Zavirované NTB, výkon

[DennyS]

Dobrý den, v poslední době jsem zaznamenal drop výkonu u grafických aplikací. Spíše to, jinak systém běží celkem hladce. Po restartu počítače se mi zdá, že je to trocchu hořsí, než před čištěním AdwCleanerem... Procesor lítá celkem vysoko a nevím, čím to je, jelikož před čištěním to tak nebylo.... hodně tam lítá hostitěl služby místní systém... na startu windows store. Ale svchost má asi 10-20% na procesoru. Teď asi 5%, ale před chvílí asi 20% a 19MB na disku o.o
ZDE je log AdwCleaneru:
# AdwCleaner v6.020 - Logfile created 23/09/2016 at 15:17:04
# Updated on 14/09/2016 by ToolsLib
# Database : 2016-09-22.1 [Server]
# Operating System : Windows 8.1 (X64)
# Username : Z50 - LENOVO
# Running from : C:\Users\Z50\Desktop\adwcleaner_6.020.exe
# Mode: Clean
# Support : https://toolslib.net/forum



***** [ Services ] *****

[-] Service deleted: Amazon 1Button App Service


***** [ Folders ] *****

[-] Folder deleted: C:\Users\Z50\AppData\Local\pokki
[#] Folder deleted on reboot: C:\Users\Z50\AppData\Local\Pokki
[-] Folder deleted: C:\ProgramData\pokki
[#] Folder deleted on reboot: C:\ProgramData\Pokki
[#] Folder deleted on reboot: C:\ProgramData\Application Data\pokki
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Pokki
[-] Folder deleted: C:\Program Files (x86)\Amazon\Amazon1ButtonApp
[-] Folder deleted: C:\Users\Default User\AppData\Local\Pokki
[#] Folder deleted on reboot: C:\Users\Default\AppData\Local\Pokki


***** [ Files ] *****

[-] File deleted: C:\Users\Z50\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_04bb6df446330549a2cb8d67fbd1a745025b7bd1
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
[-] Key deleted: HKLM\SOFTWARE\Classes\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO
[-] Key deleted: HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
[-] Key deleted: HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
[-] Key deleted: HKLM\SOFTWARE\Classes\AmazonAppIE.AppGateway
[-] Key deleted: HKLM\SOFTWARE\Classes\AmazonAppIE.GadgetGateway
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\Amazon1ButtonBrowserHelper.Amazon1ButtonBHO
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.Amazon1ButtonRuntime
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\Amazon1ButtonRuntime.AmazonRuntimeServer
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\AmazonAppIE.AppGateway
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\AmazonAppIE.GadgetGateway
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{7F46C358-270D-4791-A579-AD1DDA1A3F7B}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{BAC72C85-CEC6-4B86-AF06-FA20C259FAB8}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{6557DB6C-EFE1-45AC-92A6-FBB1554B7502}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{EB2BEAEF-150C-4DE4-9D09-F16403C22769}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
[-] Key deleted: HKU\S-1-5-21-208506790-100804975-3699006410-1002\Software\distromatic
[-] Key deleted: HKU\S-1-5-21-208506790-100804975-3699006410-1002\Software\Pokki
[-] Key deleted: HKU\S-1-5-21-208506790-100804975-3699006410-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
[#] Key deleted on reboot: HKCU\Software\distromatic
[#] Key deleted on reboot: HKCU\Software\Pokki
[#] Key deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B6DCCCD3-520D-4485-B642-FCC136CE12C3}
[#] Key deleted on reboot: [x64] HKCU\Software\distromatic
[#] Key deleted on reboot: [x64] HKCU\Software\Pokki
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
[-] Key deleted: HKLM\SOFTWARE\Classes\Installer\Features\3DCCCD6BD02558446B24CF1C63EC213C
[-] Key deleted: HKLM\SOFTWARE\Classes\Installer\Products\3DCCCD6BD02558446B24CF1C63EC213C
[-] Key deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DCCCD6BD02558446B24CF1C63EC213C
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3DCCCD6BD02558446B24CF1C63EC213C
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\Installer\Features\3DCCCD6BD02558446B24CF1C63EC213C
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\Installer\Products\3DCCCD6BD02558446B24CF1C63EC213C
[-] Data restored: HKU\S-1-5-21-208506790-100804975-3699006410-1002\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
[-] Data restored: HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
[-] Data restored: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
[-] Value deleted: HKU\S-1-5-21-208506790-100804975-3699006410-1002\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
[-] Value deleted: HKU\S-1-5-21-208506790-100804975-3699006410-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
[#] Value deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
[#] Value deleted on reboot: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
[-] Key deleted: HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Key deleted: HKCU\Software\Classes\Directory\shell\pokki
[-] Key deleted: HKCU\Software\Classes\Drive\shell\pokki
[-] Key deleted: HKCU\Software\Classes\lnkfile\shell\pokki


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [5597 Bytes] - [23/09/2016 15:17:04]
C:\AdwCleaner\AdwCleaner[S0].txt - [5504 Bytes] - [23/09/2016 15:12:33]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5743 Bytes] ##########

[Márty84]

Zdravim

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach
(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

[DennyS]

Zdravim

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach
(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

Projel jsem celý systém s FRST. když se poprvé objevil poznámkový blog, napsalo to přístup odepřen, pak už to udělalo log v pohodě (scan ani nebyl dokončený při tomto erroru) (Bez Názvu - Přístup odepřen , to je ten error co mi to hodilo při scanu)

Jinak zde dávám log:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-09-2016
Ran by Z50 (23-09-2016 16:36:57)
Running from C:\Users\Z50\Desktop
Windows 8.1 (Update) (X64) (2016-07-22 13:42:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-208506790-100804975-3699006410-500 - Administrator - Disabled)
Guest (S-1-5-21-208506790-100804975-3699006410-501 - Limited - Disabled)
Z50 (S-1-5-21-208506790-100804975-3699006410-1002 - Administrator - Enabled) => C:\Users\Z50

