Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Dana (03-04-2017 18:09:02)
Running from C:\Users\Dana\Desktop
Windows 10 Pro Version 1607 (X64) (2016-11-22 12:57:17)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3340020389-3410081482-2588987961-500 - Administrator - Disabled)
Dana (S-1-5-21-3340020389-3410081482-2588987961-1000 - Administrator - Enabled) => C:\Users\Dana
DefaultAccount (S-1-5-21-3340020389-3410081482-2588987961-503 - Limited - Disabled)
Guest (S-1-5-21-3340020389-3410081482-2588987961-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-3340020389-3410081482-2588987961-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
abrMate version 1.1 (HKLM-x32\...\abrMate_is1) (Version: 1.1 - )
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Advanced XLS Converter 5.35 (HKLM-x32\...\Advanced XLS Converter) (Version: 5.35 - HiBase Group)
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.78 - ASUSTeK Computer Inc.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.13.1890, 01.04.2017 - AIMP DevTeam)
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Aktualizace NVIDIA 23.1.0.0 (Version: 23.1.0.0 - NVIDIA Corporation) Hidden
Application Verifier x64 External Package (Version: 10.1.14393.33 - Microsoft) Hidden
Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
Assassin's Creed Liberation (HKLM-x32\...\Steam App 260210) (Version:  - Ubisoft Sofia)
Assassin's Creed® III (HKLM-x32\...\Steam App 208480) (Version:  - Ubisoft Montreal)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.7.1.26756 - Avira Operations GmbH & Co. KG)
Balíček ovladače systému Windows - UserTesting, Inc (WinUSB) AndroidUsbDeviceClass  (08/27/2012 7.0.0000.00005) (HKLM\...\49EE353902A57B1A429B1E214AD4EFF58C1B14A3) (Version: 08/27/2012 7.0.0000.00005 - UserTesting, Inc)
Beurer HealthManager (HKLM-x32\...\Beurer HealthManager) (Version: 3.9.0.0 - Název společnosti:)
Beurer HealthManager (x32 Version: 3.9.0.0 - Název společnosti:) Hidden
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Caesar 3 (HKLM-x32\...\Caesar 3) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform)
Citrix Online Launcher (HKLM-x32\...\{09DA5EE2-7E46-4DC4-96F9-BFEE50D40659}) (Version: 1.0.408 - Citrix)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CorelDRAW Graphics Suite X3 (HKLM-x32\...\_{7C5123A9-30A8-4C44-89CA-A8C87A1FCC91}) (Version:  - Corel Corporation)
CorelDRAW Graphics Suite X3 (x32 Version: 13.2 - Corel Corporation) Hidden
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
CYAN Browser (HKLM-x32\...\CYAN Browser) (Version: 48.0 - CYAN R&D)
CZ (x32 Version: 13.0 - Corel Corporation) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DBFView Trial 4 (HKLM-x32\...\DBFView Trial_is1) (Version:  - )
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Discord (HKU\S-1-5-21-3340020389-3410081482-2588987961-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
DJ_AIO_NS_LP_DocCD (x32 Version: 90.0.222.000 - Hewlett-Packard) Hidden
DJ_AIO_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
DJ_AIO_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
DJ_AIO_Software_min (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
dm CEWE fotosvet (HKLM-x32\...\dm CEWE fotosvet) (Version: 6.1.5 - CEWE Stiftung u Co. KGaA)
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
F4100 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
F4100_Help (x32 Version: 90.0.222.000 - Hewlett-Packard) Hidden
ffdshow x64 v1.3.4533 [2014-09-29] (HKLM\...\ffdshow64_is1) (Version: 1.3.4533.0 - )
Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version:  - Fistful of Frags Team)
FontNav (x32 Version: 5.0 - Corel Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.2.1.6871 - Foxit Software Inc.)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version:  - Coffee Stain Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.98 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GoToMeeting 8.2.0.6634 (HKU\S-1-5-21-3340020389-3410081482-2588987961-1000\...\GoToMeeting) (Version: 8.2.0.6634 - CitrixOnline)
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet All-In-One Software (HKLM\...\{2CB8566A-8EA6-417A-BAB1-1B10A88C79BB}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel® Chipset Device Software (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden
Intellisense Lang Pack Mobile Extension SDK 10.0.14393.0 (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KeePass Password Safe 2.35 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.35 - Dominik Reichl)
Kits Configuration Installer (x32 Version: 10.1.14393.33 - Microsoft) Hidden
LeapdroidVM (HKLM-x32\...\LeapdroidVM) (Version:  - LeapdroidVM)
LibreOffice 5.1.6.2 (HKLM-x32\...\{3D18F833-5EEE-4221-96CE-BC9488780EE3}) (Version: 5.1.6.2 - The Document Foundation)
Livestreamer 1.12.2 (HKLM-x32\...\Livestreamer) (Version:  - )
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.6.2 SDK (HKLM-x32\...\{39BEF607-44E6-472B-90C1-BD62AA2B7A3F}) (Version: 4.6.01586 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (HKLM-x32\...\{C07B4BC7-A37D-46A8-B2A3-620CC569D149}) (Version: 4.6.01586 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3340020389-3410081482-2588987961-1000\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 52.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 cs)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla)
MSI Development Tools (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nightbot (HKLM-x32\...\{c59fdb2c-3f60-4455-b0a8-c45b5aee5447}_is1) (Version: 0.0.4 - NightDev, LLC)
NirSoft ProduKey (HKLM-x32\...\NirSoft ProduKey) (Version:  - )
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NvNodejs (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.12.3 - OBS Project)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 10.4.5.30491 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 342.01 (Version: 342.01 - NVIDIA Corporation) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.11.0 - )
PRGrep (HKLM-x32\...\PRGrep) (Version:  - )
PROFIT 2017.02 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version:  - LPsoft)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Quiplash (HKLM\...\Steam App 351510) (Version:  - Jackbox Games, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7354 - Realtek Semiconductor Corp.)
