Allow) D:\Games\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{D5078FEA-6736-4048-9182-F3E442BD5B63}] => (Allow) D:\Games\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{8FDDD119-F3EE-45A9-8027-F8609831CF6D}] => (Allow) D:\Games\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D7A78404-536E-4839-9526-9DFCEB7A6BBB}] => (Allow) D:\Games\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D173574C-4AF1-436E-8549-13F2F1CA9E61}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{306795DD-28B7-415F-ADA4-72DCADDA0B3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0707D918-0277-4BD9-94D1-4AC4EAB3407E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B2704CA3-96FC-42A2-8D68-880CD1673A64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{936D31D3-A043-4DC2-9911-25DABDB1AA3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{31C5550F-B779-43A8-B645-E59C20D2127C}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{8A1D1F26-8B08-4F60-B9B8-6EEAD275B597}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{ABAC7601-4EE6-4811-9594-2CD6A486F51D}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{108599CE-5DDB-4B4A-9DC1-7891EB1017B6}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{B710D94F-AFCA-47B8-A016-BF325A487DA9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A90A1EA4-0886-43FD-A82F-ED05CC13B6D2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{069FC698-080D-4A30-A252-98761B58E9EC}] => (Allow) LPort=1900
FirewallRules: [{54AAAC76-1583-443B-B043-C7F87DC6B5D4}] => (Allow) LPort=2869
FirewallRules: [{7795AA55-E607-449E-AD5E-B436AD54B5A2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5B5B714C-2FF6-4085-880A-4484D921E090}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{A1BF06A9-4E80-42B8-96C9-210D75F302F0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{EE71DCF8-3F38-49A4-A0E1-C99A72AFD231}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{80126EAB-341A-435D-A71F-EFA1EC78A604}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{212D6009-3115-43A8-81B7-674D8602E2CA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{7BE8DBA9-19DA-400B-AA9E-4D5158DDBAF1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{617F8866-A30C-4B14-90E0-CC2FBB1DD6CC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{EAD6E0F5-986A-4A11-B9CD-70A93D4717FE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{46BE8017-5A15-42FF-B717-E7E58ED216C9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{F4BB4B6A-80F4-48BC-9302-E38501D8CA9C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{91D5D7FF-76CF-4560-83CC-79C92CE4C39C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{1BFDA113-B654-427F-8655-8A0DF0097A29}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{EDFC7819-6484-4075-9206-A3D46AFD2CA7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{16134ED0-B41C-45CF-A302-12201D379148}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [TCP Query User{4EF57E05-CAE0-40F0-9A8A-5D35223694E4}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{A664E61A-898F-4EB6-8FF5-CB86BD1DAA2D}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{29015FEC-ADE0-4317-BCEF-3559DEF79849}] => (Allow) D:\Games\Origin Games\FIFA 14\FIFA 14\Game\fifa14.exe
FirewallRules: [{AC9A4B65-A941-4D4F-AB64-6F0E6138E645}] => (Allow) D:\Games\Origin Games\FIFA 14\FIFA 14\Game\fifa14.exe
FirewallRules: [TCP Query User{012CF915-0F1E-4388-9A0B-236F312710CD}D:\games\mass effect 2\binaries\masseffect2.exe] => (Allow) D:\games\mass effect 2\binaries\masseffect2.exe
FirewallRules: [UDP Query User{10AAE519-4251-4B18-A3D3-951CC6F63138}D:\games\mass effect 2\binaries\masseffect2.exe] => (Allow) D:\games\mass effect 2\binaries\masseffect2.exe
FirewallRules: [{E472BCFE-67E1-47AA-90D1-8E0FE31DED40}] => (Allow) D:\Games\Call of Duty 4\iw3mp.exe
FirewallRules: [{40DCDAA1-67D2-41AF-84A1-9416FC71C87E}] => (Allow) D:\Games\Call of Duty 4\iw3mp.exe
