﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version:16-11-2015
Ran by k33p (2015-11-16 22:58:43)
Running from C:\Users\k33p\Desktop
Windows 8.1 (X64) (2014-12-08 13:57:08)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2861440359-3722972303-3478310367-500 - Administrator - Disabled)
Guest (S-1-5-21-2861440359-3722972303-3478310367-501 - Limited - Disabled)
k33p (S-1-5-21-2861440359-3722972303-3478310367-1002 - Administrator - Enabled) => C:\Users\k33p

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

"Mass Effect 3" (HKLM-x32\...\{46E776B9-37DE-4B71-8DF2-F4C75112CA27}_is1) (Version:  - )
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
AIDA64 Extreme v5.50 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.50 - FinalWire Ltd.)
Aktualizácie NVIDIA 2.5.12.11 (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Alien Isolation version 1.0 *Update 3* (HKLM-x32\...\Alien Isolation_is1) (Version: 1.0 *Update 3* - )
Aliens: Colonial Marines (HKLM-x32\...\Aliens: Colonial Marines_is1) (Version:  - )
Amnesia - A Machine For Pigs (CZ Dabing) (HKLM-x32\...\FPD_AAMFP_is1) (Version: 1.0 - Fénix ProDabing)
Amnesia - The Dark Descent  (HKLM-x32\...\{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1) (Version: 1.0.0 - Frictional Games)
Amnesia: A Machine for Pigs (HKLM-x32\...\Amnesia: A Machine for Pigs_is1) (Version:  - )
Among the sleep (HKLM-x32\...\Among the sleep_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
ARMA 3 (HKLM-x32\...\QVJNQTM=_is1) (Version: 1 - )
ArnA 2: Combined Operations (HKLM-x32\...\ArnA 2: Combined Operations) (Version: 1.60 - Bohemia Interactive)
Assassin's Creed ® III (HKLM-x32\...\{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}) (Version: 1.00 - Ubisoft)
Assassins Creed III version 5.1 (HKLM-x32\...\{B810D852-DFD6-ACIII-89A5-CC4D47756DAF}_is1) (Version: 5.1 - Black_Box)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2223 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BMW Standard Tools (HKLM-x32\...\{ 70994916-61E9-40D2-A30C-89D2C030017F}_is1) (Version: 2.12.0 - BMW Group)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty Modern Warfare 3 version 1.0 (HKLM-x32\...\{4B7IL77L-LKS1-75B1-CODMW3-18CD6E6334R1}_is1) (Version: 1.0 - Activision)
Car Mechanic Simulator 2014 - Complete Edition (HKLM-x32\...\Car Mechanic Simulator 2014 - Complete Edition_is1) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Command & Conquer 3 (HKLM-x32\...\{DDEDAF6C-488E-4CDA-8276-1CCF5F3C5C32}) (Version: 1.00.0000 - Electronic Arts Inc.)
Condemned - Criminal Origins (HKLM-x32\...\Condemned - Criminal Origins_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.9.4928 - CyberLink Corp.)
CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.6.5104 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.10.5422 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.6.5011 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Daylight (HKLM-x32\...\Daylight_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DreadOut (HKLM-x32\...\DreadOut_is1) (Version:  - )
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
F.E.A.R. 2 version 1.5.0.0 (HKLM-x32\...\F.E.A.R. 2_is1) (Version: 1.5.0.0 - Mr DJ)
F.E.A.R. 3 version 1.0.0.1 (HKLM-x32\...\F.E.A.R. 3_is1) (Version: 1.0.0.1 - Mr DJ)
F.E.A.R. version 1.8.0.0 (HKLM-x32\...\F.E.A.R._is1) (Version: 1.8.0.0 - Mr DJ)
Far Cry 2 (HKLM-x32\...\{F2835483-37F2-4123-B4FE-0E77D58447F2}) (Version: 1.00.00 - Ubisoft)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.01 - Ubisoft)
Far Cry 4 (HKLM-x32\...\Far Cry 4_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Fotogaléria (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.0.6.1126 - Foxit Software Inc.)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Connected Music (Meridian - player) (HKU\S-1-5-21-2861440359-3722972303-3478310367-1002\...\HPConnectedMusic) (Version: 1.1 (build 128) hp - Meridian Audio Ltd)
HP Documentation (HKLM-x32\...\{F29E3AA8-CF19-4452-92B7-F1FE31CD11C5}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.46 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{8C696B4B-6AB1-44BC-9416-96EAC474CABE}) (Version: 7.5.2.12 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{8B4EE87E-6D40-4C91-B5E8-0DC77DC412F1}) (Version: 1.4.1 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
Inst5675 (Version: 8.01.46 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.46 - Softex Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.2.0.1016 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.406 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.406 - LogMeIn, Inc.) Hidden
Max Payne 3 v1.0.0.114 / RePack by irvins (HKLM-x32\...\{E6D22FE1-AB5F-MAX3-9480-6F70B96DDD88}_is1) (Version:  - )
Metro 2033 Redux (HKLM-x32\...\Metro 2033 Redux_is1) (Version:  - )
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 38.0.5 (x86 sk) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 sk)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Grafický ovládač 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Outlast (HKLM-x32\...\T3V0bGFzdA==_is1) (Version: 1 - )
Outlast: Whistleblower (HKLM-x32\...\T3V0bGFzdFdoaXN0bGVibG93ZXI=_is1) (Version: 1 - )
Ovládací panel NVIDIA 355.60 (Version: 355.60 - NVIDIA Corporation) Hidden
Pathologic (HKLM-x32\...\Pathologic_is1) (Version:  - )
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.35.716.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.38 - REALTEK Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.1 - Rockstar Games)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
Slender - The Arrival (HKLM-x32\...\Slender - The Arrival_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
Startup Manager 2.4.2 (HKLM-x32\...\Startup_Manager_is1) (Version: 2.4.2 - Glenn Van Loon)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.7.20 - Synaptics Incorporated)
System Requirements Lab CYRI (HKLM-x32\...\{1110A014-1471-4B66-BFDC-E8EED120CC59}) (Version: 6.0.20.0 - Husdawg, LLC)
The Evil Within (HKLM-x32\...\The Evil Within_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Tom Clancy's Ghost Recon ver. 1.8.130422 (HKLM-x32\...\{01233210-44WS-55HN-66K1-46KL5M686AC}_is1) (Version: 1.8.130422 - Ubisoft Entertainment)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Total Uninstall 6.4.1 (HKLM\...\Total Uninstall 6_is1) (Version: 6.4.1 - Gavrila Martau)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.5.0.0 - Azureus Software, Inc.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16) (HKLM\...\2DC0AA065FA83047D7ECD51C7000C1620D79A4C5) (Version: 02/17/2009 2.04.16 - FTDI)
Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16) (HKLM\...\51A4D522DD31538335EF5736F0E7F588C70BCB12) (Version: 02/17/2009 2.04.16 - FTDI)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Wolfenstein: The New Order (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - )
World of Tanks (HKU\S-1-5-21-2861440359-3722972303-3478310367-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version:  - Wargaming.net)
World of Warplanes (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-2861440359-3722972303-3478310367-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2861440359-3722972303-3478310367-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