ReaPlugs/x64 (HKLM\...\ReaPlugs) (Version:  - )
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SDK Debuggers (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
SeaTools for Windows 1.4.0.2 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.2 - Seagate Technology)
SHIELD Streaming (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Sierra Utilities (HKLM-x32\...\Sierra Utilities) (Version:  - )
SimPE 0.72 (alpha) (HKLM-x32\...\SimPE_is1) (Version:  - )
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Spybot Anti-Beacon (HKLM-x32\...\{419A7FCF-93E1-474D-BFE9-987CF3F90C88}_is1) (Version: 1.5 - Safer-Networking Ltd.)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tabletop Simulator (HKLM\...\Steam App 286160) (Version:  - Berserk Games)
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.28.25.1020 - Electronic Arts Inc.)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD PROJEKT RED)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Universal CRT Extension SDK (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Redistributable (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Unreal Tournament 2004 (HKLM-x32\...\Steam App 13230) (Version:  - Epic Games, Inc.)
Update Manager (x32 Version: 4.60 - Corel Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 4.0 - Ubisoft)
USB Debugging Driver (HKLM\...\{B61F9010-3474-11E4-8C21-0800200C9A66}) (Version: 1.0.2 - UserTesting, Inc.)
UserTesting (HKU\S-1-5-21-3340020389-3410081482-2588987961-1000\...\UserTestingPlugin) (Version:  - UserTesting.com)
VBA (x32 Version: 6.2 - Corel Corporation) Hidden
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version:  - VB-Audio Software)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WinAppDeploy (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows SDK AddOn (HKLM-x32\...\{45D392D2-5956-4646-9CA6-83CBF67507B6}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.14393.33 (HKLM-x32\...\{f23f94c5-8bba-4202-85ad-c83d4402cdc1}) (Version: 10.1.14393.33 - Microsoft Corporation)
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (x32 Version: 10.1.14393.33 - Microsoft Corporation) Hidden
WinSCP 5.9.1 (HKLM-x32\...\winscp3_is1) (Version: 5.9.1 - Martin Prikryl)
WPT Redistributables (x32 Version: 10.1.14393.33 - Microsoft) Hidden
WPTx64 (x32 Version: 10.1.14393.33 - Microsoft) Hidden
XAMPP (HKLM-x32\...\xampp) (Version: 5.6.15-1 - Bitnami)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3340020389-3410081482-2588987961-1000_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Dana\AppData\Local\Citrix\GoToMeeting\4431\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0497D1B0-0E9F-49D1-A332-800E9C830598} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [2014-03-27] ()
Task: {0578ABB2-831C-4B6A-9F71-3839071C0D00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-15] (Google Inc.)
Task: {0634183D-318E-4A01-9581-CDB84B1D88DE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0E65F22E-494D-4012-92EC-FE9C2B4A978D} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {1BB2984B-7D71-4B2D-B5BF-341892A4157B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe 
Task: {1E728341-FCFF-42BC-9C49-3E24380B74AC} - System32\Tasks\G2MUploadTask-S-1-5-21-3340020389-3410081482-2588987961-1000 => C:\Users\Dana\AppData\Local\Citrix\GoToMeeting\5174\g2mupload.exe [2016-07-02] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {2AAFC4BA-6510-49ED-932A-0F310ACD0759} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {2AD5169A-313F-47C8-83A4-0929234C03EA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {2BBDADC7-C2A6-445A-8203-AC362621FE73} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {33C7B5F2-28F7-4D24-8F52-ED6D759E8E84} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {4031D228-AE75-4AF9-BDEF-5B7D4364184D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-15] (Google Inc.)
Task: {41E155DB-31A7-4AAB-9695-CB21143B17EE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-21] (Piriform Ltd)
Task: {4369BC8C-10F9-4D32-AF0B-9D17860AB832} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe 
Task: {544E5AE7-2F56-49F3-A5DA-B61847AE774C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {5752493D-8B0B-4DCC-9FB3-16C9865573F0} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {5E2214F2-D508-40F8-9F96-F0DE7405024B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5F092B0B-8132-4726-BEB3-AC0D2BE3E41E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {60503A10-3D64-4652-B8EE-97B4EA83F42A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {638FE242-8618-44F3-AB04-9E24CB30E569} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-19] (Adobe Systems Incorporated)
Task: {63B3F489-8523-4170-BF90-FB8A6D0E6EFB} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {640926EF-BA5B-4730-BFC1-AF3A12176350} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2013-07-24] (ASUSTeK Computer Inc.)
Task: {664BC273-131F-4718-9CDB-A23CC9BD622D} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {6A252AF4-9078-446B-A7AA-3043BF87F08E} - System32\Tasks\PC shutdown => C:\Windows\System32\shutdown.exe [2016-07-16] (Microsoft Corporation)
Task: {6DBE46A8-90D9-4FCC-844C-FAD1E572FC09} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {70788BB9-C27C-4FF5-A94F-5D76C801CDE9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {7784AC2F-D79D-4869-9E38-3AF46D8871F4} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {7E9E55AF-F9E4-4400-8471-86B7E0A6D745} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {84F66400-E907-4C4E-A1C0-5BC576547FBC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {85C8D6BC-8B38-47B1-B80C-A42A6441D124} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {866F8388-D85E-4CF0-9676-3DB8294EA35F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {88B0E7F5-D7E1-4898-9519-45525117AE24} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Spybot Anti-Beacon\SDAntiBeacon.exe [2015-10-19] (Safer-Networking Ltd.)
Task: {8BA399C9-ABCD-4907-AC15-E0B13159512A} - System32\Tasks\ASUS\i-Setup183659 => C:\Windows\Intel_Chipset_Win7-8-8-1_V10016\AsusSetup.exe [2015-12-11] (ASUSTeK Computer Inc.)
Task: {8C55968E-AF16-4B01-A391-E3BA2F1301DE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe 
Task: {8D307E83-5A5F-4DF5-B88D-B653B844A27A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {92437E27-7D14-4E5C-836E-632290FD374E} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {9FDDDD10-0A2A-41E7-BC99-DFE581414A96} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {9FEBB2C9-CF75-47BE-AE1E-880DE6BAE7D7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {A33872D2-9A9A-41F4-82B6-5176233F63B8} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2014-04-06] (ASUSTeK Computer Inc.)
