Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-07-2017
Ran by marti (25-07-2017 09:37:54)
Running from C:\Users\marti\Desktop
Windows 10 Pro Version 1607 (X64) (2017-01-05 12:24:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3052804795-3073415928-1661174740-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3052804795-3073415928-1661174740-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3052804795-3073415928-1661174740-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-3052804795-3073415928-1661174740-501 - Limited - Disabled)
marti (S-1-5-21-3052804795-3073415928-1661174740-1001 - Administrator - Enabled) => C:\Users\marti

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
AIDA64 Extreme v5.80 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.80 - FinalWire Ltd.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Batman Arkham Knight - Premium Edition version 1.0.4.5 (HKLM-x32\...\Batman Arkham Knight - Premium Edition_is1) (Version: 1.0.4.5 - Mr DJ)
BitTorrent (HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.6.104.6367 - BlueStack Systems, Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{0AD642E5-E824-AA93-B974-25DF1D0065C3}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{51F85784-6799-5CA3-97B2-2E5904FC3E58}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{84C3F2C5-F7B2-2F08-CDF4-79EF7CC55D74}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{FFB78502-D22D-56C5-EC21-D1893029FA0E}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0E8A3B17-D603-B1B6-C205-1685EBDD23E9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{2239F4A6-E0F6-0012-545B-D93F99366865}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{0271BC8D-CECB-ADEB-D228-577E00B37E7E}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{1E7D3072-1D28-E33A-99DF-85D9F7ECD06E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{73571662-C11D-D713-87A7-E34DC9B0865B}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{BA26B70C-3D8C-2D14-4122-211FB3E6F691}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{112F60D3-9EAE-9172-1512-ED060C39BB0A}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{5FEACE78-C338-9AED-FF05-7DE7E273C774}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{4E6DAA39-272A-6834-6AC0-4B76EBD9D468}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A3795528-F572-6314-C4E3-EE9DAF0FBF02}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{4853A56D-7931-A08B-5BA7-8E2D61043DF9}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{88270124-6375-E407-67B7-414294DD41C0}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{62AF521B-448A-171C-0E37-EF1CC1717ECF}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{B28CF677-E2C8-12CA-52BB-19B6F066D36A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{8E6F5592-ED7E-9C50-74AC-BF417B1FE291}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{94BE0AE6-CD76-9CFC-2CFB-846C7F07991B}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{AD28960A-6190-C991-C964-308B86EAA2E2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{CFD0FFAF-A6EC-D76E-6E42-D77B6CCBCF06}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{43F6D22B-E0E9-EE90-9B62-1C5FC5D15A55}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{88F32161-4652-6669-32A1-EF7D82DCD1AF}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{8FB4D6B1-7416-BBC0-4783-C35C2583C80A}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{D4490E0F-8E7B-1097-B56A-7643C75F1C28}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{292C1718-4890-7666-729A-6005A3AD0C69}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{DAB44116-0266-C65B-B643-AC11217C3041}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{2E08CA87-F0A1-3124-3EA6-67CB20FCA1F1}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3AF70346-52C7-0334-606F-118D1C1CB7A2}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{53AE8AC7-5213-67AF-0DC0-CED696B77643}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{B34212E6-FC87-266D-BAE5-CD7D35A75435}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{14A1A479-B76E-6718-CCA7-D6AC7AA62CEE}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{DC9DFCBF-87DA-892C-6151-99CC9EF46E3E}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C1EFF2A2-DF4A-F6D1-B99C-1ED194AE9E78}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{E198BEB9-7D8A-8651-B293-882F92E4661A}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{46EB68BE-8AAC-8C2B-7284-8DEDE6B5CD2A}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{488CE063-B047-778C-CD25-6CAE88FE9110}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{433CFA98-CC3D-8A78-CB6D-57CC625469F1}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{7A6E431B-CF43-EC3E-FD7E-0A0AAB1B25FC}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{89A1F076-19B8-A2B1-D5A3-E8247EFAF157}) (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{FC983E65-D8D0-078E-F1D1-77E7B56FAD3C}) (Version: 2017.0704.1721.31196 - Advanced Micro Devices, Inc.) Hidden
