Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
JanSpasitel
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 02 lis 2008 22:25

Kontrola logu

#1 Příspěvek od JanSpasitel »

Ahojte, vcera mi zacal vyskakovat Trojan:Win32/Fuerboos.C!cl , win defender mi ich hlasil strasne vela za sebou , nainstaloval som MBAM dal som komplet test nejaku 1 polozku mi to naslo , vymazal som ju odvtedy sa to tvari ze je to prec, nic uz nenasiel ani defender ani MBAM no pre istotu chcem vediet ci je vsetko OK , spustil som aj AdwCleaner a naslo mi tiez 1 polozku ktoru som opravil a vymazal , posielam logy . Dakujem za odpoved.



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11.11.2018
Ran by Martin (administrator) on MARTIN-PC (13-11-2018 14:17:30)
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Windows 10 Pro Version 1809 17763.55 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1810.5-0\MsMpEng.exe
(Electronic Arts) F:\Origin\OriginWebHelperService.exe
(Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(CloudBees, Inc.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
() C:\Program Files (x86)\ASUS\ROG Armoury\ArmouryLiveUpdate\ArmouryLiveUpdate.exe
() C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe
(Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1810.5-0\NisSrv.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\ROG Armoury\Mutually Exclusive AURA Agent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthSystray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Rivet Networks) C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_1.6.2148.0_x64__rh07ty8m5nkag\KillerControlCenter.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\CompPkgSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\WINDOWS\system32\SecurityHealthSystray.exe [83968 2018-09-15] (Microsoft Corporation)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [17988216 2017-08-18] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-09] (Realtek Semiconductor)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835680 2016-06-14] (MSI)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1442304 2014-05-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] ()
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [17315280 2017-08-23] (Micro-Star INT'L CO., LTD.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-15] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-15] (Microsoft Corporation)
HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3131680 2018-11-08] (Valve Corporation)
HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\Run: [DAEMON Tools Lite Automount] => F:\Programy\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)
HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19467544 2018-11-07] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2045dd4e-019b-4ad9-b54f-56305ad37ed5}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM-x32 -> DefaultScope value is missing

Edge:
======
Edge Extension: (BookReader) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets [2018-09-15]
Edge Extension: (PinJSAPI) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [2018-09-15]