Task: {A8F0DCEE-3714-4CF1-B0F6-1F6C849BB0DE} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {ACC524B4-3A64-4A01-8092-F3E0031B2717} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {AE4B8244-5BC4-4B3E-A634-2F111F53331F} - System32\Tasks\ASUS\Push Notice Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [2014-01-10] (ASUSTeK Computer Inc.)
Task: {AFEB5FB4-0E61-4CDB-BEBE-423053B5132F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-12-13] (NVIDIA Corporation)
Task: {B1A93251-7A8E-4E06-A33A-F22D6B6FCECC} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {B38C193E-B089-4309-808F-6B56DBD7F2FC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {B53FC1DD-F635-49F9-BBAA-E8C2A78CBFD2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {B64FC3C1-7EF2-4EEA-BABA-B54512CA4B01} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION
Task: {B75D4C03-AFFC-4E93-A7A6-B043D4682701} - \Games\UpdateCheck_S-1-5-21-3340020389-3410081482-2588987961-1000 -> No File <==== ATTENTION
Task: {B9BB2A7E-3628-46E2-9149-ACD2B65237F9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {B9BED977-B9B0-4AE2-B91C-741DF867810A} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {BBAE39CD-004F-4ADF-B74E-AC6F59C69F2E} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [2014-04-06] (TODO: <Company name>)
Task: {BC6A1A61-E0FC-4186-8E78-06DAC4904458} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {CA66CFA9-8D81-4FAE-B966-A393440646F9} - System32\Tasks\shutdown => C:\Windows\System32\shutdown.exe [2016-07-16] (Microsoft Corporation)
Task: {D0F02066-D55F-46B6-B38A-EC8B45DE09B0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {D6A6DE73-DED7-499B-AB15-FF340BB40172} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {D99A5803-1BE6-47CC-BF1A-E4E8EC6AB25E} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {DB7A19E5-D7E1-40C3-B883-347B84B6651F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {ED413B02-E7DD-42A6-BEB0-BB7A2D2AFBC1} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {F1BAD259-9358-490A-9B93-9BCE4246B176} - System32\Tasks\G2MUpdateTask-S-1-5-21-3340020389-3410081482-2588987961-1000 => C:\Users\Dana\AppData\Local\Citrix\GoToMeeting\5174\g2mupdate.exe [2016-07-02] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {F3FDBE2B-F4EE-43BA-9FEC-C880ABE77AC6} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2014-04-06] ()
Task: {F80A81AD-E3C5-4D50-95EE-AD44C0DFE24F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {FA5D3636-76DD-459B-8271-74084DD3920B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {FCB9FEDD-68DF-4B8A-B627-C74DB44DF141} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3340020389-3410081482-2588987961-1000.job => C:\Users\Dana\AppData\Local\Citrix\GoToMeeting\6634\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3340020389-3410081482-2588987961-1000.job => C:\Users\Dana\AppData\Local\Citrix\GoToMeeting\6634\g2mupload.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Dana\AppData\Local\Google\Chrome\User Data\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list
ShortcutWithArgument: C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list
ShortcutWithArgument: C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TwitchAlerts Stream Labels (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory="Profile 1" --app-id=kgmggmdngboajiakmbpdknfpdelbjbcg
ShortcutWithArgument: C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\TwitchAlerts Stream Labels.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=kgmggmdngboajiakmbpdknfpdelbjbcg
ShortcutWithArgument: C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vzdálená plocha Chrome (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory="Profile 2" --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vzdálená plocha Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\Dana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Dana - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Dana\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Blade - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-15 08:59 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-22 14:33 - 2016-11-14 13:15 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-22 14:32 - 2013-07-04 03:32 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2016-12-17 20:29 - 2016-12-13 01:39 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-17 20:29 - 2016-12-13 01:39 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-01-09 22:28 - 2016-01-09 22:28 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-02-19 14:19 - 2015-11-20 20:52 - 11535176 _____ () C:\xampp\mysql\bin\mysqld.exe
2017-03-15 08:59 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-11-22 14:24 - 2016-11-22 14:24 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 08:58 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2015-12-11 17:29 - 2014-03-27 20:33 - 01430328 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
2015-12-11 17:30 - 2014-04-06 19:28 - 01274168 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
2017-03-13 09:39 - 2017-03-13 09:39 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-03-13 09:39 - 2017-03-13 09:39 - 00182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-03-13 09:39 - 2017-03-13 09:39 - 41048064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-03-13 09:39 - 2017-03-13 09:39 - 02236896 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\roottools.dll
2015-12-11 17:30 - 2014-04-11 10:53 - 01045304 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
2015-12-11 17:30 - 2014-04-11 11:53 - 00037176 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
2017-03-29 09:15 - 2017-03-29 09:15 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.52.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
2017-03-29 09:15 - 2017-03-29 09:15 - 14350336 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.52.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.dll
2017-03-29 09:15 - 2017-03-29 09:15 - 01213440 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.52.0_x64__8wekyb3d8bbwe\SQLite3Wrapper.dll
2017-03-29 09:15 - 2017-03-29 09:15 - 04123032 _____ () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.18.52.0_x64__8wekyb3d8bbwe\Microsoft.Advertising.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00757248 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe
2017-04-01 08:56 - 2017-04-01 08:56 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_27.27.28010.0_x64__8wekyb3d8bbwe\XboxApp.exe