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{F91A288E-425B-414B-0721-A89D220DF50D}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Application Insights Tools for Visual Studio 2015 (x32 Version: 3.3 - Microsoft Corporation) Hidden
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.21 - Piriform)
CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.0.3.4 - Lenovo)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.50 - Conexant)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden
Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.5.0.17 - Lenovo)
Energy Manager (x32 Version: 1.5.0.17 - Lenovo) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FileZilla Client 3.21.0 (HKU\S-1-5-21-208506790-100804975-3699006410-1002\...\FileZilla Client) (Version: 3.21.0 - Tim Kosse)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.6.129.1 - Intel Security)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java SE Development Kit 8 Update 101 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180101}) (Version: 8.0.1010.13 - Oracle Corporation)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10260 - Realtek Semiconductor Corp.)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 1.1.12.0 - Lenovo)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo)
Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.1.0.2619 - CyberLink Corp.) Hidden
Lenovo PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.2.0.2 - Lenovo)
Lenovo PhoneCompanion (x32 Version: 1.2.0.2 - Lenovo) Hidden
Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.1823.01 - CyberLink Corp.)
Lenovo Photo Master (x32 Version: 1.0.1823.01 - CyberLink Corp.) Hidden
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.44.3 - ELAN Microelectronic Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.5630.52 - CyberLink Corp.) Hidden
Lenovo Updates (HKLM-x32\...\InstallShield_{A2E1E9F0-0B68-4166-8C7F-85B563B84DF4}) (Version: 1.0.0.65 - Lenovo)
Lenovo Updates (x32 Version: 1.0.0.65 - Lenovo) Hidden
Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.1.14.3211 - Lenovo)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.2.2000 - Maxthon International Limited)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4641.3004 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio 2015 Tools for Unity (HKLM-x32\...\{5359C5C6-F83D-4E74-9170-F9A68BE1C57F}) (Version: 2.3.0.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 48.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 cs)) (Version: 48.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla)
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
NetBeans IDE 8.1 (HKLM\...\nbi-nb-base-8.1.0.0.201510222201) (Version: 8.1 - NetBeans.org)
OEM Application Profile (HKLM-x32\...\{1D464EFF-EC8B-F225-2F74-F74143200DDF}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.1.2 - Lenovo)
Opera Stable 39.0.2256.48 (HKLM-x32\...\Opera 39.0.2256.48) (Version: 39.0.2256.48 - Opera Software)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.805.806.012214 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39058 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.20.243 - REALTEK Semiconductor Corp.)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.8.0 - Lenovo Group Limited)
StarBreak (HKLM\...\Steam App 420790) (Version: - Crunchy Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Explorer for Microsoft Visual Studio 2015 Update 3 CTP1 (x32 Version: 14.98.25331 - Microsoft) Hidden
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.2.7 - Lenovo)
Unity Web Player (HKU\S-1-5-21-208506790-100804975-3699006410-1002\...\UnityWebPlayer) (Version: 5.3.6f1 - Unity Technologies ApS)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
User Manuals (x32 Version: 3.0.0.3 - Lenovo) Hidden
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Windows Driver Package - Lenovo (ACPIVPC) System (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02BF0CE2-8B61-43E1-9E9D-B1A795B41816} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-10] (Google Inc.)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {12C0D7CF-2470-440A-BBBE-7464C77EBC2C} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {12CB5EEE-49F9-4623-9E72-5D1A75162966} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-09] (CyberLink Corp.)
Task: {19F60028-F737-49E3-94DC-B4E755241096} - System32\Tasks\Opera scheduled Autoupdate 1472295692 => C:\Program Files (x86)\Opera\launcher.exe [2016-08-03] (Opera Software)
Task: {4778097B-4158-43DD-9ABA-8FC9C1C11842} - System32\Tasks\{AC3620E5-E1F2-4294-8FD2-DD1D62ED4F23} => pcalua.exe -a "C:\Users\Z50\Desktop\Gta san andreas\GTA_SA.exe" -d "C:\Users\Z50\Desktop\Gta san andreas"
Task: {6043F6EE-7976-404C-8F9A-94DB505A46E2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-10] (Google Inc.)
Task: {7A1C5A36-1062-463F-A02E-D8FB9B0AB190} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-08-19] (Lenovo)
Task: {880BFF14-FDE5-4D56-AC02-4E2FC5B2F415} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2016-07-22] (Lenovo)
Task: {8B93BF1D-9FE7-4C23-9C36-F499851118E3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-05] (Piriform Ltd)
Task: {931BF95B-C0BE-4C9D-9FA0-03385A76136B} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] ()
Task: {BC77A295-BF08-47DF-9CF8-243999DCF578} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [2014-09-11] (Maxthon International ltd.)
Task: {CC4BF8E8-F201-491B-AFFD-18B5EA2EF87B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {D2565793-A626-4FD3-8428-96F5AFB10128} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-14] (Adobe Systems Incorporated)
Task: {D80845B6-C79E-4954-82A3-9A63353855C7} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_162_pepper.exe [2016-09-14] (Adobe Systems Incorporated)
Task: {DF4C9D52-E7A7-4766-A193-212B618F753C} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation)
Task: {EB075E55-AD5C-4107-ADAB-146BB86251E6} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-01] (McAfee, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_162_pepper.exe
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2014-07-17 17:54 - 2014-07-17 17:54 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-03-17 20:02 - 2014-01-22 23:04 - 00084992 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2015-03-17 20:56 - 2012-04-24 12:43 - 00390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-03-17 20:51 - 2015-03-17 20:51 - 00068880 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
2015-03-17 20:51 - 2015-03-17 20:51 - 00672016 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfDataStorageInterface.dll
2016-08-23 15:05 - 2016-08-23 15:05 - 00052400 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2015-03-17 19:59 - 2010-10-26 06:40 - 00049056 _____ () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2014-03-26 21:50 - 2015-03-17 21:06 - 00058864 _____ () C:\Program Files (x86)\Lenovo\Energy Manager\kbdhook.dll
2015-03-17 20:49 - 2014-07-10 02:19 - 00592880 _____ () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
2015-03-17 21:01 - 2015-03-17 21:00 - 00815104 _____ () C:\Program Files\Lenovo PhoneCompanion\adb.exe
2016-09-05 19:48 - 2016-08-09 01:27 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-09-05 19:48 - 2015-07-02 00:06 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-09-05 19:48 - 2016-08-23 21:33 - 02321184 _____ () C:\Program Files (x86)\Steam\video.dll
2016-09-05 19:48 - 2015-07-02 00:06 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-09-05 19:48 - 2015-07-02 00:06 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-09-05 19:48 - 2016-01-27 09:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-09-05 19:48 - 2016-01-27 09:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-09-05 19:48 - 2016-01-27 09:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-09-05 19:48 - 2016-01-27 09:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-09-05 19:48 - 2016-01-27 09:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-09-05 19:48 - 2016-08-23 21:33 - 00835360 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-09-05 19:48 - 2016-07-05 00:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-09-05 19:48 - 2016-08-23 21:33 - 04388640 _____ () C:\Program Files (x86)\Steam\bin\panorama\panorama.dll
2016-09-05 19:48 - 2016-08-23 21:33 - 00145696 _____ () C:\Program Files (x86)\Steam\bin\audio.dll
2016-09-05 19:48 - 2014-04-09 06:25 - 00071680 _____ () C:\Program Files (x86)\Steam\bin\mssmp3.asi
2016-09-05 19:48 - 2014-04-09 06:25 - 00153088 _____ () C:\Program Files (x86)\Steam\bin\mssvoice.asi
2016-09-05 19:48 - 2016-08-04 22:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-08-27 13:01 - 2016-08-03 11:00 - 69095432 _____ () C:\Program Files (x86)\Opera\39.0.2256.48\opera.dll
2016-08-27 13:01 - 2016-08-03 11:00 - 02209800 _____ () C:\Program Files (x86)\Opera\39.0.2256.48\libglesv2.dll
2016-08-27 13:01 - 2016-08-03 11:00 - 00086024 _____ () C:\Program Files (x86)\Opera\39.0.2256.48\libegl.dll
2016-09-05 19:48 - 2015-09-25 01:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-208506790-100804975-3699006410-1002\...\amazon.com -> hxxps://amazon.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2016-09-23 14:26 - 00000826 ____A C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-208506790-100804975-3699006410-1002\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6F30A735-F968-419C-97DA-082EDA366DF4}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{709FEEC4-B0A5-4F21-9155-6A55A4C270AE}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{D13A7107-B301-4E7C-95FD-853E17A85B0C}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{DC669DB7-E552-4836-A450-C3CEC8EBC230}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{7C6F6482-36C6-41C1-97C2-BF62F12C2CAB}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{4CC539B8-D12E-40C9-9DC4-97C0804B7F22}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{A080D026-E51D-4CD9-9568-105204FD924F}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{CFFF1317-E056-4B96-A1F3-9AD2DBF82C62}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{4B6DDD2F-2B26-4BE3-8152-8E7B78AC466B}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{1B5AA3AC-218B-4527-9A56-0964C5EFB959}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{36D0D230-9787-46E7-BE78-F6BBE9016FC1}] => (Allow) LPort=55100
FirewallRules: [{E41512CB-4BEA-4EC1-8B85-C9F0DDF713A8}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe
FirewallRules: [TCP Query User{23202B87-07E5-4F9B-9F74-6A1A1205A434}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{39F7FD39-4B8D-4A23-9D0C-65A1A7788CEF}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{B201B0AE-609F-4E95-85C2-A0037CF30DA7}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{EB961ED7-302F-4FDD-99F7-2C4623D27F7E}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [{EB419AB9-FEAD-4689-AAD2-E4FC78A00907}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1826DB1B-689A-49BC-87E1-10D75DCFB3B4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{20A1784D-5BCE-40CF-BFE5-66C054A0340D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9825531E-6C0A-496C-ACB1-E0D247EBBDEA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{17EA3E6F-0FEC-4CC1-BC9C-8695BBAE3305}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B5AE73A4-0909-4245-BEF3-A6A62F4BB252}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{12C098AC-0C95-4517-88F1-81BF67F77B2A}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [TCP Query User{F763D06B-2CF4-49E7-9CEB-DE5FA021C00E}C:\program files\unity\editor\unity.exe] => (Block) C:\program files\unity\editor\unity.exe
FirewallRules: [UDP Query User{81F199AB-0B08-4607-9DB9-7F361EDF1E73}C:\program files\unity\editor\unity.exe] => (Block) C:\program files\unity\editor\unity.exe
FirewallRules: [{D9DA47AE-C297-43C6-AC92-FEF4DBC2CEE1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{473D5B58-B8E7-45F5-820C-3238F8A8C470}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{58494ADC-6FD7-4A22-93B3-36E865CF9AA4}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{6E6A1C73-6796-4C8F-9691-642ED1B89279}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{55B73514-DE5D-43A2-96E0-231BDF03AF66}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{BC968959-A6E2-4A7E-9201-3778A44E6FF0}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{0ADB1F3A-A9C9-449B-92B6-52A729509E5F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{B15EE3AD-42A2-43C1-A3D4-4014642A9EDF}C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe] => (Block) C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe
FirewallRules: [UDP Query User{AB3A0D96-678C-43FD-A0B6-5D485AB94534}C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe] => (Block) C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe
FirewallRules: [{FBCB3743-7321-401F-BE70-521256D63D7C}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity\2015\UnityVS.OpenFile.exe
FirewallRules: [{E44E9956-DBB5-4315-BD82-C3739544A85E}] => (Allow) C:\PROGRA~1\Unity\Editor\Unity.exe
FirewallRules: [{985628C7-103F-4955-997E-68C33BCF9CD9}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{E9460BF6-5343-4413-B357-C6B48248F01C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\StarBreak\mvmmoclient.exe
FirewallRules: [{FA6089B5-15F7-4327-8008-3047F07E9647}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\StarBreak\mvmmoclient.exe