FireFox:
========
FF DefaultProfile: 9501tk4d.default
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\9501tk4d.default [2018-11-13]
FF Homepage: Mozilla\Firefox\Profiles\9501tk4d.default -> hxxp://zoznam.sk/
FF Extension: (uBlock Origin) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\9501tk4d.default\Extensions\uBlock0@raymondhill.net.xpi [2018-11-09]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-11-02] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-11-02] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default [2018-11-13]
CHR Extension: (Prezentácie Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-23]
CHR Extension: (Dokumenty Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-23]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-23]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-23]
CHR Extension: (Tabuľky Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-23]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-23]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-28]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ArmouryLiveUpdate; C:\Users\Public\Documents\ArmouryLiveUpdate.exe [1188336 2018-08-20] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5745672 2018-05-01] ()
R2 BrokerInfrastructure; C:\WINDOWS\System32\psmsrv.dll [241664 2018-09-15] (Microsoft Corporation)
S3 cbdhsvc; C:\WINDOWS\System32\cbdhsvc.dll [961024 2018-09-15] (Microsoft Corporation)
S3 ConsentUxUserSvc; C:\WINDOWS\System32\ConsentUxClient.dll [157696 2018-09-15] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; F:\Programy\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
S3 DisplayEnhancementService; C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [914944 2018-09-15] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-06-24] (EasyAntiCheat Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-09-19] (Hi-Rez Studios) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2484400 2018-07-30] (Rivet Networks)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [225400 2017-08-18] (Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [11072272 2018-08-19] (LLC Mail.Ru)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4163680 2016-09-09] (MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2206304 2017-01-06] (MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4172896 2016-12-14] (MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2102880 2017-02-15] (MSI)
S2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2331744 2017-02-15] (MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2076768 2016-12-05] (MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [611936 2017-02-10] (MSI)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [111568 2017-04-05] (MSI)
S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2292176 2017-08-23] (Micro-Star INT'L CO., LTD.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773160 2018-10-10] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773160 2018-10-10] (NVIDIA Corporation)
S3 Origin Client Service; F:\Origin\OriginClientService.exe [2216256 2018-10-01] (Electronic Arts)
R2 Origin Web Helper Service; F:\Origin\OriginWebHelperService.exe [3087176 2018-10-01] (Electronic Arts)
S3 perceptionsimulation; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [78848 2018-09-15] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381624 2018-09-15] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\NisSrv.exe [3917016 2018-10-23] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe [114208 2018-10-23] (Microsoft Corporation)
S3 WManSvc; C:\WINDOWS\system32\Windows.Management.Service.dll [370176 2018-09-15] (Microsoft Corporation)
S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [72880 2018-07-30] (CloudBees, Inc.)
R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [72880 2018-07-30] (CloudBees, Inc.)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18264 2017-02-23] (Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2018-07-18] ()
R0 asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [89448 2015-10-01] (Asmedia Technology)
R1 BasicDisplay; C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_5103ac179273be89\BasicDisplay.sys [68096 2018-09-15] (Microsoft Corporation)
R1 BasicRender; C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_0b8d03c3bc0e7fd9\BasicRender.sys [37376 2018-09-15] (Microsoft Corporation)
S3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [34816 2018-09-15] (Microsoft Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-09-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-09-22] (Disc Soft Ltd)
S3 e2xw10x64; C:\WINDOWS\System32\drivers\e2xw10x64.sys [165584 2018-06-05] (Qualcomm Atheros, Inc.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [152688 2018-10-18] (Malwarebytes)
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [10537960 2018-07-14] ()
S3 hidspi; C:\WINDOWS\System32\drivers\hidspi.sys [60928 2018-09-15] (Microsoft Corporation)
S3 iaLPSS2i_GPIO2_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [180736 2018-09-15] (Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2018-09-15] (Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [144584 2018-07-30] (Rivet Networks, LLC.)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw7x64.sys [135104 2017-09-20] (Qualcomm Atheros, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-08-18] (Logitech Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [198000 2018-11-12] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [119136 2018-11-13] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [63768 2018-11-13] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [260480 2018-11-13] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [111152 2018-11-13] (Malwarebytes)
S3 MbbCx; C:\WINDOWS\System32\drivers\MbbCx.sys [290816 2018-09-15] (Microsoft Corporation)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [53760 2018-09-15] (Microsoft Corporation)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [10288768 2018-08-19] (LLC Mail.Ru)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MSI)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvgbdi.inf_amd64_08f71aa19963d721\nvlddmkm.sys [20365000 2018-11-05] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30792 2018-08-21] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation)
S3 PktMon; C:\WINDOWS\System32\drivers\PktMon.sys [85504 2018-09-15] (Microsoft Corporation)
R3 ROGMS; C:\WINDOWS\system32\DRIVERS\ROGMS.sys [33728 2018-08-20] ()
S0 SmartSAMD; C:\WINDOWS\System32\drivers\SmartSAMD.sys [219960 2018-09-15] (Microsemi Corportation)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46408 2017-06-02] (SteelSeries ApS)
S3 UcmUcsiAcpiClient; C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys [31232 2018-09-15] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\WINDOWS\System32\Drivers\UcmUcsiCx.sys [99840 2018-09-15] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46184 2018-10-23] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [328696 2018-10-23] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60408 2018-10-23] (Microsoft Corporation)
R3 WinQuic; C:\WINDOWS\System32\drivers\winquic.sys [156984 2018-09-15] (Microsoft Corporation)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [54352 2016-08-17] (Intel Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: WManSvc -> C:\Windows\system32\Windows.Management.Service.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-13 14:17 - 2018-11-13 14:17 - 000022338 _____ C:\Users\Martin\Desktop\FRST.txt
2018-11-13 14:17 - 2018-11-13 14:17 - 000001461 _____ C:\Users\Martin\Desktop\AdwCleaner[C00].txt
2018-11-13 14:16 - 2018-11-13 14:17 - 000000000 ____D C:\FRST
2018-11-13 14:15 - 2018-11-13 14:15 - 002415616 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2018-11-13 14:10 - 2018-11-13 14:10 - 000260480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-11-13 14:10 - 2018-11-13 14:10 - 000119136 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2018-11-13 14:10 - 2018-11-13 14:10 - 000111152 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2018-11-13 14:10 - 2018-11-13 14:10 - 000063768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-11-13 13:56 - 2018-11-13 13:58 - 007592144 _____ (Malwarebytes) C:\Users\Martin\Desktop\adwcleaner_7.2.4.0.exe
2018-11-12 18:52 - 2018-11-13 14:03 - 000000000 ____D C:\AdwCleaner
2018-11-12 18:26 - 2018-11-12 18:26 - 000198000 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2018-11-12 18:26 - 2018-11-12 18:26 - 000000000 ____D C:\Users\Martin\AppData\Local\mbamtray
2018-11-12 18:26 - 2018-11-12 18:26 - 000000000 ____D C:\Users\Martin\AppData\Local\mbam
2018-11-12 18:26 - 2018-11-12 18:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-11-12 18:26 - 2018-11-12 18:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-11-12 18:26 - 2018-11-12 18:26 - 000000000 ____D C:\Program Files\Malwarebytes
2018-11-12 18:26 - 2018-10-18 08:44 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-11-11 20:52 - 2018-11-12 18:36 - 000000000 __SHD C:\ProgramData\RVT2
2018-11-11 20:52 - 2018-11-11 21:01 - 000000000 ____D C:\WINDOWS\System32\Tasks\Windows
2018-11-11 20:52 - 2018-11-11 20:59 - 000000000 ____D C:\Users\Martin\Documents\Assassin's Creed Odyssey
2018-11-11 20:52 - 2018-11-11 20:52 - 000040474 _____ C:\Users\Martin\AppData\Local\zcv8e70sbp58.zip
2018-11-11 20:52 - 2018-11-11 20:52 - 000000000 __SHD C:\ProgramData\Windows
2018-11-11 20:52 - 2018-11-11 20:52 - 000000000 ____D C:\Users\Martin\AppData\Local\awmg8cq5v0tm
2018-11-10 13:12 - 2018-11-02 23:31 - 000133432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-11-10 13:10 - 2018-11-05 17:56 - 015908504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-11-10 13:10 - 2018-11-05 17:56 - 013203400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 019709024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 016986632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 004253008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 001471632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 001462424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 001167800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 001152192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 001145744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 000914792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 000822392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 000794656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-11-10 13:10 - 2018-11-05 17:55 - 000637872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-11-10 13:10 - 2018-11-05 13:59 - 000978320 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2018-11-10 13:10 - 2018-11-05 13:59 - 000978320 _____ C:\WINDOWS\system32\vulkan-1.dll
2018-11-10 13:10 - 2018-11-05 13:59 - 000845200 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2018-11-10 13:10 - 2018-11-05 13:59 - 000845200 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2018-11-10 13:10 - 2018-11-05 13:59 - 000552232 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-11-10 13:10 - 2018-11-05 13:59 - 000457184 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2018-11-10 13:10 - 2018-11-05 13:59 - 000268176 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2018-11-10 13:10 - 2018-11-05 13:59 - 000268176 _____ C:\WINDOWS\system32\vulkaninfo.exe
2018-11-10 13:10 - 2018-11-05 13:59 - 000243600 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2018-11-10 13:10 - 2018-11-05 13:59 - 000243600 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2018-11-10 13:10 - 2018-11-05 13:58 - 001457088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-11-10 13:10 - 2018-11-05 13:58 - 001124560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-11-10 13:10 - 2018-11-05 13:58 - 000631232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-11-10 13:10 - 2018-11-05 13:58 - 000521472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 040254264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 035151960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 004941480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 004313048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 002017536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441681.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 001999968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 001509072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 001468112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441681.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 000750016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-11-10 13:10 - 2018-11-05 13:57 - 000608712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-11-10 13:10 - 2018-11-03 02:56 - 000047384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2018-11-05 15:02 - 2018-11-05 15:02 - 000000000 ____D C:\Users\Martin\AppData\Local\Blizzard Entertainment
2018-11-05 15:01 - 2018-11-05 15:01 - 000000000 ____D C:\Users\Martin\AppData\Local\Blizzard
2018-11-05 15:01 - 2018-11-05 15:01 - 000000000 ____D C:\ProgramData\Battle.net
2018-10-26 18:48 - 2018-10-26 18:48 - 000000000 ____D C:\Users\Martin\AppData\Roaming\obs-studio-node-server
2018-10-26 17:23 - 2018-10-26 19:25 - 000000000 ____D C:\Users\Martin\Documents\Thief
2018-10-21 17:35 - 2018-10-21 17:36 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2018-10-15 06:49 - 2018-10-11 23:33 - 002017888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441634.dll
2018-10-15 06:49 - 2018-10-11 23:33 - 001468456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441634.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-13 14:16 - 2018-10-03 17:31 - 002201804 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-11-13 14:16 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2018-11-13 14:16 - 2017-08-26 05:33 - 001036224 _____ C:\WINDOWS\system32\perfh01B.dat
2018-11-13 14:16 - 2017-08-26 05:33 - 000317400 _____ C:\WINDOWS\system32\perfc01B.dat
2018-11-13 14:15 - 2017-08-26 14:53 - 000000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2018-11-13 14:12 - 2017-08-23 16:43 - 000000000 ____D C:\ProgramData\NVIDIA
2018-11-13 14:11 - 2017-08-23 17:26 - 000000000 ____D C:\Users\Martin\AppData\LocalLow\Mozilla
2018-11-13 14:10 - 2018-10-03 17:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-11-13 14:10 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-11-13 14:10 - 2018-01-05 22:00 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2018-11-13 14:09 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-11-13 12:28 - 2018-10-03 17:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-11-13 09:20 - 2017-08-23 18:24 - 000000000 ____D C:\Program Files (x86)\Steam
2018-11-13 09:13 - 2018-05-08 14:57 - 000000000 ____D C:\Users\Martin\AppData\Local\D3DSCache
2018-11-13 08:37 - 2017-08-23 16:59 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-11-12 19:10 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-11-12 18:29 - 2017-08-23 17:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-11-12 18:29 - 2017-08-23 17:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-11-11 21:15 - 2017-08-23 18:50 - 000000000 ___RD C:\Users\Martin\Desktop\Games
2018-11-11 18:42 - 2017-08-26 19:35 - 000000000 ____D C:\Users\Martin\AppData\Local\Ubisoft Game Launcher
2018-11-10 13:12 - 2017-08-23 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-11-10 13:12 - 2017-08-23 16:43 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-11-10 13:12 - 2017-08-23 16:43 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-11-10 13:08 - 2018-10-03 17:27 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:08 - 2018-10-03 17:27 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2018-10-03 17:27 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-11-10 13:07 - 2017-08-23 16:43 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-11-09 21:44 - 2018-10-03 17:27 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-11-09 20:37 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2018-11-09 20:37 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-11-09 12:50 - 2017-08-24 05:58 - 000007603 _____ C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2018-11-07 14:59 - 2017-08-23 18:50 - 000000000 ____D C:\Program Files\CCleaner
2018-11-05 17:55 - 2018-09-29 14:58 - 004992144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-11-03 02:56 - 2018-09-29 14:58 - 001682896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2018-11-03 02:56 - 2018-09-29 14:58 - 000227896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2018-11-03 02:56 - 2018-09-29 14:58 - 000048138 _____ C:\WINDOWS\system32\nvinfo.pb
2018-11-02 23:28 - 2017-08-23 16:43 - 005945328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-11-02 23:28 - 2017-08-23 16:43 - 002611240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-11-02 23:28 - 2017-08-23 16:43 - 001767280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-11-02 23:28 - 2017-08-23 16:43 - 000635248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-11-02 23:28 - 2017-08-23 16:43 - 000451056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-11-02 23:28 - 2017-08-23 16:43 - 000124112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-11-02 23:28 - 2017-08-23 16:43 - 000083336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-11-02 13:47 - 2017-08-23 17:26 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-10-26 20:19 - 2018-09-14 15:20 - 000000000 ____D C:\Users\Martin\AppData\Roaming\slobs-client
2018-10-26 17:21 - 2018-10-03 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2018-10-26 13:28 - 2018-10-03 16:46 - 000000000 ___DC C:\WINDOWS\Panther
2018-10-26 11:33 - 2017-08-23 16:43 - 008391862 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-10-23 15:45 - 2017-10-21 16:32 - 000000000 ____D C:\Program Files\Rockstar Games
2018-10-23 15:45 - 2017-10-21 16:32 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2018-10-23 13:35 - 2018-02-14 16:08 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-10-22 10:08 - 2017-08-23 16:43 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-10-21 17:36 - 2018-08-04 14:57 - 000000254 _____ C:\Users\Martin\AppData\LocalLow\rbxcsettings.rbx
2018-10-19 17:21 - 2018-10-03 17:27 - 000003368 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3124744980-1307537907-1563216556-1001
2018-10-19 17:21 - 2018-10-03 17:13 - 000002374 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-10-19 17:21 - 2017-08-23 16:42 - 000000000 ___RD C:\Users\Martin\OneDrive
2018-10-18 17:50 - 2017-08-25 15:07 - 000000000 ____D C:\ProgramData\Origin
2018-10-18 17:31 - 2017-08-25 15:08 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Origin
2018-10-16 14:07 - 2017-08-24 05:42 - 000559880 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-10-16 05:23 - 2018-06-22 13:23 - 000000000 ____D C:\ProgramData\Packages