Čeština do hry The Evil Within včetně 3 DLC v1.1 (HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\Čeština do hry The Evil Within včetně 3 DLC v1.1) (Version:  - )
EasyBoost (HKLM-x32\...\{41910260-4532-4734-8181-3E8AFDBB05D7}) (Version: 1.0.8.1 - GIGABYTE) Hidden
EasyBoost (HKLM-x32\...\InstallShield_{41910260-4532-4734-8181-3E8AFDBB05D7}) (Version: 1.0.8.1 - GIGABYTE)
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.48.30259 - Electronic Arts)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Garry's Mod (HKLM\...\Steam App 4000) (Version:  - Facepunch Studios)
GIGABYTE VGA @BIOS (HKLM-x32\...\{AA12545D-5EB8-4078-AFD9-8E8DC0AE3A76}) (Version: 7.00 - GIGABYTE)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
GridinSoft Anti-Malware (HKLM\...\GridinSoft Anti-Malware) (Version: 3.1.5 - GridinSoft LLC)
H1Z1: Just Survive (HKLM\...\Steam App 295110) (Version:  - Daybreak Game Company)
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version:  - Daybreak Game Company)
Hello Neighbor Alpha 4 (HKLM-x32\...\vsetop.com Hello Neighbor Alpha 4_is1) (Version: Alpha 4 - VseTop.Com)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version:  - Cheat Engine)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
Jotun (HKLM\...\Steam App 323580) (Version:  - Thunder Lotus Games)
Malwarebytes Activation (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 3.0.6.1469 - Malwarebytes)
Malwarebytes verzia 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
MapleSeed (HKLM-x32\...\{9B84FED3-91C3-480F-A6AA-EA1CB8D489CC}) (Version: 2.1.1.8 - Tsumes)
Microsoft OneDrive (HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MorphVOX Pro (HKLM-x32\...\{AD65DCED-AF6F-4180-AC2D-116BCBC9D22C}) (Version: 4.4.66.23655 - Screaming Bee) Hidden
MorphVOX Pro (HKLM-x32\...\{bafb203b-7535-4d37-8bb3-165feb1a6b9a}) (Version: 4.4.66.23655 - Screaming Bee)
Mozilla Firefox 54.0.1 (x86 sk) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 sk)) (Version: 54.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.1.6388 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
Origin (HKLM-x32\...\Origin) (Version: 10.4.14.21968 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.105.324.0 - Overwolf Ltd.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version:  - )
RenderDoc (HKLM\...\{384B4225-954B-4440-A267-F4EFD1B6C86D}) (Version: 0.32.0 - Baldur Karlsson)
Resident Evil 7 Biohazard (HKLM-x32\...\{1ECBF8F3-7079-44CA-AD32-B2AECBCF636F}_is1) (Version:  - Capcom)
RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder)
ROBLOX Player for marti (HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - ROBLOX Corporation)
Shadow Of Mordor version Shadow Of Mordor (HKLM-x32\...\Shadow Of Mordor_is1) (Version: Shadow Of Mordor - )
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
Sniper Ghost Warrior 3 (HKLM-x32\...\Sniper Ghost Warrior 3_is1) (Version: 3.8.6.53 - CI Games)
SoftPerfect RAM Disk version 4.0.2 (HKLM\...\{33A14ED9-0340-4193-BEDB-B95BC8196182}_is1) (Version: 4.0.2 - SoftPerfect)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steam Customizer (HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\Steam Customizer) (Version: 1.00.00.00 - Blumont)
SteamVR (HKLM\...\Steam App 250820) (Version:  - )
Styx Shards of Darkness (HKLM-x32\...\Styx Shards of Darkness_is1) (Version:  - )
Syberia 3 (HKLM-x32\...\Syberia 3_is1) (Version: 1.0.0.1 - Microids)
Tales Of Berseria (HKLM-x32\...\{66B88C33-80CB-4A26-8434-24E140B49100}_is1) (Version:  - Namco Bandai)
Team Fortress 2 (HKLM\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.1 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
The Evil Within verze 1.05 (HKLM-x32\...\The Evil Within_is1) (Version: 1.05 - Bethesda Softworks)
The Golf Club 2 (HKLM-x32\...\The Golf Club 2_is1) (Version:  - )
The Legend of Zelda: Breath of the Wild (HKLM-x32\...\The Legend of Zelda: Breath of the Wild_is1) (Version:  - )
Town of Salem (HKLM\...\Steam App 334230) (Version:  - BlankMediaGames)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH)
Unity Web Player (HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-3) (Version: 1.0.37.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-4) (Version: 1.0.37.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-5) (Version: 1.0.37.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-6) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-2) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-3) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-4) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-5) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-6) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-7) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-8) (Version: 1.0.39.1 - LunarG, Inc.)