==================== Restore Points =========================

11-09-2016 19:46:36 Operace obnovení
14-09-2016 18:50:42 Nainstalováno rozhraní DirectX
16-09-2016 15:16:03 Nainstalováno rozhraní DirectX
17-09-2016 17:13:06 Nainstalováno rozhraní DirectX
21-09-2016 16:47:19 Instalační služba modulů systému Windows
23-09-2016 14:39:55 Nainstalováno rozhraní DirectX

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/23/2016 02:56:16 PM) (Source: nlsX86cc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/21/2016 07:43:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program csgo.exe verze 0.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 149c

Čas spuštění: 01d2142f979ca722

Čas ukončení: 47

Cesta k aplikaci: C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe

ID hlášení: e075220e-8022-11e6-826e-acd1b82e115c

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (09/21/2016 07:07:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Součást 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.

Error: (09/21/2016 06:28:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HostAppServiceUpdater.exe, verze: 1.0.0.0, časové razítko: 0x5438749b
Název chybujícího modulu: HostAppServiceUpdater.exe, verze: 1.0.0.0, časové razítko: 0x5438749b
Kód výjimky: 0xc0000417
Posun chyby: 0x0000000000210c7c
ID chybujícího procesu: 0x3ec
Čas spuštění chybující aplikace: 0x01d211e16f6d1a69
Cesta k chybující aplikaci: C:\Users\Z50\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe
Cesta k chybujícímu modulu: C:\Users\Z50\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe
ID zprávy: 7ec1780c-8018-11e6-826e-acd1b82e115c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/21/2016 03:47:56 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80070005).

Error: (09/20/2016 07:36:50 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Součást 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.

Error: (09/19/2016 08:38:19 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro c:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Součást 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.


System errors:
=============
Error: (09/23/2016 03:18:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Service Installer TrueKey neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (09/23/2016 03:17:28 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\system32\Rtlihvs.dll

Error: (09/23/2016 03:17:28 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\system32\Rtlihvs.dll

Error: (09/23/2016 03:17:25 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\system32\Rtlihvs.dll

Error: (09/23/2016 03:12:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/23/2016 03:12:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CCSDK byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/23/2016 03:12:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restart the service.

Error: (09/23/2016 03:12:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba VeriFaceSrv byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/23/2016 03:12:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Intel Security True Key Scheduler byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1400464715 milisekund: Restart the service.

Error: (09/23/2016 03:12:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Intel Security True Key byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restart the service.


==================== Memory info ===========================

Processor: AMD A10-7300 Radeon R6, 10 Compute Cores 4C+6G
Percentage of memory in use: 36%
Total physical RAM: 7098.61 MB
Available physical RAM: 4493.74 MB
Total Virtual: 8250.61 MB
Available Virtual: 4616.54 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:424.19 GB) (Free:350.01 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:23.17 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 1B5F7484)

Partition: GPT.

==================== End of Addition.txt ============================

[DennyS]

a jinak bych chtěl odstranit ty sra*** od lenova :/

[DennyS]

Samozřejmě také CISCO nevím co. Když jsem se to pokoušel odinstalovat naposled (cisco programy) crashnul systém...