FirewallRules: [{E5B49E11-25D4-4DD5-AA14-82E1989109DF}] => (Allow) D:\Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{2A9DF43E-88A9-4769-A844-1AC8FEB965DE}] => (Allow) D:\Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{339FB528-0402-441C-ACD2-C49E2D4D3CF0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CB02F7BA-FC26-4D02-86DC-80F0D0C3A22E}] => (Allow) D:\Games\Origin Games\FIFA 14\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{57955046-61AE-492B-AE5F-AA379E2E2B89}] => (Allow) D:\Games\Origin Games\FIFA 14\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [TCP Query User{B5FB7D76-CAE5-482D-BB9E-924FF67F15DC}C:\users\richard\appdata\roaming\utorrent\updates\3.4.5_41712.exe] => (Allow) C:\users\richard\appdata\roaming\utorrent\updates\3.4.5_41712.exe
FirewallRules: [UDP Query User{07314C65-6A78-45C1-B7A2-828749E6C2F8}C:\users\richard\appdata\roaming\utorrent\updates\3.4.5_41712.exe] => (Allow) C:\users\richard\appdata\roaming\utorrent\updates\3.4.5_41712.exe
FirewallRules: [{53D9F6CA-7732-4F5D-8D9C-7604387B669C}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{ECB301F1-47D1-4DA8-B84E-1300053604F0}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BC1D8A7E-ABD0-4F47-ABDC-F610CEF84434}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F68DC589-0675-46B2-A882-9D5CFA4DDC19}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{81428529-BDFB-414C-B8C3-190E88B85E4A}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3E29E944-D301-4CBF-A5D7-3D7B7BD2AB95}] => (Allow) C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E119F361-BBDB-4CB4-BC66-4FCBA318A2C2}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe
FirewallRules: [{8A7D9A68-CC4A-46E1-95BE-98F198193E2A}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe
FirewallRules: [{A8332D5E-B52B-46A7-9700-5BD99FF4BA9C}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\ASUSDMS.exe
FirewallRules: [{85CF5EED-AFF5-4F0C-8973-030FC08427BD}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\ASUSDMS.exe
==================== Restore Points =========================
28-01-2016 18:37:43 Windows Update
01-02-2016 12:37:14 Installed Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
06-02-2016 16:42:38 Installed DirectX
07-02-2016 15:27:41 JRT Pre-Junkware Removal
08-02-2016 18:16:12 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/09/2016 07:55:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: PSUAMain.exe, verzia: 4.0.0.646, časová značka: 0x56291049
Názov chybujúceho modulu: CC3290MT.DLL, verzia: 9.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x0005d522
Identifikácia chybujúceho procesu: 0x78
Čas spustenia chybujúcej aplikácie: 0xPSUAMain.exe0
Cesta chybujúcej aplikácie: PSUAMain.exe1
Cesta chybujúceho modulu: PSUAMain.exe2
Identifikácia hlásenia: PSUAMain.exe3
Celé meno chybujúceho balíka: PSUAMain.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: PSUAMain.exe5
Error: (02/09/2016 07:55:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: PSUAMain.exe, verzia: 4.0.0.646, časová značka: 0x56291049
Názov chybujúceho modulu: CC3290MT.DLL, verzia: 9.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x000193ee
Identifikácia chybujúceho procesu: 0x78
Čas spustenia chybujúcej aplikácie: 0xPSUAMain.exe0
Cesta chybujúcej aplikácie: PSUAMain.exe1
Cesta chybujúceho modulu: PSUAMain.exe2
Identifikácia hlásenia: PSUAMain.exe3
Celé meno chybujúceho balíka: PSUAMain.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: PSUAMain.exe5
Error: (02/09/2016 06:59:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/09/2016 06:59:18 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (02/09/2016 05:57:12 PM) (Source: MsiInstaller) (EventID: 1002) (User: RICHARDOV-PC)
Description: Neočakávaná alebo chýbajúca hodnota (názov: PackageName, hodnota: ) v kľúči HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList
Error: (02/09/2016 05:57:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