VulkanSDK 1.0.39.1 (HKLM\...\VulkanSDK1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Woolfe: The Red Hood Diaries (HKLM-x32\...\Woolfe: The Red Hood Diaries_is1) (Version:  - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3052804795-3073415928-1661174740-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
ContextMenuHandlers01: [GridinSoft Anti-Malware] -> {F77F27A6-89F3-471A-AFA8-3B280940A10C} => C:\Program Files\GridinSoft Anti-Malware\shellext.dll [2017-07-20] ()
ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File
ContextMenuHandlers02: [GridinSoft Anti-Malware] -> {F77F27A6-89F3-471A-AFA8-3B280940A10C} => C:\Program Files\GridinSoft Anti-Malware\shellext.dll [2017-07-20] ()
ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers04: [GridinSoft Anti-Malware] -> {F77F27A6-89F3-471A-AFA8-3B280940A10C} => C:\Program Files\GridinSoft Anti-Malware\shellext.dll [2017-07-20] ()
ContextMenuHandlers05: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-07-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers05: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-05-12] (Intel Corporation)
ContextMenuHandlers06: [GridinSoft Anti-Malware] -> {F77F27A6-89F3-471A-AFA8-3B280940A10C} => C:\Program Files\GridinSoft Anti-Malware\shellext.dll [2017-07-20] ()
ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} =>  -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {268B6F71-5CF6-413E-A965-90B7873A8579} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-07-04] (Advanced Micro Devices, Inc.)
Task: {4D3F77AD-C395-42C4-A32A-0F731C7F9996} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {671F6154-259C-40EF-8848-C43688B7D334} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {67A1B233-1038-4F8B-83F0-206DC9CF6BD2} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-07-17] (Overwolf LTD)
Task: {8DAD638D-9D25-410A-8703-D4547E130FB6} - System32\Tasks\GridinSoft Anti-Malware => C:\Program Files\GridinSoft Anti-Malware\gsam.exe [2017-07-20] (GridinSoft LLC)
Task: {C04D19F9-BE9C-48EC-9D1B-32BDFDE5F8D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {D34171A1-F752-4D79-8BA5-78EC6BF228A4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-11] (Adobe Systems Incorporated)
Task: {EF7E8AD7-3ADB-47AB-81B1-1670E02437DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-01-29 10:32 - 2017-06-27 12:06 - 02260432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2017-07-12 19:37 - 2017-06-21 09:48 - 02681200 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-12-06 22:07 - 2016-12-06 22:07 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-14 20:50 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-14 20:51 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-14 20:51 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-14 20:51 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-07-12 19:37 - 2017-06-21 08:35 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-07-12 19:37 - 2017-06-21 08:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-07-18 07:40 - 2017-07-18 07:40 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-07-18 07:40 - 2017-07-18 07:40 - 00203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-07-18 07:40 - 2017-07-18 07:40 - 43573248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-07-18 07:40 - 2017-07-18 07:40 - 02435584 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\skypert.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 13:47 - 2017-01-29 10:32 - 00000878 _____ C:\Windows\system32\Drivers\etc\hosts

0.0.0.0 serius.mwbsys.com
