Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-10-2017
Ran by marek (08-10-2017 23:28:22)
Running from C:\Users\marek\Desktop
Windows 10 Home Version 1703 170317-1834 (X64) (2017-09-13 11:30:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2885794422-1230078446-2694784508-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2885794422-1230078446-2694784508-503 - Limited - Disabled)
Guest (S-1-5-21-2885794422-1230078446-2694784508-501 - Limited - Disabled)
marek (S-1-5-21-2885794422-1230078446-2694784508-1001 - Administrator - Enabled) => C:\Users\marek

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Out of date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
7 Days to Die (HKLM\...\Steam App 251570) (Version:  - The Fun Pimps)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3029 - Acer Incorporated)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3007 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.02.3001 - Acer Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Aktualizácie NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 385.69 - NVIDIA Corporation) Hidden
ARK: Survival Evolved (HKLM\...\Steam App 346110) (Version:  - Studio Wildcard)
Asistent pri inovácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22175 - Microsoft Corporation)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.7.2314 - AVAST Software)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
Crusader Kings II (HKLM\...\Steam App 203770) (Version:  - Paradox Development Studio)
Discord (HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{68B3293E-612B-48B4-BC0F-4CCFBF83AB96}) (Version: 0.8.2.76 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.)
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.0.3 - IObit)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3015 - Acer Incorporated)
Fallout 4 (HKLM\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{b23c55fa-5271-4d64-ba8f-6718be55b9a7}) (Version: 10.1.1.33 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.5.1192 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1603.5 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{B294CE94-FE0F-4427-910C-180AF9FCFED1}) (Version: 1.0.1.620 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 7.0.2.49 - IObit)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
KB4023057 (HKLM\...\{ED06689A-33B7-4D35-8F76-36A82CD03406}) (Version: 2.3.0.0 - Microsoft Corporation)
Killer Bandwidth Control Filter Driver (HKLM\...\{5CDE4928-7F51-4E47-9117-6BD6A9EB6D2A}) (Version: 1.1.60.1145 - Rivet Networks) Hidden
Killer E240x Drivers (HKLM\...\{DEE86F6D-58A9-46DD-90FB-EBF1577EA5DF}) (Version: 1.1.60.1145 - Rivet Networks) Hidden
Killer Network Manager (HKLM\...\{892474A3-E05D-473C-B5F3-32C381786595}) (Version: 1.1.60.1145 - Rivet Networks) Hidden
Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.60.1145 - Rivet Networks)
Killer Wireless Drivers (HKLM-x32\...\{6EECB94D-BB2D-4B4C-8B79-429ACD2C04FF}) (Version: 1.1.60.1145 - Rivet Networks)
Killer Wireless-AC Drivers (HKLM\...\{BB348D35-B2C5-40CD-84C0-726E1586D841}) (Version: 1.1.60.1145 - Rivet Networks) Hidden
League of Legends (HKLM-x32\...\{6FEDADF5-40EC-4E18-A376-0FDBACE65338}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Malwarebytes verzia 3.2.2.2018 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes)
Microsoft Office 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.8431.2079 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA Grafický ovládač 385.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 385.69 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 385.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 385.69 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8431.2079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8431.2079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8431.2079 - Microsoft Corporation) Hidden
Opera Stable 48.0.2685.35 (HKLM-x32\...\Opera 48.0.2685.35) (Version: 48.0.2685.35 - Opera Software)
Ovládací panel NVIDIA 385.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 385.69 - NVIDIA Corporation) Hidden
PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 578080) (Version:  - Bluehole, Inc.)
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version:  - PokerStars.eu)
PredatorSense (HKLM-x32\...\{FEA5F263-29F7-4C53-B6EB-69F7B4D61C76}) (Version: 1.00.3010 - Acer Incorporated)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.256 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Rise of Nations: Extended Edition (HKLM\...\Steam App 287450) (Version:  - SkyBox Labs)
Rust (HKLM\...\Steam App 252490) (Version:  - Facepunch Studios)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Spotify Weblink (HKLM-x32\...\{8CADF0CB-E834-4019-9B11-B84E051F2A8E}) (Version: 1.16.1210 - Acer)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM\...\Steam App 20920) (Version:  - CD PROJEKT RED)
Thunderbolt(TM) Software (HKLM-x32\...\{FBD934F4-FC23-4044-8392-3551DC8D972F}) (Version: 16.1.47.275 - Intel Corporation)