12-11-2015 01:34:23 Windows Update
12-11-2015 11:28:44 Inštalátor modulov systému Windows
12-11-2015 11:29:59 Inštalátor modulov systému Windows

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2014-12-10 21:28 - 00000753 ____A C:\Windows\system32\Drivers\etc\hosts

 
127.0.0.1       localhost 

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D42551C-00FD-4EB6-B9BC-AB46D08360C4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-11-12] (Microsoft Corporation)
Task: {0F75EF3F-47C4-4F2C-B3D0-37BB564D8BBD} - System32\Tasks\Ad-Aware Update (Daily 4) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {11BFA220-74DA-4BA5-8FBC-E49EDFC43364} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {142DBB19-9ED6-45E3-98F1-54ED1AE7E89E} - System32\Tasks\Ad-Aware Update (Daily 3) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {1EAEA5BF-245F-4190-9061-4D129104871F} - System32\Tasks\{F0320CD2-70DE-41B0-B667-6F7837BD39F9} => pcalua.exe -a "C:\Program Files (x86)\Spyware Terminator\unins000.exe"
Task: {2216D00B-D48B-481F-9FDE-639DCDBC2893} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2015-07-02] (Hewlett-Packard)
Task: {314C8801-661B-4ACC-844E-64B5BC1200D5} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2015-07-02] (Hewlett-Packard)
Task: {441B3814-5324-412E-A413-B566D0BA3032} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {49E8B62E-6A88-404C-83C7-E4D15B209B93} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {58DFDF1B-E008-4FD7-AA0E-E9BD710A2096} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2015-07-02] (Hewlett-Packard)
Task: {5E0FEBE6-4951-4427-9E17-7C34AA395293} - System32\Tasks\HPCeeScheduleFork33p => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {6E6A8518-ECCA-43AC-BF35-655E07439738} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {8B841C9A-EC7F-4BC0-8FA8-7FD884986A28} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {979D93D9-C5BB-4E3B-8C22-4C3FA86591BC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {9BEBACC6-C8C6-4E95-9909-E4A525F2ADF3} - System32\Tasks\Ad-Aware Update (Daily 2) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {A0895246-EB03-4E29-ACAE-3055C454FB03} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-07-21] (AVAST Software)
Task: {A6A78156-51A3-4165-BFF4-6BBAFCF3D8B5} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {AE8B8DD4-FC59-4F87-9FE9-3D6334A8BC80} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {B5D8925B-EE68-4FC4-BA72-FC4253AD3059} - System32\Tasks\Ad-Aware Update (Daily 1) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {C4074913-0ED8-4F7F-80DC-794A6EDD7D1B} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-22] (Synaptics Incorporated)
Task: {CA7CC398-910F-41AA-AA88-DCA0B693E96D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {E024AF37-D9AD-4DD6-9F06-A416F80777EF} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2015-02-11] (CyberLink Corp.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Ad-Aware Update (Daily 1).job => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\Windows\Tasks\Ad-Aware Update (Daily 2).job => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\Windows\Tasks\Ad-Aware Update (Daily 3).job => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\Windows\Tasks\Ad-Aware Update (Daily 4).job => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleFork33p.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (Whitelisted) ==============

