Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by Martin (30-03-2018 14:56:25)
Running from C:\Users\Martin\Desktop
Windows 10 Pro Version 1709 16299.309 (X64) (2017-11-12 11:14:45)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-975700193-78450406-2685910375-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-975700193-78450406-2685910375-503 - Limited - Disabled)
Guest (S-1-5-21-975700193-78450406-2685910375-501 - Limited - Disabled)
Martin (S-1-5-21-975700193-78450406-2685910375-1001 - Administrator - Enabled) => C:\Users\Martin
WDAGUtilityAccount (S-1-5-21-975700193-78450406-2685910375-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: UPC Smart Guard by F-Secure (Enabled - Up to date) {35BE5FA4-2DEA-00F8-DC55-FD8AF743F44F}
AS: UPC Smart Guard by F-Secure (Enabled - Up to date) {8EDFBE40-0BD0-0F76-E6E5-C6F88CC4BEF2}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.00 beta (x64) (HKLM\...\7-Zip) (Version: 18.00 beta - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.13 - ASUSTeK Computer Inc.)
Aktualizácie NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden
Any Video Converter 6.2.1 (HKLM-x32\...\Any Video Converter) (Version: 6.2.1 - Anvsoft)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.33.1 - Asmedia Technology)
Asus Sonic Suite Plugins (HKLM-x32\...\{53eaa65b-5cab-459c-9642-a408bdcf43a3}) (Version: 2.1.3301 - ASUSTeKcomputer.Inc) Hidden
AutoHotkey 1.1.28.00 (HKLM\...\AutoHotkey) (Version: 1.1.28.00 - Lexikos)
Backup and Sync from Google (HKLM\...\{4B7277C7-9CEE-45FC-B36B-19AD28281B9C}) (Version: 3.40.8921.5350 - Google, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.53.31065 - Electronic Arts)
BlasterX Katana (HKLM-x32\...\{902D6CF0-2A6A-4808-AA8F-C857007648A5}) (Version: 1.00.20 - Creative Technology Limited)
BlasterX Katana Extras (HKLM-x32\...\{A2F3B463-22EB-43BC-850F-1961DDA8C5F3}) (Version: 1.0 - Creative Technology Limited)
CCleaner (HKLM\...\CCleaner) (Version: 5.41 - Piriform)
Computer Security 17.193.128.0 (release) (HKLM-x32\...\{658FDBCA-B7A1-43E4-A849-9F0812473331}) (Version: 17.193.128.0 - F-Secure Corporation) Hidden
Creative ASIO (USB) (HKLM-x32\...\Creative_ASIO(USB)) (Version: 1.03 - Creative Technology Limited)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-975700193-78450406-2685910375-1001\...\Discord) (Version: 0.0.300 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 390.77 - NVIDIA Corporation) Hidden
EXPERTool v10.6 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 10.6.0.1 - Gainward Co. Ltd.)
FFmpeg (Windows) for Audacity version 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
FIFA18 version 1.0 (HKLM\...\FIFA18_is1) (Version: 1.0 - STEAMPUNKS) <==== ATTENTION
FileZilla Client 3.30.0 (HKLM-x32\...\FileZilla Client) (Version: 3.30.0 - Tim Kosse)
F-Secure Network CCF 1.04.266 (HKLM-x32\...\{A61B6381-E40A-4C8C-BB38-FD9E95F70E02}) (Version: 1.04.266 - F-Secure Corporation) Hidden
F-Secure Ultralight 1.0.5438.0 (release) (cc0c4f981bd2f23d1e5e325af11ed0a0ecf2a348) (HKLM-x32\...\{C75644E8-5FB5-4B8F-8FD2-08CC5D7ECD87}) (Version: 1.0.5438.0 - F-Secure Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.181 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version:  - EFD Software)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
KeePass Password Safe 2.37 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.37 - Dominik Reichl)
K-Lite Codec Pack 13.7.5 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.7.5 - KLCP)
Kodi (HKU\S-1-5-21-975700193-78450406-2685910375-1001\...\Kodi) (Version:  - XBMC-Foundation)
Life is Strange Before the Storm (HKLM-x32\...\Life is Strange Before the Storm_is1) (Version:  - )
Manticore Gaming Keyboard (HKLM-x32\...\{0DAEFA4F-E394-4D1F-8F1A-6A2180561290}}_is1) (Version:  - )
Microsoft OneDrive (HKU\S-1-5-21-975700193-78450406-2685910375-1001\...\OneDriveSetup.exe) (Version: 18.044.0301.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MSI Afterburner 4.4.0 (HKLM-x32\...\Afterburner) (Version: 4.4.0 - MSI Co., LTD)
NahimicSettingsConfigurator (HKLM\...\{B9CE5642-0F22-4A75-B32A-98972F21C0C9}) (Version: 2.1.3301 - ASUSTeKcomputer.Inc) Hidden
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Grafický ovládač 390.77 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 390.77 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Online Safety 2.193.6279.13 (HKLM-x32\...\{978DBB21-6BBE-4F5F-B399-6BD9C3A04B9F}) (Version: 2.193.6279.13 - F-Secure Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.14.38647 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.0 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.18.115 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7899 - Realtek Semiconductor Corp.)