==================== Files in the root of some directories =======

2017-08-24 05:58 - 2018-11-09 12:50 - 000007603 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2018-11-11 20:52 - 2018-11-11 20:52 - 000040474 _____ () C:\Users\Martin\AppData\Local\zcv8e70sbp58.zip

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.11.2018
Ran by Martin (13-11-2018 14:18:00)
Running from C:\Users\Martin\Desktop
Windows 10 Pro Version 1809 17763.55 (X64) (2018-10-03 16:27:22)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3124744980-1307537907-1563216556-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3124744980-1307537907-1563216556-503 - Limited - Disabled)
Guest (S-1-5-21-3124744980-1307537907-1563216556-501 - Limited - Disabled)
Martin (S-1-5-21-3124744980-1307537907-1563216556-1001 - Administrator - Enabled) => C:\Users\Martin
WDAGUtilityAccount (S-1-5-21-3124744980-1307537907-1563216556-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aktualizácie NVIDIA 33.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 33.2.0.0 - NVIDIA Corporation) Hidden
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.8.0000 - Asmedia Technology)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.33.1 - Asmedia Technology)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Call of Duty: WWII (HKLM\...\Y2FsbG9mZHV0eXd3aWk_is1) (Version: 1 - )
CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform)
Crash Bandicoot N Sane Trilogy (HKLM-x32\...\Crash Bandicoot N Sane Trilogy_is1) (Version: 0.0.0 - THE KNIGHT)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.81 - NVIDIA Corporation) Hidden
Dying Light (HKLM-x32\...\Dying Light_is1) (Version: 1.10.0.0 - Techland)
Epic Games Launcher (HKLM-x32\...\{D442B219-3EBE-4EE2-88F9-5A31DF331CB1}) (Version: 1.1.144.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FACEIT (HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\FACEITApp) (Version: 1.19.0 - FACEIT Ltd.)
FACEIT AC version 1.0 (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 1.0 - FACEIT LTD)
Far Cry 5 (HKLM-x32\...\{73B938C4-0DDA-448D-8E46-87401EA87339}_is1) (Version: - Ubisoft)
FIFA18 version 1.0 (HKLM\...\FIFA18_is1) (Version: 1.0 - STEAMPUNKS) <==== ATTENTION
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.102 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HP Deskjet 3540 series Basic Device Software (HKLM\...\{60D33935-59B4-4ACE-8FAE-EBC60DE40A9C}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
Intel Extreme Tuning Utility (HKLM-x32\...\{79E98F35-0524-446C-8EF5-4E863C4D87E2}) (Version: 6.2.0.24 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{7afa48c7-9901-40fa-8f9b-f0707e2bc5b6}) (Version: 6.2.0.24 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Killer Performance Driver Suite UWD (HKLM\...\{23391103-5C96-439F-B3B6-CF78B8F279F2}) (Version: 1.7.1053 - Rivet Networks)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Logitech Gaming Software 8.96 (HKLM\...\Logitech Gaming Software) (Version: 8.96.81 - Logitech Inc.)
Malwarebytes verzia 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MotioninJoy DS3 driver version 0.6.0005 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.0005 - http://www.motioninjoy.com)
Mozilla Firefox 63.0.1 (x64 sk) (HKLM\...\Mozilla Firefox 63.0.1 (x64 sk)) (Version: 63.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.2 - Mozilla)
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.18 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.12 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.20 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.19 - MSI)
Need for Speed: Payback (HKLM-x32\...\Need for Speed: Payback_is1) (Version: - )
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision radič ovládača 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.15.0.186 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.186 - NVIDIA Corporation)
NVIDIA Grafický ovládač 416.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.81 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 416.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.81 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.4 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
OpenOffice 4.1.5 (HKLM-x32\...\{E177AC33-EC9C-4537-8996-37ED331D9227}) (Version: 4.15.9789 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.28.13288 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 416.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.81 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8010 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
RivaTuner Statistics Server 7.0.0 Beta 19 (HKLM-x32\...\RTSS) (Version: 7.0.0 Beta 19 - Unwinder)
RMPrepUSB (HKLM-x32\...\RMPrepUSB) (Version: - )
Roblox Player for Martin (HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
ROG Armoury (HKLM-x32\...\{FE703E21-A9E0-4DB3-9115-404175C8222F}) (Version: 2.06.04 - ASUSTeK Computer Inc.)
SecondLifeViewer (HKLM\...\SecondLifeViewer) (Version: 5.1.2.512803 - Linden Research, Inc.)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.08 - Creative Technology Limited)
STAR WARS™ Battlefront™ (HKLM-x32\...\{E402D891-4E45-4ce9-B41F-DD35864EF170}) (Version: 1.0.7.64833 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.11.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.11.1 - General Workings, Inc.)
The Walking Dead - Michonne - A Telltale Miniseries (HKLM-x32\...\1455785261_is1) (Version: 2.2.0.5 - GOG.com)
The Walking Dead: A New Frontier CZ (HKLM-x32\...\The Walking Dead: A New Frontier CZ) (Version: - )
The Walking Dead: Michonne CZ (HKLM-x32\...\The Walking Dead: Michonne CZ) (Version: - )
Thief (HKLM-x32\...\Thief_is1) (Version: 4107.3 - Eidos)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
Walking Dead: A New Frontier (HKLM-x32\...\Walking Dead: A New Frontier_is1) (Version: - )
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
Watch_Dogs 2 (HKLM-x32\...\{B0E33297-78B1-4B37-B8C1-39150F2DEE43}_is1) (Version: - Ubisoft)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wolfenstein II The New Colossus (HKLM-x32\...\Wolfenstein II The New Colossus_is1) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-11-02] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => F:\Programy\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1DF7EAD2-B694-4EAA-AAA9-B9534F474884} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-10-10] (NVIDIA Corporation)
Task: {27FA4ADD-627F-491E-BF9A-138B5CEC2757} - System32\Tasks\S-1-5-21-3124744980-1307537907-1563216556-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-09-15] (Microsoft Corporation)
Task: {2BCA92B1-AF79-4E38-84BB-93517349357C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-08-03] (Piriform Ltd)
Task: {2D004ED4-6254-412F-A94D-69AADD1E3A34} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-11-07] (Piriform Ltd)
Task: {35F0A900-E7E5-4DA1-9F7F-6C9EFDCF917C} - System32\Tasks\ASUS\ArmouryLiveUpdate => C:\Program Files (x86)\ASUS\ROG Armoury\ArmouryLiveUpdate\ArmouryLiveUpdate.exe [2018-07-18] ()
Task: {3EDE9CD6-AE41-424B-B3CC-943C696D6E37} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation)
Task: {410ACB2F-CFAC-4F69-82EB-67050D3C5AC0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation)
Task: {432FCB3D-5AE6-4AB8-8702-E19FBB02BEF5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {4749AB97-82A8-4B2C-9464-0F5E4941E619} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation)