2014-06-22 10:21 - 2015-08-07 05:34 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2015-07-05 07:32 - 2015-07-05 07:32 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\ErrorReporting.dll
2014-11-22 01:03 - 2014-11-22 01:03 - 00042496 _____ () C:\Program Files\CCleaner\lang\lang-1051.dll
2015-07-21 06:11 - 2015-07-21 06:11 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-07-21 06:11 - 2015-07-21 06:11 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-14 04:08 - 2015-11-14 04:08 - 02991104 _____ () C:\Program Files\AVAST Software\Avast\defs\15111302\algo.dll
2015-11-16 13:03 - 2015-11-16 13:03 - 02991104 _____ () C:\Program Files\AVAST Software\Avast\defs\15111600\algo.dll
2015-11-16 22:58 - 2015-11-16 22:58 - 02991104 _____ () C:\Program Files\AVAST Software\Avast\defs\15111601\algo.dll
2014-09-03 10:03 - 2014-09-03 10:03 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-05-27 19:51 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-09-09 11:49 - 2015-06-22 10:18 - 00865720 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\UNO.dll
2015-09-09 11:49 - 2013-12-30 02:20 - 01328600 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\Language\SKY\P2GRC.dll
2015-09-09 11:49 - 2015-06-22 10:18 - 00175544 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLVistaAudioMixer.dll
2015-07-21 06:11 - 2015-07-21 06:11 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2861440359-3722972303-3478310367-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\k33p\Downloads\call-of-duty-ghosts-28414-1366x768.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{C1041840-BC9B-490A-9AEC-BC364F6B61A7}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{50BAC705-4DDC-4E09-AB98-337881F214E9}] => (Allow) LPort=2869
FirewallRules: [{48B3F4CC-CFBB-4C49-9AFD-BD35CCC02F06}] => (Allow) LPort=1900
FirewallRules: [{888FE608-493A-4376-8F7A-CFF7ADD78E05}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{70D0CBED-23EF-4B29-BB1C-08AA0AA47E01}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{43E18D9B-571D-49FA-BCE8-9E65B58AD5B9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1E783CFD-1448-470E-B4E2-8F1876C5FA22}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2516B4F4-E984-478D-9AE5-C4177050709E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{67838BB0-76FB-4128-B632-DAF0DA5EA53C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{165C2337-F686-4594-8399-19EED8682582}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{66183315-9D76-421C-81A5-F11743FCF462}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{160BFE66-B54A-424F-B57A-8D1921EC5CEA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{7BA02EBC-9325-4352-BFB1-6ADE40652C0A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{47D4D94F-E267-46E8-9EB2-9AF73D0BBD78}C:\games\crysis 2\bin32\crysis2.exe] => (Block) C:\games\crysis 2\bin32\crysis2.exe
FirewallRules: [UDP Query User{966C4627-F5D4-4D1C-A7E7-BC1A209EF83D}C:\games\crysis 2\bin32\crysis2.exe] => (Block) C:\games\crysis 2\bin32\crysis2.exe
FirewallRules: [TCP Query User{8DD66FCC-F31D-483D-81CE-94F42DD5D5F9}E:\easysetupassistant\easysetupassistant.exe] => (Allow) E:\easysetupassistant\easysetupassistant.exe
FirewallRules: [UDP Query User{684CC887-3DC6-42F6-92D6-C20B0F1A25A8}E:\easysetupassistant\easysetupassistant.exe] => (Allow) E:\easysetupassistant\easysetupassistant.exe
FirewallRules: [TCP Query User{F3366626-948A-488F-8860-A728A71C5746}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe
FirewallRules: [UDP Query User{57E98EAD-72BC-4926-956C-AB6B44DA9A96}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe
FirewallRules: [TCP Query User{3224AA08-7F5C-4DF4-A724-C3F1646CC9D0}C:\games\outlast\binaries\win64\olgame.exe] => (Allow) C:\games\outlast\binaries\win64\olgame.exe
