Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-09-2016
Ran by Ouki (28-09-2016 16:03:10)
Running from C:\Users\Ouki\Desktop
Windows 10 Pro Version 1607 (X64) (2016-09-08 19:16:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1567744305-3254084915-3206558403-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1567744305-3254084915-3206558403-503 - Limited - Disabled)
Guest (S-1-5-21-1567744305-3254084915-3206558403-501 - Limited - Disabled)
Ouki (S-1-5-21-1567744305-3254084915-3206558403-1000 - Administrator - Enabled) => C:\Users\Ouki

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.11.4.1 (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Ansel (Version: 372.90 - NVIDIA Corporation) Hidden
Archeage (HKLM-x32\...\Glyph Archeage) (Version:  - Trion Worlds, Inc.)
Assassins Creed Syndicate Gold Edition version 1.5.0.0 (HKLM-x32\...\Assassins Creed Syndicate Gold Edition_is1) (Version: 1.5.0.0 - Mr DJ)
CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform)
Convent Under The Moonlight  2 1.0 (HKLM-x32\...\Convent Under The Moonlight  2_is1) (Version:  - SexGamesBox)
Facebook Games Arcade 0.8.1.0 (HKLM-x32\...\{AA936BCA-D4C1-41ED-BBB5-DFFC384E6DF2}) (Version: 0.8.1.0 - Facebook)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.7.122.1 - Intel Security)
Intel® Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Killer Bandwidth Control Filter Driver (Version: 1.1.57.1125 - Rivet Networks) Hidden
Killer E220x Drivers (Version: 1.1.57.1125 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.57.1125 - Rivet Networks)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.376.2 - McAfee, Inc.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Movavi Video Converter 16 (HKLM-x32\...\Movavi Video Converter 16) (Version: 16.2.0 - Movavi)
Mozilla Firefox 48.0.2 (x64 ach) (HKLM\...\Mozilla Firefox 48.0.2 (x64 ach)) (Version: 48.0.2 - Mozilla)
Mozilla Firefox 49.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 cs)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.15 - MSI)
MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.3 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.8 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.0.0.21 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.021 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.07 - MSI)
MSI(R) Intel(R) Extreme Tuning Utility (HKLM-x32\...\{bcbf202c-9746-4173-a49b-649bfd0adca6}) (Version: 6.0.2.102 - Intel Corporation)
MSI(R) Intel(R) Extreme Tuning Utility (x32 Version: 6.0.2.102 - Intel Corporation) Hidden
NVIDIA GeForce Experience 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.1 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.90 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.90 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Ovládací panel NVIDIA 372.90 (Version: 372.90 - NVIDIA Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7885 - Realtek Semiconductor Corp.)
Red Light Center 3D Client (HKLM-x32\...\Red Light Center 3D Client) (Version: 1.9.4773 - Utherverse Digital Inc)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.66  - Nullsoft, Inc)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wolfenstein - Enemy Territory (HKLM-x32\...\Wolfenstein - Enemy Territory) (Version: 2.60b - ACTIVISION)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1567744305-3254084915-3206558403-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Ouki\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0F5AC794-06F9-4655-BCE2-A9CA0DD65B78} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {464A86A6-8EF1-49E2-9358-150AC66282BE} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Ouki\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-23] (Microsoft Corporation)
Task: {659AC98D-6B54-49D1-9592-483F104BA562} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-15] (Google Inc.)
Task: {6A8C7E1B-0640-4831-AD3B-543BBBAEB0B3} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-05-05] (Intel Corporation)
Task: {8EF72138-E313-45FB-9CBC-8F206EB6BFD8} - System32\Tasks\{0B731E67-4DCA-4490-8566-4D4C70CC9669} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&amp;ver=6.14.0.104&amp;LastError=404
Task: {A0D06C30-C565-4AF5-A204-175EA30079C7} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {ACC844D3-B966-42E7-93F7-9FE265DA8787} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-15] (Google Inc.)
Task: {B4AE7D1B-3537-4063-A59B-3F6E907EC333} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {EA9A1FBC-5527-4277-8188-F81D061F0F78} - System32\Tasks\McAfee Remediation (Upgrade) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-01] (McAfee, Inc.)
Task: {F124D48B-332C-4F18-AF6C-8449452B8DD4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd)
Task: {F9E66866-F035-47EF-AC06-F6F472A7D6C7} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [2015-08-18] (MSI)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWoW64\muachost.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Ouki\Desktop\Counter-Strike 1.6 Fusion.lnk -> C:\Users\Ouki\Counter-Strike 1.6 Fusion\Counter-Strike 1.6.bat ()