Task: {4E6D9D09-E164-4CB7-B469-9ADABA10CDCD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {6E7642CC-6FEF-4A40-A610-F4D2414DEAF5} - System32\Tasks\ASUS\MacroAgent => C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe [2018-07-18] ()
Task: {7724C755-A982-4C19-A6D4-3C78A3F6F361} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation)
Task: {7A35A2E3-3CB4-4E28-B98D-832C02003592} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {85F92F89-79C2-4C9C-8FA1-75603DDED026} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-23] (Google Inc.)
Task: {8F2F5476-19CC-4267-90EB-38F326726008} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {91E0E232-8C45-42C1-B07E-87B5D3A9CD9B} - System32\Tasks\Windows\Services\DEBUG DENUVO => C:\ProgramData\RVT2\RVT-DNmodule.exe
Task: {A464C271-A530-444E-B605-030A922B9BCB} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation)
Task: {AD4E8AFB-A48C-4E13-BE83-B8D87600CFB4} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {B01AA547-3D28-4AF4-AFEF-431D417ACD4C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-10-10] (NVIDIA Corporation)
Task: {BD21C377-5B30-4E5A-B6F2-37D2086885E5} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {C865022E-3F01-4D41-9D99-84B45DD9D93C} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation)
Task: {CAA987E1-95DB-40C1-BA1C-B0C27BCF151A} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation)
Task: {CC227651-9413-4FF1-BCBC-BFD460EB682B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-10-10] (NVIDIA Corporation)
Task: {D28026DE-C523-4BF4-B4FE-D3AA443C011C} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation)
Task: {E3068AF6-7B1D-4D2D-9F5D-B45937BEF2F3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] ()
Task: {E84DE6F7-850B-4DB0-908A-10F281A1247A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-23] (Google Inc.)
Task: {EBFFAFE0-3650-4BC2-94C9-7975368503AB} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2015-05-19 08:11 - 2015-05-19 08:11 - 000007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2018-11-12 18:26 - 2018-10-18 08:44 - 002821952 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-11-12 18:26 - 2018-10-18 08:44 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-05-27 20:26 - 2018-10-10 21:04 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-08-24 13:45 - 2018-07-18 14:10 - 001437656 _____ () C:\Program Files (x86)\ASUS\ROG Armoury\ArmouryLiveUpdate\ArmouryLiveUpdate.exe
2018-08-24 13:45 - 2018-07-18 14:10 - 000081920 _____ () C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe
2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-23 13:35 - 2018-10-23 13:35 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-23 13:35 - 2018-10-23 13:35 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-09-15 17:26 - 2018-09-15 17:26 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-10-23 13:35 - 2018-10-23 13:35 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-10-23 13:35 - 2018-10-23 13:35 - 010978304 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-10-23 13:35 - 2018-10-23 13:35 - 002810368 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\skypert.dll
2018-10-23 13:35 - 2018-10-23 13:35 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-10-23 13:35 - 2018-10-23 13:35 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-10-23 13:35 - 2018-10-23 13:35 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-10-23 13:35 - 2018-10-23 13:35 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 08:35 - 2017-09-26 08:35 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-23 13:35 - 2018-10-23 13:35 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-05-27 20:26 - 2018-10-10 21:03 - 101252136 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-08-23 16:59 - 2015-05-29 16:57 - 000089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2017-08-23 16:59 - 2015-05-29 16:56 - 000366080 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2018-05-27 20:26 - 2018-10-10 21:03 - 004619816 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll
2018-05-27 20:26 - 2018-10-10 21:03 - 000108584 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2017-08-18 10:01 - 2017-08-18 10:01 - 001096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2017-08-18 10:01 - 2017-08-18 10:01 - 000241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2017-08-25 06:43 - 2017-08-25 06:43 - 000054488 _____ () C:\Program Files\CCleaner\branding.dll
2018-06-24 12:26 - 2018-06-24 12:26 - 000083208 _____ () C:\Program Files\CCleaner\lang\lang-1051.dll
2018-11-07 15:02 - 2018-11-07 15:03 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-07 15:02 - 2018-11-07 15:03 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-07 15:02 - 2018-11-07 15:03 - 001754112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-08-24 13:45 - 2018-07-18 14:10 - 000253952 _____ () C:\Program Files (x86)\ASUS\ROG Armoury\ArmouryLiveUpdate\pngio.dll
2018-08-24 13:45 - 2018-07-18 14:10 - 000139264 _____ () C:\Program Files (x86)\ASUS\ROG Armoury\ArmouryLiveUpdate\Aszip.dll
2018-08-24 13:45 - 2018-07-18 14:10 - 002183680 _____ () C:\Program Files (x86)\ASUS\ROG Armoury\ArmouryLiveUpdate\EzULIB_UFB.dll
2017-08-26 14:44 - 2018-10-10 21:04 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-07-10 22:37 - 2015-07-10 22:37 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [464]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [472]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 22:03 - 2017-03-18 22:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "Sound Blaster Cinema 2"
HKLM\...\StartupApproved\Run32: => "Live Update"
HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3124744980-1307537907-1563216556-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [{90A4D7F3-C1A7-47B2-8CEA-86BD216B4CD5}] => (Allow) F:\Origin games\Battlefield 1\bf1.exe
FirewallRules: [{9D9F2E3D-05AA-4411-B6A0-3BEB9F06AB04}] => (Allow) F:\Origin games\Battlefield 1\bf1.exe
FirewallRules: [{E6D5C52E-749E-4490-AF60-53EE5D760682}] => (Allow) F:\Origin games\Battlefield 1\bf1Trial.exe
FirewallRules: [{5D5FBEBA-A21C-40A9-9EEE-71F86BBBCD09}] => (Allow) F:\Origin games\Battlefield 1\bf1Trial.exe
FirewallRules: [{01109076-81E7-4176-919E-EDD3B438176D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{AB102C43-8427-4B90-A7CD-E64D74F8A753}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [UDP Query User{8BA1902E-300F-488B-8EE5-D758F4B94904}F:\hry\dying light\dyinglightgame.exe] => (Block) F:\hry\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{75BED76E-DA8F-42C4-BEEE-770836EE3562}F:\hry\dying light\dyinglightgame.exe] => (Block) F:\hry\dying light\dyinglightgame.exe
FirewallRules: [{F1332FBD-EDE7-4B28-8F3C-96A122FB9BE1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{9B96CB8C-4C50-465C-B1CD-88DC598871A3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [UDP Query User{533A5E7B-FAED-4BC8-855F-B7BCE03B6FE5}F:\steam games\steamapps\common\warface\gamecenter\gamecenter.exe] => (Block) F:\steam games\steamapps\common\warface\gamecenter\gamecenter.exe
FirewallRules: [TCP Query User{B16DB5F2-23DF-4CFE-BF14-32C731744F94}F:\steam games\steamapps\common\warface\gamecenter\gamecenter.exe] => (Block) F:\steam games\steamapps\common\warface\gamecenter\gamecenter.exe
FirewallRules: [{450B614B-9595-4BAB-B7E2-3D5B642D9E21}] => (Allow) F:\Steam games\steamapps\common\Warface\WarfaceMycomSteamLoader.exe