Sonic Radar II (HKLM\...\{2F0DFA4F-6A22-4627-9382-F98F0177BF50}) (Version: 2.1.3301 - ASUSTeKcomputer.Inc)
Sonic Studio Plugin (HKLM\...\{E6A187B7-0949-4AAE-BF6B-579FD3F6E55D}) (Version: 2.1.3301 - ASUSTeKcomputer.Inc) Hidden
Sound Blaster Connect (HKLM-x32\...\{12366BC5-9E77-45B9-B08D-B5AC82A098B0}) (Version: 1.03.14 - Creative Technology Limited)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.6.29796 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Subnautica (HKLM-x32\...\Subnautica_is1) (Version:  - )
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.1548 - TeamViewer)
UPC Smart Guard (HKLM-x32\...\{ABA4F20E-E0C1-40E9-9B98-3D369F6E27BD}) (Version: 2.93.175.0 - F-Secure Corporation) Hidden
UPC Smart Guard (HKLM-x32\...\F-Secure ServiceEnabler 45329) (Version: 2.93.175.0 - F-Secure Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 53.0 - Ubisoft)
vJoy Device Driver 2.1.8.38 (HKLM\...\{8E31F76F-74C3-47F1-9550-E041EEDC5FBB}_is1) (Version: 2.1.8.38 - Shaul Eizikovich)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
WhoCrashed 6.01 (HKLM\...\WhoCrashed_is1) (Version:  - Resplendence Software Projects Sp.)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wondershare Data Recovery(Build 6.5.1.5) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 6.5.1.5 - Wondershare Software Co.,Ltd.)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-10] (Igor Pavlov)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-10] (Igor Pavlov)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-10] (Igor Pavlov)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {042B91FB-012B-4AA3-B5F6-FCC10F29A0B7} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-12-20] ()
Task: {1D349EE0-8674-4254-A520-5A3DD23E814E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-03-06] (Piriform Ltd)
Task: {204EC157-04C0-41A8-A449-F59D1F584B8D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-03-14] (NVIDIA Corporation)
Task: {383C3994-E6E2-48FC-AB28-2563BEFF9ACC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-03-06] (Piriform Ltd)
Task: {3BA9DBEF-1D1C-4387-A6BB-A87093E2AAF2} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [2017-11-24] (TODO: <Company name>)
Task: {4E5A87C9-5C0E-46EA-A19B-4D01EF41EE8C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {7CC309AB-1C40-4E26-9565-BF9668837697} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2017-10-31] ()
Task: {8C068E30-D410-404E-AF42-4C62B7D3AA9A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-14] (NVIDIA Corporation)
Task: {8E95B093-FCE4-4EEF-86E2-56C15E46D177} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14] (NVIDIA Corporation)
Task: {8F371C9B-91D7-484C-A9F3-049810FEA2F3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-03-14] (NVIDIA Corporation)
Task: {8F5EBB59-53C3-4074-B148-629403523C49} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2017-09-21] (Intel(R) Corporation)
Task: {B290CA84-72D0-448B-92A7-B0F7A5F5B6B5} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-03-14] (NVIDIA Corporation)
Task: {B2E13FDB-AD7F-45E0-9022-D3F2CFFB2D70} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14] (NVIDIA Corporation)
Task: {C7846DFF-3EDE-4139-80D9-5014F6577628} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2018-01-04] (ASUSTeK Computer Inc.)
Task: {CE72BD90-88FB-4CEB-8C97-F28FDC165193} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-12] (Google Inc.)
Task: {E84EA525-0F02-4DFF-A092-12D22E64AEAB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-12] (Google Inc.)
Task: {F02570C5-67CD-4EE0-AE8D-611CEA8184A3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-03-14] (NVIDIA Corporation)
Task: {F21284A3-320C-469E-B80C-6F806F093078} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2017-11-24] ()
Task: {FA8ABA99-0906-448E-87AE-89F6F253D9B2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-14] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Martin\Desktop\OC\GPU_OC\Heaven Benchmark 4.0.lnk -> E:\Program Files (x86)\Unigine\Heaven Benchmark 4.0\heaven.bat (No File)
Shortcut: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\netlog.lnk -> C:\Users\Martin\Documents\Taskbar\Separator\netlog.bat ()