ToneMaker 1 (HKLM-x32\...\BloodyToneMaker) (Version: 16.03.0001 - Bloody)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XSplit Gamecaster (HKLM-x32\...\{8915913F-E4AF-46C5-B4EF-3535D83BFFDE}) (Version: 2.5.1507.3018 - SplitmediaLabs)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-04] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-04] (AVAST Software)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-04] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-09-16] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-04] (AVAST Software)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0631CA6F-DAA6-4988-A0F0-E4B40DC633CC} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2016-06-25] ()
Task: {066BC356-032A-41BB-8E33-DF1282024F08} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-09-19] (NVIDIA Corporation)
Task: {068590B5-B137-4F3C-AD4B-135CB02A77A3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-09-19] (NVIDIA Corporation)
Task: {082438A2-563A-4FFA-AEA2-4AA46DCF3D68} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe
Task: {122EF721-BBCC-4B9E-9AF6-330A6FECF0AE} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [2015-05-14] ()
Task: {232FE173-D7C8-43DB-BC80-EE138779D80B} - System32\Tasks\CareCenter\RtHDVBg_Dolby_Reg_HKLMRun => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-10-07] (Realtek Semiconductor)
Task: {3339E873-5D1E-4C3F-A330-00E9B203BF7E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-09-19] (NVIDIA Corporation)
Task: {33C4DB18-4D8A-462C-BEAF-3BD7FD1A29E8} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\5.0.3\Scheduler.exe [2017-08-30] (IObit)
Task: {34492F71-BC45-40CA-B578-914F6A396242} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-09-08] (Microsoft Corporation)
Task: {4166CB0F-0F49-4597-A299-65AACACD34A9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-09-19] (NVIDIA Corporation)
Task: {440425BE-CA07-4DB1-99FD-01E1C0132DAD} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation)
Task: {45AA62FE-65BA-4C8A-AAB9-3CF9E4D748F8} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-10-04] (AVAST Software)
Task: {49939C84-CEEC-4DA8-B4EB-007AD6058276} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [2017-09-30] (Adobe Systems Incorporated)
Task: {4A59EFBF-26ED-443A-931B-11F8858D3782} - System32\Tasks\CareCenter\SecurityHealth_Reg_HKLMRun => C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18] (Microsoft Corporation)
Task: {547BA6B7-1779-49EA-BA80-9C1F80E5D017} - System32\Tasks\CareCenter\RTHDVCPL_Reg_HKLMRun => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-10-07] (Realtek Semiconductor)
Task: {57A0A155-E3C5-4955-AAFB-11BCFBA1FB6E} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {5EF305ED-6ADB-4A21-9E20-4FB0DA8E4100} - System32\Tasks\CareCenter\DAX2_APP_Reg_HKLMRun => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [2016-06-24] ()
Task: {60FAC9E0-9431-4853-A6AF-AA56C9E7B994} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2017-05-24] ()
Task: {625D9E0C-D788-4D07-9391-9F77BD7FFE50} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-26] ()
Task: {796F4A5E-A3B3-42ED-9B4A-B3BB9B5B21B8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-09-19] (NVIDIA Corporation)
Task: {7B1BD1D5-3137-4E61-BAB9-E119BC98F3B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-30] (Google Inc.)
Task: {7D1AD9C4-2394-4D64-93DD-9625D85C3180} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2016-06-25] (Acer Incorporated)
Task: {8C5576A3-69D7-49ED-BA7A-C4BDC778D737} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-26] ()
Task: {97EF8140-2C59-484E-B026-354E0D9E4CD2} - System32\Tasks\Driver Booster SkipUAC (marek) => C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe [2017-09-22] (IObit)
Task: {9AED816F-33C9-46B8-BB7C-7DE66B9515C3} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-03-13] (TODO: <Company name>)
Task: {9C446335-356C-4381-96A2-40772F8A1E95} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2016-07-29] (Acer Incorporated)
Task: {A07A27F8-0A6E-4687-982D-5202F66990E7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-30] (Google Inc.)
Task: {A1ED96C7-6F1F-431C-86C3-DD1F4F9D0958} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-09-08] (Microsoft Corporation)
Task: {AD323CCA-90C6-43AD-B165-1B3982B2B131} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-09-19] (NVIDIA Corporation)
Task: {AF54F5D4-7A65-4537-B532-4C21AC35B4E2} - System32\Tasks\PredatorSense => C:\Program Files (x86)\Acer\PredatorSense\PSLauncher.exe [2016-07-21] (Acer Incorporated)
Task: {B213E880-F417-43D9-8A9B-12B161D1821C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-09-19] (NVIDIA Corporation)
Task: {B3A854EA-EEA3-4CE8-81B8-2FB036FCB954} - System32\Tasks\Opera scheduled Autoupdate 1504081841 => C:\Program Files\Opera\launcher.exe [2017-10-02] (Opera Software)
Task: {B50A3D89-9312-4B60-98FE-A91666B8BA26} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => Thunderbolt.exe
Task: {C0FDD037-8B6B-4990-BE45-F33D2111AF7F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-09-19] (NVIDIA Corporation)
Task: {C9B48A66-3E62-4D01-B5E1-DBC01A7DCA77} - System32\Tasks\AmazonAssistantHelper => C:\ProgramData\OEM\Transactional\amazonx@hermes\AmazonX.exe [2017-08-02] ()
Task: {CFE8F0B2-BB08-439B-8938-DE05453E5F49} - System32\Tasks\KillerNetworkManager => C:\Windows\System32\cmd.exe cmd /c start /min C:"\Program Files\Killer Networking\Network Manager\NetworkManager.exe" -minimize
Task: {CFF37D11-44AA-4CC5-9F7F-ABCA1DEC0E2F} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [2017-05-24] ()