FirewallRules: [{1BD9D5FE-3AB4-4C31-86BC-575B43D79EB6}] => (Allow) F:\Steam games\steamapps\common\Warface\WarfaceMycomSteamLoader.exe
FirewallRules: [UDP Query User{3A3F9EB4-F443-4E1A-94FB-38E350148225}F:\hry\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe] => (Block) F:\hry\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe
FirewallRules: [TCP Query User{9FEF256D-3C21-409D-941D-630E58E6C9C6}F:\hry\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe] => (Block) F:\hry\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe
FirewallRules: [UDP Query User{D81DF928-30CB-4395-90B6-EC7E514B453B}F:\steam games\steamapps\common\realm royale\binaries\win64\realm.exe] => (Block) F:\steam games\steamapps\common\realm royale\binaries\win64\realm.exe
FirewallRules: [TCP Query User{D019C3E1-AEA6-4127-8215-F4EB1E85984C}F:\steam games\steamapps\common\realm royale\binaries\win64\realm.exe] => (Block) F:\steam games\steamapps\common\realm royale\binaries\win64\realm.exe
FirewallRules: [{66179793-B0C5-4573-9F33-AD8A0AAF1063}] => (Allow) F:\Steam games\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe
FirewallRules: [{4AB1AB84-4A3A-4F01-BB1C-6BCB2B6FAD91}] => (Allow) F:\Steam games\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe
FirewallRules: [{38CCD565-061D-4D34-B4E5-9706D07BA604}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EDC00D86-E9F3-4CCD-9DB1-5D1CC8FBF9FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{BD1EA10A-3EE1-4796-AA7E-380A2788446A}F:\steam games\steamapps\common\sniper elite v2\bin\sniperelitev2.exe] => (Block) F:\steam games\steamapps\common\sniper elite v2\bin\sniperelitev2.exe
FirewallRules: [TCP Query User{4A3F1C36-15E8-4650-9C53-84C734F31356}F:\steam games\steamapps\common\sniper elite v2\bin\sniperelitev2.exe] => (Block) F:\steam games\steamapps\common\sniper elite v2\bin\sniperelitev2.exe
FirewallRules: [UDP Query User{B7DFB998-113A-445F-964F-0F2866F4FEB6}F:\hry\fifa18\fifa18.exe] => (Block) F:\hry\fifa18\fifa18.exe
FirewallRules: [TCP Query User{FDF3CD4A-A1FA-47B4-8531-976E93F88264}F:\hry\fifa18\fifa18.exe] => (Block) F:\hry\fifa18\fifa18.exe
FirewallRules: [UDP Query User{3D9EFC4A-DD19-494A-BFB4-E9E5C12FD9E2}F:\programy\myphoneexplorer\myphoneexplorer portable.exe] => (Block) F:\programy\myphoneexplorer\myphoneexplorer portable.exe
FirewallRules: [TCP Query User{724EDC7C-6C4D-49C0-BE62-B10CDA7B2F68}F:\programy\myphoneexplorer\myphoneexplorer portable.exe] => (Block) F:\programy\myphoneexplorer\myphoneexplorer portable.exe
FirewallRules: [UDP Query User{E7CCC237-161B-497D-ADF5-E37F96473660}F:\origin games\star wars battlefront\starwarsbattlefront.exe] => (Block) F:\origin games\star wars battlefront\starwarsbattlefront.exe
FirewallRules: [TCP Query User{B84FD6A8-ACFC-45E0-8EF4-3CCB0200858F}F:\origin games\star wars battlefront\starwarsbattlefront.exe] => (Block) F:\origin games\star wars battlefront\starwarsbattlefront.exe
FirewallRules: [{6389423C-DD00-415C-949D-0014EEB43FC8}] => (Allow) F:\Origin games\Battlefield 1\bf1.exe
FirewallRules: [{DF30A739-E577-486A-A15C-EFC4BE00058D}] => (Allow) F:\Origin games\Battlefield 1\bf1.exe
FirewallRules: [{FE399377-40F6-457A-B1CE-7C054ACD4E86}] => (Allow) F:\Origin games\Battlefield 1\bf1Trial.exe
FirewallRules: [{D70B568D-63F2-4029-9494-549546DE7263}] => (Allow) F:\Origin games\Battlefield 1\bf1Trial.exe
FirewallRules: [{BD524470-5BAB-45C7-BCB8-9D4F7ADA8255}] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{9482D38A-5C44-4324-8969-6E250286013F}] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{795E478A-CF79-431A-AE3C-0F6373B67830}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{05B7BBAF-B53A-44A4-AF6F-739F29313796}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{FCBAA204-2E57-4A2C-B740-BA9348113F06}F:\hry\sniper ghost warrior 3\win_x64\sgw3.exe] => (Block) F:\hry\sniper ghost warrior 3\win_x64\sgw3.exe
FirewallRules: [TCP Query User{1271CFAE-4D27-4A68-B80F-709E3EA2F2F1}F:\hry\sniper ghost warrior 3\win_x64\sgw3.exe] => (Block) F:\hry\sniper ghost warrior 3\win_x64\sgw3.exe
FirewallRules: [{D360A512-8775-45D4-A27F-F7A8AC5A5F5A}] => (Allow) E:\uTorrent\utorrent.exe
FirewallRules: [{A3226105-6CCB-49C9-B549-A53DC953A528}] => (Allow) E:\uTorrent\utorrent.exe
FirewallRules: [{18ED69BA-F0CD-4C52-AD5C-17DEA49CAFFC}] => (Block) E:\utorrent\utorrent.exe
FirewallRules: [{C430F6A4-3A10-4529-8D0C-968F484FDBCF}] => (Block) E:\utorrent\utorrent.exe
FirewallRules: [UDP Query User{164EB80D-90C2-4CBD-BDB2-2BEF9DB3700B}E:\utorrent\utorrent.exe] => (Allow) E:\utorrent\utorrent.exe
FirewallRules: [TCP Query User{E570CE17-0F42-4542-A8E9-B1061DCD4728}E:\utorrent\utorrent.exe] => (Allow) E:\utorrent\utorrent.exe
FirewallRules: [{409D3084-4903-4FAE-AFD2-4BF6BA157B27}] => (Allow) F:\Steam games\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{38963D15-BAAB-483B-B176-15F1B6492868}] => (Allow) F:\Steam games\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F2BBB443-D41C-4A3C-B82E-3E73EF2B4C97}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{26FF9B7B-A9D3-4AB5-8FA1-4C98C9033839}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FB1EDBDC-3BE4-4E81-B3FB-5892E00F1E57}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D2C96FF9-C950-418E-9ACF-0B5F24E5A0DA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{749EBAC3-1BBD-4743-8FE3-E5EE404189EA}F:\hry\gta v\gta5.exe] => (Block) F:\hry\gta v\gta5.exe
FirewallRules: [UDP Query User{0F06A8F2-01CC-414A-AD95-8FCB2ABE9912}F:\hry\gta v\gta5.exe] => (Block) F:\hry\gta v\gta5.exe
FirewallRules: [{12AC0F26-016D-406A-982E-9A36B8E9A049}] => (Allow) C:\Program Files\HP\HP Deskjet 3540 series\Bin\DeviceSetup.exe
FirewallRules: [{0735E4AA-1856-46E0-9E73-75AF38B6B27B}] => (Allow) LPort=5357
FirewallRules: [{3FCC7E57-7313-4C1D-A5DD-64048AA956F7}] => (Allow) C:\Program Files\HP\HP Deskjet 3540 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{C63A86E6-18CB-4931-9B7D-40571BB3C131}] => (Allow) F:\Uplay games\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{E77F32A0-9FCF-4DCC-B54C-BEBBD8B6F959}] => (Allow) F:\Uplay games\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [TCP Query User{E1C38D3A-FE2B-46B3-A6F1-C772E8952EF6}F:\origin games\star wars battlefront\starwarsbattlefront.exe] => (Block) F:\origin games\star wars battlefront\starwarsbattlefront.exe
FirewallRules: [UDP Query User{4E45C2D3-85AE-4AF9-8D91-173AA014EBA3}F:\origin games\star wars battlefront\starwarsbattlefront.exe] => (Block) F:\origin games\star wars battlefront\starwarsbattlefront.exe
FirewallRules: [TCP Query User{F533F554-AE2E-4AA4-B92B-39C2F8FCC53E}F:\hry\gta v\gta5.exe] => (Block) F:\hry\gta v\gta5.exe
FirewallRules: [UDP Query User{A03C9053-DB42-4B0E-BB8C-E3698C709168}F:\hry\gta v\gta5.exe] => (Block) F:\hry\gta v\gta5.exe
FirewallRules: [{BDE28316-6B60-4137-97B8-B630440F092D}] => (Allow) F:\Steam games\steamapps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{C500DDB4-FE62-445C-AF54-F9C1027525B5}] => (Allow) F:\Steam games\steamapps\common\Just Cause 3\JustCause3.exe
FirewallRules: [TCP Query User{09685D9C-AE4E-4897-86B8-ED086C26FD73}C:\program files\secondlifeviewer\slvoice.exe] => (Block) C:\program files\secondlifeviewer\slvoice.exe
FirewallRules: [UDP Query User{49A36D28-3874-4670-A6D0-AA1097A6F8E3}C:\program files\secondlifeviewer\slvoice.exe] => (Block) C:\program files\secondlifeviewer\slvoice.exe