[Márty84]

Tenhle log je celkem k nicemu, potreboval bych hlavne ten druhy. Zkuste to jeste jednou. Kdyz to nepujde, tak zkuste alespon RSITx64 http://forum.viry.cz/viewtopic.php?f=13&t=130786

[DennyS]

Tenhle log je celkem k nicemu, potreboval bych hlavne ten druhy. Zkuste to jeste jednou. Kdyz to nepujde, tak zkuste alespon RSITx64 http://forum.viry.cz/viewtopic.php?f=13&t=130786

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-09-2016
Ran by Z50 (administrator) on LENOVO (23-09-2016 16:34:30)
Running from C:\Users\Z50\Desktop
Loaded Profiles: Z50 (Available Profiles: Z50)
Platform: Windows 8.1 (Update) (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Lenovo) C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Program Files\Lenovo PhoneCompanion\adb.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.48\opera.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(forum.viry.cz) C:\Users\Z50\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-05] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [216064 2014-01-06] (Realtek Semiconductor Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3276104 2014-06-18] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2014-01-21] (Realtek semiconductor)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-15] (Lenovo)
HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [836592 2015-03-17] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-03-17] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10842096 2015-03-17] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-07-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
HKU\S-1-5-21-208506790-100804975-3699006410-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-208506790-100804975-3699006410-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2857248 2016-08-23] (Valve Corporation)
AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL => No File
AppInit_DLLs-x32: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC32~1.DLL => No File
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{11FB2D3A-DA42-4220-8149-C12EA7C34E6D}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{64DB1EF5-C394-4772-80AA-C4ADC86FE97B}: [DhcpNameServer] 8.8.8.8 8.8.4.4
ManualProxies:

Internet Explorer:
==================
HKU\S-1-5-21-208506790-100804975-3699006410-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.cz/?gfe_rd=cr&ei=OuGpV8ajE6- ... gws_rd=ssl
HKU\S-1-5-21-208506790-100804975-3699006410-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-208506790-100804975-3699006410-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-208506790-100804975-3699006410-1002 -> {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = hxxps://www.amazon.com/gp/bit/amazonserp/ref=bi ... earchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-08-15] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-15] (Oracle Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-08-26] (Intel Security)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-09] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-09] (Oracle Corporation)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-08-26] (Intel Security)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab

FireFox:
========
FF ProfilePath: C:\Users\Z50\AppData\Roaming\Mozilla\Firefox\Profiles\nzgtv19x.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-15] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-15] (Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-09] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-09] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-10] (Google Inc.)
FF Plugin HKU\S-1-5-21-208506790-100804975-3699006410-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Z50\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-07-14] (Unity Technologies ApS)
FF Extension: (Firefox Hotfix) - C:\Users\Z50\AppData\Roaming\Mozilla\Firefox\Profiles\nzgtv19x.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-15]