Error: (02/09/2016 03:21:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: PSUAMain.exe, verzia: 4.0.0.646, časová značka: 0x56291049
Názov chybujúceho modulu: CC3290MT.DLL, verzia: 9.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x0005d522
Identifikácia chybujúceho procesu: 0x2274
Čas spustenia chybujúcej aplikácie: 0xPSUAMain.exe0
Cesta chybujúcej aplikácie: PSUAMain.exe1
Cesta chybujúceho modulu: PSUAMain.exe2
Identifikácia hlásenia: PSUAMain.exe3
Celé meno chybujúceho balíka: PSUAMain.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: PSUAMain.exe5
Error: (02/09/2016 03:21:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: PSUAMain.exe, verzia: 4.0.0.646, časová značka: 0x56291049
Názov chybujúceho modulu: CC3290MT.DLL, verzia: 9.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x000193ee
Identifikácia chybujúceho procesu: 0x2274
Čas spustenia chybujúcej aplikácie: 0xPSUAMain.exe0
Cesta chybujúcej aplikácie: PSUAMain.exe1
Cesta chybujúceho modulu: PSUAMain.exe2
Identifikácia hlásenia: PSUAMain.exe3
Celé meno chybujúceho balíka: PSUAMain.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: PSUAMain.exe5
Error: (02/09/2016 03:20:11 PM) (Source: MsiInstaller) (EventID: 1002) (User: RICHARDOV-PC)
Description: Neočakávaná alebo chýbajúca hodnota (názov: PackageName, hodnota: ) v kľúči HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList
Error: (02/08/2016 09:31:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Cities.exe, verzia: 5.0.0.59127, časová značka: 0x54dc75a7
Názov chybujúceho modulu: d3d11.dll_unloaded, verzia: 10.0.10586.17, časová značka: 0x56518954
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000006433b
Identifikácia chybujúceho procesu: 0xcfc
Čas spustenia chybujúcej aplikácie: 0xCities.exe0
Cesta chybujúcej aplikácie: Cities.exe1
Cesta chybujúceho modulu: Cities.exe2
Identifikácia hlásenia: Cities.exe3
Celé meno chybujúceho balíka: Cities.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: Cities.exe5
System errors:
=============
Error: (02/09/2016 05:54:51 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:54:51 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:51 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
Error: (02/09/2016 05:52:50 PM) (Source: DCOM) (EventID: 10016) (User: RICHARDOV-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Richardov-PCRichardS-1-5-21-1070751703-1546616555-1304526450-1001LocalHost (Using LRPC)UnavailableUnavailable
CodeIntegrity:
===================================
Date: 2016-02-09 18:34:56.309
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-29 06:52:57.508
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-14 14:53:53.259
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-09 09:42:34.882
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 13:24:27.313
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-05 10:16:12.404
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-04 16:47:03.505
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-03 22:00:21.025
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-02 20:49:04.206
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-01 17:43:59.110
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4460S CPU @ 2.90GHz
Percentage of memory in use: 22%
Total physical RAM: 8131.16 MB
Available physical RAM: 6283.97 MB
Total Virtual: 14234.23 MB
Available Virtual: 12266.36 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:150 GB) (Free:105.83 GB) NTFS
Drive d: (Data) (Fixed) (Total:764.19 GB) (Free:465.53 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: CC9E2BA3)
Partition: GPT.
==================== End of Addition.txt ============================
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
C:\Users\Richard\Downloads\bZ6gbwlXSPTrtB1dGO4xqkRrX9mp9QqH
C:\Users\Richard\Downloads\OFHghWzmjYHtT12JWbHnp9en63UVCFkP.nq50fd3.partial
C:\Users\Richard\Downloads\H3TOyS3vPjYjWhIAqiwrZlrQsxNkbzxU
tohle , co si stahoval znáš?