FirewallRules: [UDP Query User{8274515E-44C5-4FB2-9162-48DB9992DF2E}C:\games\outlast\binaries\win64\olgame.exe] => (Allow) C:\games\outlast\binaries\win64\olgame.exe
FirewallRules: [TCP Query User{4057E6EF-B8C1-47E4-BEF1-DE7453C2B24A}C:\games\alien isolation\ai.exe] => (Allow) C:\games\alien isolation\ai.exe
FirewallRules: [UDP Query User{B9EAC6C6-2D45-43AD-8492-177EF6E553E1}C:\games\alien isolation\ai.exe] => (Allow) C:\games\alien isolation\ai.exe
FirewallRules: [{57F30548-6D91-4B18-9FFB-4ACDBBE6ACEA}] => (Allow) C:\Games\Far Cry 3\bin\farcry3.exe
FirewallRules: [{DD4EDE66-AC04-48A8-85A6-5A51413946E1}] => (Allow) C:\Games\Far Cry 3\bin\farcry3.exe
FirewallRules: [{77170632-E7A5-4DF6-8307-F6DF605BD805}] => (Allow) C:\Games\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{B2DFB565-5275-4192-B13E-F04A0BCD0556}] => (Allow) C:\Games\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{244C65E2-7EC1-4FB3-B60D-426D4345778B}] => (Allow) C:\Games\Far Cry 3\bin\FC3Updater.exe
FirewallRules: [{ED1C739C-8050-4D1D-9EB8-1B2AB73E3053}] => (Allow) C:\Games\Far Cry 3\bin\FC3Updater.exe
FirewallRules: [{79597AB0-14B9-4A71-8809-912E3034F156}] => (Allow) C:\Games\Far Cry 3\bin\FC3Editor.exe
FirewallRules: [{3739D33F-DF79-41C8-9B43-6B2A3D787D11}] => (Allow) C:\Games\Far Cry 3\bin\FC3Editor.exe
FirewallRules: [TCP Query User{2F349BCE-C00F-426D-AFFD-0A6E4D436C00}C:\games\far cry 3\bin\farcry3.exe] => (Allow) C:\games\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{3FF28CCD-8231-43DB-BA65-F5110025E794}C:\games\far cry 3\bin\farcry3.exe] => (Allow) C:\games\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{03580BEC-9D8C-4149-B712-1F516A057D86}C:\games\chivalry medieval warfare\binaries\win32\udk.exe] => (Allow) C:\games\chivalry medieval warfare\binaries\win32\udk.exe
FirewallRules: [UDP Query User{6DBB5E93-921D-482D-A178-ACE4E1C0D671}C:\games\chivalry medieval warfare\binaries\win32\udk.exe] => (Allow) C:\games\chivalry medieval warfare\binaries\win32\udk.exe
FirewallRules: [{0A794913-06B4-4D0B-842B-55E2F4DE3647}] => (Allow) C:\games\chivalry medieval warfare\binaries\win32\udk.exe
FirewallRules: [{F4E10627-3360-4BB6-A3EC-93FE7859AD71}] => (Allow) C:\games\chivalry medieval warfare\binaries\win32\udk.exe
FirewallRules: [{4275F5B6-93D9-499D-B57A-E4BB210EAAEE}] => (Allow) C:\Games\FarCry2\Far Cry 2\bin\FarCry2.exe
FirewallRules: [{0475590D-9D5F-46B0-B054-C021C8FEC650}] => (Allow) C:\Games\FarCry2\Far Cry 2\bin\FarCry2.exe
FirewallRules: [{3CD074F8-ADDB-45D5-B3C3-19A7ED0E33A3}] => (Allow) C:\Games\FarCry2\Far Cry 2\bin\FC2Launcher.exe
FirewallRules: [{D5970F53-C83B-4025-BB44-65C7B7762AF5}] => (Allow) C:\Games\FarCry2\Far Cry 2\bin\FC2Launcher.exe
FirewallRules: [{E36360F4-5290-4751-BA53-BAD8B03EA0AF}] => (Allow) C:\Games\FarCry2\Far Cry 2\bin\FC2Editor.exe
FirewallRules: [{02115F03-1201-487A-A3AA-409ADD50A944}] => (Allow) C:\Games\FarCry2\Far Cry 2\bin\FC2Editor.exe
FirewallRules: [TCP Query User{2BA9B925-4B4D-4AC0-8B04-B23779B1A59F}C:\games\aliens colonial marines\binaries\win32\acm.exe] => (Block) C:\games\aliens colonial marines\binaries\win32\acm.exe
FirewallRules: [UDP Query User{4D1C6AB9-6E19-4BAC-8EE2-7892638B87BF}C:\games\aliens colonial marines\binaries\win32\acm.exe] => (Block) C:\games\aliens colonial marines\binaries\win32\acm.exe
FirewallRules: [{DEA6200D-A185-4B8E-B176-4F52A40FFACE}] => (Allow) C:\Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{962171F4-B39A-4B21-888D-BB08AF128BB5}] => (Allow) C:\Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [TCP Query User{E1524A6C-8CA0-447C-B06D-8C1AD71B07D6}C:\games\tom clancy ghost recon future soldier\future soldier dx11.exe] => (Block) C:\games\tom clancy ghost recon future soldier\future soldier dx11.exe