Chrome:
=======
CHR Profile: C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default [2016-09-22]
CHR Extension: (Prezentace Google) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-10]
CHR Extension: (Dokumenty Google) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-10]
CHR Extension: (Disk Google) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-10]
CHR Extension: (YouTube) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-10]
CHR Extension: (Tabulky Google) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-10]
CHR Extension: (Gmail) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-10]
CHR Extension: (Chrome Media Router) - C:\Users\Z50\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-31]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-07-17] (Advanced Micro Devices, Inc.) [File not signed]
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [84992 2014-01-22] () [File not signed]
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-10] ()
S3 EasyAntiCheat; C:\windows\SysWOW64\EasyAntiCheat.exe [245544 2016-08-28] (EasyAntiCheat Ltd)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101680 2013-10-15] (ELAN Microelectronics Corp.)
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3036312 2016-07-28] (Intel(R) Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-23] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-03-17] (Lenovo(beijing) Limited)
R2 LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [38896 2014-02-18] (Lenovo(beijing) Limited)
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [2451880 2016-05-30] (Maxthon)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [288240 2015-03-17] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [308720 2015-03-17] (Lenovo)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [922152 2016-08-25] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-08-25] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-08-25] (McAfee, Inc.)
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [68880 2015-03-17] ()
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
S2 0257061472891469mcinstcleanup; C:\windows\TEMP\025706~1.EXE -cleanup -nolog [X]
S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-13] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-12] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-11] (Advanced Micro Devices)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-09-23] (Malwarebytes)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [558296 2014-01-14] (Realtek Semiconductor Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9105624 2014-01-21] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3593432 2014-10-07] (Realtek Semiconductor Corporation )
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [35856 2014-03-24] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [257880 2014-03-24] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 DIRECTIO; \??\P:\PE_wdir\Program\new_bit\BurnInTest\DirectIo64.sys [X]
S3 DIRECTIO37; \??\P:\PE_wdir\Program\new_bit\BurnInTest\DirectIo64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-23 16:34 - 2016-09-23 16:35 - 00017871 _____ C:\Users\Z50\Desktop\FRST.txt
2016-09-23 16:34 - 2016-09-23 16:34 - 00000000 ____D C:\FRST
2016-09-23 16:33 - 2016-09-23 16:33 - 00112640 _____ (forum.viry.cz) C:\Users\Z50\Desktop\FRSTLauncher.exe
2016-09-23 16:32 - 2016-09-23 16:32 - 02402816 _____ (Farbar) C:\Users\Z50\Desktop\FRST64.exe
2016-09-23 16:24 - 2016-09-23 16:24 - 00000222 _____ C:\Users\Z50\Desktop\StarBreak.url
2016-09-23 15:20 - 2016-09-23 15:21 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-09-23 15:09 - 2016-09-23 15:17 - 00000000 ____D C:\AdwCleaner
2016-09-23 15:08 - 2016-09-23 15:08 - 03861056 _____ C:\Users\Z50\Desktop\adwcleaner_6.020.exe
2016-09-23 14:53 - 2016-09-23 14:53 - 00001125 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-09-23 14:53 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2016-09-23 14:53 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2016-09-23 14:53 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2016-09-23 14:52 - 2016-09-23 14:52 - 22851472 _____ (Malwarebytes ) C:\Users\Z50\Downloads\mbam-setup-2.2.1.1043.exe
2016-09-21 19:56 - 2016-09-21 19:56 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Warside
2016-09-21 17:30 - 2016-09-21 17:30 - 00000000 ____D C:\Users\Z50\AppData\LocalLow\DefaultCompany
2016-09-21 17:24 - 2016-09-21 17:40 - 00000000 ____D C:\Users\Z50\Documents\Project Lost Team
2016-09-21 17:11 - 2016-09-21 17:11 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2015 Tools for Unity
2016-09-21 17:11 - 2016-09-21 17:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity
2016-09-21 16:47 - 2016-09-23 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 5.4.1f1 (64-bit)
2016-09-21 16:38 - 2016-09-21 16:38 - 01880035 _____ C:\Users\Z50\Downloads\2dshooter.zip
2016-09-21 16:38 - 2016-09-21 16:38 - 00263684 _____ C:\Users\Z50\Downloads\NetworkStarter.zip
2016-09-21 16:29 - 2016-09-21 16:29 - 00718264 _____ C:\Users\Z50\Downloads\UnityDownloadAssistant-5.4.1f1.exe
2016-09-21 15:58 - 2016-09-21 15:58 - 00044287 _____ C:\Users\Z50\Downloads\phar_FunCore_lo5ayD0vJUiPprH.phar
2016-09-21 15:55 - 2016-09-21 15:55 - 00003556 _____ C:\Users\Z50\Downloads\funcore.phar
2016-09-21 15:55 - 2016-09-21 15:55 - 00001621 _____ C:\Users\Z50\Downloads\264-funcore-e7887.zip
2016-09-21 15:51 - 2016-09-21 15:51 - 00000512 _____ C:\windows\system32\Drivers\etc\hosts.ics
2016-09-20 16:10 - 2016-09-20 16:10 - 00061575 _____ C:\Users\Z50\Downloads\263-SimpleAuth_v1-156c3.zip
2016-09-20 16:10 - 2016-09-20 16:10 - 00059559 _____ C:\Users\Z50\Downloads\SimpleAuth_v1.7.1.phar
2016-09-19 20:21 - 2016-09-19 21:06 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Trove
2016-09-19 19:19 - 2016-09-19 19:19 - 00025864 _____ C:\Users\Z50\Downloads\262-phar_SkyBlock-master_RQKeCcKLj2Cq_Zc-a19af.zip
2016-09-19 19:03 - 2016-09-23 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-09-19 16:55 - 2016-09-19 16:55 - 00004619 _____ C:\Users\Z50\Downloads\phar_FunCore_EjQ1fSyO1pkacto.phar
2016-09-19 16:54 - 2016-09-19 16:55 - 07773005 _____ C:\Users\Z50\Downloads\server.phar
2016-09-19 16:25 - 2016-09-19 16:25 - 00004557 _____ C:\Users\Z50\Downloads\fc1_0_1.phar
2016-09-18 21:58 - 2016-09-18 21:58 - 00002220 _____ C:\Users\Z50\Downloads\phar_FunCore_YEIa1Q563YrxCzW.phar
2016-09-18 21:53 - 2016-09-18 21:53 - 00002229 _____ C:\Users\Z50\Downloads\phar_FunCore__cHeySv0pbR4Ex4.phar
2016-09-18 21:50 - 2016-09-18 21:50 - 00002229 _____ C:\Users\Z50\Downloads\phar_FunCore_wNCyoV_rhdvLGJU.phar
2016-09-18 14:58 - 2016-09-18 17:13 - 00011046 _____ C:\Users\Z50\Downloads\pocketmine.yml
2016-09-17 21:31 - 2016-09-17 21:31 - 00000000 ____D C:\Users\Z50\Documents\NetBeansProjects
2016-09-16 17:36 - 2016-09-16 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2016-09-15 16:01 - 2016-09-17 20:57 - 00000000 ____D C:\Users\Z50\AppData\Local\BoringManGame
2016-09-14 17:52 - 2016-09-14 17:52 - 00000000 ____D C:\Users\Z50\AppData\Roaming\NetBeans
2016-09-14 17:52 - 2016-09-14 17:52 - 00000000 ____D C:\Users\Z50\AppData\Local\NetBeans
2016-09-14 17:31 - 2016-09-14 17:31 - 00002034 _____ C:\Users\Public\Desktop\NetBeans IDE 8.1.lnk
2016-09-14 17:31 - 2016-09-14 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans
2016-09-14 17:29 - 2016-09-14 17:32 - 00000000 ____D C:\Program Files\NetBeans 8.1
2016-09-14 17:25 - 2016-09-14 17:51 - 00000000 ____D C:\Users\Z50\.nbi
2016-09-12 18:35 - 2016-09-12 18:35 - 00000000 ____D C:\rsit
2016-09-12 18:35 - 2016-09-12 18:35 - 00000000 ____D C:\Program Files\trend micro
2016-09-11 20:14 - 2016-09-11 20:14 - 00000000 ____D C:\ProgramData\TrueKey
2016-09-11 17:56 - 2016-09-23 14:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-09-11 17:56 - 2016-09-23 14:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-09-11 15:20 - 2016-09-11 15:20 - 00000000 ____D C:\Users\Z50\AppData\Roaming\library_dir
2016-09-08 18:50 - 2016-09-08 18:50 - 00000000 ____D C:\Users\Z50\AppData\Local\Doctor Entertainment AB
2016-09-06 15:28 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_25.dll
2016-09-05 19:50 - 2016-09-05 19:50 - 00000219 _____ C:\Users\Z50\Desktop\Counter-Strike Global Offensive.url
2016-09-05 19:44 - 2016-09-23 15:38 - 00000000 ____D C:\Program Files (x86)\Steam
2016-09-05 19:44 - 2016-09-05 19:44 - 00000986 _____ C:\Users\Public\Desktop\Steam.lnk
2016-09-05 19:44 - 2016-09-05 19:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-09-02 22:31 - 2016-09-23 14:27 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1
2016-09-02 22:31 - 2016-09-11 19:51 - 00000000 ____D C:\Users\Z50\AppData\Roaming\BANDISOFT
2016-09-02 22:31 - 2016-09-02 22:46 - 00000000 ____D C:\Users\Z50\Documents\Bandicam
2016-09-02 16:55 - 2016-09-17 22:36 - 00000000 ____D C:\Users\Z50\AppData\Roaming\FileZilla
2016-09-02 16:54 - 2016-09-02 16:54 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-09-02 16:54 - 2016-09-02 16:54 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2016-09-02 14:48 - 2016-09-02 14:48 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2016-09-02 14:15 - 2016-09-02 14:15 - 00003168 _____ C:\windows\System32\Tasks\{AC3620E5-E1F2-4294-8FD2-DD1D62ED4F23}
2016-09-01 20:00 - 2016-09-21 17:24 - 00000000 ____D C:\ProgramData\Unity
2016-09-01 17:18 - 2016-09-01 17:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2016-09-01 17:06 - 2016-09-03 16:48 - 00000000 ____D C:\Users\Z50\Documents\GTA San Andreas User Files
2016-09-01 14:46 - 2016-09-01 14:46 - 00000000 ____D C:\Program Files (x86)\ShellDir