0.0.0.0 keystone.mwbsys.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\marti\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{45a33f31-3fff-48cd-b7b3-943d23cf91ef}.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run: => "SoftPerfectRamDisk"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-3052804795-3073415928-1661174740-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{239BED20-491E-4236-931E-BB36B66FF316}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1BC40E0F-F8D3-410F-8F3B-5F470F59E7DD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1D1D46D2-6186-4C72-AF7E-44D17310B5CB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FB6C85CF-519B-4759-9EF3-5F321107C656}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{13053BE5-E565-4744-B109-6698149452BF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D1642712-C539-4D4C-B227-D576BDDF1402}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0E35FF97-B58E-4830-8BC6-7A73E922E2F4}] => (Allow) C:\Users\marti\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C7C2CA51-D3CB-4D43-A8D7-0D6CB04F35C3}] => (Allow) C:\Users\marti\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{F9557EB3-1A4F-4896-A10D-EAFDE6CE9340}] => (Allow) C:\Users\marti\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{25B7C430-FFB7-4825-A136-915EDF8A902F}] => (Allow) C:\Users\marti\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{AF03010C-F6FE-45A9-88E8-05A1A777BDBD}] => (Allow) C:\Users\marti\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{3D5384A5-000B-4F0E-84C2-83993A6ACE71}] => (Allow) C:\Users\marti\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{B6A72678-03D7-4C96-BBF8-D6B31EEC281B}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5A43D1DC-F373-473A-90DF-1B3A2BDA572C}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8797827E-10C3-4C17-9811-C9E980373CDE}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6AAEC1E9-C8C9-46FC-B372-4A7A1C18A84B}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{5809885D-2854-434F-A505-02623E3A1FF4}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [TCP Query User{4641548F-B452-4456-8249-C798B14216A5}E:\program files\steamlibrary\steamapps\common\half-life\hl.exe] => (Allow) E:\program files\steamlibrary\steamapps\common\half-life\hl.exe
FirewallRules: [UDP Query User{802B2D66-4C07-4443-9F5A-C93052C70E8B}E:\program files\steamlibrary\steamapps\common\half-life\hl.exe] => (Allow) E:\program files\steamlibrary\steamapps\common\half-life\hl.exe
FirewallRules: [TCP Query User{7AE7EE3C-F0C9-426C-95FA-1EE98F92EB3A}E:\program files\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) E:\program files\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [UDP Query User{2747BEBF-A74A-4835-A5C6-BAEBCE5F2F5D}E:\program files\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) E:\program files\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [{3F0089AA-D534-47AA-A457-F81B38C46557}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{81F85201-2AC7-4F02-AE9E-B3F13642F78B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{86693F79-F14C-488E-A3F6-9578DBFCDBC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Town of Salem\TownOfSalem.exe
FirewallRules: [{B139E835-FB8E-4CF9-88E4-EE2E25AF05A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Town of Salem\TownOfSalem.exe
FirewallRules: [TCP Query User{5EE95420-0F3E-47A8-9BD9-C32D83821AE8}C:\program files (x86)\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files (x86)\gog galaxy\games\gwent\gwent.exe
FirewallRules: [UDP Query User{A672474E-EFA7-4838-ABAE-7BAF76368AB7}C:\program files (x86)\gog galaxy\games\gwent\gwent.exe] => (Allow) C:\program files (x86)\gog galaxy\games\gwent\gwent.exe
FirewallRules: [TCP Query User{92A58EED-182D-418F-84AE-62FEA51E7C47}E:\program files\far cry - primal\bin\fcprimal.exe] => (Allow) E:\program files\far cry - primal\bin\fcprimal.exe
FirewallRules: [UDP Query User{C5705F06-F91D-4393-919A-60901D35F3F9}E:\program files\far cry - primal\bin\fcprimal.exe] => (Allow) E:\program files\far cry - primal\bin\fcprimal.exe
FirewallRules: [TCP Query User{9B2DA88F-5926-4B45-9AB8-627B6F46A0C5}E:\program files\quantum break\dx11\quantumbreak.exe] => (Allow) E:\program files\quantum break\dx11\quantumbreak.exe
FirewallRules: [UDP Query User{92A27421-3D8A-4513-96E3-5D16188FE009}E:\program files\quantum break\dx11\quantumbreak.exe] => (Allow) E:\program files\quantum break\dx11\quantumbreak.exe
FirewallRules: [{03C1020C-A59C-46B2-A6B7-F29E5C4A26E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sniper Ghost Warrior 3 Beta\win_x64\SGW3.exe
FirewallRules: [{90B5415D-6DF0-42CF-99A5-CC4335839EB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sniper Ghost Warrior 3 Beta\win_x64\SGW3.exe