FirewallRules: [UDP Query User{062E8C42-F208-4630-A547-D4452494C1FA}C:\games\tom clancy ghost recon future soldier\future soldier dx11.exe] => (Block) C:\games\tom clancy ghost recon future soldier\future soldier dx11.exe
FirewallRules: [TCP Query User{EEC7768D-A09F-418A-82EF-481702695A8A}C:\games\tom clancy ghost recon future soldier\future soldier dx9.exe] => (Block) C:\games\tom clancy ghost recon future soldier\future soldier dx9.exe
FirewallRules: [UDP Query User{B77F5B54-A781-49B1-ADD7-B06750D0372D}C:\games\tom clancy ghost recon future soldier\future soldier dx9.exe] => (Block) C:\games\tom clancy ghost recon future soldier\future soldier dx9.exe
FirewallRules: [TCP Query User{2ED0C252-1C0F-431A-BF23-0023423700B2}C:\games\outlast whistleblower\binaries\win64\olgame.exe] => (Block) C:\games\outlast whistleblower\binaries\win64\olgame.exe
FirewallRules: [UDP Query User{F3B12211-02B8-40B8-A20C-717917D654E1}C:\games\outlast whistleblower\binaries\win64\olgame.exe] => (Block) C:\games\outlast whistleblower\binaries\win64\olgame.exe
FirewallRules: [{8D4FC98C-1840-47EE-BE98-08AE2CA4B6BF}] => (Allow) C:\Games\F.E.A.R\FEAR.exe
FirewallRules: [{D96CDFB1-82BC-4A56-912B-6B97D9BEA900}] => (Allow) C:\Games\F.E.A.R\FEAR.exe
FirewallRules: [TCP Query User{9D0C61C2-185D-44EE-9267-359DD98A045C}C:\games\assassins creed iii\ac3sp.exe] => (Block) C:\games\assassins creed iii\ac3sp.exe
FirewallRules: [UDP Query User{7552405E-5967-4AE4-8302-97A425EF8700}C:\games\assassins creed iii\ac3sp.exe] => (Block) C:\games\assassins creed iii\ac3sp.exe
FirewallRules: [TCP Query User{5770FD62-050A-4EEC-B67B-E647210A86BF}C:\games\wolfenstein the new order\wolfneworder_x64.exe] => (Block) C:\games\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{963CC2E2-9ADA-4390-8DD0-2DED035C7F1A}C:\games\wolfenstein the new order\wolfneworder_x64.exe] => (Block) C:\games\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [{BCE6CBC0-2470-4CED-A7B4-1822B7A0E328}] => (Allow) C:\Games\fear2\FEAR2.exe
FirewallRules: [{E8F1EB94-E205-4F01-8344-76C83C172B42}] => (Allow) C:\Games\fear2\FEAR2.exe
FirewallRules: [{72A8672B-C377-4230-BFB9-6B423338C7C5}] => (Allow) C:\Games\fear3\F.E.A.R. 3.exe
FirewallRules: [{C3478BBE-F3E9-469E-B6CF-8591B9E84C36}] => (Allow) C:\Games\fear3\F.E.A.R. 3.exe
FirewallRules: [TCP Query User{7D329C6D-EDC4-4935-9376-AC078B6FFF0D}C:\games\max payne 3\maxpayne3.exe] => (Block) C:\games\max payne 3\maxpayne3.exe
FirewallRules: [UDP Query User{670F5E40-8030-4149-9C7E-F0F0DB923032}C:\games\max payne 3\maxpayne3.exe] => (Block) C:\games\max payne 3\maxpayne3.exe
FirewallRules: [TCP Query User{51EB21FD-F6C7-4DAF-9720-CC4183F0595F}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe
FirewallRules: [UDP Query User{77845CF8-346D-4F23-A7D7-DFCC13B677B8}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe
FirewallRules: [TCP Query User{CDB4F7E6-2E54-4E6A-BCA6-47A4835BDA46}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{7294410C-3C2C-44E4-8A79-3F1D0B57C108}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{7814855D-59A7-44A5-B03D-6089088780C5}C:\games\far cry 4\bin\farcry4.exe] => (Allow) C:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{20802928-8C50-46CD-BF4E-EF2CE1408689}C:\games\far cry 4\bin\farcry4.exe] => (Allow) C:\games\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{4A5A66EE-EC93-4BA7-8CC6-0A794E1E2FD9}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{73912D3A-AF72-42AA-A98D-44A44226C448}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [{466E253E-8FFC-438E-AC65-97FA606AD90B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{506E2EA5-2CAA-4F7A-B9B4-5BD439891FC6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{A1825DF7-4F5F-440A-B85E-3560DBAA46AC}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7A50065D-1BD3-4EA9-AFEA-2AD23F70CB89}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{1C515269-7218-40F5-ACFD-0BE942C75C3C}] => (Allow) C:\Games\Diablo III\Diablo III.exe