2017-04-01 08:56 - 2017-04-01 08:56 - 31972352 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_27.27.28010.0_x64__8wekyb3d8bbwe\XboxApp.dll
2016-07-30 09:28 - 2016-07-30 09:28 - 01651112 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_27.27.28010.0_x64__8wekyb3d8bbwe\winsdkfb.dll
2017-03-15 08:59 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 08:59 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 08:59 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-15 08:59 - 2017-03-04 08:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-15 08:59 - 2017-03-04 08:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-01-21 20:39 - 2017-03-17 19:31 - 00021992 _____ () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
2016-11-22 14:32 - 2017-04-03 08:57 - 00035472 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2016-11-22 14:32 - 2013-07-04 03:32 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2016-02-19 14:19 - 2015-06-05 12:54 - 00404992 _____ () C:\xampp\apache\bin\pcre.dll
2016-02-19 14:19 - 2015-10-29 22:02 - 00129536 _____ () C:\xampp\php\libpq.dll
2016-02-19 14:19 - 2015-10-29 22:02 - 00166912 _____ () C:\xampp\apache\bin\libssh2.dll
2017-01-21 20:39 - 2017-03-17 19:31 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2016-12-17 20:29 - 2016-12-13 01:39 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-12-17 20:29 - 2016-12-13 01:39 - 03776056 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-17 20:29 - 2016-12-13 01:39 - 00901688 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-01-11 23:10 - 2017-01-04 15:28 - 01958912 _____ () C:\Users\Dana\AppData\Local\Discord\app-0.0.297\ffmpeg.dll
2017-01-11 23:11 - 2017-01-11 23:11 - 01082880 _____ () \\?\C:\Users\Dana\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
2017-01-11 23:11 - 2017-01-11 23:11 - 03750400 _____ () \\?\C:\Users\Dana\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
2017-01-11 23:11 - 2017-01-11 23:11 - 00914432 _____ () \\?\C:\Users\Dana\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
2017-01-11 23:11 - 2017-01-11 23:11 - 01127424 _____ () \\?\C:\Users\Dana\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
2017-01-30 13:52 - 2017-01-30 13:52 - 01926632 ____R () C:\Program Files (x86)\Skype\Phone\roottools.dll
2017-01-11 23:10 - 2017-01-04 15:28 - 02278912 _____ () C:\Users\Dana\AppData\Local\Discord\app-0.0.297\libglesv2.dll
2017-01-11 23:10 - 2017-01-04 15:28 - 00096768 _____ () C:\Users\Dana\AppData\Local\Discord\app-0.0.297\libegl.dll
2015-12-11 17:29 - 2014-03-27 20:32 - 05778096 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2015-12-11 17:29 - 2014-02-24 18:49 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2015-12-11 17:29 - 2014-04-06 19:16 - 00091648 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Log4cxxWrapper.dll
2015-12-11 17:29 - 2014-04-06 19:16 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2015-12-11 17:30 - 2014-04-06 23:06 - 04018688 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2015-12-11 17:30 - 2014-04-06 19:28 - 00091648 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\Log4cxxWrapper.dll
2015-12-11 17:29 - 2014-02-25 17:53 - 01138176 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2015-12-11 17:29 - 2014-04-06 19:16 - 00827392 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Version\Version.dll
2015-12-11 17:30 - 2014-04-06 19:28 - 00053248 _____ () C:\Program Files (x86)\ASUS\VGA COM\1.00.17\Exeio.dll
2015-12-11 17:30 - 2014-04-06 19:28 - 00278528 _____ () C:\Program Files (x86)\ASUS\VGA COM\1.00.17\Vender.dll
2015-12-11 17:28 - 2014-01-28 12:16 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll
2015-12-11 17:30 - 2014-04-06 19:28 - 00685056 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2015-12-11 17:30 - 2014-04-06 19:28 - 00859136 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2015-12-11 17:30 - 2014-04-06 19:28 - 00801280 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2015-12-11 17:30 - 2014-04-06 19:28 - 00807936 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2017-04-03 08:59 - 2017-04-03 08:59 - 00148992 _____ () \\?\C:\Users\Dana\AppData\Local\Temp\1226.tmp.node
2017-01-11 23:11 - 2017-01-11 23:11 - 02658304 _____ () \\?\C:\Users\Dana\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
2017-01-11 23:11 - 2017-03-23 09:38 - 02665976 _____ () \\?\C:\Users\Dana\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node
2015-12-11 17:30 - 2013-11-20 11:10 - 00662016 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\aaHMLib.dll
2015-12-11 17:30 - 2013-07-02 11:40 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\pngio.dll
2016-12-17 20:29 - 2016-12-12 16:36 - 00525760 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-12-17 20:29 - 2016-12-12 16:36 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-12-17 20:29 - 2016-12-12 16:36 - 02808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-12-17 20:29 - 2016-12-12 16:36 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-12-17 20:29 - 2016-12-12 16:36 - 00447424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-12-17 20:29 - 2016-12-12 16:36 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-12-17 20:29 - 2016-12-12 16:36 - 01003456 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-17 20:29 - 2016-12-12 16:36 - 00956472 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
2016-06-19 23:24 - 2016-06-19 23:24 - 00036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll
2016-09-13 15:36 - 2016-09-13 15:36 - 00904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2016-09-13 15:36 - 2016-09-13 15:36 - 00118272 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2016-09-13 15:36 - 2016-09-13 15:36 - 00279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2016-09-13 15:36 - 2016-09-13 15:36 - 00553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2016-09-13 15:36 - 2016-09-13 15:36 - 00216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 01136034 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll
2016-09-13 15:36 - 2016-09-13 15:36 - 00177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00315843 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00093066 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00332178 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00108441 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00128694 _____ () C:\Program Files (x86)\Pidgin\libsasl2-3.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00151731 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2016-06-19 23:23 - 2016-06-19 23:23 - 00152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00868705 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-4.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00225616 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-4.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00417764 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00030249 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00021075 _____ () C:\Program Files (x86)\Pidgin\plugins\nss-prefs.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00048402 _____ () C:\Program Files (x86)\Pidgin\sasl2\libanonymous-3.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00049962 _____ () C:\Program Files (x86)\Pidgin\sasl2\libcrammd5-3.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00079858 _____ () C:\Program Files (x86)\Pidgin\sasl2\libdigestmd5-3.dll
2016-06-19 23:24 - 2016-06-19 23:24 - 00048907 _____ () C:\Program Files (x86)\Pidgin\sasl2\libplain-3.dll
2016-06-19 23:23 - 2016-06-19 23:23 - 00554496 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll
2016-09-13 15:36 - 2016-09-13 15:36 - 00090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2014-03-31 22:35 - 2014-03-31 22:35 - 00278208 _____ () C:\Program Files (x86)\Windows Live\Writer\cs\WindowsLive.Writer.Localization.resources.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00112128 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WP8MSVCCommon.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00378880 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WP8MSVCBridge.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00079872 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinPhoneBridge_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00991744 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\System_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00107520 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\pthreadVC_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00700928 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\CrossPortability_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00209920 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\system_malloc_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 63167854 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00081422 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\unwind_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00812544 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\ffmpeg_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00152576 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\exif_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00153088 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\z_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 01129984 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\c++_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00428544 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\SystemResources_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 01622016 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WRTBridge_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00167424 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WinMediaFoundation_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00125952 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\EGL_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 01158656 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\GLESv2_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 183516030 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\App.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 01085440 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\iconv_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 28719460 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\WebCore_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 00397312 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\OpenAL_osmeta.dll
2017-03-25 09:22 - 2017-03-25 09:22 - 01715507 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_81.811.22862.0_x86__8xx8rvfyw5nnt\pgl_osmeta.dll
2016-02-17 22:47 - 2013-03-31 16:24 - 02664448 _____ () C:\Program Files (x86)\Notepad++\plugins\ColorPicker.dll
2016-05-12 15:28 - 2016-05-12 15:28 - 00204800 _____ () C:\Program Files (x86)\Notepad++\plugins\ComparePlugin.dll
2017-03-08 04:42 - 2017-03-08 04:42 - 00021680 _____ () C:\Program Files (x86)\Notepad++\plugins\NppExport.dll
2017-04-02 18:43 - 2017-04-02 18:43 - 00205824 _____ () C:\Program Files (x86)\AIMP\System\libsoxr.dll
2017-04-02 18:43 - 2017-04-02 18:43 - 00299008 _____ () C:\Program Files (x86)\AIMP\System\Encoders\libFLAC.dll
2017-04-02 18:43 - 2017-04-02 18:43 - 00759296 _____ () C:\Program Files (x86)\AIMP\System\Encoders\aimp_libvorbis.dll
2017-04-02 18:43 - 2017-04-02 18:43 - 00156208 _____ () C:\Program Files (x86)\AIMP\Plugins\aimp_AnalogMeter\aimp_AnalogMeter.dll
2017-04-02 18:43 - 2017-04-02 18:43 - 00171568 _____ () C:\Program Files (x86)\AIMP\Plugins\aimp_cdda\aimp_cdda.dll
2017-04-02 18:43 - 2017-04-02 18:43 - 00159232 _____ () C:\Program Files (x86)\AIMP\Plugins\aimp_sacd\libsacd.dll
2017-04-02 18:43 - 2017-04-02 18:43 - 00026624 _____ () C:\Program Files (x86)\AIMP\Plugins\Aorta\Aorta.dll
2017-01-21 20:39 - 2017-03-17 19:31 - 00012288 _____ () C:\Program Files (x86)\Origin\libEGL.DLL
2016-01-17 23:23 - 2017-01-21 20:38 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2017-04-03 09:47 - 00004750 ____A C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.0	a.ads1.msn.com
0.0.0.0	a.ads2.msads.net
0.0.0.0	a.ads2.msn.com
0.0.0.0	a.rad.msn.com
0.0.0.0	a-0001.a-msedge.net
0.0.0.0	a-0002.a-msedge.net
0.0.0.0	a-0003.a-msedge.net
0.0.0.0	a-0004.a-msedge.net
0.0.0.0	a-0005.a-msedge.net
0.0.0.0	a-0006.a-msedge.net
0.0.0.0	a-0007.a-msedge.net
0.0.0.0	a-0008.a-msedge.net
0.0.0.0	a-0009.a-msedge.net
0.0.0.0	ac3.msn.com
0.0.0.0	ad.doubleclick.net
0.0.0.0	adnexus.net
0.0.0.0	adnxs.com
0.0.0.0	ads.msn.com
0.0.0.0	ads1.msads.net
0.0.0.0	ads1.msn.com
0.0.0.0	aidps.atdmt.com
0.0.0.0	aka-cdn-ns.adtech.de
0.0.0.0	a-msedge.net
0.0.0.0	apps.skype.com
0.0.0.0	az361816.vo.msecnd.net
0.0.0.0	az512334.vo.msecnd.net
0.0.0.0	b.ads1.msn.com
0.0.0.0	b.ads2.msads.net
0.0.0.0	b.rad.msn.com
0.0.0.0	bs.serving-sys.com

There are 75 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3340020389-3410081482-2588987961-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Dana\Pictures\nagron\danwp.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk => C:\Windows\pss\Adobe Gamma.lnk.Startup