FirewallRules: [TCP Query User{8F926C48-0AE0-462C-B5F6-BB8F249A07B5}C:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) C:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [UDP Query User{93BED5E0-FBB8-4673-8BEC-3B79885B04A0}C:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) C:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [TCP Query User{34D72ACF-B022-4F5B-800D-7FA31F6D7DE9}E:\program files\payday 2\payday2_win32_release.exe] => (Allow) E:\program files\payday 2\payday2_win32_release.exe
FirewallRules: [UDP Query User{682A1385-8814-443C-BBD6-74932377A235}E:\program files\payday 2\payday2_win32_release.exe] => (Allow) E:\program files\payday 2\payday2_win32_release.exe
FirewallRules: [TCP Query User{D7E9C0AD-E8E1-42BA-929D-C0749165C2B9}E:\program files\thehunter call of the wild\thehuntercotw_f.exe] => (Allow) E:\program files\thehunter call of the wild\thehuntercotw_f.exe
FirewallRules: [UDP Query User{8E02F52B-9C83-434D-9396-BE0A4354BFF3}E:\program files\thehunter call of the wild\thehuntercotw_f.exe] => (Allow) E:\program files\thehunter call of the wild\thehuntercotw_f.exe
FirewallRules: [{A647AE52-64AA-42E2-8D2D-38DAF1E7CBE3}] => (Allow) C:\VulkanSDK\1.0.39.1\Bin32\vktrace.exe
FirewallRules: [{A8F13790-E94E-4357-9546-1ED57C49ED63}] => (Allow) C:\VulkanSDK\1.0.39.1\Bin32\vktrace.exe
FirewallRules: [{77200924-77A7-4B28-B182-FB93AFEC55F4}] => (Allow) C:\VulkanSDK\1.0.39.1\Bin\vktrace.exe
FirewallRules: [{2FF86663-7575-4A85-B711-0FDE9646E77C}] => (Allow) C:\VulkanSDK\1.0.39.1\Bin\vktrace.exe
FirewallRules: [TCP Query User{3DF2D53F-6D28-4EAF-88BA-C5A9FA8417E7}E:\program files\cod-mw3\teknomw3\iw5mp.exe] => (Allow) E:\program files\cod-mw3\teknomw3\iw5mp.exe
FirewallRules: [UDP Query User{8018655F-0FC0-4D43-AD01-4993821431E8}E:\program files\cod-mw3\teknomw3\iw5mp.exe] => (Allow) E:\program files\cod-mw3\teknomw3\iw5mp.exe
FirewallRules: [{836D563B-3FE1-4B3B-9626-1D0EE1D9074E}] => (Allow) E:\Program Files\Mr DJ\Batman Arkham Knight - Premium Edition\Binaries\Win64\BatmanAK.exe
FirewallRules: [{6E0DD307-FE33-4BE3-BD97-F17789B4E5AF}] => (Allow) E:\Program Files\Mr DJ\Batman Arkham Knight - Premium Edition\Binaries\Win64\BatmanAK.exe
FirewallRules: [{0753E63E-5792-448E-9076-55E314FF6456}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{B3C8188B-7187-46BC-A3D6-912B21019109}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{387D4BB7-54A6-49EC-9C02-34A8B84E7EAE}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{E84EA923-30AE-4CF3-9987-B5C763A236FC}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{C8E013CF-7F21-4A2F-9FE5-F2B6883A79C7}E:\hry\football.manager.2017-ali213\common\football manager 2017\fm-i5-3570.exe] => (Allow) E:\hry\football.manager.2017-ali213\common\football manager 2017\fm-i5-3570.exe
FirewallRules: [UDP Query User{BF78AD13-4C1F-42B0-B419-1649AF5F5654}E:\hry\football.manager.2017-ali213\common\football manager 2017\fm-i5-3570.exe] => (Allow) E:\hry\football.manager.2017-ali213\common\football manager 2017\fm-i5-3570.exe
FirewallRules: [TCP Query User{10EE11D2-E4E3-43B8-85F3-0BCEB15E6935}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{89B8996C-837A-4D1F-A1D9-825DD1A6EC77}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{E66070AF-B233-48AD-85CC-ED33A287D008}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{6ECA0980-B436-4717-B6D3-E5B7C6E734A0}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{76300CD6-476E-4939-81D3-0BD632253E24}] => (Allow) E:\Program Files\Grand Theft Auto V\GTA5.exe
FirewallRules: [{34E70F5C-57C1-4E47-8FFB-5D10A95A1D3A}] => (Allow) E:\Program Files\Grand Theft Auto V\GTA5.exe
FirewallRules: [{F2CD9D06-5632-4EAC-9694-DF4525568CC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{C11D4439-942D-4345-B278-D1EC1DD1D5AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [TCP Query User{181AA7FB-F308-4CF1-8C05-3FD2CD2AEB10}C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{EF65F760-96C3-442B-BF17-691B4695CE15}C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{9CB9D3E6-325A-4090-B65A-F699E5FC3D51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{F765165A-B3E4-48D7-803D-E0C5252D00E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [TCP Query User{8DDCDE19-C454-43F3-9754-818083F9D2B4}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [UDP Query User{768F4D9F-8B86-40BD-A7FF-BCF4C00830FA}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{E614FE3B-0CA3-407E-818E-027A6F558201}] => (Allow) E:\Program Files\Grand Theft Auto V\GTA5.exe
FirewallRules: [{557C20DB-C1E3-4838-B447-E9C782EC97D9}] => (Allow) E:\Program Files\Grand Theft Auto V\GTA5.exe
FirewallRules: [TCP Query User{0E73FB61-CFF0-40EB-86A5-291E1325CDB0}E:\program files\sniper ghost warrior 3\win_x64\sgw3.exe] => (Allow) E:\program files\sniper ghost warrior 3\win_x64\sgw3.exe
FirewallRules: [UDP Query User{02DB3B07-95B1-4333-9E2D-68C13328EDC9}E:\program files\sniper ghost warrior 3\win_x64\sgw3.exe] => (Allow) E:\program files\sniper ghost warrior 3\win_x64\sgw3.exe
FirewallRules: [TCP Query User{FE030C2F-ED57-4F18-8049-EFB5B09CAAA0}E:\program files\sniper ghost warrior 3\win_x64\sgw3.exe] => (Allow) E:\program files\sniper ghost warrior 3\win_x64\sgw3.exe
FirewallRules: [UDP Query User{49EDE5E8-DC5E-429E-9352-F83E2A83CCEB}E:\program files\sniper ghost warrior 3\win_x64\sgw3.exe] => (Allow) E:\program files\sniper ghost warrior 3\win_x64\sgw3.exe
FirewallRules: [TCP Query User{47A621A2-79D0-4C01-B8DB-679ACA2AB5C1}C:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) C:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [UDP Query User{EE1BDEA0-44F9-47C9-9F5F-757C6B912955}C:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) C:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [TCP Query User{547D6601-72D9-48F6-A235-745F05CD0DDB}E:\hry\friday.the.13th.build.6363\summercamp\binaries\win64\summercamp.exe] => (Allow) E:\hry\friday.the.13th.build.6363\summercamp\binaries\win64\summercamp.exe
FirewallRules: [UDP Query User{BF1AC073-6BA1-4E66-A51A-6AA83CAF8BA6}E:\hry\friday.the.13th.build.6363\summercamp\binaries\win64\summercamp.exe] => (Allow) E:\hry\friday.the.13th.build.6363\summercamp\binaries\win64\summercamp.exe
FirewallRules: [{31865825-0C85-4885-AB61-8D50402039E7}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{5094398E-B249-4A98-9173-2888B8DDC6E2}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{6A8E8EEB-82AE-488C-8483-70B1C65BC8B2}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [{68A4175B-1558-437A-84D2-842E5C58A8EE}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{B46BD45C-B675-4806-AFC5-EEB8842EC25A}E:\hry\paint.the.town.red.v0.8.16\paint.the.town.red.v0.8.16\paintthetownred.exe] => (Allow) E:\hry\paint.the.town.red.v0.8.16\paint.the.town.red.v0.8.16\paintthetownred.exe
FirewallRules: [UDP Query User{DEB9703C-4587-474B-856C-E8D374B3304A}E:\hry\paint.the.town.red.v0.8.16\paint.the.town.red.v0.8.16\paintthetownred.exe] => (Allow) E:\hry\paint.the.town.red.v0.8.16\paint.the.town.red.v0.8.16\paintthetownred.exe
FirewallRules: [{AECB7DDB-9AE0-4AE9-8E59-C97174379D3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{01A38A34-9487-42CC-B22F-A13929473E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{FDF0ADE0-8FB8-441F-8765-9EA66AE2F300}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jotun\Jotun.exe
FirewallRules: [{84D30BE5-E49F-4BD1-8700-9FEADF957A49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Jotun\Jotun.exe

==================== Restore Points =========================

23-07-2017 13:34:12 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/25/2017 09:34:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/25/2017 09:32:29 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/24/2017 11:09:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: csgo.exe, verzia: 0.0.0.0, časová značka: 0x595ec8de
Názov chybujúceho modulu: tier0.dll, verzia: 0.0.0.0, časová značka: 0x595fd506
Kód výnimky: 0xc0000005
Odstup chyby: 0x00009251
Identifikácia chybujúceho procesu: 0x1af8
Čas spustenia chybujúcej aplikácie: 0x01d304c111afa005
Cesta chybujúcej aplikácie: E:\Program Files\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Cesta chybujúceho modulu: E:\Program Files\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\tier0.dll