FirewallRules: [{52BB7A41-2CBC-4930-BE47-418111D5D88B}] => (Allow) C:\Games\Diablo III\Diablo III.exe
FirewallRules: [TCP Query User{79537AF1-8AE7-4722-88CE-BED18A7D442E}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{221AE2E3-44D5-42C2-8530-D4DBBF36EBF5}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{F67C221E-DC50-48D0-994D-23C4F839E149}C:\games\world_of_warplanes\wowplauncher.exe] => (Allow) C:\games\world_of_warplanes\wowplauncher.exe
FirewallRules: [UDP Query User{CE5368C5-33DD-45A5-BBE3-FB035557B9CE}C:\games\world_of_warplanes\wowplauncher.exe] => (Allow) C:\games\world_of_warplanes\wowplauncher.exe
FirewallRules: [TCP Query User{9C31502D-34EA-443B-9B6B-1667C844A613}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{E9618D10-E518-4E48-A3E6-A0709D468D54}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{E124A262-D707-4A86-9C28-A5B3DB4DA386}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{CE07FE02-279B-4BC2-A2CC-C202D9CB8BE7}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{5C1672AF-622C-4BAA-AB3D-87C1769C6E69}] => (Allow) C:\bmw\Rheingold\TesterGUI\bin\Release\ISTAGUI.exe
FirewallRules: [{DCF1C895-8266-4862-861A-1FCE69D0818A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{9BA1B9E9-E3B9-4E69-ACAF-82DE8F22B453}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{5E41F0EA-192C-4E05-B65E-73F0593301F5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{D83FC138-C5E0-400D-8B42-6F06B5A22F08}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{ABF5D306-B7A2-4509-B767-A72C20056008}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{06B07BCB-6374-4A5F-BEB4-74BA88726224}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{29158460-E6CD-4C2C-BE34-3D4D95E8FC74}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{042F9BFC-4241-4961-AD3E-0FB8A94B869E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0645008D-C86F-4C77-A598-771C5CF859BA}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{A1572417-2FCA-4309-A38D-4F641908F8ED}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [TCP Query User{9EC7F327-49C2-4708-9EA3-12A0341C595F}C:\ediabas\bin\ifhsrv32.exe] => (Allow) C:\ediabas\bin\ifhsrv32.exe
FirewallRules: [UDP Query User{8703A6D1-DEB0-4BF7-A9C8-E2D8D6D857D2}C:\ediabas\bin\ifhsrv32.exe] => (Allow) C:\ediabas\bin\ifhsrv32.exe
FirewallRules: [{84629213-8F14-4C7A-AAAE-326B67EF15D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{34FFFA17-036C-4D35-B3D9-3BA160AA3958}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{96DD1391-1D44-4D0E-B859-5268CCA6A837}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{AFFFF67E-58F6-4929-B229-0F9C8FC45CE7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{ABA76C48-474E-4D5F-B900-B81695D8E216}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{377C26EE-02A1-4B95-A42E-A723ADAD7EC9}] => (Allow) C:\Games\Hearthstone\Hearthstone.exe
FirewallRules: [{C83B0437-55C0-46DE-AAB9-A4E4DC4642CC}] => (Allow) C:\Games\Hearthstone\Hearthstone.exe
FirewallRules: [{1C790D72-AF88-43EE-B88D-6E2F06731C5E}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{D3EB5C2D-9A25-411C-A749-26EB00634199}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{A46B3DFB-F346-4D67-BCAA-ADDE0CE97A4B}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{0FB22CF9-4BBF-4993-A6D0-82649119B2A2}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{76D50528-086B-47D2-B5E4-FA42FA6C50CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/16/2015 10:56:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