ShortcutWithArgument: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\GeForce Experience Stream Client.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=gjljknijpnfibppaijefibndmiabonep

==================== Loaded Modules (Whitelisted) ==============

2018-02-01 16:37 - 2018-03-24 03:19 - 000544192 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll
2017-11-12 15:37 - 2016-03-07 22:42 - 001360016 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2018-03-28 16:01 - 2018-03-28 16:01 - 000331744 _____ () C:\Program Files (x86)\UPC Smart Guard\apps\Ultralight\ulcore\1522233571\daas2_x64.dll
2018-02-01 16:32 - 2018-03-14 15:05 - 001267648 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-07-20 01:09 - 2017-07-20 01:09 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2018-03-28 16:01 - 2018-03-28 16:01 - 000319968 _____ () C:\Program Files (x86)\UPC Smart Guard\apps\Ultralight\ulcore\1522233571\senddump_fshoster_plugin64.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\Windows\SYSTEM32\inputhost.dll
2018-03-27 01:18 - 2018-03-14 15:04 - 000019904 _____ () c:\program files\nvidia corporation\nvstreamsrv\detoured.dll
2017-11-13 16:51 - 2017-11-24 09:48 - 001448408 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
2018-03-14 17:14 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-03-14 17:14 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-03-26 22:49 - 2018-03-26 22:49 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-03-26 22:49 - 2018-03-26 22:49 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-03-26 22:49 - 2018-03-26 22:49 - 022050304 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-03-26 22:49 - 2018-03-26 22:49 - 002584576 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\skypert.dll
2018-03-26 22:49 - 2018-03-26 22:49 - 000657408 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-03-23 15:55 - 2018-03-20 08:00 - 004435288 _____ () C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\libglesv2.dll
2018-03-23 15:55 - 2018-03-20 08:00 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\libegl.dll
2018-03-15 11:31 - 2018-03-15 11:31 - 046139776 _____ () C:\Program Files\Google\Drive\googledrivesync.exe
2018-03-30 14:50 - 2018-03-30 14:50 - 000113152 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\_ctypes.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000080896 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\bz2.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 001585152 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\_hashlib.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000128512 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32api.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000137728 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\pywintypes27.dll
2018-03-30 14:50 - 2018-03-30 14:50 - 000548864 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\pythoncom27.dll
2018-03-30 14:50 - 2018-03-30 14:50 - 000689664 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\unicodedata.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000438784 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32com.shell.shell.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 001489408 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\wx._core_.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 001007104 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\wx._gdi_.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 001039872 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\wx._windows_.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 001325056 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\wx._controls_.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000916992 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\wx._misc_.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 001084416 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\pysqlite2._sqlite.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000149504 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32file.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000136192 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32security.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000007680 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\hashobjs_ext.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000020992 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\thumbnails_ext.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000118784 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\usb_ext.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000047616 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\_socket.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 002224128 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\_ssl.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000014848 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\common.time34.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000023040 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32event.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000033280 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\windows.conditional.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000019968 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\windows.winwrap.