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: hpqSRMon => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
MSCONFIG\startupreg: ISUSPM Startup => C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
MSCONFIG\startupreg: ISUSScheduler => "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
MSCONFIG\startupreg: KeePass 2 PreLoad => "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run32: => "HP Software Update"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{2FD1FBA4-4972-4FDC-A36C-58598F5E8F37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{40CD7179-B640-4302-BAED-8CB0FC1653E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [UDP Query User{7A4F3180-252A-49F2-B306-E4D473919A8A}C:\users\dana\documents\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\dana\documents\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{32EC8551-2ABE-4978-B0BE-5A5BD75BDC47}C:\users\dana\documents\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\dana\documents\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{F3B9A29C-CF86-4326-9BA9-E15D15DB2107}C:\program files\leapdroid\vm\virtualbox.exe] => (Allow) C:\program files\leapdroid\vm\virtualbox.exe
FirewallRules: [TCP Query User{F3B32278-572E-4CE8-8DB4-1C1EED29BB8C}C:\program files\leapdroid\vm\virtualbox.exe] => (Allow) C:\program files\leapdroid\vm\virtualbox.exe
FirewallRules: [{11843EC0-CD3F-4F8F-911E-6E41A6F626B5}] => (Allow) %ProgramFiles% (x86)\WinSCP\WinSCP.exe
FirewallRules: [UDP Query User{30BCFFCE-DDB4-4C40-9DCE-98FA515DB637}C:\program files\leapdroid\vm\leapdroidvm.exe] => (Allow) C:\program files\leapdroid\vm\leapdroidvm.exe
FirewallRules: [TCP Query User{D7E45A3F-9C8F-4DE7-985A-15D27E73E7E9}C:\program files\leapdroid\vm\leapdroidvm.exe] => (Allow) C:\program files\leapdroid\vm\leapdroidvm.exe
FirewallRules: [{C81E6B0F-ACAE-4604-8B0F-F735EDBABB5C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5A036A29-AABC-49D8-8ADF-482923FD0CC0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FA5DDE58-1A55-42E8-A1CB-BBC4102EEABE}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EFC7062D-8404-4021-BA7C-4ADAF6CCED20}] => (Allow) C:\Users\Dana\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{F814EE0D-AB47-4305-BE85-CCD2B0924672}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{3892F208-C8FE-4FEA-A94D-5F2FD964ADC1}] => (Allow) LPort=2869
FirewallRules: [{769633D1-092E-4DC3-A518-B4BE8F1C21FA}] => (Allow) LPort=1900
FirewallRules: [{A0D39356-BE8E-4067-A4C5-C008B26707B8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{452E63E0-DAEE-4153-8E1E-3AC8025AE835}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E5CEF96F-C62A-4094-954B-308FEA531F0B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{07BEA7CB-DF2D-4FDD-804C-780388976D29}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7CBFF7A3-4576-4365-A5BD-5B2E8D8A418F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{BB6A15B2-5539-4609-A4CB-ECFF00EF0E35}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{A820709E-03DF-4226-91F8-F6FE81960914}E:\gmod\srcds.exe] => (Block) E:\gmod\srcds.exe
FirewallRules: [UDP Query User{202E5255-2EC3-45F4-A362-C8680E60147A}E:\gmod\srcds.exe] => (Block) E:\gmod\srcds.exe
FirewallRules: [TCP Query User{83FE1A8E-B5FC-467B-87F8-0A51B8503FF1}C:\program files\teamspeak 3 server\ts3server_win64.exe] => (Allow) C:\program files\teamspeak 3 server\ts3server_win64.exe
FirewallRules: [UDP Query User{D8E7F7E2-E959-4698-97FC-E07EE33BF9D9}C:\program files\teamspeak 3 server\ts3server_win64.exe] => (Allow) C:\program files\teamspeak 3 server\ts3server_win64.exe
FirewallRules: [TCP Query User{DFF8E977-B14D-43E5-9A51-6E0B9FFC3163}C:\gmod\srcds.exe] => (Allow) C:\gmod\srcds.exe
FirewallRules: [UDP Query User{5D7CC816-552F-418E-B81A-D6B344A752F7}C:\gmod\srcds.exe] => (Allow) C:\gmod\srcds.exe
FirewallRules: [{73389F43-DD32-4BD0-9217-C822312469D4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A8C3E26D-99C3-4B83-A971-1E0A7E117051}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{130F8243-7C7C-4524-AA4D-F10898089890}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{A1201747-A8E2-4A1E-9483-DFA09FA07C44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{909A52F9-032E-4CF4-AE11-B2C7F2001059}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unreal Tournament 2004\System\UT2004.exe
FirewallRules: [{E9F0E45E-090B-48F9-A739-D29179B9FFD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unreal Tournament 2004\System\UT2004.exe
FirewallRules: [{49203294-C7BE-4353-94E5-AEA744E602C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed Liberation\ac3lhd_32.exe
FirewallRules: [{BA7B76D0-813C-4BBA-9A2A-3D153BE340A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed Liberation\ac3lhd_32.exe
FirewallRules: [{8F29FB82-D38C-4789-8B03-2BD239513E8D}] => (Allow) C:\Program Files\OBS\OBS.exe
FirewallRules: [{0F8983CC-20C0-4EBD-AD6B-0BC32514CE2B}] => (Allow) C:\Program Files\OBS\OBS.exe
FirewallRules: [{13645F49-4B61-4F50-9FC4-BE20029F9C89}] => (Allow) C:\Program Files\OBS\OBS.exe
FirewallRules: [{F26C1658-B002-4F94-8633-DFBBF30F7584}] => (Allow) C:\Program Files\OBS\OBS.exe
FirewallRules: [{22C0C0C9-178E-4DF2-97DA-5C61AE123EFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{914D04CF-4DD6-4D87-B069-1BB0A6B22861}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [TCP Query User{00FB57FE-F01E-4F9C-9994-A3C59AEFE6A0}C:\rust\rustds\rustdedicated.exe] => (Allow) C:\rust\rustds\rustdedicated.exe
FirewallRules: [UDP Query User{7E45E706-C0A5-47D8-B211-837F2E917FE3}C:\rust\rustds\rustdedicated.exe] => (Allow) C:\rust\rustds\rustdedicated.exe
FirewallRules: [{84070DCA-E7E9-4D12-AF69-4D5741CB7783}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{166DC6E8-5BA1-45C6-A7FB-92BD8083385F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [TCP Query User{E9F6EDFB-DAF4-47B7-BF4B-D5FE0DBFE8E6}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{465F95F9-5B87-41DD-B801-08FBA4D57906}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [{BBF38D24-9A6B-496F-9604-06B5B9279AB3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed 3\AC3SP.exe
FirewallRules: [{DDAEEA6D-7B54-4C35-AA79-100F8426581A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed 3\AC3SP.exe
FirewallRules: [{0D969FBA-7FC1-4ACF-ABA8-5EC06FEE2D3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed 3\AC3MP.exe
FirewallRules: [{1A317243-9FB2-4C25-9876-151556066B70}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed 3\AC3MP.exe