Identifikácia hlásenia: 1d89560c-2d55-46cd-97a9-652412a83c7d
Celé meno chybujúceho balíka: 
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (07/24/2017 04:48:43 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/24/2017 04:48:21 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/24/2017 04:41:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: GameBarPresenceWriter.exe, verzia: 10.0.14393.0, časová značka: 0x57899bd6
Názov chybujúceho modulu: GameBarPresenceWriter.exe, verzia: 10.0.14393.0, časová značka: 0x57899bd6
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000000c7eb
Identifikácia chybujúceho procesu: 0x1f00
Čas spustenia chybujúcej aplikácie: 0x01d30482d8e17aed
Cesta chybujúcej aplikácie: C:\Windows\System32\GameBarPresenceWriter.exe
Cesta chybujúceho modulu: C:\Windows\System32\GameBarPresenceWriter.exe
Identifikácia hlásenia: c125e8b6-3b3f-4c07-b917-10c381735b46
Celé meno chybujúceho balíka: 
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (07/24/2017 03:09:44 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-76QUEVH)
Description: Aktivácia aplikácie Microsoft.SkypeApp_kzf8qxf38zg5c!ppleae38af2e007f4358a809ac99a64a67c1 zlyhala pre chybu: -2144927142 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (07/24/2017 08:35:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: rufus-2.15.exe, verzia: 2.15.1117.0, časová značka: 0x00000000
Názov chybujúceho modulu: rufus-2.15.exe, verzia: 2.15.1117.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x00017800
Identifikácia chybujúceho procesu: 0xb70
Čas spustenia chybujúcej aplikácie: 0x01d30446ffcee17b
Cesta chybujúcej aplikácie: C:\Users\marti\Downloads\rufus-2.15.exe
Cesta chybujúceho modulu: C:\Users\marti\Downloads\rufus-2.15.exe
Identifikácia hlásenia: c1a33f7b-014b-4637-817b-6fd2b466e9b8
Celé meno chybujúceho balíka: 
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (07/24/2017 07:24:37 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/24/2017 07:23:38 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (07/25/2017 09:25:20 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/25/2017 12:19:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/24/2017 11:07:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Steam Client Service zlyhalo kvôli nasledujúcej chybe: 
The service did not respond to the start or control request in a timely fashion.

Error: (07/24/2017 11:07:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Steam Client Service bol dosiahnutý časový limit (30000 ms).

Error: (07/24/2017 11:02:15 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/24/2017 10:54:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (07/24/2017 06:07:58 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a119\??\C:\PROGRAMDATA\MALWAREBYTES\MBAMSERVICE\S-1-5-21-3052804795-3073415928-1661174740-1001-07242017180756458-ntuser.dat

Error: (07/24/2017 05:58:17 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a119\??\C:\PROGRAMDATA\MALWAREBYTES\MBAMSERVICE\S-1-5-21-3052804795-3073415928-1661174740-1001-07242017175817310-ntuser.dat

Error: (07/24/2017 03:09:44 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-76QUEVH)
Description: The server App.AppX85gcbw533amccd2rr8qswxymhfj649t2.mca did not register with DCOM within the required timeout.

Error: (07/24/2017 03:07:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================
  Date: 2017-07-12 20:06:40.024
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.

  Date: 2017-07-10 09:34:26.172
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 27%
Total physical RAM: 8137.71 MB
Available physical RAM: 5937.58 MB
Total Virtual: 11081.71 MB
Available Virtual: 8569.52 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.6 GB) (Free:55.17 GB) NTFS
Drive d: () (Fixed) (Total:0.49 GB) (Free:0.14 GB) NTFS
Drive e: () (Fixed) (Total:931.41 GB) (Free:156.9 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 3FC5B496)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 9C4E6716)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================