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000107520 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\windows.volumes.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000223232 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32gui.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000173568 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\_elementtree.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000169472 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\pyexpat.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000048128 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32inet.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000103424 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\wx._html2.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000046080 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\_psutil_windows.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000633240 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\windows._cacheinvalidation.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 005408256 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\cello.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000010752 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\select.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000011776 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32crypt.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000301568 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\PIL._imaging.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000032256 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\_multiprocessing.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000026112 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\_yappi.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000044032 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32process.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000027648 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32pipe.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000029696 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32pdh.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000038400 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\windows.connectivity.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000071168 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\windows.device_monitor.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000020480 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32profile.pyd
2018-03-30 14:50 - 2018-03-30 14:50 - 000026624 _____ () C:\Users\Martin\AppData\Local\Temp\_MEI137442\win32ts.pyd
2017-07-29 04:45 - 2017-07-29 04:45 - 000298448 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2018-02-04 19:06 - 2017-12-05 03:25 - 000229848 _____ () C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\ASUS_WMI.dll
2018-02-04 19:05 - 2017-12-26 15:26 - 000081368 _____ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\ATKEX.dll
2018-02-04 19:05 - 2017-12-26 15:26 - 000229848 _____ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\ASUS_WMI.dll
2018-02-04 19:05 - 2018-03-29 23:09 - 000038672 _____ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\PEbiosinterface32.dll
2018-02-04 19:05 - 2017-12-26 15:26 - 000053248 _____ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\cpuutil.dll
2017-09-25 14:28 - 2017-09-25 14:28 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2018-02-01 16:32 - 2018-03-14 15:05 - 001041344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-11-13 16:51 - 2017-10-29 20:15 - 000147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2017-11-13 16:51 - 2017-10-29 20:14 - 000838456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Version\Version.dll
2017-11-13 16:51 - 2018-01-05 16:59 - 004841944 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2018-02-04 19:06 - 2017-11-27 11:57 - 000062464 _____ () C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Exeio.dll
2018-02-04 19:06 - 2017-11-27 11:57 - 001772544 _____ () C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Vender.dll
2017-11-13 16:51 - 2017-11-23 00:39 - 000669144 _____ () C:\Program Files (x86)\ASUS\AI Suite III\aaHMLib.dll
2017-11-13 16:51 - 2017-11-24 09:48 - 000323544 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4cTDPAction.dll
2017-11-13 16:51 - 2017-11-24 09:48 - 000882136 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2017-11-13 16:51 - 2017-11-24 09:48 - 000971224 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2017-11-13 16:51 - 2017-11-24 09:48 - 000940504 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2017-11-13 16:51 - 2017-12-11 17:26 - 000911832 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2018-02-06 05:52 - 2018-02-06 05:52 - 000143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2018-03-27 01:18 - 2018-03-14 15:05 - 000019904 _____ () c:\program files (x86)\nvidia corporation\nvstreamsrv\detoured.dll
2017-11-12 17:02 - 2013-01-15 18:06 - 000061952 _____ () C:\Program Files (x86)\Genius\Manticore\HidDevice.dll
2017-11-12 17:02 - 2011-10-11 18:32 - 000054784 _____ () C:\Program Files (x86)\Genius\Manticore\KBHook1.dll