Task: {D3C03E20-71CC-464C-B213-9A0E82B400DA} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [2016-09-20] ()
Task: {E02049BB-F109-4DCF-8A78-D6760439F040} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => Thunderbolt.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2016-07-12 20:55 - 2016-07-12 20:55 - 001299952 _____ () C:\WINDOWS\system32\IntelSSTAPO\ParameterService\libxml2.dll
2017-09-13 13:06 - 2017-09-16 19:34 - 000133752 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-09-20 11:10 - 2017-09-19 09:23 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 22:59 - 2017-03-20 06:10 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-06-24 01:33 - 2016-06-24 01:33 - 000829632 _____ () C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
2017-09-13 18:45 - 2017-09-13 18:45 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-09-13 18:45 - 2017-09-13 18:45 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-09-13 18:45 - 2017-09-13 18:45 - 036162048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-09-13 18:45 - 2017-09-13 18:45 - 002237952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\skypert.dll
2017-09-14 15:27 - 2017-09-14 15:27 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.30.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 10:38 - 2017-10-05 10:38 - 010634752 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.30.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-10-05 10:38 - 2017-10-05 10:38 - 002640896 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.30.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 000021504 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-10-05 10:38 - 2017-10-05 10:39 - 048839168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 000164352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\VideoPlugin.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 000352256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 002836480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 020559872 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 002705408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 003128320 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-09-13 18:40 - 2017-09-13 18:40 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 000118784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\ExploreModel.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 001380864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-10-05 10:38 - 2017-10-05 10:39 - 000367616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AnimatedGIF.dll
2017-10-05 10:46 - 2017-10-05 10:46 - 091433560 _____ () C:\Program Files\Opera\48.0.2685.35\opera_browser.dll
2017-10-05 10:46 - 2017-10-05 10:46 - 004197464 _____ () C:\Program Files\Opera\48.0.2685.35\libglesv2.dll
2017-10-05 10:46 - 2017-10-05 10:46 - 000101464 _____ () C:\Program Files\Opera\48.0.2685.35\libegl.dll
2017-10-04 21:29 - 2017-10-04 21:29 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-10-04 21:29 - 2017-10-04 21:29 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-09-23 15:15 - 2017-09-23 15:15 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-10-04 21:29 - 2017-10-04 21:29 - 000217088 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-10-04 21:29 - 2017-10-04 21:29 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-10-04 21:29 - 2017-10-04 21:29 - 000234280 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-10-04 21:29 - 2017-10-04 21:29 - 000700656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-09-20 11:10 - 2017-09-19 09:23 - 069807552 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-09-20 11:10 - 2017-09-19 09:23 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-04-06 07:15 - 2016-04-06 07:15 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2015-10-30 09:21 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Acer01.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\...\StartupApproved\Run: => "BloodyToneMaker"
HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2885794422-1230078446-2694784508-1001\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{C254383F-5DC8-4104-8499-3538435624A7}C:\program files (x86)\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_144\bin\javaw.exe
FirewallRules: [TCP Query User{0A168E34-BF12-43C7-9A38-D29EF9B12BA8}C:\program files (x86)\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_144\bin\javaw.exe
FirewallRules: [{851763F9-3CBB-43A9-B8D1-7611434FC7AD}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{0F491EE6-DF19-4680-8004-C0BC6099C39E}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [UDP Query User{14FA569D-3690-43D5-8E02-6A8F48295AA8}D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [TCP Query User{F83A7B12-AA26-4682-B065-AB316860EBCC}D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [{5566355C-7BA9-4F42-A962-B836E4DF1C4E}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{46177FAC-EF73-4724-84E3-1D2F2860B987}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [UDP Query