==================== Loaded Modules (Whitelisted) ==============

2016-05-13 02:36 - 2016-06-15 03:14 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-05-13 02:36 - 2016-06-15 03:14 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-05-13 02:36 - 2016-06-15 03:14 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-05-13 02:36 - 2016-06-15 03:14 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-05-15 23:47 - 2016-05-16 01:43 - 00075136 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe
2016-05-13 02:36 - 2016-06-15 03:14 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-05-13 02:36 - 2016-06-15 03:14 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-05-13 02:36 - 2016-06-15 03:14 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-05-13 02:36 - 2016-06-15 03:14 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-20 21:02 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-08 20:57 - 2016-09-17 00:54 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-20 21:02 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-29 09:46 - 2016-06-14 16:35 - 00187392 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll
2016-09-20 21:02 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-08 21:21 - 2016-09-08 21:21 - 01864384 _____ () C:\Users\Ouki\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-09-20 21:02 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-09-20 21:02 - 2016-09-07 06:57 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-09-20 21:01 - 2016-09-07 06:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-20 21:02 - 2016-09-07 06:35 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-20 21:02 - 2016-09-07 06:35 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-09-20 21:01 - 2016-09-07 06:35 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-20 21:01 - 2016-09-07 06:40 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-06-22 15:57 - 2016-06-22 15:57 - 00042928 _____ () C:\Users\Ouki\AppData\Local\Facebook\Games\FacebookGamesNotifier.exe
2016-05-13 02:36 - 2016-06-15 03:14 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-05-13 02:36 - 2016-06-15 03:14 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-04-15 20:07 - 2016-04-15 20:07 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-08-16 21:23 - 2016-08-16 21:24 - 00017408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-08-16 21:23 - 2016-08-16 21:24 - 13475840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-04 02:17 - 2016-06-04 02:17 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-05-15 19:32 - 2016-05-15 19:32 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-07-17 13:10 - 2005-07-18 13:43 - 00160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2016-08-29 09:46 - 2016-06-14 16:35 - 00163328 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll
2016-05-13 02:36 - 2016-06-15 03:14 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-09-08 21:21 - 2016-09-08 21:21 - 01383616 _____ () C:\Users\Ouki\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-09-08 21:22 - 2016-09-08 21:22 - 00118976 _____ () C:\Users\Ouki\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2016-04-29 08:55 - 2016-04-29 08:55 - 01028608 _____ () C:\Users\Ouki\AppData\Local\Facebook\Games\CefSharp.Core.dll
2016-04-29 08:55 - 2016-04-29 08:55 - 56718848 _____ () C:\Users\Ouki\AppData\Local\Facebook\Games\libcef.dll
2016-04-29 08:55 - 2016-04-29 08:55 - 00688640 _____ () C:\Users\Ouki\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll
2016-04-29 08:55 - 2016-04-29 08:55 - 02127872 _____ () C:\Users\Ouki\AppData\Local\Facebook\Games\libglesv2.dll
2016-04-29 08:55 - 2016-04-29 08:55 - 00075776 _____ () C:\Users\Ouki\AppData\Local\Facebook\Games\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-05-13 02:41 - 2016-09-09 11:01 - 00000853 ____A C:\WINDOWS\system32\Drivers\etc\hosts