2017-11-12 16:10 - 2017-04-13 19:58 - 050656768 _____ () C:\Users\Martin\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2017-11-12 16:10 - 2017-04-13 19:58 - 001874944 _____ () C:\Users\Martin\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2017-11-12 16:10 - 2017-04-13 19:58 - 000075264 _____ () C:\Users\Martin\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2018-02-01 16:32 - 2018-03-14 15:04 - 081563584 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-03-10 14:01 - 2018-03-14 15:04 - 002478016 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-03-10 14:01 - 2018-03-14 15:04 - 000125376 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Martin\AppData\Local\Temp:$DATA​ [16]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-975700193-78450406-2685910375-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Martin\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\pinky_night-2560x1600.jpg
DNS Servers: 217.23.254.124 - 217.23.254.125
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "KeePass 2 PreLoad"
HKU\S-1-5-21-975700193-78450406-2685910375-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-975700193-78450406-2685910375-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-975700193-78450406-2685910375-1001\...\StartupApproved\Run: => "TBPanel"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{0B40686D-B8E8-4582-BA98-65586DA8CBD3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5193FEBC-D872-4A73-B9D6-72F6A1F12111}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{59501C68-C089-4940-8ACE-1ED93260B221}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B26DD1D0-5482-45BA-8004-40E924EE6E71}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{827297EB-FA08-453B-BE39-098CDCCCBD1F}C:\users\martin\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\martin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{2DFF3C04-976E-4968-830C-AA3B668002D6}C:\users\martin\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\martin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{CD49C3DB-4BF0-4C26-84D7-53BDECD09091}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{84E5C0A6-5406-44AF-A7F7-FCB51FB0DF9C}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{E7E527CF-59F7-465E-9023-7282B4D2F920}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
FirewallRules: [{167D4343-5F97-4F26-B72A-3756EDD2C70C}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
FirewallRules: [TCP Query User{C76CF47F-8C34-45C9-8F8A-C3E997629D4C}E:\program files (x86)\steam\steamapps\common\astroneer early access\astro\binaries\win64\astro-win64-shipping.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\astroneer early access\astro\binaries\win64\astro-win64-shipping.exe
FirewallRules: [UDP Query User{8154943F-B357-4907-9F95-BCA3553F8E24}E:\program files (x86)\steam\steamapps\common\astroneer early access\astro\binaries\win64\astro-win64-shipping.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\astroneer early access\astro\binaries\win64\astro-win64-shipping.exe
FirewallRules: [TCP Query User{5E72D886-9C1D-433F-B455-9068BFC18098}S:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) S:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{E7FCD0CA-7333-42F5-AE5D-B9886F00B5C8}S:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) S:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{EF7CE4C6-4042-4A14-BA95-DF80C5F01DEB}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{62F61B6F-6A74-46E1-BA57-C8AE60C778E8}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{142E8F3E-1CB1-49B0-94B8-5F37CD101E91}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\StickFightTheGame\StickFight.exe
FirewallRules: [{B6664376-B5F1-4C5E-AB73-5ADE12C703F2}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\StickFightTheGame\StickFight.exe
FirewallRules: [{1408A649-3266-4804-AA63-7D23BFE8210B}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{4DE02387-9CDD-454A-9274-6E482E784673}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{59F4A06E-34F4-47BF-B2C2-5B8256591420}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Human Fall Flat\Human.exe
FirewallRules: [{124B3EFA-B656-47C5-A74F-3D6A9F33ABCF}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Human Fall Flat\Human.exe
FirewallRules: [{B6B7621C-EDBA-43BC-93CF-ED7DEF443D82}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\QuantumBreak\dx11\QuantumBreak.exe
FirewallRules: [{7DE4A82C-629B-46C9-BF5A-5F71308AE03A}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\QuantumBreak\dx11\QuantumBreak.exe
FirewallRules: [TCP Query User{42648393-7224-4A0E-B51C-CFDB7A1C5A47}E:\program files (x86)\life is strange before the storm\life is strange - before the storm.exe] => (Allow) E:\program files (x86)\life is strange before the storm\life is strange - before the storm.exe
FirewallRules: [UDP Query User{5D3DA9E7-92CE-48E9-A1CA-110D71D97FCF}E:\program files (x86)\life is strange before the storm\life is strange - before the storm.exe] => (Allow) E:\program files (x86)\life is strange before the storm\life is strange - before the storm.exe
FirewallRules: [{BEC15512-21FF-430A-A9E7-26A10F4E1D6E}] => (Allow) E:\Program Files (x86)\Ubisoft Game Launcher\games\Tom Clancy's Ghost Recon Wildlands\GRW.exe
FirewallRules: [{FF853A95-8034-49FA-BE54-DFC51A087178}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Gang Beasts\Gang Beasts.exe
FirewallRules: [{7FE2B900-1864-473E-9C9E-622EC5A22A7E}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Gang Beasts\Gang Beasts.exe
FirewallRules: [{6556EC8B-9B13-4C50-B573-76DBD09C7DA1}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{CED3CDF3-03F1-491F-9E67-E905C9EF2F82}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{9E658D5F-995F-4513-B1CF-6CFFA582939D}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Gang Beasts Server\Wrapper.exe
FirewallRules: [{10CD4FFD-F5F9-41A1-8C6B-42D4268E95CB}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Gang Beasts Server\Wrapper.exe
FirewallRules: [TCP Query User{0FD7687B-A217-45ED-9072-03A61ECB1F87}S:\program files (x86)\steam\steamapps\common\gang beasts server\game\gangbeasts.exe] => (Allow) S:\program files (x86)\steam\steamapps\common\gang beasts server\game\gangbeasts.exe
FirewallRules: [UDP Query User{29E21861-F3BB-4078-B772-DC09CCE33A83}S:\program files (x86)\steam\steamapps\common\gang beasts server\game\gangbeasts.exe] => (Allow) S:\program files (x86)\steam\steamapps\common\gang beasts server\game\gangbeasts.exe
FirewallRules: [TCP Query User{F98AA8DC-DB9D-419C-8498-4A3160CE0388}C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe
FirewallRules: [UDP Query User{25C2357A-F9BE-4325-98BA-77EAA45A2DBB}C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_161\bin\javaw.exe
FirewallRules: [{F2CF9BF9-75CF-4B89-ABAE-5C1723DB5F26}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C47B3C67-352E-4D43-81B5-6746BBB6CFBC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [TCP Query User{D27DD66D-9F2A-482A-8A9C-4BBD2E389092}E:\program files (x86)\subnautica\subnautica.exe] => (Allow) E:\program files (x86)\subnautica\subnautica.exe
FirewallRules: [UDP Query User{ADCE4F78-919E-460C-9622-3F389407B410}E:\program files (x86)\subnautica\subnautica.exe] => (Allow) E:\program files (x86)\subnautica\subnautica.exe
FirewallRules: [{0693439D-54B4-42EC-A244-36A695812AC0}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{2B73443E-8B8B-4E31-994C-55E5EC1F129A}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{48A37751-7384-415B-BD9F-E7BB8D74CF79}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Hand Simulator\Hand Simulator.exe
FirewallRules: [{A228A73B-13C8-4484-B754-A0E64B154799}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Hand Simulator\Hand Simulator.exe
FirewallRules: [{FA4B4750-059E-491F-A80C-9966B40A972C}] => (Allow) E:\Program Files (x86)\Origin\Battlefield 1\bf1Trial.exe
FirewallRules: [{383DB71E-AFAA-4B53-A53E-D4A836EA3BBD}] => (Allow) E:\Program Files (x86)\Origin\Battlefield 1\bf1Trial.exe
FirewallRules: [{FD1D591D-C0A4-4919-B7D9-75C8EDC25FC6}] => (Allow) E:\Program Files (x86)\Origin\Battlefield 1\bf1.exe
FirewallRules: [{6318664D-5F0F-4823-8B38-329A3D74F54E}] => (Allow) E:\Program Files (x86)\Origin\Battlefield 1\bf1.exe
FirewallRules: [{7E9EB6D3-7C16-4FE2-BCED-ED7A88894BB6}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe
FirewallRules: [{E3007ED0-0031-4C0E-AD6C-B2C38175D74A}] => (Allow) S:\Program Files (x86)\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe
FirewallRules: [{E73C28AB-9817-452F-814E-F696A7570991}] => (Allow) E:\Program Files (x86)\Assassin's Creed Origins\ACOrigins.exe
FirewallRules: [{0FB75F9E-F56E-4D86-9A46-2045CFC64567}] => (Allow) E:\Program Files (x86)\Assassin's Creed Origins\ACOrigins.exe
FirewallRules: [{C56BD321-8244-4273-8D7F-7AFB1A6899CD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E99878DD-961F-41FB-9344-5E412FE576CA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F2141843-9BB5-437E-B796-0A4B3F692325}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{29E93F69-0838-4AE4-99D8-831A2E28B8C5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6F925990-F067-4729-ACF7-3A3926BCD66D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C5C699DF-351C-4DDD-8232-0F65BFB4627B}] => (Allow) E:\Program Files (x86)\Origin\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe
FirewallRules: [{41D777FF-1DC8-4D93-AF6A-96D1EA5637F4}] => (Allow) E:\Program Files (x86)\Origin\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe
FirewallRules: [{1709D3FE-1D28-4473-9498-05ACAAF93F47}] => (Allow) E:\Program Files (x86)\Origin\STAR WARS Battlefront II\starwarsbattlefrontii.exe
FirewallRules: [{51C52FB3-C740-47BD-8541-4652A472D048}] => (Allow) E:\Program Files (x86)\Origin\STAR WARS Battlefront II\starwarsbattlefrontii.exe
FirewallRules: [{B9496CC5-3846-4ED1-BE2A-A59D130D174B}] => (Allow) S:\Program Files (x86)\Far Cry 5\bin\FarCry5.exe
FirewallRules: [{052ACCC6-B653-4FB0-BD52-4A54FC7C4B5D}] => (Allow) S:\Program Files (x86)\Far Cry 5\bin\ArcadeEditor64.exe
FirewallRules: [{B4420E83-5D0E-4E1A-B005-7935FBAE38FB}] => (Allow) S:\Program Files (x86)\Far Cry 5\bin\FarCry5.exe
FirewallRules: [{F4B3E302-4C66-469C-8BD4-3EBA22FF3FA9}] => (Allow) S:\Program Files (x86)\Far Cry 5\bin\ArcadeEditor64.exe
FirewallRules: [{612D0FC4-41AB-4DC6-9699-8AAEABC3DE6E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B7CF5EDF-2DDB-4823-A0FA-38F0DB72ADA4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{3CF7F9B2-7DD4-4B9C-B22C-EF169F98F0D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C2766631-8DA9-42DD-B370-4694FC51EDF4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/28/2018 02:59:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program ACOrigins.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 279c

Start Time: 01d3c62feb59d534

Termination Time: 4294967295

Application Path: E:\Program Files (x86)\Assassin's Creed Origins\ACOrigins.exe

Report Id: 68ddd3c4-c1fb-4bee-a312-085556602b98

Faulting package full name: 

Faulting package-relative application ID:

Error: (03/28/2018 02:52:49 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CCleaner64.exe version 5.41.129.6446 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 3cf8

Start Time: 01d3c62ea8f95609

Termination Time: 17

Application Path: C:\Program Files\CCleaner\CCleaner64.exe

Report Id: 2f6bfd45-6589-4743-97f7-b127e941cff7

Faulting package full name: 

Faulting package-relative application ID:

Error: (03/26/2018 01:08:57 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\Windows\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (03/26/2018 01:08:57 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (03/26/2018 01:08:57 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\Windows\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (03/26/2018 01:08:57 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (03/26/2018 01:08:57 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "ESENT" in DLL "C:\Windows\system32\esentprf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (03/25/2018 11:41:46 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\Windows\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.


System errors:
=============
Error: (03/30/2018 02:50:27 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4VNN740)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-4VNN740\Martin SID (S-1-5-21-975700193-78450406-2685910375-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (03/30/2018 02:50:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (03/30/2018 02:50:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (03/30/2018 02:50:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (03/30/2018 02:50:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (03/30/2018 04:42:44 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4VNN740)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-4VNN740\Martin SID (S-1-5-21-975700193-78450406-2685910375-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (03/29/2018 11:45:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{0358B920-0AC7-461F-98F4-58E32CD89148}
 and APPID 
{3EB3C877-1F16-487C-9050-104DBCD66683}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (03/29/2018 11:45:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{0358B920-0AC7-461F-98F4-58E32CD89148}
 and APPID 
{3EB3C877-1F16-487C-9050-104DBCD66683}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================

Date: 2018-03-23 15:45:06.013
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-23 15:31:08.474
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-23 15:31:06.874
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-23 15:26:09.500
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-23 15:21:50.961
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-23 15:17:49.591
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-23 15:11:57.901
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-03-22 20:13:48.985
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume9\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
Percentage of memory in use: 27%
Total physical RAM: 16324.12 MB
Available physical RAM: 11766.57 MB
Total Virtual: 19524.12 MB
Available Virtual: 14112.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:118.64 GB) (Free:63.13 GB) NTFS
Drive d: () (Fixed) (Total:931.41 GB) (Free:423.52 GB) NTFS
Drive e: (Lokálny disk) (Fixed) (Total:2794.39 GB) (Free:1972.32 GB) NTFS
Drive s: () (Fixed) (Total:119.14 GB) (Free:24.56 GB) NTFS

\\?\Volume{cfcf1745-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{abb7c76a-ec6e-43f3-97cf-b0968c96dc1c}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.14 GB) NTFS
\\?\Volume{3dfc92f8-63dc-4c13-8e3d-5d825b258b34}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: F53F79B2)
Partition 1: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: CFCF1745)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 119.2 GB) (Disk ID: 03909720)

Partition: GPT.

==================== End of Addition.txt ============================