FirewallRules: [{5C892DD7-AFEC-4DD4-9A93-27C60F457F7B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{827D5E6E-F829-47BC-B7B1-0595E4CFE82D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5C74EE3B-D232-4CBD-ADED-9243216803E8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{83281636-C23B-4527-BBD5-AD4C51F348CD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{AFE89FF4-83AA-4C5D-9453-B6DFC42BA0C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{A4AA0806-CF96-40D6-A1C9-61B46E7076F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [TCP Query User{E90C5849-FE78-43CA-8A0B-47866AB7F12C}C:\css\srcds.exe] => (Allow) C:\css\srcds.exe
FirewallRules: [UDP Query User{838ADD72-FD85-4E6E-9AEB-699E3951B27C}C:\css\srcds.exe] => (Allow) C:\css\srcds.exe
FirewallRules: [TCP Query User{4DA929F2-167C-4925-86A9-509D3718DF42}C:\users\dana\desktop\vsthostx86\vsthostbridge64.exe] => (Allow) C:\users\dana\desktop\vsthostx86\vsthostbridge64.exe
FirewallRules: [UDP Query User{238BA4E9-7304-441C-9E5F-7C5FE875D795}C:\users\dana\desktop\vsthostx86\vsthostbridge64.exe] => (Allow) C:\users\dana\desktop\vsthostx86\vsthostbridge64.exe
FirewallRules: [{3CFD04D8-2F06-4179-A20A-26406F8660D2}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [{73000A2D-0D9D-45B6-A726-E3E217A1DDBE}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [{30DFFC5E-6E5D-4E5C-AE19-11BC9EFBFC30}] => (Allow) C:\Program Files (x86)\WinSCP\WinSCP.exe
FirewallRules: [{3EF2D6CB-32C2-4884-91C9-BF932069C9A2}] => (Allow) C:\Program Files (x86)\WinSCP\WinSCP.exe
FirewallRules: [{CBD9B6E8-45B5-4E8D-B280-095CBDE7EDB3}] => (Allow) C:\Program Files (x86)\WinSCP\WinSCP.exe
FirewallRules: [{112DCE05-A073-4E0E-B680-F40AE0C1ECD6}] => (Allow) C:\Program Files (x86)\WinSCP\WinSCP.exe
FirewallRules: [TCP Query User{0D37F1E4-982A-47E6-97E4-C43DD6E2D087}C:\program files (x86)\pidgin\pidgin.exe] => (Allow) C:\program files (x86)\pidgin\pidgin.exe
FirewallRules: [UDP Query User{247B71A4-35FF-4EAD-8C7E-6DE4CD4A5638}C:\program files (x86)\pidgin\pidgin.exe] => (Allow) C:\program files (x86)\pidgin\pidgin.exe
FirewallRules: [{539C4D11-EFF3-4621-AFB9-0397E6DEF2A5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{AA300579-81E0-4E74-8B50-57AF711B251A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{1961286D-5BE6-44D3-A82D-025500FDF278}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{FC9168A7-256C-408D-97B4-D92D1BBA284C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{97F6ADDB-5A43-4941-A774-C3650F2ED9A3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{25CAF753-8223-4542-A323-5CF2284FFAF6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{D9E58EA0-509A-4256-9638-2963DD7B4B78}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{64D31663-1777-44DA-B045-D7A071C6078B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{1D2127D0-6806-4442-96E3-99439F53C50B}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{3F7274C4-3421-4189-8C3A-911B9AE2C2C7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{7E10BEFB-EB40-43D6-ABBB-1F5118B1F4A3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{F8DD9C84-E39A-4C44-9CF4-DD9984534A92}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{BE5CB1BA-A848-4BB2-814A-A5BC9C552568}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{8E452E3E-8036-4CA8-8CFD-FEBA87E1D9B0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{84651906-46F6-45C0-A346-84A944A11EFC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{EA75FB2C-9BAC-498F-9A94-1E2AF40EDF75}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{7289EB44-5F91-456A-95C7-645C5B4F9729}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{423580F1-06BD-49AA-8830-15CA252D1D12}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [TCP Query User{1074ABBB-DC03-47C3-AB0D-21559C59C6EA}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{8EF162FF-513C-439E-8F72-C061D2C679BE}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [{CAA5FA75-E2BF-466A-B4C2-431B48B048E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
FirewallRules: [{713C1F4D-54B2-453E-B101-0006FD6ADA80}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
FirewallRules: [TCP Query User{F469FBF4-9CE2-457E-9FAC-67B0AA599CDF}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{1297D26C-719D-4148-8253-8507EDAC8A3C}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{1C021955-0647-4A2B-846A-6EFE012EB646}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Quiplash\Quiplash.exe
FirewallRules: [{0874C478-AF2A-47A5-B92E-6A47B36828DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Quiplash\Quiplash.exe
FirewallRules: [{CC561150-FCB2-4BF4-82BE-A873B085DC54}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [{56647ABA-54AF-4DBB-BCAB-D23511B2093D}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{4A404B5F-95F2-4686-A37F-ADE0467033FA}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{96B57213-487A-4A47-A04B-3A6A8B818345}] => (Allow) C:\KOPLAYER\KOPLAYER.exe
FirewallRules: [{3877CF69-B94C-4CD8-93F4-B5271E29E9EC}] => (Allow) C:\KOPLAYER\vbox\VBoxManage.exe
FirewallRules: [{2DB498B6-CA9D-4843-BC54-EB7DC9EFBDB0}] => (Allow) C:\KOPLAYER\vbox\VBoxHeadless.exe
FirewallRules: [{1211421D-13B5-4875-A5DA-E70B7DF0F961}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{E66F6D2E-7344-4EAD-B432-845771724F24}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{787FE36B-ECF7-4C97-9D61-B3B494A56A19}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{71EA969B-C011-4BBB-B60A-28958CEC4D9C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{BBD8589B-C6F3-42BD-AFA3-951A24C610D4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6E43BD0C-D361-4C3A-8006-3FC761802FA7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6885A68B-7205-43B6-8C83-10933A7F49DC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F853783F-2CF4-4AA2-A2BF-82FA52217DFB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{0B5768AA-EC50-43E7-8104-7ADB12628B52}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{3FAB4E11-C552-4118-A0BF-0C5A10C50C33}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{8BABB0C5-9B8A-4C90-80F8-DBF1EBB01901}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{608C4AE7-5144-466C-99D4-D110329E10E2}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{77E3BD43-6C0C-4CB6-AE94-A5F775FE7115}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
FirewallRules: [{18D7C29E-A749-4380-90A7-D305A7812CDA}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/03/2017 08:59:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DipAwayMode.exe, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.14393.953, časové razítko: 0x58ba586d