2016-09-01 14:44 - 2016-09-01 14:44 - 00000000 ____D C:\Program Files (x86)\AppInsights
2016-09-01 14:43 - 2016-09-01 14:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools
2016-09-01 14:42 - 2016-09-01 14:42 - 00000000 ____D C:\ProgramData\NuGet
2016-09-01 14:42 - 2016-09-01 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2016-09-01 14:42 - 2016-09-01 14:42 - 00000000 ____D C:\Program Files (x86)\NuGet
2016-09-01 14:42 - 2016-09-01 14:42 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
2016-09-01 14:41 - 2016-09-01 14:41 - 00001565 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2016-09-01 14:40 - 2016-09-01 14:40 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
2016-09-01 14:40 - 2016-09-01 14:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2016-09-01 14:39 - 2016-09-01 14:40 - 00000000 ____D C:\windows\SysWOW64\1033
2016-09-01 14:39 - 2016-09-01 14:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2016-09-01 14:37 - 2016-09-01 14:37 - 00000000 ____D C:\windows\symbols
2016-09-01 14:37 - 2016-09-01 14:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2016-09-01 14:35 - 2016-09-01 14:35 - 00001566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2016-09-01 14:35 - 2016-09-01 14:35 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-09-01 14:35 - 2016-09-01 14:35 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-09-01 14:32 - 2016-09-01 14:36 - 00000000 ____D C:\windows\system32\1033
2016-09-01 14:32 - 2016-09-01 14:32 - 00000000 ____H C:\windows\system32\Drivers\Msft_User_SensorsSimulatorDriver_01_11_00.Wdf
2016-09-01 14:30 - 2016-09-01 14:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2016-09-01 14:29 - 2016-09-01 14:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-09-01 14:29 - 2016-09-01 14:37 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-09-01 14:28 - 2016-09-01 14:28 - 00030400 _____ (Microsoft Corporation) C:\windows\system32\aspnet_counters.dll
2016-09-01 14:28 - 2016-09-01 14:28 - 00028352 _____ (Microsoft Corporation) C:\windows\SysWOW64\aspnet_counters.dll
2016-09-01 14:05 - 2016-09-01 14:06 - 00000000 ____D C:\Program Files (x86)\GtkSharp
2016-09-01 14:03 - 2016-09-01 14:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 5.4.0f3 (64-bit)
2016-09-01 12:10 - 2016-09-11 20:08 - 00000000 ____D C:\Users\Z50\AppData\Local\tkdata
2016-09-01 12:09 - 2016-09-03 10:31 - 00001221 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-09-01 12:09 - 2016-09-01 12:09 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-09-01 12:08 - 2016-09-11 20:08 - 00000000 ____D C:\Program Files\Common Files\AV
2016-09-01 12:08 - 2016-09-11 19:50 - 00000000 ____D C:\Program Files\Intel Security
2016-09-01 12:08 - 2016-09-11 19:50 - 00000000 ____D C:\Program Files\Intel
2016-09-01 12:08 - 2016-09-11 19:50 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-09-01 12:08 - 2016-09-11 19:50 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-09-01 12:08 - 2016-09-01 13:08 - 00003348 _____ C:\windows\System32\Tasks\McAfee Remediation (Prepare)
2016-09-01 12:04 - 2016-09-01 12:04 - 00000000 ____D C:\ProgramData\.mono
2016-09-01 11:58 - 2016-09-01 11:58 - 00000000 ____D C:\Users\Z50\AppData\Local\Macromedia
2016-09-01 11:57 - 2016-09-12 18:00 - 00000000 ____D C:\Program Files\TrueKey
2016-09-01 11:41 - 2016-09-01 11:41 - 00000000 ____D C:\Users\Z50\AppData\LocalLow\Javelin
2016-09-01 11:40 - 2016-09-01 20:19 - 00000000 ____D C:\Program Files (x86)\TDP5
2016-09-01 11:40 - 2016-09-01 11:41 - 00000000 __SHD C:\Users\Z50\wc
2016-09-01 11:40 - 2016-09-01 11:40 - 00000000 __SHD C:\Users\Z50\AppData\Roaming\wyUpdate AU
2016-08-31 08:11 - 2016-08-31 08:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-08-29 14:56 - 2016-08-31 08:11 - 00000000 ____D C:\Program Files\OBS
2016-08-29 14:56 - 2016-08-31 08:11 - 00000000 ____D C:\Program Files (x86)\OBS
2016-08-29 14:53 - 2016-08-29 14:53 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Sony
2016-08-29 12:51 - 2016-08-31 08:11 - 00000000 ____D C:\Users\Z50\Documents\My Games
2016-08-29 12:49 - 2016-08-29 12:49 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2016-08-29 12:48 - 2016-08-31 08:11 - 00000000 ____D C:\GOG Games
2016-08-28 20:06 - 2016-08-28 20:06 - 00000000 ____D C:\Users\Z50\AppData\Local\war
2016-08-28 19:51 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\windows\SysWOW64\ucrtbase.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00984448 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00063840 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00020832 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00019808 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00016224 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00015712 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00013664 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-08-28 19:51 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-08-28 19:42 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_7.dll
2016-08-28 19:42 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_7.dll
2016-08-28 19:42 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_7.dll
2016-08-28 19:42 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_7.dll
2016-08-28 19:42 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_5.dll
2016-08-28 19:42 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_5.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_43.dll
2016-08-28 19:42 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_43.dll
2016-08-28 19:42 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_6.dll
2016-08-28 19:42 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_6.dll
2016-08-28 19:42 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_6.dll
2016-08-28 19:42 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_6.dll
2016-08-28 19:42 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_4.dll
2016-08-28 19:42 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_4.dll
2016-08-28 19:42 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_7.dll
2016-08-28 19:42 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_7.dll
2016-08-28 19:42 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_5.dll
2016-08-28 19:42 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_5.dll
2016-08-28 19:42 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_5.dll
2016-08-28 19:42 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_5.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_42.dll
2016-08-28 19:42 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_42.dll
2016-08-28 19:42 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_41.dll
2016-08-28 19:42 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_41.dll
2016-08-28 19:42 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_41.dll
2016-08-28 19:42 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_41.dll
2016-08-28 19:41 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_3.dll
2016-08-28 19:41 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_3.dll
2016-08-28 19:41 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2016-08-28 19:41 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_4.dll
2016-08-28 19:41 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_4.dll
2016-08-28 19:41 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2016-08-28 19:41 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2016-08-28 19:41 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_6.dll
2016-08-28 19:41 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2016-08-28 19:41 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_41.dll
2016-08-28 19:41 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_3.dll
2016-08-28 19:41 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_3.dll
2016-08-28 19:41 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_3.dll
2016-08-28 19:41 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_3.dll
2016-08-28 19:41 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_2.dll
2016-08-28 19:41 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_2.dll
2016-08-28 19:41 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_5.dll
2016-08-28 19:41 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_5.dll
2016-08-28 19:41 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2016-08-28 19:41 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_40.dll
2016-08-28 19:41 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2016-08-28 19:41 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_40.dll
2016-08-28 19:41 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2016-08-28 19:41 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_40.dll
2016-08-28 19:41 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_2.dll
2016-08-28 19:41 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_2.dll
2016-08-28 19:41 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_1.dll
2016-08-28 19:41 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_1.dll
2016-08-28 19:41 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_2.dll
2016-08-28 19:41 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_2.dll
2016-08-28 19:41 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_39.dll
2016-08-28 19:41 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2016-08-28 19:41 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_39.dll
2016-08-28 19:41 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2016-08-28 19:41 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_39.dll