FirewallRules: [TCP Query User{E47480BA-1213-4871-B66B-C2C0D415DDFD}F:\hry\fornite\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Block) F:\hry\fornite\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{ADD33E0F-334B-4699-8803-EEFE9532006C}F:\hry\fornite\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Block) F:\hry\fornite\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{FD299099-2A0D-443E-8CF7-2849AE812DAC}F:\hry\fornite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) F:\hry\fornite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{E103114D-7F9D-4D70-BE7A-28BD9601E63D}F:\hry\fornite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) F:\hry\fornite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{B10E5920-B612-4BDF-B9EF-1C1DC5B8190C}F:\hry\fornite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) F:\hry\fornite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{8A7F3269-119E-42FC-8E3F-4FC1E4E3397B}F:\hry\fornite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) F:\hry\fornite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{138EED9C-18D4-4EA1-900C-84BE75359E49}] => (Allow) F:\Steam games\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{23BAE189-9DF7-4480-87A4-1D903C2B5370}] => (Allow) F:\Steam games\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{C16CAB30-3493-44CE-A888-34FCB4B7BFE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{88C71D75-8AC0-4107-8233-272DD543EDB3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{FA2FD28E-57DE-400C-9154-E373054F2BA0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EA9C064E-2C1F-4D67-908E-2DF7800A131D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CF058298-421E-4C85-B973-D62CD4E82B13}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/13/2018 02:15:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: utorrent.exe, verzia: 2.2.1.25534, časová značka: 0x4e4594ce
Názov chybujúceho modulu: GDI32.dll, verzia: 10.0.17763.1, časová značka: 0x1c1f7575
Kód výnimky: 0xc000041d
Odstup chyby: 0x000060d7
Identifikácia chybujúceho procesu: 0xbf4
Čas spustenia chybujúcej aplikácie: 0x01d47b5274a18f67
Cesta chybujúcej aplikácie: E:\uTorrent\utorrent.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\GDI32.dll
Identifikácia hlásenia: da69f31a-f2ed-4440-8740-71dc57fb4288
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/13/2018 02:10:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Názov chybujúceho modulu: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Kód výnimky: 0xc000041d
Odstup chyby: 0x00026eaf
Identifikácia chybujúceho procesu: 0xe64
Čas spustenia chybujúcej aplikácie: 0x01d47b5236e1c693
Cesta chybujúcej aplikácie: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Cesta chybujúceho modulu: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Identifikácia hlásenia: 59e1985d-38f5-40ef-9480-06e6cb429008
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/13/2018 02:10:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Názov chybujúceho modulu: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Kód výnimky: 0xc0000005
Odstup chyby: 0x00026eaf
Identifikácia chybujúceho procesu: 0xe64
Čas spustenia chybujúcej aplikácie: 0x01d47b5236e1c693
Cesta chybujúcej aplikácie: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Cesta chybujúceho modulu: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Identifikácia hlásenia: 1bda1398-3736-4f6f-8f12-90c428377460
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/13/2018 02:10:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MSI_LiveUpdate_Service.exe, verzia: 1.0.0.49, časová značka: 0x599d2f81
Názov chybujúceho modulu: NDA.dll_unloaded, verzia: 1.0.0.15, časová značka: 0x581aa4cc
Kód výnimky: 0xc0000005
Odstup chyby: 0x000f650e
Identifikácia chybujúceho procesu: 0xe50
Čas spustenia chybujúcej aplikácie: 0x01d47b5236e13df7
Cesta chybujúcej aplikácie: C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
Cesta chybujúceho modulu: NDA.dll
Identifikácia hlásenia: ba957c56-96dc-42cd-92dc-28d0482d2aff
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/13/2018 08:37:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Názov chybujúceho modulu: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Kód výnimky: 0xc000041d
Odstup chyby: 0x00026eaf
Identifikácia chybujúceho procesu: 0x19f0
Čas spustenia chybujúcej aplikácie: 0x01d47b23ab725bb4
Cesta chybujúcej aplikácie: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Cesta chybujúceho modulu: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Identifikácia hlásenia: aeaacf52-e585-4198-a5c1-97b03893fcfb
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/13/2018 08:37:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Názov chybujúceho modulu: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Kód výnimky: 0xc0000005
Odstup chyby: 0x00026eaf
Identifikácia chybujúceho procesu: 0x19f0
Čas spustenia chybujúcej aplikácie: 0x01d47b23ab725bb4
Cesta chybujúcej aplikácie: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Cesta chybujúceho modulu: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Identifikácia hlásenia: 0cda4d20-76a5-4bb8-a9ae-9587db9ff803
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/12/2018 06:58:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Názov chybujúceho modulu: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Kód výnimky: 0xc000041d
Odstup chyby: 0x00026eaf
Identifikácia chybujúceho procesu: 0xe40
Čas spustenia chybujúcej aplikácie: 0x01d47ab13223a2b5
Cesta chybujúcej aplikácie: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Cesta chybujúceho modulu: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Identifikácia hlásenia: 49c83a85-c22f-448a-a354-3c409fad1174
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/12/2018 06:58:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Názov chybujúceho modulu: MSIDDRService.exe, verzia: 3.0.0.16, časová značka: 0x58a41e28
Kód výnimky: 0xc0000005
Odstup chyby: 0x00026eaf
Identifikácia chybujúceho procesu: 0xe40
Čas spustenia chybujúcej aplikácie: 0x01d47ab13223a2b5
Cesta chybujúcej aplikácie: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Cesta chybujúceho modulu: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Identifikácia hlásenia: e962a4c7-9473-4d70-9bc1-ae43b2118f4d
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (11/13/2018 02:11:57 PM) (Source: DCOM) (EventID: 10016) (User: MARTIN-PC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MARTIN-PC\Martin SID (S-1-5-21-3124744980-1307537907-1563216556-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/13/2018 02:11:57 PM) (Source: DCOM) (EventID: 10016) (User: MARTIN-PC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MARTIN-PC\Martin SID (S-1-5-21-3124744980-1307537907-1563216556-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/13/2018 02:10:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI Command Center DDR Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (11/13/2018 02:10:40 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.SecurityAppBroker
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/13/2018 02:10:40 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscDataProtection
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/13/2018 02:10:40 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (11/13/2018 02:10:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI Live Update Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (11/13/2018 02:09:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.