Error: (11/16/2015 10:55:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: OPBHOBrokerDsktop.exe, verzia: 8.0.1.46, časová značka: 0x55957941
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000000000
Identifikácia chybujúceho procesu: 0xa8d4
Čas spustenia chybujúcej aplikácie: 0xOPBHOBrokerDsktop.exe0
Cesta chybujúcej aplikácie: OPBHOBrokerDsktop.exe1
Cesta chybujúceho modulu: OPBHOBrokerDsktop.exe2
Identifikácia hlásenia: OPBHOBrokerDsktop.exe3
Celé meno chybujúceho balíka: OPBHOBrokerDsktop.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: OPBHOBrokerDsktop.exe5

Error: (11/16/2015 04:50:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: backgroundTaskHost.exe, verzia: 6.3.9600.17415, časová značka: 0x54503d58
Názov chybujúceho modulu: combase.dll, verzia: 6.3.9600.17415, časová značka: 0x54503d84
Kód výnimky: 0xc000027b
Odstup chyby: 0x001212e1
Identifikácia chybujúceho procesu: 0xaca0
Čas spustenia chybujúcej aplikácie: 0xbackgroundTaskHost.exe0
Cesta chybujúcej aplikácie: backgroundTaskHost.exe1
Cesta chybujúceho modulu: backgroundTaskHost.exe2
Identifikácia hlásenia: backgroundTaskHost.exe3
Celé meno chybujúceho balíka: backgroundTaskHost.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: backgroundTaskHost.exe5