User{677D42EA-6F3E-4F2D-8940-C592322122D7}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{E5C7B81E-C7AB-4951-9651-584D33267886}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{CCBFDDCD-5301-49F7-80C1-3F587BE508C5}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{EFC1DA75-75EC-4861-A978-F45C6B67D9E0}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{718FC3F9-0067-4918-BCE0-592B3FFBC563}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{3A09C06E-E742-4727-80AC-631486C71EBA}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8EDC9909-7FC6-4360-AE67-73CA28706D7E}] => (Allow) D:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{CB28641C-7B37-4D3B-9C0A-5C105EB8766B}] => (Allow) D:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{41C4973E-BFC0-4276-91D7-661572D4DBFB}] => (Allow) D:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{9053AFC1-8CD1-43EC-A01F-82AA401BE706}] => (Allow) D:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{1BA40BE8-AE95-4E1A-93E9-B7DAEC0E920E}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0AB7E237-E3C3-4600-8B21-4F58E8C63226}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E4783C8B-56FA-4837-AEB3-89BCA4BA61F1}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{80FC5CF2-FF2D-41E0-9F87-8A109DA9A50A}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [UDP Query User{A54AA6F0-4AA3-47FC-BF95-AB4B4DE7EC8B}C:\program files (x86)\steam\steamapps\common\last man standing\lms\launcher.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\last man standing\lms\launcher.exe
FirewallRules: [TCP Query User{224069FD-EEA1-4EDE-95FD-BAB7DDD4CB87}C:\program files (x86)\steam\steamapps\common\last man standing\lms\launcher.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\last man standing\lms\launcher.exe
FirewallRules: [{B5A551E3-93CA-46BE-80B2-B3BC3284094F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2BC0C97A-C5D4-4B08-B1DE-59944D6C57DC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [UDP Query User{0C89AC15-05C7-461F-9050-5FBDC2144DF7}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [TCP Query User{C6169F34-B6E7-4EEC-8C9D-5BA9E0BDAC3A}C:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [UDP Query User{8B745221-615A-4675-86F4-39C65A1E9961}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{CEE2D0EF-E02D-47CF-8ADA-7768B20C2082}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{791A7AEB-33FB-4059-AE47-5C6A6E118F8F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{2730A35A-ABE9-4211-BBE4-844D15C58412}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{A169D99E-BEB7-4824-BD76-D3C0F1F80D51}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B3C998BE-1740-4173-9CAB-B6C34E95722B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D77EBA7E-A719-4E46-99DA-0199D23AB22F}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{CD67DB16-76BF-4FC2-BDB8-799AAA6EEDF9}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{4A019D16-1C0C-4CD2-A2A3-500252D52028}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{6FE401D1-5CD0-4063-B304-D455A014CC93}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{03FD1EF0-9D1A-4FD6-AC75-9CBA61841AAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{22FF7492-D6DA-4721-9862-5B582D43E41C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3ADD362A-BD55-4930-993A-52E14DBFCF2C}] => (Allow) C:\Users\marek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{35CD408E-8A19-4BA1-8F18-F858CEFD7BCB}] => (Allow) C:\Users\marek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{5F68574B-1184-4747-8BEE-32C587CE5267}D:\steam\steamapps\common\rise of nations\riseofnations.exe] => (Allow) D:\steam\steamapps\common\rise of nations\riseofnations.exe
FirewallRules: [UDP Query User{26A99565-073E-477A-9509-6AEE8E04572D}D:\steam\steamapps\common\rise of nations\riseofnations.exe] => (Allow) D:\steam\steamapps\common\rise of nations\riseofnations.exe
FirewallRules: [{7C1FFC4C-BFDA-4BC5-A7B8-3AD6353D263E}] => (Allow) C:\Program Files\Opera\48.0.2685.32\opera.exe
FirewallRules: [{369A7B45-BC13-4F14-A868-ED73EE4A7260}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{78CC2F47-D90A-4EC2-B52A-B006DDC91BD3}] => (Allow) C:\Program Files\Opera\48.0.2685.35\opera.exe
FirewallRules: [{5DA10901-7570-4B63-80B7-14020695AF08}] => (Allow) D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{A4C7F6FF-89E7-43FD-BF2B-425561411C9A}] => (Allow) D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{D5D31DEB-66BF-4653-9639-A404F97527B7}] => (Allow) D:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{560F02BB-8C1E-4FDC-B8FB-FF72596ED537}] => (Allow) D:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{C76DE815-C2B9-42A2-994B-552A0D652C3A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe
FirewallRules: [{0BC27AF5-A69C-4297-A6C8-0CF35E1E202E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe
FirewallRules: [{5142BDA9-AF05-45FF-A4D5-D012E5460682}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DBDownloader.exe
FirewallRules: [{8D4C1702-CD5F-420C-B1AB-C9F73ED2EA71}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DBDownloader.exe
FirewallRules: [{DF7434CF-4537-4D0E-B834-192B96ACC636}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\AutoUpdate.exe
FirewallRules: [{0A8A0921-680F-48B4-8D29-5609F8E29507}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\AutoUpdate.exe
FirewallRules: [{3D23120A-894A-4A6F-9B24-F6BEF266457E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