Návod
Kód: Vybrat vše
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Richard\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Richard\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Richard\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
GroupPolicyScripts-x32: Restriction <======= ATTENTION
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
C:\Windows\System32\drivers\mfeelamk.sys
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
Task: {05094CE6-3A13-4381-AC0B-33AD60B89B41} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {19AE8C6A-6C9C-4928-92C6-CB248CB0FE37} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {275B4B53-5799-4DCD-BD65-1C359E81CB72} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {27668EDE-97B4-4F15-9234-EBF63B7A2284} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {285A606C-71FA-4DE1-AC01-E46B3D0DF338} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {38B70730-1BE6-4D37-9382-53B9A5B283DF} - \Microsoft OneDrive Auto Update Task-S-1-5-21-1070751703-1546616555-1304526450-1001 -> No File <==== ATTENTION
Task: {3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {4420C4B5-976D-4B13-B3C3-DE4342797ABA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {67B27433-B79A-40DD-AFA4-9D0B7C838886} - \SteamClient -> No File <==== ATTENTION
Task: {6B63798C-04AE-424F-8EDB-1DC265072DCA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7FB872D9-6AB9-4F30-821C-AA1A4291DFC4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {812E9F50-28D3-423A-81E7-5FE5A86E0778} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C6B05FCB-0CFA-4DB6-8487-521F66FCD165} - \AutoKMS -> No File <==== ATTENTION
Task: {CA85A267-8947-4730-A414-49E220F010E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F73AA408-0D64-4B79-9064-9E9CC179778F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
EmptyTemp:
End(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
C:\Users\Richard\Downloads\bZ6gbwlXSPTrtB1dGO4xqkRrX9mp9QqH
C:\Users\Richard\Downloads\OFHghWzmjYHtT12JWbHnp9en63UVCFkP.nq50fd3.partial
C:\Users\Richard\Downloads\H3TOyS3vPjYjWhIAqiwrZlrQsxNkbzxU
tohle , co si stahoval znáš?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version:07-02-2016
Ran by Richard (2016-02-10 15:54:12) Run:1
Running from C:\Users\Richard\Desktop
Loaded Profiles: Richard (Available Profiles: Richard)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
GroupPolicyScripts-x32: Restriction <======= ATTENTION
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
C:\Windows\System32\drivers\mfeelamk.sys
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
Task: {05094CE6-3A13-4381-AC0B-33AD60B89B41} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {19AE8C6A-6C9C-4928-92C6-CB248CB0FE37} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {275B4B53-5799-4DCD-BD65-1C359E81CB72} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {27668EDE-97B4-4F15-9234-EBF63B7A2284} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {285A606C-71FA-4DE1-AC01-E46B3D0DF338} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {38B70730-1BE6-4D37-9382-53B9A5B283DF} - \Microsoft OneDrive Auto Update Task-S-1-5-21-1070751703-1546616555-1304526450-1001 -> No File <==== ATTENTION
Task: {3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {4420C4B5-976D-4B13-B3C3-DE4342797ABA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {67B27433-B79A-40DD-AFA4-9D0B7C838886} - \SteamClient -> No File <==== ATTENTION
Task: {6B63798C-04AE-424F-8EDB-1DC265072DCA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7FB872D9-6AB9-4F30-821C-AA1A4291DFC4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {812E9F50-28D3-423A-81E7-5FE5A86E0778} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C6B05FCB-0CFA-4DB6-8487-521F66FCD165} - \AutoKMS -> No File <==== ATTENTION
Task: {CA85A267-8947-4730-A414-49E220F010E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F73AA408-0D64-4B79-9064-9E9CC179778F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
EmptyTemp:
End
*****************
Processes closed successfully.
C:\WINDOWS\SysWOW64\GroupPolicy\Machine => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
mfeelamk => service removed successfully
C:\Windows\System32\drivers\mfeelamk.sys => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{05094CE6-3A13-4381-AC0B-33AD60B89B41}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{05094CE6-3A13-4381-AC0B-33AD60B89B41}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{19AE8C6A-6C9C-4928-92C6-CB248CB0FE37}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19AE8C6A-6C9C-4928-92C6-CB248CB0FE37}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{275B4B53-5799-4DCD-BD65-1C359E81CB72}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{275B4B53-5799-4DCD-BD65-1C359E81CB72}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27668EDE-97B4-4F15-9234-EBF63B7A2284}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27668EDE-97B4-4F15-9234-EBF63B7A2284}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{285A606C-71FA-4DE1-AC01-E46B3D0DF338}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{285A606C-71FA-4DE1-AC01-E46B3D0DF338}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{38B70730-1BE6-4D37-9382-53B9A5B283DF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{38B70730-1BE6-4D37-9382-53B9A5B283DF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft OneDrive Auto Update Task-S-1-5-21-1070751703-1546616555-1304526450-1001" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4420C4B5-976D-4B13-B3C3-DE4342797ABA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4420C4B5-976D-4B13-B3C3-DE4342797ABA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{67B27433-B79A-40DD-AFA4-9D0B7C838886}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67B27433-B79A-40DD-AFA4-9D0B7C838886}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SteamClient => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6B63798C-04AE-424F-8EDB-1DC265072DCA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B63798C-04AE-424F-8EDB-1DC265072DCA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7FB872D9-6AB9-4F30-821C-AA1A4291DFC4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FB872D9-6AB9-4F30-821C-AA1A4291DFC4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{812E9F50-28D3-423A-81E7-5FE5A86E0778}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{812E9F50-28D3-423A-81E7-5FE5A86E0778}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{C6B05FCB-0CFA-4DB6-8487-521F66FCD165}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6B05FCB-0CFA-4DB6-8487-521F66FCD165}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA85A267-8947-4730-A414-49E220F010E7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA85A267-8947-4730-A414-49E220F010E7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F73AA408-0D64-4B79-9064-9E9CC179778F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F73AA408-0D64-4B79-9064-9E9CC179778F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => not found.
EmptyTemp: => 1.2 GB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 15:54:40 ====
Ran by Richard (2016-02-10 15:54:12) Run:1
Running from C:\Users\Richard\Desktop
Loaded Profiles: Richard (Available Profiles: Richard)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
GroupPolicyScripts-x32: Restriction <======= ATTENTION
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
C:\Windows\System32\drivers\mfeelamk.sys
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl
Task: {05094CE6-3A13-4381-AC0B-33AD60B89B41} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {19AE8C6A-6C9C-4928-92C6-CB248CB0FE37} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {275B4B53-5799-4DCD-BD65-1C359E81CB72} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {27668EDE-97B4-4F15-9234-EBF63B7A2284} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {285A606C-71FA-4DE1-AC01-E46B3D0DF338} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {38B70730-1BE6-4D37-9382-53B9A5B283DF} - \Microsoft OneDrive Auto Update Task-S-1-5-21-1070751703-1546616555-1304526450-1001 -> No File <==== ATTENTION
Task: {3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-14] (Google Inc.)
Task: {4420C4B5-976D-4B13-B3C3-DE4342797ABA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {67B27433-B79A-40DD-AFA4-9D0B7C838886} - \SteamClient -> No File <==== ATTENTION
Task: {6B63798C-04AE-424F-8EDB-1DC265072DCA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7FB872D9-6AB9-4F30-821C-AA1A4291DFC4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {812E9F50-28D3-423A-81E7-5FE5A86E0778} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C6B05FCB-0CFA-4DB6-8487-521F66FCD165} - \AutoKMS -> No File <==== ATTENTION
Task: {CA85A267-8947-4730-A414-49E220F010E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F73AA408-0D64-4B79-9064-9E9CC179778F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
EmptyTemp:
End
*****************
Processes closed successfully.
C:\WINDOWS\SysWOW64\GroupPolicy\Machine => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
mfeelamk => service removed successfully
C:\Windows\System32\drivers\mfeelamk.sys => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{05094CE6-3A13-4381-AC0B-33AD60B89B41}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{05094CE6-3A13-4381-AC0B-33AD60B89B41}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{19AE8C6A-6C9C-4928-92C6-CB248CB0FE37}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{19AE8C6A-6C9C-4928-92C6-CB248CB0FE37}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{275B4B53-5799-4DCD-BD65-1C359E81CB72}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{275B4B53-5799-4DCD-BD65-1C359E81CB72}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27668EDE-97B4-4F15-9234-EBF63B7A2284}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27668EDE-97B4-4F15-9234-EBF63B7A2284}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{285A606C-71FA-4DE1-AC01-E46B3D0DF338}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{285A606C-71FA-4DE1-AC01-E46B3D0DF338}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{38B70730-1BE6-4D37-9382-53B9A5B283DF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{38B70730-1BE6-4D37-9382-53B9A5B283DF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft OneDrive Auto Update Task-S-1-5-21-1070751703-1546616555-1304526450-1001" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F3C41AB-7A04-4C84-B461-BDC5CCC7E7F6}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4420C4B5-976D-4B13-B3C3-DE4342797ABA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4420C4B5-976D-4B13-B3C3-DE4342797ABA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{67B27433-B79A-40DD-AFA4-9D0B7C838886}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67B27433-B79A-40DD-AFA4-9D0B7C838886}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SteamClient => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6B63798C-04AE-424F-8EDB-1DC265072DCA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B63798C-04AE-424F-8EDB-1DC265072DCA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7FB872D9-6AB9-4F30-821C-AA1A4291DFC4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FB872D9-6AB9-4F30-821C-AA1A4291DFC4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{812E9F50-28D3-423A-81E7-5FE5A86E0778}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{812E9F50-28D3-423A-81E7-5FE5A86E0778}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{C6B05FCB-0CFA-4DB6-8487-521F66FCD165}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6B05FCB-0CFA-4DB6-8487-521F66FCD165}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA85A267-8947-4730-A414-49E220F010E7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA85A267-8947-4730-A414-49E220F010E7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F73AA408-0D64-4B79-9064-9E9CC179778F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F73AA408-0D64-4B79-9064-9E9CC179778F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => not found.
EmptyTemp: => 1.2 GB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 15:54:40 ====
Re: Prosím o kontrolu logu
No a tie stiahnuté súbory to sú nepodarené pokusy o stiahnutie ADWCleaneru.
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
aha , tak to smaž.
Co problémy?
Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Prosím o kontrolu logu
Ok, zmazané. Tak nechcem to zarieknúť, ale už mi PC problémy nerobí. Ďakujem veľmi pekne za ochotu chlapi, ste super!
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu
Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt
Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"
https://toolslib.net/downloads/viewdownload/2-delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt
Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Prosím o kontrolu logu
# DelFix v1.011 - Logfile created 10/02/2016 at 19:50:28
# Updated 18/08/2015 by Xplode
# Username : Richard - RICHARDOV-PC
# Operating System : Windows 10 Home (64 bits)
~ Removing disinfection tools ...
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Richard\Downloads\JRT (2).exe
Deleted : C:\Users\Richard\Downloads\HijackThis.exe
Deleted : C:\Users\Richard\Downloads\zoek.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
~ Cleaning system restore ...
Deleted : RP #11 [Installed DirectX | 02/06/2016 15:42:38]
Deleted : RP #12 [JRT Pre-Junkware Removal | 02/07/2016 14:27:41]
Deleted : RP #13 [JRT Pre-Junkware Removal | 02/08/2016 17:16:12]
New restore point created !
########## - EOF - ##########
# Updated 18/08/2015 by Xplode
# Username : Richard - RICHARDOV-PC
# Operating System : Windows 10 Home (64 bits)
~ Removing disinfection tools ...
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Richard\Downloads\JRT (2).exe
Deleted : C:\Users\Richard\Downloads\HijackThis.exe
Deleted : C:\Users\Richard\Downloads\zoek.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
~ Cleaning system restore ...
Deleted : RP #11 [Installed DirectX | 02/06/2016 15:42:38]
Deleted : RP #12 [JRT Pre-Junkware Removal | 02/07/2016 14:27:41]
Deleted : RP #13 [JRT Pre-Junkware Removal | 02/08/2016 17:16:12]
New restore point created !
########## - EOF - ##########
-
Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: Prosím o kontrolu logu Vyřešeno
OK. Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"
Láska hřeje, ale uhlí je uhlí. 
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Re: Prosím o kontrolu logu
Ok dakujem velmi pekne. :)
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 82 hostů