Windows Defender:
===================================
Date: 2018-11-12 22:03:54.356
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {8711405A-A998-4B92-A539-FC5435B03506}
Scan Type: Antimalware
Scan Parameters: Full Scan

Date: 2018-11-12 19:54:15.939
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {58E2E0CB-07FF-4710-9BFA-65219A273DBC}
Scan Type: Antimalware
Scan Parameters: Full Scan

Date: 2018-11-12 18:33:26.379
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Win32/Fuerboos.C!cl
ID: 2147723654
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\ProgramData\RVT2\DNmodule-1.5.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Signature Version: AV: 1.279.1701.0, AS: 1.279.1701.0, NIS: 1.279.1701.0
Engine Version: AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-12 18:33:24.706
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Win32/Fuerboos.C!cl
ID: 2147723654
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\ProgramData\RVT2\DNmodule-1.5.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Signature Version: AV: 1.279.1701.0, AS: 1.279.1701.0, NIS: 1.279.1701.0
Engine Version: AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-12 18:32:41.854
Description:
Windows Defender Antivirus has detected a suspicious behavior.
Name: Behavior:Win32/DroppedKnownMalware
ID: 1457852860
Severity: Nízka
Category: Podozrivé správanie
Path Found: file:_C:\ProgramData\RVT2\RVT-DNmodule.exe; process:_12888
Detection Origin: Local machine
Detection Type: Suspicious
Detection Source: Real-Time Protection
Status: Executing
Process Name: C:\ProgramData\RVT2\RVT-DNmodule.exe
Signature ID: 41453017067075
Signature Version: AV: 1.279.1701.0, AS: 1.279.1701.0
Engine Version: 1.1.15400.4
Fidelity Label: Low
Target File Name: C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\QI5B83FF\X64RN[1].exe