==================== Restore Points =========================

23-09-2017 19:34:03 IIF_MSI
01-10-2017 17:49:08 Scheduled Checkpoint
07-10-2017 22:13:23 Driver Booster : Qualcomm Atheros QCA61x4 Bluetooth 4.1

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/08/2017 10:22:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: riseofnations.exe, verzia: 0.2009.9.1500, časová značka: 0x59c59f03
Názov chybujúceho modulu: dssl.dll, verzia: 0.0.0.0, časová značka: 0x59c59e1e
Kód výnimky: 0xc0000005
Odstup chyby: 0x0001937f
Identifikácia chybujúceho procesu: 0x16f0
Čas spustenia chybujúcej aplikácie: 0x01d3405f10ab80c6
Cesta chybujúcej aplikácie: D:\Steam\steamapps\common\Rise of Nations\riseofnations.exe
Cesta chybujúceho modulu: D:\Steam\steamapps\common\Rise of Nations\dssl.dll
Identifikácia hlásenia: 0b546487-8d5c-43d4-9308-05f921b42921
Celé meno chybujúceho balíka: 
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (10/07/2017 10:43:04 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/07/2017 10:31:43 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/07/2017 10:20:08 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (10/07/2017 10:24:51 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (10/06/2017 07:38:48 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating  status to SECURITY_PRODUCT_STATE_EXPIRED.

Error: (10/06/2017 07:37:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: mbamservice.exe, verzia: 3.1.0.556, časová značka: 0x5988c3f1
Názov chybujúceho modulu: mbamservice.exe, verzia: 3.1.0.556, časová značka: 0x5988c3f1
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000001b6596
Identifikácia chybujúceho procesu: 0x3a3c
Čas spustenia chybujúcej aplikácie: 0x01d33ec9cbf27497
Cesta chybujúcej aplikácie: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
Cesta chybujúceho modulu: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
Identifikácia hlásenia: eaac7c98-1121-4b09-819d-7addd9fde01d
Celé meno chybujúceho balíka: 
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (10/06/2017 07:06:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: riseofnations.exe, verzia: 0.2009.9.1500, časová značka: 0x59c59f03
Názov chybujúceho modulu: riseofnations.exe, verzia: 0.2009.9.1500, časová značka: 0x59c59f03
Kód výnimky: 0xc0000005
Odstup chyby: 0x009ba688
Identifikácia chybujúceho procesu: 0x2bf8
Čas spustenia chybujúcej aplikácie: 0x01d33ebd1f3c9dcf
Cesta chybujúcej aplikácie: D:\Steam\steamapps\common\Rise of Nations\riseofnations.exe
Cesta chybujúceho modulu: D:\Steam\steamapps\common\Rise of Nations\riseofnations.exe
Identifikácia hlásenia: 58d7f666-c18f-46da-8d32-5dbabcfc1217
Celé meno chybujúceho balíka: 
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (10/05/2017 05:01:09 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CK2game.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 179c

Start Time: 01d33deaa6b6acac

Termination Time: 4

Application Path: D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe

Report Id: 1cb51ee8-c1fd-403f-a387-7f09405585ef

Faulting package full name: 

Faulting package-relative application ID:

Error: (10/05/2017 10:38:04 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.


System errors:
=============
Error: (10/08/2017 10:47:44 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:47:44 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:47:44 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:47:44 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:47:44 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:30:34 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:30:34 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:28:50 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:28:50 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/08/2017 10:28:50 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-I4NTEFF1)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
 and APPID 
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
 to the user LAPTOP-I4NTEFF1\marek SID (S-1-5-21-2885794422-1230078446-2694784508-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
Percentage of memory in use: 28%
Total physical RAM: 8144.78 MB
Available physical RAM: 5800.5 MB
Total Virtual: 14288.78 MB
Available Virtual: 10932.5 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:466.96 GB) (Free:382.44 GB) NTFS
Drive d: (Nový zväzok) (Fixed) (Total:463.43 GB) (Free:302.85 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 69661FFA)

Partition: GPT.

==================== End of Addition.txt ============================