2016-08-28 19:41 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2016-08-28 19:41 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2016-08-28 19:41 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_1.dll
2016-08-28 19:41 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_1.dll
2016-08-28 19:41 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2016-08-28 19:41 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2016-08-28 19:41 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_0.dll
2016-08-28 19:41 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_4.dll
2016-08-28 19:41 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2016-08-28 19:41 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2016-08-28 19:41 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_38.dll
2016-08-28 19:41 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2016-08-28 19:41 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_38.dll
2016-08-28 19:41 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2016-08-28 19:41 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_38.dll
2016-08-28 19:41 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2016-08-28 19:41 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_0.dll
2016-08-28 19:41 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_0.dll
2016-08-28 19:41 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2016-08-28 19:41 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2016-08-28 19:41 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_3.dll
2016-08-28 19:41 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2016-08-28 19:41 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_37.dll
2016-08-28 19:41 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2016-08-28 19:41 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_37.dll
2016-08-28 19:41 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2016-08-28 19:41 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_37.dll
2016-08-28 19:41 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2016-08-28 19:41 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_10.dll
2016-08-28 19:41 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2016-08-28 19:41 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_2.dll
2016-08-28 19:41 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2016-08-28 19:41 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_36.dll
2016-08-28 19:41 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2016-08-28 19:41 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_36.dll
2016-08-28 19:41 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2016-08-28 19:41 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_36.dll
2016-08-28 19:41 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2016-08-28 19:41 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_9.dll
2016-08-28 19:41 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_35.dll
2016-08-28 19:41 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_35.dll
2016-08-28 19:41 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2016-08-28 19:41 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_35.dll
2016-08-28 19:41 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2016-08-28 19:41 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_35.dll
2016-08-28 19:41 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2016-08-28 19:41 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_8.dll
2016-08-28 19:41 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2016-08-28 19:41 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_34.dll
2016-08-28 19:41 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2016-08-28 19:41 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_34.dll
2016-08-28 19:41 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2016-08-28 19:41 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_34.dll
2016-08-28 19:41 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2016-08-28 19:41 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_7.dll
2016-08-28 19:41 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\windows\system32\xinput1_3.dll
2016-08-28 19:41 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_3.dll
2016-08-28 19:41 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2016-08-28 19:41 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_33.dll
2016-08-28 19:41 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2016-08-28 19:41 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_33.dll
2016-08-28 19:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2016-08-28 19:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_33.dll
2016-08-28 19:40 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2016-08-28 19:40 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_1.dll
2016-08-28 19:40 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2016-08-28 19:40 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_6.dll
2016-08-28 19:40 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_5.dll
2016-08-28 19:40 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2016-08-28 19:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_32.dll
2016-08-28 19:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_32.dll
2016-08-28 19:40 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2016-08-28 19:40 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10.dll
2016-08-28 19:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_31.dll
2016-08-28 19:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_31.dll
2016-08-28 19:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_4.dll
2016-08-28 19:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2016-08-28 19:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2016-08-28 19:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2016-08-28 19:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_3.dll
2016-08-28 19:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_2.dll
2016-08-28 19:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_2.dll
2016-08-28 19:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2016-08-28 19:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_30.dll
2016-08-28 19:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_30.dll
2016-08-28 19:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_1.dll
2016-08-28 19:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_1.dll
2016-08-28 19:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\windows\system32\xinput1_1.dll
2016-08-28 19:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_1.dll
2016-08-28 19:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_29.dll
2016-08-28 19:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_29.dll
2016-08-28 19:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_0.dll
2016-08-28 19:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_0.dll
2016-08-28 19:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_0.dll
2016-08-28 19:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_0.dll
2016-08-28 19:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_28.dll
2016-08-28 19:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_28.dll
2016-08-28 19:40 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_27.dll
2016-08-28 19:40 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_27.dll
2016-08-28 19:40 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_26.dll
2016-08-28 19:40 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_26.dll
2016-08-28 19:40 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_25.dll
2016-08-28 19:40 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_24.dll
2016-08-28 19:40 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_24.dll
2016-08-28 17:22 - 2016-08-28 17:22 - 00000000 ____D C:\Users\Z50\AppData\LocalLow\Freejam
2016-08-28 17:21 - 2016-08-28 17:02 - 00245544 _____ (EasyAntiCheat Ltd) C:\windows\SysWOW64\EasyAntiCheat.exe
2016-08-28 17:02 - 2016-09-23 16:24 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-28 16:54 - 2016-08-28 16:54 - 00000000 ____D C:\Users\Z50\AppData\Local\Steam
2016-08-27 13:26 - 2016-09-23 15:49 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-08-27 13:26 - 2016-09-14 15:49 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-08-27 13:25 - 2016-09-17 21:02 - 00000958 _____ C:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-08-27 13:25 - 2016-09-14 15:49 - 00003914 _____ C:\windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-08-27 13:09 - 2016-09-05 16:32 - 00000000 ____D C:\Users\Z50\AppData\Local\Adobe
2016-08-27 13:01 - 2016-08-27 13:01 - 00003828 _____ C:\windows\System32\Tasks\Opera scheduled Autoupdate 1472295692
2016-08-27 13:01 - 2016-08-27 13:01 - 00001158 _____ C:\Users\Public\Desktop\Opera.lnk
2016-08-27 13:01 - 2016-08-27 13:01 - 00001158 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-08-27 13:01 - 2016-08-27 13:01 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Opera Software
2016-08-27 13:01 - 2016-08-27 13:01 - 00000000 ____D C:\Users\Z50\AppData\Local\Opera Software
2016-08-27 13:00 - 2016-09-23 15:23 - 00000000 ____D C:\Program Files (x86)\Opera
2016-08-25 16:01 - 2016-08-25 16:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-24 21:43 - 2016-08-24 21:43 - 00002782 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2016-08-24 21:43 - 2016-08-24 21:43 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-24 21:43 - 2016-08-24 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-24 21:43 - 2016-08-24 21:43 - 00000000 ____D C:\Program Files\CCleaner