Error: (11/16/2015 04:36:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 318

Start Time: 01d12083d756d1a2

Termination Time: 4294967295

Application Path: C:\Windows\syswow64\backgroundTaskHost.exe

Report Id: cbb2a095-8c77-11e5-82e6-6cc217ea69ae

Faulting package full name: D5579CA1.Profesia.sk_1.0.0.23_x86__bez4d9dgx9fgj

Faulting package-relative application ID: App

Error: (11/16/2015 01:37:57 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12437

Error: (11/16/2015 01:37:57 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12437

Error: (11/16/2015 01:37:57 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/15/2015 07:30:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

Error: (11/15/2015 07:30:32 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

Error: (11/15/2015 07:30:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.


System errors:
=============
Error: (11/15/2015 07:30:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby eapihdrv zlyhalo kvôli nasledujúcej chybe: 
%%1275

Error: (11/15/2015 07:30:49 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\k33p\AppData\Local\Temp\ehdrv.sys

Error: (11/15/2015 07:30:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby eapihdrv zlyhalo kvôli nasledujúcej chybe: 
%%1275

Error: (11/15/2015 07:30:49 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\k33p\AppData\Local\Temp\ehdrv.sys

Error: (11/15/2015 07:30:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby eapihdrv zlyhalo kvôli nasledujúcej chybe: 
%%1275

Error: (11/15/2015 07:30:49 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\k33p\AppData\Local\Temp\ehdrv.sys

Error: (11/15/2015 06:55:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Windows Search zlyhalo kvôli nasledujúcej chybe: 
%%3

Error: (11/15/2015 06:54:52 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa neočakávane zastavil.

Cesta k modulu: C:\Windows\system32\Rtlihvs.dll

Error: (11/15/2015 06:54:52 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa neočakávane zastavil.

Cesta k modulu: C:\Windows\system32\Rtlihvs.dll

Error: (11/15/2015 06:54:49 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa neočakávane zastavil.

Cesta k modulu: C:\Windows\system32\Rtlihvs.dll


CodeIntegrity:
===================================
  Date: 2015-07-21 22:54:09.778
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-07-21 22:54:09.295
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 34%
Total physical RAM: 8123.84 MB
Available physical RAM: 5354.1 MB
Total Virtual: 18122.84 MB
Available Virtual: 15354.38 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:916.06 GB) (Free:169.19 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:14.43 GB) (Free:1.38 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (KN134EUX03T01) (CDROM) (Total:3.43 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 6DA15431)

Partition: GPT.

==================== End of Addition.txt ============================