Kód výjimky: 0xc0000409
Posun chyby: 0x000da882
ID chybujícího procesu: 0x24d4
Čas spuštění chybující aplikace: 0x01d2ac47ca99c4c9
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 1c39a26c-c5be-4c7a-8178-849cc0a0f989
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (04/02/2017 08:51:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DipAwayMode.exe, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.14393.953, časové razítko: 0x58ba586d
Kód výjimky: 0xc0000409
Posun chyby: 0x000da882
ID chybujícího procesu: 0x38cc
Čas spuštění chybující aplikace: 0x01d2ab7d5f04d5f0
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: c12805c5-83ed-49c1-9c6e-c33ff55ab8c6
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (04/02/2017 01:03:49 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Dana-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (04/01/2017 09:40:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CORELPP.EXE, verze: 13.0.0.739, časové razítko: 0x454d32ba
Název chybujícího modulu: corelpp.dll, verze: 13.0.0.739, časové razítko: 0x454d4b00
Kód výjimky: 0xc0000005
Posun chyby: 0x003d6c4e
ID chybujícího procesu: 0x2fc4
Čas spuštění chybující aplikace: 0x01d2aab8633a51c7
Cesta k chybující aplikaci: C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite 13\PROGRAMS\CORELPP.EXE
Cesta k chybujícímu modulu: C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite 13\PROGRAMS\corelpp.dll
ID zprávy: 7212ae8c-094a-4046-9c93-2559c1ff3dad
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (04/01/2017 09:40:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CORELPP.EXE, verze: 13.0.0.739, časové razítko: 0x454d32ba
Název chybujícího modulu: corelpp.dll, verze: 13.0.0.739, časové razítko: 0x454d4b00
Kód výjimky: 0xc0000005
Posun chyby: 0x0025a8e4
ID chybujícího procesu: 0x2fc4
Čas spuštění chybující aplikace: 0x01d2aab8633a51c7
Cesta k chybující aplikaci: C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite 13\PROGRAMS\CORELPP.EXE
Cesta k chybujícímu modulu: C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite 13\PROGRAMS\corelpp.dll
ID zprávy: 973cbbc0-59e1-40a8-a34f-e27bfb5c2c41
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (04/01/2017 08:54:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DipAwayMode.exe, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.14393.953, časové razítko: 0x58ba586d
Kód výjimky: 0xc0000409
Posun chyby: 0x000da882
ID chybujícího procesu: 0x3e34
Čas spuštění chybující aplikace: 0x01d2aab4a5934517
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: d4cc33bc-19ed-4205-8e47-36c289a90eb5
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/31/2017 07:06:03 PM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: Zálohování nebylo úspěšné. Chyba: Na této jednotce není dost místa pro uložení zálohy. Uvolněte místo odstraněním starších záloh a nepotřebných dat nebo změňte nastavení zálohování. (0x81000005).

Error: (03/31/2017 07:06:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (03/31/2017 07:00:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (03/31/2017 07:00:15 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (04/03/2017 08:57:38 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby: 
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (04/03/2017 08:57:02 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 32212256841201296

Error: (04/03/2017 08:57:32 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (0:03:29, ‎03.‎04.‎2017) bylo neočekávané.

Error: (04/02/2017 01:03:49 AM) (Source: DCOM) (EventID: 10010) (User: Dana-PC)
Description: Server CortanaUI.AppXaftg6tm6p785vrqz81r3akxav02sk6wc.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/31/2017 06:18:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avira Real-Time Protection byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (03/30/2017 08:46:54 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{3185A766-B338-11E4-A71E-12E3F512A338}
 a APPID 
{7006698D-2974-4091-A424-85DD0B909E23}
 uživateli NT AUTHORITY\NETWORK SERVICE (SID: S-1-5-20) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/30/2017 08:46:43 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{3185A766-B338-11E4-A71E-12E3F512A338}
 a APPID 
{7006698D-2974-4091-A424-85DD0B909E23}
 uživateli NT AUTHORITY\NETWORK SERVICE (SID: S-1-5-20) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/26/2017 09:12:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby: 
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (03/26/2017 09:11:27 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 32212256841200656

Error: (03/26/2017 09:11:56 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (0:21:11, ‎26.‎03.‎2017) bylo neočekávané.


CodeIntegrity:
===================================
  Date: 2017-03-17 08:31:33.436
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-03-17 08:31:33.434
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-03-17 08:31:33.422
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-12-13 18:50:01.092
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-13 18:50:01.091
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-13 18:50:01.089
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-13 18:50:01.088
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7601.17514_none_9247d45ea984f2ad\userenv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-13 18:50:01.026
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7600.16385_none_9016c096ac966f13\userenv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-13 18:50:01.025
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7600.16385_none_9016c096ac966f13\userenv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-12-13 18:50:01.023
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\winsxs\x86_microsoft-windows-userenv_31bf3856ad364e35_6.1.7600.16385_none_9016c096ac966f13\userenv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 34%
Total physical RAM: 16326.78 MB
Available physical RAM: 10761.5 MB
Total Virtual: 32710.78 MB
Available Virtual: 25543 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.85 GB) (Free:493.05 GB) NTFS
Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: () (Fixed) (Total:465.66 GB) (Free:0.01 GB) NTFS
Drive h: () (Removable) (Total:1.95 GB) (Free:1.69 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: CB59CB59)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 2 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================