0.0.0.1	mssplus.mcafee.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1567744305-3254084915-3206558403-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6E92DEE3-CD1B-4F24-8B41-372D59B522B0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{06251B0D-FCF3-4CA8-859C-6669EA7AA83F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{9365803B-7B41-4E2A-8195-06BAB3DB1BB5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FF0B3EC5-D091-485D-AB50-3C098CA3BABA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{1AEC30EE-C9BC-4071-9FAD-3BDA9C27AA9A}C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe] => (Allow) C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe
FirewallRules: [TCP Query User{F0AD8EB2-294D-4AB8-A60F-C409E44FAE3B}C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe] => (Allow) C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe
FirewallRules: [UDP Query User{D2A7952C-B3A1-4697-8DCC-7DC6F49F0511}C:\users\ouki\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ouki\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{A79E6286-C450-4065-A567-9F220AE6293D}C:\users\ouki\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ouki\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{F3C7C0B8-EDB7-436C-87F0-0BDFCC57DB79}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{9ADCCAD9-0074-42FD-A342-6927CCE15CE0}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{994BA2D9-8A64-4A1A-B8D3-6DB1C840FA90}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{877D780A-51BA-4C60-843E-80C4184B55FB}C:\program files (x86)\msi\gaming app\gamingapp.exe] => (Allow) C:\program files (x86)\msi\gaming app\gamingapp.exe
FirewallRules: [TCP Query User{8E35B025-DE05-4E79-82C0-29A0E2A1BF67}C:\program files (x86)\msi\gaming app\gamingapp.exe] => (Allow) C:\program files (x86)\msi\gaming app\gamingapp.exe
FirewallRules: [UDP Query User{3926071D-AE46-4415-940A-33327433374B}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{9683AB60-0172-4E19-8F96-F45C38BB5A91}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe
FirewallRules: [{9A6182AA-9D29-4C43-A9CA-05F37AEDA149}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{88828550-5A57-48B2-841D-BD76C1878C25}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{75DAD3C3-4A40-496E-A6D4-1E778745FD9C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{75699E09-6107-465B-B2DD-804CC861AEFE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{51F13709-B970-4CD8-92BE-D25B11DFA272}] => (Allow) C:\Windows\syswow64\PnkBstrB.exe
FirewallRules: [{976C35D7-A50E-47D4-A11D-582D3AD4C583}] => (Allow) C:\Windows\syswow64\PnkBstrB.exe
FirewallRules: [{B1E78742-D0FE-44DF-82CF-9A7271CED2C1}] => (Allow) C:\Windows\syswow64\PnkBstrA.exe
FirewallRules: [{4A182B21-265A-4F2D-A961-EAC213587011}] => (Allow) C:\Windows\syswow64\PnkBstrA.exe
FirewallRules: [UDP Query User{3434A107-B8A4-4515-B3DC-179682E4946A}C:\users\ouki\desktop\wolfenstein - enemy territory\etded.exe] => (Allow) C:\users\ouki\desktop\wolfenstein - enemy territory\etded.exe
FirewallRules: [TCP Query User{80BC475B-5AAB-4AB2-A293-BF4EEC733E87}C:\users\ouki\desktop\wolfenstein - enemy territory\etded.exe] => (Allow) C:\users\ouki\desktop\wolfenstein - enemy territory\etded.exe
FirewallRules: [UDP Query User{F6877E89-AB4F-4113-92FC-EAFD79E9E182}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Allow) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [TCP Query User{66D148B8-8C34-47CD-AC39-8EC4EE6E63DC}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Allow) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [{0B67C90A-F842-4677-B615-18C853986ED2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EFB2BA94-A092-4A16-9232-F9B4BF05EA40}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{75576C76-8181-4404-A5BB-9D409A7E3EAE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{8AFDAF27-1068-4BEE-B938-D83193847CE1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D94F9BF7-0E48-4F87-B28A-3ACCB199A58B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C4ED5FF3-13C0-4EDE-A159-1EB205C0197F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{308D1CA2-839B-47F1-960A-7894A08D21E9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{41559462-97A2-40D6-8862-5989F42EEDC0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{0D3AC6C9-6647-48BB-A7B8-5D60555D3513}] => (Allow) C:\Program Files (x86)\Mr DJ\Assassins Creed Syndicate Gold Edition\ACS.exe
FirewallRules: [{1C6F1405-9B60-44C2-A556-6ECEACE259CB}] => (Allow) C:\Program Files (x86)\Mr DJ\Assassins Creed Syndicate Gold Edition\ACS.exe
FirewallRules: [{BF7B54A0-8A8A-482F-A697-F82ED6EF0CBE}] => (Allow) LPort=26789

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/26/2016 08:16:02 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (09/26/2016 08:14:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MSI_ActiveX_Service.exe, verze: 1.0.0.8, časové razítko: 0x57ad265a
Název chybujícího modulu: ActiveX_Resource_Monitor.dll, verze: 1.0.0.8, časové razítko: 0x57ad265d
Kód výjimky: 0xc0000005
Posun chyby: 0x00002c00
ID chybujícího procesu: 0x93c
Čas spuštění chybující aplikace: 0x01d21821c4ee3daf
Cesta k chybující aplikaci: C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\ActiveX_Resource_Monitor.dll
ID zprávy: 8b2bccfe-a841-418c-b722-8ca1991caa04
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (09/26/2016 08:14:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: MSI_ActiveX_Service.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 70E02C00

Error: (09/26/2016 04:54:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NvStreamUserAgent.exe, verze: 7.1.2084.9592, časové razítko: 0x57605c64
Název chybujícího modulu: ntdll.dll, verze: 10.0.14393.103, časové razítko: 0x57b7e207
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000003061d
ID chybujícího procesu: 0x2264
Čas spuštění chybující aplikace: 0x01d21805d2e6ed30
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 90420548-061d-4ae3-a452-8a682974c848
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (09/26/2016 08:11:11 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.

Error: (09/25/2016 05:27:25 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: Ouki-PC)
Description: Aplikaci nebo službu Intel(R) Extreme Tuning Utility Service nelze restartovat.

Error: (09/25/2016 05:05:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.14393.0, časové razítko: 0x57899096
Kód výjimky: 0xc000041d
Posun chyby: 0x00003d46
ID chybujícího procesu: 0x1aa4
Čas spuštění chybující aplikace: 0x01d216f40ee27589
Cesta k chybující aplikaci: C:\Users\Ouki\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 6349530d-b154-4158-a5b4-49d95e11cb83
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (09/25/2016 05:05:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: ntdll.dll, verze: 10.0.14393.103, časové razítko: 0x57b7e09e
Kód výjimky: 0xc0000005
Posun chyby: 0x00044e7e
ID chybujícího procesu: 0x1aa4
Čas spuštění chybující aplikace: 0x01d216f40ee27589
Cesta k chybující aplikaci: C:\Users\Ouki\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 92b10cc3-8859-4b6d-b7f3-580bb0c5a6dc
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (09/25/2016 08:14:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MSI_ActiveX_Service.exe, verze: 1.0.0.8, časové razítko: 0x57ad265a
Název chybujícího modulu: ActiveX_Resource_Monitor.dll, verze: 1.0.0.8, časové razítko: 0x57ad265d
Kód výjimky: 0xc0000005
Posun chyby: 0x00002c00
ID chybujícího procesu: 0xa14
Čas spuštění chybující aplikace: 0x01d216f3eb32dd7d
Cesta k chybující aplikaci: C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\ActiveX_Resource_Monitor.dll
ID zprávy: c89fbd6a-7fd6-4ef5-afff-75c49a116909
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (09/25/2016 08:13:56 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: MSI_ActiveX_Service.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 715E2C00


System errors:
=============
Error: (09/28/2016 03:38:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 a APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/27/2016 08:17:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 a APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/26/2016 08:17:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI_ActiveX_Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/26/2016 08:15:43 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 a APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/26/2016 08:14:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba InstallerService neuspěla při spuštění v důsledku následující chyby: 
Systém nemůže nalézt uvedený soubor.

Error: (09/26/2016 08:14:03 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.

Cesta k modulu: C:\WINDOWS\system32\athExt.dll
Kód chyby: 126

Error: (09/26/2016 08:13:44 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
Description: Funkce řízení spotřeby pro výkon jsou u logického procesoru technologie Hyper-V 3 zakázány z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error: (09/26/2016 08:13:44 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
Description: Funkce řízení spotřeby pro výkon jsou u logického procesoru technologie Hyper-V 2 zakázány z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error: (09/26/2016 08:13:44 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
Description: Funkce řízení spotřeby pro výkon jsou u logického procesoru technologie Hyper-V 1 zakázány z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error: (09/26/2016 08:13:44 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
Description: Funkce řízení spotřeby pro výkon jsou u logického procesoru technologie Hyper-V 0 zakázány z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4670 CPU @ 3.40GHz
Percentage of memory in use: 18%
Total physical RAM: 16327.95 MB
Available physical RAM: 13269.5 MB
Total Virtual: 18759.95 MB
Available Virtual: 15048.62 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.97 GB) (Free:201.23 GB) NTFS
Drive d: (DVDVOLUME) (CDROM) (Total:4.36 GB) (Free:0 GB) UDF
Drive h: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 7F4C078E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================