CodeIntegrity:
===================================

Date: 2018-11-13 14:11:28.144
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-13 12:06:57.356
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-13 12:06:51.671
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-13 08:38:07.606
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-12 18:58:51.268
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-12 18:30:50.967
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Percentage of memory in use: 27%
Total physical RAM: 24521.86 MB
Available physical RAM: 17785.75 MB
Total Virtual: 28105.86 MB
Available Virtual: 19407.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:110.46 GB) (Free:69.36 GB) NTFS
Drive d: () (Fixed) (Total:149.05 GB) (Free:148.84 GB) NTFS
Drive e: () (Fixed) (Total:931.51 GB) (Free:5.15 GB) NTFS
Drive f: () (Fixed) (Total:930.53 GB) (Free:129.72 GB) NTFS

\\?\Volume{a586fe91-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{a586fe91-0000-0000-0000-f0bc1b000000}\ () (Fixed) (Total:0.84 GB) (Free:0.44 GB) NTFS
\\?\Volume{ac44851c-0000-0000-0000-80a8e8000000}\ () (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: A586FE91)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=856 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 149 GB) (Disk ID: C927C927)
Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8CC386BA)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 931.5 GB) (Disk ID: AC44851C)
Partition 1: (Not Active) - (Size=930.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================



# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build: 09-25-2018
# Database: 2018-11-05.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-13-2018
# Duration: 00:00:00
# OS: Windows 10 Pro
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\SOFTWARE\029c4619-0385-5543-9426-46f9987161d9

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1295 octets] - [13/11/2018 14:03:36]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Kontrola logu

#2 Příspěvek od JaRon »

ahoj,
v logoch nic aktivne nevidim, doporucujem prescanovat PC s AVPTool
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

JanSpasitel
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 02 lis 2008 22:25

Re: Kontrola logu

#3 Příspěvek od JanSpasitel »

zatial dakujem za info :) , preskenoval som a nastastie nic nenaslo.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Kontrola logu

#4 Příspěvek od JaRon »

Tak je to OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Zamčeno