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-23 16:20 - 2016-08-10 13:07 - 00000974 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-23 15:33 - 2016-07-22 15:50 - 00003594 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-208506790-100804975-3699006410-1002
2016-09-23 15:28 - 2016-07-22 15:52 - 00001279 _____ C:\Users\Z50\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wi-FiHotspotChgToast.lnk
2016-09-23 15:28 - 2015-03-17 21:14 - 00000000 ____D C:\ProgramData\LU
2016-09-23 15:25 - 2016-07-22 16:33 - 00773722 _____ C:\windows\system32\perfh005.dat
2016-09-23 15:25 - 2016-07-22 16:33 - 00168824 _____ C:\windows\system32\perfc005.dat
2016-09-23 15:25 - 2014-03-18 11:53 - 01847990 _____ C:\windows\system32\PerfStringBackup.INI
2016-09-23 15:25 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf
2016-09-23 15:20 - 2016-08-21 21:44 - 00000000 ____D C:\Users\Z50\OneDrive
2016-09-23 15:20 - 2016-08-10 13:07 - 00000970 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-23 15:18 - 2016-08-21 20:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-23 15:18 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-09-23 15:17 - 2015-03-17 19:54 - 00065536 _____ C:\windows\system32\spu_storage.bin
2016-09-23 15:17 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\BBI
2016-09-23 15:14 - 2016-08-09 15:54 - 00000000 ____D C:\Program Files (x86)\Amazon
2016-09-23 15:12 - 2015-03-17 20:51 - 00002560 _____ C:\windows\system32\VfService.trf
2016-09-23 14:57 - 2015-03-17 21:06 - 00000000 ____D C:\ProgramData\Office2013
2016-09-23 14:42 - 2016-08-21 20:42 - 00000000 ____D C:\Program Files\Unity
2016-09-23 14:30 - 2013-08-22 17:36 - 00000000 ___HD C:\windows\ELAMBKUP
2016-09-23 14:06 - 2016-08-09 15:37 - 00003954 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{35870E2E-7980-4408-905F-8D03670A9210}
2016-09-21 17:30 - 2016-08-21 21:29 - 00000000 ____D C:\Users\Z50\AppData\Roaming\Unity
2016-09-21 17:30 - 2016-08-21 20:48 - 00000000 ____D C:\Users\Z50\AppData\LocalLow\Unity
2016-09-21 17:11 - 2014-04-03 20:24 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-09-21 16:48 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2016-09-21 15:25 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness
2016-09-18 21:19 - 2015-03-17 21:07 - 00000000 ____D C:\ProgramData\Energy Manager
2016-09-17 07:22 - 2016-08-10 13:09 - 00002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-17 07:22 - 2016-08-10 13:09 - 00002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-16 17:54 - 2016-08-09 15:54 - 00000000 ____D C:\Users\Z50\AppData\Roaming\.minecraft
2016-09-14 17:32 - 2016-08-09 15:52 - 00000000 ____D C:\Users\Z50\.oracle_jre_usage
2016-09-14 17:25 - 2016-07-22 15:42 - 00000000 ____D C:\Users\Z50
2016-09-14 15:54 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-14 15:49 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-09-14 15:49 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\Macromed
2016-09-11 20:14 - 2015-03-17 20:53 - 00000000 ____D C:\ProgramData\McAfee
2016-09-11 20:08 - 2016-08-09 15:54 - 00000000 ____D C:\Users\Z50\AppData\Roaming\.tlauncher
2016-09-11 20:08 - 2016-07-22 15:40 - 00000000 ___SD C:\windows\system32\GWX
2016-09-11 20:08 - 2015-03-17 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Photo Master
2016-09-11 20:08 - 2015-03-17 20:56 - 00000000 ____D C:\ProgramData\install_clap
2016-09-11 19:58 - 2013-08-22 17:36 - 00000000 ____D C:\windows\registration
2016-09-11 19:51 - 2016-08-15 14:43 - 00000000 ____D C:\Users\Z50\AppData\Local\CyberLink
2016-09-11 19:51 - 2015-03-17 21:00 - 00000000 ____D C:\ProgramData\CyberLink
2016-09-11 19:50 - 2015-03-17 20:49 - 00000000 ____D C:\Program Files (x86)\Lenovo
2016-09-04 20:57 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache
2016-09-01 20:00 - 2016-08-21 20:48 - 00000000 ____D C:\Users\Z50\AppData\Local\Unity
2016-09-01 17:07 - 2015-03-17 19:10 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpmodemx.dll
2016-09-01 17:07 - 2015-03-17 19:09 - 00046592 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpwsockx.dll
2016-09-01 17:07 - 2015-03-17 19:08 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\dplaysvr.exe
2016-09-01 17:07 - 2015-03-17 19:07 - 00220672 _____ (Microsoft Corporation) C:\windows\SysWOW64\dplayx.dll
2016-09-01 17:07 - 2013-08-22 13:22 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\dpnet.dll
2016-09-01 17:07 - 2013-08-22 13:22 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\dpnsvr.exe
2016-09-01 17:07 - 2013-08-22 13:17 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\dpnathlp.dll
2016-09-01 17:07 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\windows\system32\dpnhupnp.dll
2016-09-01 17:07 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\windows\system32\dpnhpast.dll
2016-09-01 17:07 - 2013-08-22 05:56 - 00377856 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnet.dll
2016-09-01 17:07 - 2013-08-22 05:56 - 00033792 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnsvr.exe
2016-09-01 17:07 - 2013-08-22 05:51 - 00059904 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnathlp.dll
2016-09-01 17:07 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnhupnp.dll
2016-09-01 17:07 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnhpast.dll
2016-09-01 14:46 - 2015-03-17 19:51 - 00000000 ____D C:\ProgramData\Package Cache
2016-09-01 14:32 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-09-01 14:19 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-09-01 11:41 - 2016-07-22 15:44 - 00000000 ____D C:\Users\Z50\AppData\Local\VirtualStore
2016-08-31 08:16 - 2016-08-12 08:44 - 00000000 ____D C:\Users\Z50\AppData\Local\Razer
2016-08-31 08:16 - 2016-08-12 08:14 - 00000000 ____D C:\ProgramData\Razer
2016-08-31 08:16 - 2016-08-12 08:14 - 00000000 ____D C:\Program Files (x86)\Razer
2016-08-31 08:10 - 2016-08-15 14:45 - 00000000 ____D C:\Fraps
2016-08-31 08:10 - 2015-03-17 20:02 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-08-29 19:53 - 2015-03-17 19:34 - 00000000 ____D C:\windows\SysWOW64\XPSViewer
2016-08-29 19:53 - 2014-03-18 11:38 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-29 19:53 - 2014-03-18 11:25 - 00000000 ____D C:\windows\SysWOW64\winrm
2016-08-29 19:53 - 2014-03-18 11:25 - 00000000 ____D C:\windows\SysWOW64\WCN
2016-08-29 19:53 - 2014-03-18 11:25 - 00000000 ____D C:\windows\SysWOW64\slmgr
2016-08-29 19:53 - 2014-03-18 11:25 - 00000000 ____D C:\windows\SysWOW64\Printing_Admin_Scripts
2016-08-29 19:53 - 2014-03-18 11:25 - 00000000 ____D C:\windows\system32\winrm
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ___RD C:\windows\ImmersiveControlPanel
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\windows\WinStore
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\MUI
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\Com
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\migwiz
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\windows\PolicyDefinitions
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\windows\IME
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-08-29 19:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-29 19:53 - 2013-08-22 15:36 - 00000000 ____D C:\windows\SysWOW64\oobe
2016-08-29 19:53 - 2013-08-22 15:36 - 00000000 ____D C:\windows\SysWOW64\Dism
2016-08-29 19:53 - 2013-08-22 15:36 - 00000000 ____D C:\windows\system32\oobe
2016-08-29 19:53 - 2013-08-22 15:36 - 00000000 ____D C:\windows\servicing
2016-08-29 19:52 - 2014-03-18 11:25 - 00000000 ____D C:\windows\system32\WCN
2016-08-29 19:52 - 2014-03-18 11:25 - 00000000 ____D C:\windows\system32\slmgr
2016-08-29 19:52 - 2014-03-18 11:25 - 00000000 ____D C:\windows\system32\Printing_Admin_Scripts
2016-08-29 19:52 - 2013-08-22 17:36 - 00000000 ___SD C:\windows\system32\dsc
2016-08-29 19:52 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\SystemResetPlatform
2016-08-29 19:52 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\MUI
2016-08-29 19:52 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\Com
2016-08-29 19:52 - 2013-08-22 17:36 - 00000000 ____D C:\windows\Help
2016-08-29 19:52 - 2013-08-22 15:36 - 00000000 ____D C:\windows\system32\Sysprep
2016-08-29 19:52 - 2013-08-22 15:36 - 00000000 ____D C:\windows\system32\Dism
2016-08-24 21:46 - 2016-08-12 20:40 - 00000000 ____D C:\Users\Z50\AppData\Roaming\TS3Client
2016-08-24 21:46 - 2014-04-03 21:15 - 00000000 ____D C:\windows\Panther

==================== Files in the root of some directories =======

2016-07-22 15:44 - 2016-09-23 15:19 - 0203939 _____ () C:\Users\Z50\AppData\Local\BTServer.log
2015-03-17 19:59 - 2015-03-17 19:59 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Z50\AppData\Local\Temp\libeay32.dll
C:\Users\Z50\AppData\Local\Temp\msvcr120.dll
C:\Users\Z50\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_162_pepper.exe
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Z50\Desktop" je 8 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

[Márty84]

Udelejte novou kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce