Prosím o kontrolu logu, reklamy, spomalene pc

[Termiter8]

Prosím o kontrolu logu, pořád mi vyskakuje stránka na aliexpress,synotip a ostatní, občas mám vytížen disk na 100 % a ještě mi vyskakovali reklamy v pravém dolním rohu, poslední dobou už to nepozoruji.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24.12.2018
Ran by Asusak (25-12-2018 11:28:03)
Running from C:\Users\Asusak\Desktop
Windows 10 Home Version 1803 17134.472 (X64) (2018-07-05 17:27:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3811162916-2113203268-3777127909-500 - Administrator - Disabled)
Asusak (S-1-5-21-3811162916-2113203268-3777127909-1001 - Administrator - Enabled) => C:\Users\Asusak
DefaultAccount (S-1-5-21-3811162916-2113203268-3777127909-503 - Limited - Disabled)
Guest (S-1-5-21-3811162916-2113203268-3777127909-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3811162916-2113203268-3777127909-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aalto VST version 1.3.2 (HKLM-x32\...\{F497817C-ED52-4C60-9C99-93C219254E4A}_is1) (Version: 1.3.2 - Madrona Labs, LLC)
AAS - Ultra Analog VA-2 (HKLM-x32\...\Ultra Analog VA-2) (Version: - Applied Acoustics Systems)
Ableton Live 9 Suite (HKLM\...\{77D0571D-D8A9-4FA0-9DE4-5D8489FB0C9E}) (Version: 9.0.0.0 - Ableton)
ABLPro 1.5.0 (HKLM-x32\...\AudioRealism Bass Line Pro_is1) (Version: - AudioRealism)
Actual Booster 3.2 (HKLM-x32\...\Actual Booster) (Version: 3.2 - Loonies Software)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc)
AF210M version 2.4.3 (HKLM\...\AF210M_is1) (Version: 2.4.3 - OverToneDSP)
Aktualizace NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)
Antares Autotune Evo VST RTAS v6.0.9 (HKLM-x32\...\Antares Autotune Evo VST RTAS_is1) (Version: - )
Apowersoft Online Launcher verze 1.6.1 (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.6.1 - APOWERSOFT LIMITED)
ARIA Engine v1.8.2.2 (HKLM\...\ARIA Engine_is1) (Version: v1.8.2.2 - Plogue Art et Technologie, Inc)
ArtsAcoustic Reverb (x64) 1.6.0.15 (HKLM-x32\...\ArtsAcoustic Reverb (x64)) (Version: 1.6.0.15 - ArtsAcoustic Vertrieb GbR)
Arturia V Collection 5 (HKLM-x32\...\Arturia V Collection 5) (Version: 5.0.2 - Arturia)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.8 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.05.0001 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.1 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0037 - ASUS)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.46 - ICEpower a/s)
Avidemux 2.6 - 64 bits (HKLM-x32\...\Avidemux 2.6 - 64 bits (64-bit)) (Version: 2.6.21.170501 - )
Balíček ovladače systému Windows - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS)
Bark of Dog version 1.2.1 (HKLM\...\Bark of Dog_is1) (Version: 1.2.1 - )
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bome's Virtual MIDI Port 1.0.0.11 (HKLM-x32\...\BMIDI_Driver1.0.0.11_is1) (Version: - Bome Software GmbH & Co. KG)
Cableguys VolumeShaper 4.0 (HKLM\...\VolumeShaper_is1) (Version: 4.0 - Cableguys)
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
ControllerPC (HKLM-x32\...\{2E372CE0-ABC8-4A27-B89A-73BD3D00C601}) (Version: 2.18 - MoboAlien)
Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6) (Version: - )
Counter-Strike Global Offensive WaRzOnE (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\CSGO) (Version: - CS WaRzOnE)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Crossout Launcher 1.0.3.71 (HKLM-x32\...\CrossOutLauncher_is1) (Version: - )
CS-80V2 2.0 (HKLM-x32\...\CS-80V2_is1) (Version: - Arturia)
Custom Shop version 1.7.0 (HKLM-x32\...\{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Version: 1.7.0 - IK Multimedia)
D16 Group PunchBOX (HKLM\...\PunchBOX_is1) (Version: 1.0.2 - D16 Group)
Deckadance 2 (HKLM-x32\...\Deckadance 2) (Version: 2.0 - Image-Line)
Devastor 2 (64bit) (HKLM\...\{EF3788FA-CDA8-402F-921F-CC561ED6C3F4}) (Version: 2.1.3.0 - D16 Group Audio Software)
Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.)
Drumaxx (HKLM-x32\...\Drumaxx) (Version: - Image-Line)
DX10 (HKLM-x32\...\DX10) (Version: - Image-Line)
Edison (HKLM-x32\...\Edison) (Version: - Image-Line)
Electrum (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Electrum) (Version: 2.8.2 - Electrum Technologies GmbH)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: - Steinberg Media Technologies GmbH)
Epic Games Launcher (HKLM-x32\...\{8FEB5B5F-0777-4E9D-8705-06F0A2295544}) (Version: 1.1.143.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX110 Series Printer Uninstall (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
FabFilter Total Bundle (HKLM-x32\...\FabFilter Total Bundle) (Version: 2016.02.02 - FabFilter)
FakeApp 2.0.0 (only current user) (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\17ab8a6d-449e-53a3-8c9d-271eaaf676f4) (Version: 2.0.0 - deepfakeapp)
Farm Expert 2017 (HKLM\...\ZmFybWV4cGVydDIwMTc_is1) (Version: 1 - )
FC70 version 2.3.2 (HKLM\...\FC70_is1) (Version: 2.3.2 - OverToneDSP)
First AIR Instruments (HKLM\...\{71F15787-675A-41AA-98E2-4403383ECF11}) (Version: 12.0.0.615 - AIR Music Technology)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Foxit PhantomPDF (HKLM-x32\...\{FC76E6BB-7CBB-4CD6-8178-3BCADC0526C3}) (Version: 6.0.62.801 - Foxit Corporation)
FXpansion DCAM Synth Squad (HKLM-x32\...\FXpansion DCAM Synth Squad) (Version: 1.2.0.20 - FXpansion Audio UK Ltd)
FXpansion Geist2 (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\FXpansion Geist2) (Version: 2.0.6.5 - FXpansion Audio UK Ltd)
FXpansion Tremor (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\FXpansion Tremor) (Version: 1.0.3.0 - FXpansion Audio UK Ltd)
Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.4 - IObit)
GameTracker Lite (HKLM-x32\...\GameTracker Lite) (Version: - ClanServers Hosting LLC.)
GMedia Music impOSCar VSTi v1.0.0.1 (HKLM-x32\...\GMedia Music impOSCar VSTi v1.0.0.1) (Version: - )
Gobbler (HKLM\...\{49C3123D-9497-434D-A988-A9B389B1E189}) (Version: 2.2.2.263 - Media Gobbler, Inc.) Hidden
Gobbler (HKLM-x32\...\{1a80729d-d49d-4d81-9991-b785c110295b}) (Version: 2.2.2.263 - Media Gobbler, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Grand Theft Auto San Andreas verze 1.01 (HKLM-x32\...\Grand Theft Auto San Andreas_is1) (Version: 1.01 - Rockstar Games)
Groove Machine (HKLM-x32\...\Groove Machine) (Version: - Image-Line)
Hardcore (HKLM-x32\...\Hardcore) (Version: - Image-Line bvba)
Hatsune Miku English Vocaloid3 Library (HKLM-x32\...\Hatsune Miku English Vocaloid3 Library_is1) (Version: Vocaloid3 Library - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Hitman Absolution Professional Edition version 1.0.447.0 (HKLM-x32\...\Hitman Absolution Professional Edition_is1) (Version: 1.0.447.0 - Mr DJ)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.1.0.001 - HTC Corporation)
Chrome Remote Desktop Host (HKLM-x32\...\{F51A03C4-2DD0-43B0-900F-EAD1C45DC542}) (Version: 71.0.3578.15 - Google Inc.)
IK Multimedia Authorization Manager version 1.0.15 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.15 - IK Multimedia)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
IL DrumSynth Live (HKLM-x32\...\IL DrumSynth Live) (Version: - Image-Line)
IL Gross Beat (HKLM-x32\...\IL Gross Beat) (Version: - Image-Line)
IL Harmless (HKLM-x32\...\IL Harmless) (Version: - Image-Line)
IL Harmor (HKLM-x32\...\IL Harmor) (Version: - Image-Line)
IL Juice Pack (HKLM-x32\...\IL Juice Pack) (Version: - Image-Line)
IL MiniHost (HKLM-x32\...\IL MiniHost) (Version: - Image-Line)
IL Ogun (HKLM-x32\...\IL Ogun) (Version: - Image-Line)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
IL Slicex (HKLM-x32\...\IL Slicex) (Version: - Image-Line)
IL Vocodex (HKLM-x32\...\IL Vocodex) (Version: - Image-Line)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) C++ Redistributables on IA-32 (HKLM-x32\...\{644B16B7-3B5D-4316-965C-03E49D749C40}) (Version: 17.0.210 - Intel Corporation)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{CD4D85AB-8C3B-4876-A063-96D8E4090353}) (Version: 17.0.210 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.0.10100.71 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{f5d71765-7cd1-4e68-998f-5b379e725da3}) (Version: 10.0.22 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.38.1036 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
InzertMan 1.0 (HKLM-x32\...\InzertMan_is1) (Version: - )
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.5.129 - IObit)
IP Anonymizer 3.1 (HKLM-x32\...\IP Anonymizer_is1) (Version: - Privacy-Pro.com)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.28 - Irfan Skiljan)
iZotope Ozone 4 (HKLM-x32\...\iZotope Ozone 4_is1) (Version: 4.00 - iZotope, Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java SE Development Kit 8 Update 101 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180101}) (Version: 8.0.1010.13 - Oracle Corporation)
JBridge (HKLM-x32\...\JBridge) (Version: - JBridge)
Jupiter-8V2 2.5.0 (HKLM-x32\...\jupiter8v25_is1) (Version: 2.5.0 - Arturia)
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Kingo ROOT version 1.5.5.3207 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.5.5.3207 - Kingosoft Technology Ltd.)
Kinoni Streamer 1.51 (HKLM-x32\...\Kinoni Remote Desktop) (Version: 1.51 - Kinoni)
KORG Legacy Collection - LegacyCell (HKLM\...\{4F3D8320-002D-4A0E-A45B-38EAFB2494CA}) (Version: 1.3.0 - KORG Inc.)
KORG Legacy Collection - M1 (HKLM\...\{AA1D88F2-E75B-4FC3-80C6-9E041D7F4B00}) (Version: 1.7.0 - KORG Inc.)
KORG Legacy Collection - MDE-X (HKLM\...\{F4D6C510-369F-4AB5-9CCF-4B29E4CB075F}) (Version: 1.3.0 - KORG Inc.)
KORG Legacy Collection - MonoPoly (HKLM\...\{DA31AE51-AB45-4368-9F4E-6AF05176AEE3}) (Version: 1.1.0 - KORG Inc.)
KORG Legacy Collection - MS-20 (HKLM\...\{D9163B30-035A-45E8-A7FB-FC3D700DA159}) (Version: 1.3.0 - KORG Inc.)
KORG Legacy Collection - Polysix (HKLM\...\{D3AD748F-85C6-423D-B95F-268A0E1460A7}) (Version: 1.3.0 - KORG Inc.)
KORG Legacy Collection - WAVESTATION (HKLM\...\{6C2C56CC-9075-491D-9B29-55147B67B892}) (Version: 1.7.0 - KORG Inc.)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Left 4 Dead 2 verze 2.1.4.6 (HKLM\...\{F30ECD7F-0336-48C8-B484-94F58B9F38AD}_is1) (Version: 2.1.4.6 - Strogino CS Portal)
Lemur v5.3.2 (HKLM-x32\...\Lemur_is1) (Version: - )
LoopBe1 - Internal MIDI Port (HKLM-x32\...\LoopBe1) (Version: - )
loopMIDI (HKLM-x32\...\{55c0d955-4cee-452c-b393-d4c020a967d7}) (Version: 1.0.13.24 - Tobias Erichsen)
loopMIDI (HKLM-x32\...\{9E69C6CD-820A-44A9-9A0A-B7A56AD62A1E}) (Version: 1.0.13.24 - Tobias Erichsen) Hidden
loopMIDIBlockLegacy (HKLM-x32\...\{AEAF7978-3204-451D-8593-BC53EBDDA31D}) (Version: 9.9.9.9 - Tobias Erichsen) Hidden
Lurssen Mastering Console version 1.0.1 (HKLM\...\{9F525466-89DA-4B7B-BD8C-BBFDC4432DFB}_is1) (Version: 1.0.1 - IK Multimedia)
LuSH-101 1.1.3 (64bit) (HKLM\...\{38666E88-8DD7-4223-8DCF-1EB25D53A48B}) (Version: 1.1.3.0 - D16 Group Audio Software)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Max 7 (64-bit) (HKLM\...\{AA88051E-EDA9-4120-8538-0C3361CDBDED}) (Version: 7.2.0 - Cycling '74)
Maximus (HKLM-x32\...\Maximus) (Version: - Image-Line)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
MeldaProduction Audio Plugins 10 (HKLM-x32\...\MeldaProduction Audio Plugins 10) (Version: - MeldaProduction)
Melodyne Runtime 4.1 (x64) (HKLM\...\{53EE2829-E9DB-4913-B3EA-96F10F84E98B}) (Version: 1.0.1 - Celemony Software GmbH)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft OneDrive (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\OneDriveSetup.exe) (Version: 18.222.1104.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{58b3beca-b999-4f6f-a48c-81681136a620}) (Version: 14.10.25017.0 - Microsoft Corporation)
miniBit version 1.1.5 (HKLM-x32\...\{78851715-A6C8-40C9-A861-2A492F845A26}_is1) (Version: 1.1.5 - AudioThing)
Minimal ADB and Fastboot version 1.4.2 (HKLM-x32\...\{1901BAF7-7E78-4041-BC88-D0EE5DD1DFD9}_is1) (Version: 1.4.2 - Sam Rodberg)
MiniTool Partition Wizard Home Edition 5.2 (HKLM-x32\...\{12FEC00C-027C-4A34-9AAB-562EDA43DC18}_is1) (Version: - MiniTool Solution Ltd.)
Mixed in Key (HKLM-x32\...\{4FF0FB67-BEF8-4DD0-BBA0-75EA9DA2B383}) (Version: 1.0.181.0 - Mixed In Key LLC) Hidden
Mixed In Key 2.5 (HKLM-x32\...\Mixed In Key) (Version: 2.5 - )
Mixed In Key 4 (HKLM-x32\...\Mixed In Key 4) (Version: 4.0.1 - )
Mixed In Key 7 (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{4d05cb39-3d9c-4e75-930c-a99591564f91}) (Version: 7.0.181.0 - Mixed In Key LLC)
Morphine (HKLM-x32\...\Morphine) (Version: - Image-Line bvba)
Mozilla Firefox 58.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 58.0.1 (x64 cs)) (Version: 58.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0 - Mozilla)
MultiBit HD 0.3.0 (HKLM\...\6925-4794-5772-4956) (Version: 0.3.0 - Bitcoin Solutions Ltd)
MusicTrans (64 bit) 1.0.7 (HKLM\...\{7586879B-F675-49B8-9610-02D9BF3569AB}) (Version: 1.0.7 - Franco Catrin)
Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: 5.3.0.1510 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.7.2.189 - Native Instruments)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.5.0.409 - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: - Native Instruments)
Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version: - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.1.0.31 - Native Instruments)
Native Instruments Reaktor 6 Bundle (HKLM-x32\...\Native Instruments Reaktor 6 Bundle) (Version: 6.0.0.0 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
Native Instruments Supercharger GT (HKLM-x32\...\Native Instruments Supercharger GT) (Version: 1.1.2.446 - Native Instruments)
Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.7.1.854 - Native Instruments)
Native Instruments VC 160 FX (HKLM-x32\...\Native Instruments VC 160 FX) (Version: - Native Instruments)
Nicky Romero Kickstart 1.0.6 (HKLM\...\Kickstart_is1) (Version: 1.0.6 - Nicky Romero)
nrg-A version 1.0 (HKLM-x32\...\nrg-A_is1) (Version: - Synthepolis)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.57 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.0 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenIV (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\OpenIV) (Version: 2.9.1.926 - .black/OpenIV Team)
OpenVPN 2.3.12-I602 (HKLM-x32\...\OpenVPN) (Version: 2.3.12-I602 - )
Opera Stable 57.0.3098.106 (HKLM-x32\...\Opera 57.0.3098.106) (Version: 57.0.3098.106 - Opera Software)
Ovládací panel NVIDIA 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.57 - NVIDIA Corporation) Hidden
Ozone Imager (HKLM-x32\...\Ozone Imager) (Version: 1.00 - iZotope, Inc.)
PACE License Support Win64 (HKLM\...\{DF91FC8F-0D43-415b-BB5D-22533FC1CC1A}) (Version: 2.6.0.1134 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{DF91FC8F-0D43-415b-BB5D-22533FC1CC1A}) (Version: 2.6.0.1134 - PACE Anti-Piracy, Inc.)
PDF Editor 5 (HKLM-x32\...\PDF Editor 5) (Version: - )
Plug and Mix V.I.P. bundle 3.0.3 (Repack) (HKLM\...\Plug and Mix V.I.P. bundle_is1) (Version: - )
PoiZone (HKLM-x32\...\PoiZone) (Version: - Image-Line)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation)
Portal (HKLM-x32\...\Portal) (Version: - )
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.5 - Power Software Ltd)
PreSonus Studio One 3 x64 (HKLM\...\PreSonus Studio One 3) (Version: 3.0.2.34331 - PreSonus Audio Electronics)
PROMARS(64bit) (HKLM\...\{5A583C6E-A8CD-4BC5-910A-0347E9F15ACE}) (Version: 1.00.0000 - Roland Corporation)
Prophet-V2 2.5.3 (HKLM-x32\...\prophetv2_5_is1) (Version: 2.5.3 - Arturia)
PSOFT Void v1.52 (remove only) (HKLM-x32\...\Void) (Version: - )
PSP VintageWarmer2 2.5.2 64bit (HKLM-x32\...\PSP VintageWarmer2 2.5.2 64bit) (Version: 2.5.2 64bit - PSPaudioware.com)
PTC-2A version 2.4.0 (HKLM\...\PTC-2A_is1) (Version: 2.4.0 - OverToneDSP)
Pure Data 0.47-1 (HKLM-x32\...\Pure Data) (Version: 0.47-1 - Miller Puckette)
Quake III Arena (HKLM-x32\...\Quake III Arena) (Version: - )
Quake III Arena Point Release 1.32 (HKLM-x32\...\Quake III Arena Point Release 1.32) (Version: - )
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.330 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.17.413 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7432 - Realtek Semiconductor Corp.)
Reference 4 AAX plugin for ProTools 10 (HKLM-x32\...\{C3575656-4575-419C-B2A9-EA3E887F3AA8}) (Version: 4.1.4.6 - Sonarworks)
Reference 4 AAX plugin for ProTools 11/12 (HKLM\...\{189BFF27-3275-4DCC-8633-48FCC4F5C58A}) (Version: 4.1.4.6 - Sonarworks)
Reference 4 VST plugin (32-bit) (HKLM-x32\...\{5C6DECB8-FB6E-4832-A4A1-DD7152EBEBD4}) (Version: 4.1.4.6 - Sonarworks)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
reFX Vanguard VSTi (HKLM-x32\...\reFX Vanguard_is1) (Version: - )
Remote Desktop assistant (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\b948d155e8353e01) (Version: 1.0.0.102 - Remote Desktop assistant)
Remotr version 1.3.1438 (HKLM-x32\...\Remotr_is1) (Version: 1.3.1438 - RemoteMyApp sp. z o.o.)
Repro-1 (HKLM\...\Repro-1_is1) (Version: 1.0.5332 - Team V.R)
Resident Evil 7 Biohazard (HKLM-x32\...\{1ECBF8F3-7079-44CA-AD32-B2AECBCF636F}_is1) (Version: - Capcom)
Reveal Sound Spire (HKLM-x32\...\Reveal Sound Spire) (Version: 1.1.8 - Reveal Sound)
Reverberate LE 1.007 (HKLM-x32\...\Reverberate LE) (Version: 1.007 - LiquidSonics)
rgc:audio z3ta+ 1.5 (x64) (HKLM\...\z3ta+_x64_is1) (Version: 1.5 - Cakewalk Music Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
rtpMIDI (HKLM-x32\...\{11db5383-f3c3-46ed-98c2-a3e51d672eb0}) (Version: 1.1.8.240 - Tobias Erichsen)
rtpMIDI (HKLM-x32\...\{4679F64B-170C-42C3-94A4-DD934F47FCF4}) (Version: 1.1.8.240 - Tobias Erichsen) Hidden
rtpMIDIBlockLegacy (HKLM-x32\...\{FD937297-84C3-41A5-B5DF-1FAEEE669D68}) (Version: 9.9.9.9 - Tobias Erichsen) Hidden
Sawer (HKLM-x32\...\Sawer) (Version: - Image-Line)
Scan to PDF (HKLM-x32\...\Scan to PDF) (Version: 2.50 - Softi Software)
SecondLifeViewer (HKLM-x32\...\SecondLifeViewer) (Version: 5.0.7.328060 - Linden Research, Inc.)
SH-101(64bit) (HKLM\...\{EA4F90DF-8AA4-47D8-A787-3A224B70FC67}) (Version: 1.04.0000 - Roland Corporation)
Shaun White Snowboarding, âĺđńč˙ 1.0.0.0 (HKLM-x32\...\Shaun White Snowboarding_is1) (Version: 1.0.0.0 - RePack by SEYTER)
ShaunWhiteSnowboarding (HKLM-x32\...\{2E52FB79-7F60-4AD7-B946-5ED18B4F274E}) (Version: 1.01 - Ubisoft)
SimSynth (HKLM-x32\...\SimSynth) (Version: - Image-Line)
SketchUp 2017 (HKLM\...\{E59BD84C-169B-4F3F-AC5D-85127CF67051}) (Version: 17.2.2555 - Trimble, Inc.)
Skydur 3.0.2.3706 (HKLM-x32\...\{BC73BE80-0E4E-4C3E-82F0-852F4E0212B4}_is1) (Version: - Skydur)
Skype verze 8.34 (HKLM-x32\...\Skype_is1) (Version: 8.34 - Skype Technologies S.A.)
Slate Digital FG-X Mastering Processor VST RTAS v1.1.2 (HKLM-x32\...\Slate Digital FG-X Mastering Processor_is1) (Version: - )
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
Sonic Academy KICK 2 (HKLM-x32\...\Sonic Academy KICK 2) (Version: 1.0.2 - Sonic Academy)
SonicProjects OP-X PRO-II (HKLM\...\OP-X PRO-II_is1) (Version: 1.2.5 - Team V.R)
Sound Blaster Play! 2 (HKLM-x32\...\{937A1473-498B-4E84-B643-4E453C02311B}) (Version: 1.00.03 - Creative Technology Limited)
Sound Blaster Play! 2 Extras (HKLM-x32\...\{DBAE4081-D97A-48C7-8698-CD5CE616C005}) (Version: 1.0 - Creative Technology Limited)
Spintires (HKLM-x32\...\Spintires_is1) (Version: - )
Spintires: MudRunner (HKLM\...\DARKSiDERS - Spintires: MudRunner) (Version: - DARKSiDERS)
SPL Analog Code Bundle v1.1 (HKLM-x32\...\SPL Analog Code Bundle_is1) (Version: - )
Splice (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Splice) (Version: 3.0.137060 - Distributed Creation, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Dark Planet 64bit (HKLM\...\{52B15329-EA8D-4088-AE8F-BD831D187290}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 1.6.1 - Steinberg Media Technologies GmbH)
Steinberg Instrument Set Dark Planet (HKLM-x32\...\{7E95B088-EF08-4093-85E1-B0689BDAB35C}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg VST Classics 1 64bit (HKLM\...\{AA322103-FC2B-4D86-BA6C-67D4DDB4209C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Sugar Bytes Factory 1.0.1 (HKLM\...\Factory_is1) (Version: 1.0.1 - Sugar Bytes)
Sugar Bytes WOW2 2.1.0 (HKLM\...\WOW2_is1) (Version: 2.1.0 - Sugar Bytes)
Sylenth1 v2.21 (HKLM\...\Sylenth1_is1) (Version: - )
Sytrus (HKLM-x32\...\Sytrus) (Version: - Image-Line)
TAL-U-NO-LX-V2 (64bit) (HKLM\...\{CB606353-173F-416C-B65F-BDD18F97432C}) (Version: 1.3.7 - TAL - Togu Audio Line)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
teVirtualMIDI64 (HKLM\...\{3158659B-4AD6-4311-85C0-B79DD98F441E}) (Version: 1.2.11.41 - Tobias Erichsen) Hidden
The Glue (HKLM\...\The Glue_is1) (Version: 1.2.8 - )
TKLINK version 1.1.2 (HKLM-x32\...\{9A742C66-C29E-4D20-AACA-634A65C20FC1}_is1) (Version: 1.1.2 - Imaginando)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
TouchDAW thru (HKLM\...\{E0A793E0-38FE-4FE5-BD43-29A4B981A20F}) (Version: 1.4.0 - humatic)
TouchOSC Bridge version 1.3.1 (HKLM-x32\...\TouchOSC Bridge_is1) (Version: 1.3.1 - )
Toxic Biohazard (HKLM-x32\...\Toxic Biohazard) (Version: - Image-Line bvba)
T-RackS CS version 4.9.0 (HKLM\...\{E931EBCC-55F9-4D67-BA0E-D57C4A893A44}_is1) (Version: 4.9.0 - IK Multimedia)
TunnelBear (HKLM-x32\...\{8092fbe5-9e59-4729-a5de-5bb6a64873cc}) (Version: 3.0.37.12 - TunnelBear)
TunnelBear (HKLM-x32\...\{ABC9BE61-B890-4100-BCA4-5AC3BF1F3CB5}) (Version: 3.0.37.12 - TunnelBear) Hidden
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH)
UBRIDGE version 1.1.4 (HKLM\...\{0DB5EAF1-37C4-4025-BF01-11A26128A18B}_is1) (Version: 1.1.4 - Imaginando)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{DE45508F-369E-4476-8F19-088F4933340E}) (Version: 1.8.0.0 - Microsoft Corporation) Hidden
Uraniom (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{e757881f-5208-409d-89b5-21d980f1091d}) (Version: 0.3.1 - Uraniom)
USB Multi-Channel Audio Device (HKLM-x32\...\Generic USB 106 Sound) (Version: - )
UVI Thorus (HKLM-x32\...\UVI Thorus) (Version: 1.0.0 - UVI)
UVI Workstation x64 2.6.0 (HKLM\...\UVI Workstation x64_is1) (Version: 2.6.0 - UVI)
VAZ Modular 3.2.5 (HKLM-x32\...\VAZ Modular) (Version: 3.2.5 - Martin Fay)
VCV Rack (HKLM\...\VCV Rack) (Version: - VCV)
Vember Audio SURGE (HKLM-x32\...\Vember Audio SURGE) (Version: - )
Video Rotator V1.0 (HKLM-x32\...\Video Rotator_is1) (Version: - VideoRotator.com)
VirtualDJ 8 (HKLM-x32\...\{F7A68F9D-BBF0-48FF-B138-2EFB5165638C}) (Version: 8.0.2048.0 - Atomix Productions)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vocaloid4 4.3.0 Free Edition (HKLM-x32\...\Vocaloid4 4.3.0 Free Edition_is1) (Version: Vocaloid4 4.3.0 Free Edition - )
Voltage Modular (HKLM\...\Voltage Modular) (Version: 1.1.1 - Cherry Audio)
Vortex Cloud Gaming (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{403584bd-c0ed-467a-bd84-a4390efc0fd2}) (Version: 1.0.0 - RemoteMyApp Sp. z o.o.)
Voxengo SPAN (HKLM\...\Voxengo SPAN_is1) (Version: 2.10 - Voxengo)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Waldorf Largo (HKLM-x32\...\Waldorf Largo) (Version: - )
War Thunder Launcher 1.0.3.123 (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Waves Complete (HKLM\...\Complete_is1) (Version: 2017.08.09 - Waves)
Waves SoundGrid Drivers 9.7.99.175 (HKLM\...\Waves SoundGrid Drivers_is1) (Version: - Waves Audio Ltd.)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Xfer Records LFOTool v1.29 Beta 6 x64 (HKLM\...\Xfer Records LFOTool v1.29 Beta 6 x64_is1) (Version: - )
Yousician Launcher version 1.0 (HKLM-x32\...\{EF45EAE9-523E-47C3-8634-A81923B11DD5}_is1) (Version: 1.0 - Yousician)
Zynaptiq ADAPTIVERB (HKLM-x32\...\Zynaptiq ADAPTIVERB) (Version: 1.0.1 - Zynaptiq)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => -> No File
ShellIconOverlayIdentifiers: [menuext] -> {c0d5287c-e671-43c4-98b1-3a25addf79fa} => C:\WINDOWS\system32\SCMenu64.dll [2016-11-20] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [KuaiZipShlExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> No File
ContextMenuHandlers1: [ContextMenuExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> No File
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2013-12-18] (Foxit Corporation)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2015-11-12] (IObit)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers3: [GB3ContextMenu] -> {3A488FE8-9916-4F36-BDFF-3DED559142E5} => C:\Program Files (x86)\IObit\Game Booster 3\GBV3ContextMenu.dll [2011-11-29] (IObit)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2015-11-12] (IObit)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-30] (Intel Corporation)
ContextMenuHandlers5: [menuext] -> {c0d5287c-e671-43c4-98b1-3a25addf79fa} => C:\WINDOWS\system32\SCMenu64.dll [2016-11-20] ()
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-04] (NVIDIA Corporation)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2015-11-12] (IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {010A1473-FBDE-46FC-9042-9A8DDB079170} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2016-09-18] ()
Task: {113D0C5A-8F31-49ED-9168-770E2116470A} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-06-11] (ASUSTek Computer Inc.)
Task: {1A063044-3892-4D47-833A-467F9598AB84} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {1ACBEB39-7271-423D-BE64-69A4831CB76A} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-11-05] (ASUS)
Task: {1EB68A30-BEA2-40DD-ACD8-659AED4A9142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {1F63FCA9-AABE-4F12-9C34-8E22C0F0A3FD} - System32\Tasks\Uninstaller_SkipUac_Asusak => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-18] (IObit)
Task: {283ED9CF-D0F5-4A55-924A-FE820EF5639B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {39F0FFB3-2AC1-423B-A90C-0BB6E04967C2} - System32\Tasks\Asusak => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Asusak /t REG_SZ /d "cmd.exe /c start www.dipladoks.org"
Task: {45BEE1EF-7256-42C6-A32C-280003F17F03} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation)
Task: {47487E8A-2233-425B-B5CA-89ED8134B067} - System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83} => C:\Users\Asusak\AppData\Local\dOQkCAUY.exe [2018-04-12] (Microsoft Corporation) <==== ATTENTION
Task: {48198F90-D9A9-4A6F-B054-0016ECF5E1A7} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-12-17] (ASUSTek Computer Inc.)
Task: {51C223EC-DDAA-4537-8506-55301D5500D3} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-01-23] (Realtek Semiconductor)
Task: {57346884-B72D-45C6-9135-C3D37D98B17A} - System32\Tasks\Client Monitor => C:\ProgramData\Client\client.exe <==== ATTENTION
Task: {57A9089E-635D-4BD0-9A49-27E05DB29725} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)
Task: {5F6C3D1E-BD3D-474B-A93B-8877E0877134} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6DA30928-130F-473E-8776-AD799C09F6DD} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-09-02] (ASUSTek Computer Inc.)
Task: {703C4CC1-6BE8-4E95-BC68-840312E51342} - System32\Tasks\{44922045-E36E-5326-98AB-2825BCA326E7} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://coxemi.com/cl/?guid=h8e4ofk9v3jo7a2e6utuevb082dfkb9r&prid=1&pid=4_1408_0
Task: {8F0847E9-5A61-46BD-85C8-BBAED8024787} - System32\Tasks\{62F7E201-15FA-B13F-918B-9117664C4611} => "msiexec.exe" -i hxxps://freamares.com/ktyn4crbbn28.pmi -q
Task: {922E3F32-52AE-41F0-801C-473B47C0AF60} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {9FCEB3A5-8EDB-402A-8799-933AD2BE350C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation)
Task: {A1D6EF0B-03A2-4869-B10B-AE1EBC4BA6ED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {A4D035C2-1EF0-49D5-A249-177FAA947FA0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation)
Task: {A932C9D5-AAC4-4086-818F-285165EE5044} - System32\Tasks\Opera scheduled Autoupdate 1463663892 => C:\Program Files (x86)\Opera\launcher.exe [2018-12-19] (Opera Software)
Task: {AB6243F8-7417-4E90-A3E4-0B1ABB6BA333} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3811162916-2113203268-3777127909-1001 => C:\Users\Asusak\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited)
Task: {B2E70C38-CAD9-44CE-975D-B5BE38EA2226} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {B8EB94EE-64B3-4B29-A00C-B74788CF4B38} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {E0FF76A1-95F3-4788-859E-BE26462B3B77} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E4105C67-7724-476B-AAB1-BBD5EC15F662} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek)
Task: {E84E6CD0-1FE0-4A04-BCA4-F4362A19314D} - System32\Tasks\Update\Computer Helper => C:\Users\Asusak\AppData\Roaming\repair.exe <==== ATTENTION
Task: {F22F0420-BC66-458B-B372-4EFDD0EF730A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {FA69637A-EC6B-4662-881A-A07276F77B61} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-19] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Asusak.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
Shortcut: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameTracker Lite\Visit GameTracker Website.lnk -> hxxp://www.gametracker.com

ShortcutWithArgument: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vzdálená plocha Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp

==================== Loaded Modules (Whitelisted) ==============

2018-04-12 00:34 - 2018-04-12 00:34 - 000444416 _____ () c:\windows\system32\SSDM.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2016-07-04 12:27 - 2016-07-04 12:27 - 000081920 _____ () C:\Program Files (x86)\Kinoni\Remote Desktop\service.exe
2016-11-11 00:09 - 2017-10-11 02:05 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-07-21 18:31 - 2012-12-07 16:26 - 000167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2016-09-24 23:20 - 2016-09-24 23:21 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-09-06 15:48 - 2017-09-06 15:48 - 000037248 _____ () C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
2017-09-29 19:28 - 2017-12-04 19:32 - 000133704 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-10-18 22:51 - 2017-10-18 22:51 - 000598528 _____ () C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll
2016-11-20 16:06 - 2016-11-20 16:07 - 000187936 _____ () C:\WINDOWS\system32\SCMenu64.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-13 10:31 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-12-21 12:14 - 2018-12-14 07:50 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-30 20:57 - 2016-11-30 20:57 - 000401888 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-10-04 18:48 - 2018-10-04 18:49 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 010927616 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 002916864 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\skypert.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 000688128 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-12-11 16:24 - 2018-12-11 16:24 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-12-11 16:24 - 2018-12-11 16:24 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll
2017-12-01 18:52 - 2017-12-01 18:53 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-30 19:34 - 2018-11-30 19:34 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-11 16:24 - 2018-12-11 16:24 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-12-11 16:24 - 2018-12-11 16:24 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-11-18 15:04 - 2018-11-01 07:53 - 002068480 _____ () C:\Windows\ShellExperiences\PeopleCommonControls.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 001465856 _____ () C:\Windows\ShellExperiences\PeopleBarFlyout.dll
2018-07-05 18:05 - 2018-07-05 18:05 - 003037184 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.PeoplePicker.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000580608 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.Relevance.QueryClient.dll
2015-01-17 10:27 - 2015-01-17 10:27 - 034734392 _____ () C:\Program Files (x86)\Image-Line\Shared\dsp_ipp_x64.dll
2016-04-20 10:58 - 2016-04-20 10:58 - 001611584 _____ () C:\Program Files (x86)\Image-Line\Shared\QuickFontCache_x64.dll
2014-12-02 20:32 - 2014-12-02 20:32 - 000607032 _____ () C:\Program Files (x86)\Image-Line\Shared\freetype_x64.dll
2016-08-07 16:00 - 2016-08-07 16:00 - 032089088 _____ () D:\VstPlugins\Instruments\Reveal Spire Synthetizer\Spire-1.1.dll
2016-01-23 01:59 - 2016-01-23 01:59 - 012088264 _____ () D:\Ableton\Live 9 Suite\Resources\Extensions\Index\Ableton Index.exe
2018-12-14 08:57 - 2018-12-12 06:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-14 08:57 - 2018-12-12 06:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll
2014-11-05 13:44 - 2014-11-05 13:44 - 000037424 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2014-11-05 13:44 - 2014-11-05 13:44 - 000124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-06-11 06:02 - 2015-06-11 06:02 - 000120632 _____ () c:\program files (x86)\image-line\fl studio asio\ilwasapi2asio.dll
2015-03-21 09:07 - 2007-11-29 07:41 - 000086016 _____ () c:\program files (x86)\realtek\audio\asio\rthdasio.dll
2015-01-06 16:40 - 2015-01-06 16:40 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-11-11 00:09 - 2017-10-11 02:05 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\Users\Public\AppData:CSM [468]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2017-10-24 14:40 - 000001372 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 idb.iobit.com
127.0.0.1 asc55.iobit.com
127.0.0.1 is360.iobit.com
127.0.0.1 asc.iobit.com
127.0.0.1 pf.iobit.com
127.0.0.1 98.129.229.186
127.0.0.1 www.iana.org
127.0.0.1 iana.org# ::1 localhost
127.0.0.1 www.iobit.com
127.0.0.1 www.asc55.iobit.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
127.0.0.1 www.r2rdownload.com
127.0.0.1 www.elephantafiles.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: NIHardwareService => 2
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamNetworkSvc => 3
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: rtpMIDIService => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TunngleService => 3
MSCONFIG\Services: wuauserv => 3
MSCONFIG\Services: ZAtheros Bt and Wlan Coex Agent => 2
HKLM\...\StartupApproved\StartupFolder: => "ipMIDI Trial Monitor.lnk"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "IPAnonymizer"
HKLM\...\StartupApproved\Run32: => "Sound Blaster Play! 2 Control Panel"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "KinoniTask"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\StartupFolder: => "flstudio.exe"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\StartupFolder: => "w10memchk.exe"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\StartupFolder: => "Splice for Windows.lnk"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "loopMIDI"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "Epson Stylus SX110"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "com.squirrel.splice.Splice"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "MinerGateGui"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "GobblerTray"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{55F128B1-379F-4766-94FA-63DA5790F83C}] => (Allow) D:\Steam\steamapps\common\Spintires MudRunner\MudRunner.exe (Focus Home Interactive)
FirewallRules: [{1E7CEA37-A7E1-48D4-8C42-7853FE4AE227}] => (Allow) D:\Steam\steamapps\common\Spintires MudRunner\MudRunner.exe (Focus Home Interactive)
FirewallRules: [{E3BD196D-55A3-4AA4-B01F-8437F4A3683B}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{E75B7AFF-60AE-4A80-B665-D24E4E2B6B4F}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{5571FDB9-733A-431D-B20A-080E08FA323B}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{90A4D40B-1772-453D-BCE0-D489CE42A9BB}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{D382D748-30AD-40DB-ADEB-3ACE8AC56C3D}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{62CF6C1C-AA0D-4298-90CA-E5ED1ED73499}] => (Allow) C:\Program Files (x86)\MoboAlien\ControllerPC\controllerpc.exe (Mobo Alien)
FirewallRules: [{9D122CAC-7620-4C5A-996C-625292798D60}] => (Allow) C:\Program Files (x86)\Kinoni\Remote Desktop\windowsserver.exe (Kinoni)
FirewallRules: [{DD2AF2E2-F6F9-4906-9FC4-4B2A4E51FC1D}] => (Allow) C:\Program Files (x86)\Kinoni\Remote Desktop\windowsserver.exe (Kinoni)
FirewallRules: [{3F8969F7-7695-41E5-874C-273C406C6DC6}] => (Allow) C:\Program Files (x86)\Kinoni\Remote Desktop\windowsserver.exe (Kinoni)
FirewallRules: [{50D34543-7DE9-41D9-9561-8A8641EFBD43}] => (Allow) C:\Program Files (x86)\Kinoni\Remote Desktop\windowsserver.exe (Kinoni)
FirewallRules: [{B10928E5-A080-4277-A0C0-5DEEB535EE56}] => (Allow) C:\Program Files (x86)\Remotr\RemotrServer.exe (RemoteMyApp sp. z o.o.)
FirewallRules: [{ADC9D44F-50EA-4F2B-B645-13DAADEE6CA8}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [UDP Query User{65F2CC0B-DF44-4144-9971-EFA1D2C773F7}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Block) D:\steam\steamapps\common\h1z1\h1z1.exe No File
FirewallRules: [TCP Query User{083F209C-B8B9-4371-9E01-996213A73FDF}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Block) D:\steam\steamapps\common\h1z1\h1z1.exe No File
FirewallRules: [{9521150F-BCB2-43F2-9C0C-4FFDABCB45DA}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations)
FirewallRules: [{CCF55BD0-685E-4069-BD7D-0514E685527C}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations)
FirewallRules: [UDP Query User{4A1931C7-DE27-4FFC-8331-2A2A64B4D4E8}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro)
FirewallRules: [TCP Query User{8EEDA7A7-5E87-4C25-8D8E-1DDF8F2D04A1}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro)
FirewallRules: [UDP Query User{41AB8E37-270D-4123-92A2-FB4F342FB9AB}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Block) C:\program files (x86)\secondlifeviewer\slvoice.exe (Vivox Inc.)
FirewallRules: [TCP Query User{2C220930-38A2-4508-BB95-6BA9DC94D2F6}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Block) C:\program files (x86)\secondlifeviewer\slvoice.exe (Vivox Inc.)
FirewallRules: [UDP Query User{F5227F5D-95F5-4087-8373-4FE65222CD17}C:\users\asusak\desktop\hry\quake iii arena (complete)\quake3.exe] => (Allow) C:\users\asusak\desktop\hry\quake iii arena (complete)\quake3.exe ()
FirewallRules: [TCP Query User{96EEE8BD-7569-4CEC-B71C-1219BF7925FE}C:\users\asusak\desktop\hry\quake iii arena (complete)\quake3.exe] => (Allow) C:\users\asusak\desktop\hry\quake iii arena (complete)\quake3.exe ()
FirewallRules: [{B6E701CA-E9B0-4B56-8FA5-B3A9DF66E007}] => (Allow) D:\Steam\steamapps\common\Spintires\SpinTires.exe (Oovee Ltd.)
FirewallRules: [{3015EC4C-6C85-4ABA-A109-7882275BDCAD}] => (Allow) D:\Steam\steamapps\common\Spintires\SpinTires.exe (Oovee Ltd.)
FirewallRules: [{46355903-F6A2-40E8-8BE6-1591BE037C5F}] => (Block) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{2C23C391-4165-4F5A-ACAD-428F6B14BE54}C:\users\asusak\desktop\hry\scrap mechanic\release\scrapmechanic.exe] => (Block) C:\users\asusak\desktop\hry\scrap mechanic\release\scrapmechanic.exe ()
FirewallRules: [TCP Query User{2652E561-77C9-48C6-81FD-F58213B0C950}C:\users\asusak\desktop\hry\scrap mechanic\release\scrapmechanic.exe] => (Block) C:\users\asusak\desktop\hry\scrap mechanic\release\scrapmechanic.exe ()
FirewallRules: [{C82A784A-703B-4883-A5E9-F45A380BBE08}] => (Allow) D:\Steam\steamapps\common\Call of Duty 4\iw3mp.exe ()
FirewallRules: [{ACDB89B6-5A41-4FA1-B9CE-91E68D037887}] => (Allow) D:\Steam\steamapps\common\Call of Duty 4\iw3mp.exe ()
FirewallRules: [{0BC6CE71-220E-4D53-960A-132D03040199}] => (Allow) D:\Steam\steamapps\common\Call of Duty 4\iw3sp.exe ()
FirewallRules: [{4E781279-CFC0-472F-8288-0D953A354595}] => (Allow) D:\Steam\steamapps\common\Call of Duty 4\iw3sp.exe ()
FirewallRules: [{1CFF2C39-BAF5-44EA-8097-01C757D87BC5}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Corporation)
FirewallRules: [UDP Query User{BE4EB428-ED69-462E-A2B1-B6A73C9B5280}C:\program files (x86)\shaun white snowboarding\shaunwhitesnowboardinggame.exe] => (Block) C:\program files (x86)\shaun white snowboarding\shaunwhitesnowboardinggame.exe ()
FirewallRules: [TCP Query User{86526B79-0046-4FF9-A3F8-0EF2A111F45A}C:\program files (x86)\shaun white snowboarding\shaunwhitesnowboardinggame.exe] => (Block) C:\program files (x86)\shaun white snowboarding\shaunwhitesnowboardinggame.exe ()
FirewallRules: [{D0A099DA-981B-45D4-8C7F-C82B5146B698}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboarding.exe (Ubisoft)
FirewallRules: [{02A0C55C-90D1-4423-9683-4F65CBC2DDFA}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboarding.exe (Ubisoft)
FirewallRules: [{B4F5991E-A739-475D-94CC-1970BD1A897C}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboardingGame.exe ()
FirewallRules: [{243A0BDD-BBBB-4306-8451-C42667D4C922}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboardingGame.exe ()
FirewallRules: [UDP Query User{F49D1431-3735-4FC2-9130-856D7F781C63}C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe] => (Allow) C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe ()
FirewallRules: [TCP Query User{AF434905-50DB-4570-9586-AF39200B0B80}C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe] => (Allow) C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe ()
FirewallRules: [UDP Query User{33DBF441-02AB-41DA-9D4B-FF100C418D7D}C:\games\counter-strike global offensive\csgo.exe] => (Block) C:\games\counter-strike global offensive\csgo.exe ()
FirewallRules: [TCP Query User{96625BCB-0F6E-437D-9822-2BA9C7E72725}C:\games\counter-strike global offensive\csgo.exe] => (Block) C:\games\counter-strike global offensive\csgo.exe ()
FirewallRules: [UDP Query User{63CFB9F7-CA4B-4214-821F-FC540E58055D}C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe] => (Allow) C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe ()
FirewallRules: [TCP Query User{B19EDD45-FD62-425D-829F-1D482D5BF694}C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe] => (Allow) C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe ()
FirewallRules: [UDP Query User{56E4E4F7-E370-4BD0-98C3-1627362F2590}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve)
FirewallRules: [TCP Query User{228E0366-2763-411C-BF53-FE83372C36D9}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve)
FirewallRules: [{D85A89E0-8F55-470B-85B7-E6BFA9CC871D}] => (Allow) C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe ()
FirewallRules: [{FCC277CB-D483-4265-A48F-D6D10E9266C2}] => (Allow) C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe ()
FirewallRules: [{9520C0A4-F6C8-4582-AF15-E8D9CB1A8BE0}] => (Allow) C:\SteamLibrary\steamapps\common\Quake Live\quakelive_steam.exe (id Software Inc.)
FirewallRules: [{6B8C1D50-B7E6-4557-92C7-793E8003E0D0}] => (Allow) C:\SteamLibrary\steamapps\common\Quake Live\quakelive_steam.exe (id Software Inc.)
FirewallRules: [{DF5E2000-AF76-4EB2-80F4-DA6468B29C5F}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ED91FFB2-112F-411F-8903-B3D52383BEA3}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [UDP Query User{A67C6CFB-B024-4B01-A994-48AF901226E6}C:\program files (x86)\quake iii arena\quake3.exe] => (Allow) C:\program files (x86)\quake iii arena\quake3.exe ()
FirewallRules: [TCP Query User{28A419DE-34FE-4A59-AD0F-BCE1F8DC8552}C:\program files (x86)\quake iii arena\quake3.exe] => (Allow) C:\program files (x86)\quake iii arena\quake3.exe ()
FirewallRules: [UDP Query User{3FEE8B43-1539-4082-84D6-2BBB204F8350}F:\quake3\quake3.exe] => (Allow) F:\quake3\quake3.exe No File
FirewallRules: [TCP Query User{0C697DBD-66E1-4700-B5E7-E667D77A4732}F:\quake3\quake3.exe] => (Allow) F:\quake3\quake3.exe No File
FirewallRules: [{C016B818-C283-423E-912D-524C67B0598C}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe (Tunngle.net GmbH)
FirewallRules: [{40303AAF-FE4D-4673-BCE5-CC6A7E28E9CE}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe (Tunngle.net GmbH)
FirewallRules: [{90B700CB-3865-4DBB-BCE1-FAEC80DDB3A2}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
FirewallRules: [{BBA30A42-0033-4C67-B518-9F9897E9566E}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
FirewallRules: [UDP Query User{B7A24AEC-8AE4-4358-8E9D-469BBB030695}C:\program files\cycling '74\max 7\max.exe] => (Block) C:\program files\cycling '74\max 7\max.exe (Cycling '74)
FirewallRules: [TCP Query User{B368DCA0-4093-469C-83C1-CC899DEA149B}C:\program files\cycling '74\max 7\max.exe] => (Block) C:\program files\cycling '74\max 7\max.exe (Cycling '74)
FirewallRules: [{144418B4-7AEC-49CC-A942-3E5C7C8261C8}] => (Allow) C:\Users\Asusak\AppData\Local\Temp\{50FA9D67-5F4B-45d5-B0D5-6F22FDCAAEC5}\utils\Down.exe No File
FirewallRules: [{EC8ED146-D0EA-478D-947F-B4DF2B372A41}] => (Allow) C:\Users\Asusak\AppData\Local\Temp\{50FA9D67-5F4B-45d5-B0D5-6F22FDCAAEC5}\utils\Down.exe No File
FirewallRules: [{FDF66EFA-E117-4222-BD54-44F3166DD621}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{A84B868C-569A-48BD-9665-7B735F8BC511}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{974ADA87-031A-4911-B6D6-211A92C4BC06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation)
FirewallRules: [{129C9FAC-5EA0-4722-8E1E-E53BFD551DD2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation)
FirewallRules: [UDP Query User{3CBD4FFF-5E2E-49D2-A62C-607DCD3345FC}C:\program files\presonus\studio one 3\studio one.exe] => (Block) C:\program files\presonus\studio one 3\studio one.exe (PreSonus)
FirewallRules: [TCP Query User{D8A3C58B-9927-408B-AE6E-7CC54A3B8801}C:\program files\presonus\studio one 3\studio one.exe] => (Block) C:\program files\presonus\studio one 3\studio one.exe (PreSonus)
FirewallRules: [{DAF5295E-9C3D-4354-8FB4-7EFF6DD32705}] => (Allow) D:\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{5AC7F9F2-769C-4D66-963D-2EB6ACF2F8A0}] => (Allow) D:\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{B9D17711-F510-4242-BF0B-BF657E779C84}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [UDP Query User{31F458F4-6A89-4AC7-B8B3-F6F9F905A9BF}C:\program files\humatic\touchdaw thru\touchdaw thru.exe] => (Allow) C:\program files\humatic\touchdaw thru\touchdaw thru.exe (humatic)
FirewallRules: [TCP Query User{5E763A6A-BA8B-4A91-9AF4-3F2148FF4A73}C:\program files\humatic\touchdaw thru\touchdaw thru.exe] => (Allow) C:\program files\humatic\touchdaw thru\touchdaw thru.exe (humatic)
FirewallRules: [UDP Query User{2B43482C-87CE-44D3-9CFD-93E758234565}C:\program files (x86)\pd\bin\pd.exe] => (Allow) C:\program files (x86)\pd\bin\pd.exe ()
FirewallRules: [TCP Query User{262CAF9D-D0AA-4E13-91F3-1618E96C5183}C:\program files (x86)\pd\bin\pd.exe] => (Allow) C:\program files (x86)\pd\bin\pd.exe ()
FirewallRules: [UDP Query User{F40BDC9E-DC53-430A-8CE8-727C9875A226}C:\program files (x86)\pd\bin\pd.exe] => (Block) C:\program files (x86)\pd\bin\pd.exe ()
FirewallRules: [TCP Query User{156D9AF7-070C-499A-96AF-4480B6347201}C:\program files (x86)\pd\bin\pd.exe] => (Block) C:\program files (x86)\pd\bin\pd.exe ()
FirewallRules: [UDP Query User{0A45F2D4-94EC-4330-BC24-249BCE3B703F}D:\ableton\live 9 suite\program\ableton live 9 suite.exe] => (Block) D:\ableton\live 9 suite\program\ableton live 9 suite.exe (Ableton)
FirewallRules: [TCP Query User{59BC64E6-F008-426A-A251-E72146C7AA0A}D:\ableton\live 9 suite\program\ableton live 9 suite.exe] => (Block) D:\ableton\live 9 suite\program\ableton live 9 suite.exe (Ableton)
FirewallRules: [UDP Query User{63BF673A-2D35-49A1-855B-1834C534D90D}C:\program files (x86)\touchosc bridge\touchosc bridge.exe] => (Allow) C:\program files (x86)\touchosc bridge\touchosc bridge.exe (hexler.net)
FirewallRules: [TCP Query User{241845BE-0E8D-4ABB-AABC-4EA89F81C684}C:\program files (x86)\touchosc bridge\touchosc bridge.exe] => (Allow) C:\program files (x86)\touchosc bridge\touchosc bridge.exe (hexler.net)
FirewallRules: [UDP Query User{4CCAD716-1979-4F52-95A6-0267D81927FB}D:\utorrent\utorrent.exe] => (Block) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [TCP Query User{449F0C8A-7B96-4EA7-9864-D753FC8585A9}D:\utorrent\utorrent.exe] => (Block) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{37BA0463-3FB8-4509-A6E9-1A623942E2AF}C:\program files (x86)\liine\lemur editor.exe] => (Allow) C:\program files (x86)\liine\lemur editor.exe (Liine)
FirewallRules: [TCP Query User{129AF8D8-E19A-4342-9FA3-CDA11D381902}C:\program files (x86)\liine\lemur editor.exe] => (Allow) C:\program files (x86)\liine\lemur editor.exe (Liine)
FirewallRules: [UDP Query User{9F708BEB-C639-4B7E-9161-59BB1D2A69C8}C:\program files (x86)\liine\lemur daemon.exe] => (Allow) C:\program files (x86)\liine\lemur daemon.exe (Liine)
FirewallRules: [TCP Query User{3B4FBCCC-ACEE-438C-857F-E52104574834}C:\program files (x86)\liine\lemur daemon.exe] => (Allow) C:\program files (x86)\liine\lemur daemon.exe (Liine)
FirewallRules: [UDP Query User{44280A29-0AE8-467E-AF17-405B67A12A7C}D:\ableton\live 9 suite\program\ableton live 9 suite.exe] => (Block) D:\ableton\live 9 suite\program\ableton live 9 suite.exe (Ableton)
FirewallRules: [TCP Query User{F34A290A-3612-4CA4-8321-44B5F707EE12}D:\ableton\live 9 suite\program\ableton live 9 suite.exe] => (Block) D:\ableton\live 9 suite\program\ableton live 9 suite.exe (Ableton)
FirewallRules: [UDP Query User{EE927489-E6C2-4AA5-A6F3-E36955812021}C:\program files\multibit hd\multibit-hd.exe] => (Allow) C:\program files\multibit hd\multibit-hd.exe ()
FirewallRules: [TCP Query User{84F7AC9A-F2AD-42EF-840C-5A4A5E35C0FD}C:\program files\multibit hd\multibit-hd.exe] => (Allow) C:\program files\multibit hd\multibit-hd.exe ()
FirewallRules: [{9FF28AA5-8828-48D9-A89B-9DEDF7C73A7D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe No File
FirewallRules: [TCP Query User{55222994-AD40-41BD-9E92-83E867008F40}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{6ED6BDD6-1B8E-4478-8F49-321F43BA8930}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{A880DA38-5E8E-4902-8F5A-E53C9022723A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (ESN Social Software AB)
FirewallRules: [{C3229E7F-174D-42A8-BBFD-896CF6B90E32}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (ESN Social Software AB)
FirewallRules: [TCP Query User{A00E91A5-2D01-40E1-9B8D-128DEC72237F}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [UDP Query User{FA6709DF-EEB5-42C4-9AFA-D9FB6AE46748}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [TCP Query User{427CDF16-431E-450C-85B1-97AD967E4897}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [UDP Query User{97BABDFD-F08A-43C8-8C01-8595FC68C6DA}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [{9EF540C2-CD45-4458-B5C0-169789F7362B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{B69AD844-51C0-4B64-A176-59BCE5FBF724}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{3086B444-3550-4FA7-A04C-9C8E7839827D}] => (Allow) LPort=3389
FirewallRules: [{C167C532-97EA-4D1E-8A07-DC733E43FB1F}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve)
FirewallRules: [{33C9690F-0709-4C2A-9345-9CAA4A6AAD6B}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve)
FirewallRules: [{452BAE0E-7160-45B3-AA39-9F6657BD6D9E}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe ()
FirewallRules: [{A881FB83-3EFC-4DE8-A12A-E61FD30AA580}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe ()
FirewallRules: [TCP Query User{4CA42B4B-1E2F-46FE-926E-E468C3589989}C:\users\asusak\appdata\local\crossout\launcher.exe] => (Allow) C:\users\asusak\appdata\local\crossout\launcher.exe (Gaijin Entertainment Corp.)
FirewallRules: [UDP Query User{7630C678-35FA-4FD5-B638-848A3EE5DF79}C:\users\asusak\appdata\local\crossout\launcher.exe] => (Allow) C:\users\asusak\appdata\local\crossout\launcher.exe (Gaijin Entertainment Corp.)
FirewallRules: [TCP Query User{FE8BCDD5-64C2-4B24-9772-D5BA8396D307}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro)
FirewallRules: [UDP Query User{AEFB1695-1366-47E4-BEE0-E675EC9CE6F0}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro)
FirewallRules: [TCP Query User{57B926B6-3D2F-4F59-A2FA-C2F9B74349EB}C:\users\asusak\appdata\local\crossout\launcher.exe] => (Block) C:\users\asusak\appdata\local\crossout\launcher.exe (Gaijin Entertainment Corp.)
FirewallRules: [UDP Query User{7446444B-CF88-475C-B6BD-D54AE91C2D26}C:\users\asusak\appdata\local\crossout\launcher.exe] => (Block) C:\users\asusak\appdata\local\crossout\launcher.exe (Gaijin Entertainment Corp.)
FirewallRules: [TCP Query User{6B30713F-8F1D-40AF-9B3D-AA43BAB9321F}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [UDP Query User{147CAB32-E685-4914-BE7B-B96B994C7BAE}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [{47B6378D-A43F-4867-9438-B93F18085634}] => (Allow) C:\Program Files (x86)\Mr DJ\Hitman Absolution Professional Edition\HMA.exe ()
FirewallRules: [{43AABC95-1EBF-477A-9227-61ABB6C86014}] => (Allow) C:\Program Files (x86)\Mr DJ\Hitman Absolution Professional Edition\HMA.exe ()
FirewallRules: [{8C5C3797-41E0-469C-ABF8-1E02E2FA4D5C}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{EF290CC6-32E6-45CF-B6C3-E8E861D4C97B}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe (Google Inc.)
FirewallRules: [{F1AE770E-A3BC-4FCC-924F-D552B5DD6B83}] => (Allow) D:\Samply\Midi\Modern Talking\LiquidSky.exe ()
FirewallRules: [{537FC566-16EC-4389-9390-81C58309B2ED}] => (Allow) D:\Samply\Midi\Modern Talking\LiquidSky.exe ()
FirewallRules: [TCP Query User{3833E1D6-2F44-4D85-833C-7C8B173818E4}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe (Gaijin Entertainment)
FirewallRules: [UDP Query User{53900CFD-0405-442B-AD87-8423D318159F}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe (Gaijin Entertainment)
FirewallRules: [TCP Query User{ACFCB4A2-E6AC-4ECB-940C-35424A1D756B}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe (Gaijin Entertainment)
FirewallRules: [UDP Query User{F1A806BD-377D-49B5-8084-45F359065F06}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe (Gaijin Entertainment)
FirewallRules: [TCP Query User{9121CA33-83C8-4CE0-82A2-66AA3A54EF52}D:\warthunder\launcher.exe] => (Block) D:\warthunder\launcher.exe (Gaijin Entertainment)
FirewallRules: [UDP Query User{68AD4666-C136-4BB3-87E9-5CC21872378E}D:\warthunder\launcher.exe] => (Block) D:\warthunder\launcher.exe (Gaijin Entertainment)
FirewallRules: [{0C5F6456-1632-439A-AAC1-8037B7DF5A58}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{F7BFAB74-91BD-4DB2-A0BF-AC8DBC17C08E}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [TCP Query User{88BA3C59-9BF5-41A9-97C4-F338C6ED49FF}D:\warthunder\win64\aces.exe] => (Block) D:\warthunder\win64\aces.exe (Gaijin Entertainment)
FirewallRules: [UDP Query User{58D7D81E-C948-4870-BBCD-1D79C79FF414}D:\warthunder\win64\aces.exe] => (Block) D:\warthunder\win64\aces.exe (Gaijin Entertainment)
FirewallRules: [{BC2687AA-102F-4222-BF43-ED9BC7D113DF}] => (Allow) C:\Program Files (x86)\Opera\56.0.3051.116\opera.exe (Opera Software)
FirewallRules: [{C1539D26-2338-48B8-A1AE-D771478E39F4}] => (Allow) D:\Steam\steamapps\common\Ring of Elysium\SLauncher.exe ()
FirewallRules: [{AF950DDD-63DA-4D29-8F7B-D879E9DDACDE}] => (Allow) D:\Steam\steamapps\common\Ring of Elysium\SLauncher.exe ()
FirewallRules: [{88755C90-D801-4AA7-8590-F9B3EBDCDAAD}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{30BF2996-02EC-4A86-8F52-1A3899040E79}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [TCP Query User{3C0223D3-FA0E-4276-9405-975206BC7539}C:\program files\imaginando\ubridge\ubridge.exe] => (Block) C:\program files\imaginando\ubridge\ubridge.exe (Imaginando Lda)
FirewallRules: [UDP Query User{65FD3A87-198F-44B7-B083-0A1FAF0F3DE4}C:\program files\imaginando\ubridge\ubridge.exe] => (Block) C:\program files\imaginando\ubridge\ubridge.exe (Imaginando Lda)
FirewallRules: [TCP Query User{0169E600-4DAC-48DB-B171-0841BA6938DA}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH)
FirewallRules: [UDP Query User{0DA64B91-BEAB-4D92-87B2-D042C68C792B}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH)
FirewallRules: [{527D9117-2DA2-4730-B05E-7165543796CF}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{CBFD6A0D-1362-4F60-B876-9A0036ED0689}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{5481886A-8EDD-4F89-8EA7-30D028DC44C4}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{49ADE428-6E20-43FA-81C8-C82B66A28AE8}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{1ECC57A9-4775-4EC5-ABBE-70F3F80F16C7}] => (Allow) C:\Program Files (x86)\Opera\57.0.3098.106\opera.exe (Opera Software)
FirewallRules: [{E204EA21-DBFC-4CF2-8484-59C17822D04C}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{493929A9-584C-47C8-B644-440A0ECD7BF2}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{B1CF2702-6CB6-4CB7-9757-EC1310C30109}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{488F3119-9233-4A5D-AD42-CB7F9D4E1A4E}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{E573E78C-4913-4B2B-A05E-6B45F6F9A094}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{454FF971-E8CE-41FD-9534-9B30CDD571EE}] => (Allow) C:\WINDOWS\SysWOW64\msiexec.exe (Microsoft Corporation)
FirewallRules: [{63DB8207-74E6-4380-95D1-45C925A74BBB}] => (Allow) C:\Program Files (x86)\uuKfAa.exe (Microsoft Corporation)
FirewallRules: [{AA114EF9-2CA6-4465-BB3A-986FAD0BE25B}] => (Allow) C:\Users\Asusak\AppData\Local\dOQkCAUY.exe (Microsoft Corporation)
FirewallRules: [{46FF9CA0-ADE4-4760-9582-2541F124877C}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe (Microsoft Corporation)
FirewallRules: [{9064DD44-8711-4121-AF71-380EBECDE8D4}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{1345023F-51F9-4AEC-8C38-39ABA3C94A86}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{652D7081-B7DE-4E6C-867D-C82ACF19796A}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{BE29681D-5DB3-4595-A9BB-457D517FCD03}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)

==================== Restore Points =========================

16-12-2018 22:54:04 Instalační služba modulů systému Windows
21-12-2018 12:13:15 Windows Update
25-12-2018 10:21:59 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/25/2018 10:56:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Microsoft.Photos.exe verze 2018.18091.17210.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 204c

Čas spuštění: 01d4994b47ad2b33

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

ID hlášení: ad70d005-585a-43e5-96d0-23a1404f827a

Úplný název balíčku s chybou: Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe

ID aplikace související s balíčkem s chybou: App

Error: (12/25/2018 10:21:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17134.285, časové razítko: 0x40f0d4bd
Kód výjimky: 0xc000041d
Posun chyby: 0x000063d7
ID chybujícího procesu: 0x3424
Čas spuštění chybující aplikace: 0x01d49c2d636b6c4f
Cesta k chybující aplikaci: D:\Utorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: a7dfa058-7902-4137-ac7c-967e0bd5b31b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/24/2018 01:34:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: hl2.exe, verze: 0.0.0.0, časové razítko: 0x58ab8cd8
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x1888
Čas spuštění chybující aplikace: 0x01d49b83cdc6b989
Cesta k chybující aplikaci: C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 6a8dace8-0485-484f-8954-7f5176e2fe71
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/23/2018 11:58:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AsusTPCenter.exe, verze: 1.0.0.84, časové razítko: 0x55d1cd50
Název chybujícího modulu: ntdll.dll, verze: 10.0.17134.471, časové razítko: 0x7e614c22
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004a921
ID chybujícího procesu: 0x2c48
Čas spuštění chybující aplikace: 0x01d49a271c6e4660
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 1688dd9f-7a78-4fe1-b37d-87485e7bade8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/23/2018 11:53:08 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro D:\VstPlugins\Waves\Applications\GTRSolo 3.5.exe se nezdařilo. Chyba v souboru manifestu nebo zásady D:\VstPlugins\Waves\Applications\WavesQtLibs_5.6.0_Win32_Release\WavesQtLibs_5.6.0_Win32_Release.MANIFEST na řádku 8.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je WavesQtLibs_5.6.0_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definice je WavesQtLibs_5.6.0_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/23/2018 11:53:08 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro D:\VstPlugins\Waves\Applications\GTR 3.5.exe se nezdařilo. Chyba v souboru manifestu nebo zásady D:\VstPlugins\Waves\Applications\WavesQtLibs_5.6.0_Win32_Release\WavesQtLibs_5.6.0_Win32_Release.MANIFEST na řádku 8.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je WavesQtLibs_5.6.0_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definice je WavesQtLibs_5.6.0_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/23/2018 11:52:27 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro D:\VstPlugins\Waves\SoundGrid Studio\SoundGrid Studio.exe se nezdařilo. Chyba v souboru manifestu nebo zásady D:\VstPlugins\Waves\SoundGrid Studio\Modules\Modules.MANIFEST na řádku 8.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je Modules,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definice je Modules,processorArchitecture="x86",type="win32",version="1.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/22/2018 10:39:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: hl2.exe, verze: 0.0.0.0, časové razítko: 0x58ab8cd8
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x2e78
Čas spuštění chybující aplikace: 0x01d49a3c54900b4f
Cesta k chybující aplikaci: C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 35d5d2e7-b1d9-41d9-b7e4-08412ddd80e0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (12/25/2018 11:24:05 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/25/2018 11:13:22 AM) (Source: DCOM) (EventID: 10016) (User: PC007)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli PC007\Asusak (SID: S-1-5-21-3811162916-2113203268-3777127909-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/25/2018 10:39:09 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/25/2018 09:08:36 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/25/2018 09:05:21 AM) (Source: DCOM) (EventID: 10016) (User: PC007)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli PC007\Asusak (SID: S-1-5-21-3811162916-2113203268-3777127909-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/24/2018 01:04:54 PM) (Source: DCOM) (EventID: 10016) (User: PC007)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli PC007\Asusak (SID: S-1-5-21-3811162916-2113203268-3777127909-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/24/2018 11:32:53 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/24/2018 11:23:16 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 41%
Total physical RAM: 12190.83 MB
Available physical RAM: 7178.4 MB
Total Virtual: 12958.83 MB
Available Virtual: 7656.07 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:54.56 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:542.8 GB) (Free:26.7 GB) NTFS
Drive f: (San Andreas) (CDROM) (Total:3.35 GB) (Free:0 GB) CDFS

\\?\Volume{d6bb299d-4214-431f-8c5a-57b02649a910}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.56 GB) NTFS
\\?\Volume{e2c8489b-f9aa-4ab7-be8a-680d4beded92}\ (Restore) (Fixed) (Total:15.01 GB) (Free:3.78 GB) NTFS
\\?\Volume{198493b4-b8b0-4540-9e7e-1062d6d213f0}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 068DB06F)

Partition: GPT.

==================== End of Addition.txt ============================

[Rudy]

Zdravím!
Ještě potřebuji vidět obsah souboru frst.txt. Najdete ho na ploše.

[Termiter8]

Ano, zde zasílám


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24.12.2018
Ran by Asusak (administrator) on PC007 (25-12-2018 11:25:34)
Running from C:\Users\Asusak\Desktop
Loaded Profiles: Asusak (Available Profiles: Asusak)
Platform: Windows 10 Home Version 1803 17134.472 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ClanServers Hosting LLC) C:\Program Files (x86)\GameTracker\GSInGameService.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Media Gobbler, Inc) C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe
() C:\Program Files (x86)\Kinoni\Remote Desktop\service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(RemoteMyApp sp. z o.o.) C:\Program Files (x86)\Remotr\RemotrService.exe
(Tobias Erichsen) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe
(Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
() C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Waves Audio Ltd.) C:\Windows\SysWOW64\SGDawNodeService.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.PeopleExperienceHost_cw5n1h2txyewy\PeopleExperienceHost.exe
(Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Ableton) D:\Ableton\Live 9 Suite\Program\Ableton Live 9 Suite.exe
() D:\Ableton\Live 9 Suite\Resources\Extensions\Index\Ableton Index.exe
(Kinoni) C:\Program Files (x86)\Kinoni\Remote Desktop\WindowsServer.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

"Path" (%INTEL_DEV_REDIST%redist\intel64_win\compiler;%INTEL_DEV_REDIST%redist\ia32_win\compiler;c:\programdata\oracle\java\javapath;c:\program files (x86)\intel\icls client\;c:\program files\intel\icls client\;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\program files\intel\intel(r) management engine components\dal;c:\program files (x86)\intel\intel(r) management engine components\dal;c:\program files\intel\intel(r) management engine components\ipt;c:\program files (x86)\intel\intel(r) management engine components\ipt;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\OpenVPN\bin;C:\Program Files (x86)\GtkSharp\2.12\bin;%SYSTEMROOT%\System32\OpenSSH\ -> %SystemRoot%\System32;%SystemRoot%;%SystemRoot%\System32\Wbem;%INTEL_DEV_REDIST%redist\intel64_win\compiler;%INTEL_DEV_REDIST%redist\ia32_win\compiler;c:\programdata\oracle\java\javapath;c:\program files (x86)\intel\icls client\;c:\program files\intel\icls client\;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\program files\intel\intel(r) management engine components\dal;c:\program files (x86)\intel\intel(r) management engine components\dal;c:\program files\intel\intel(r) management engine components\ipt;c:\program files (x86)\intel\intel(r) management engine components\ipt;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\OpenVPN\bin;C:\Program Files (x86)\GtkSharp\2.12\bin;%SYSTEMROOT%\System32\OpenSSH\) <==== Repaired successfully
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [Cm106Sound] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [SGDawNodeService] => C:\WINDOWS\SysWOW64\SGDawNodeService.exe [5620736 2017-01-29] (Waves Audio Ltd.)
HKLM-x32\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-04-13] (Razer Inc.)
HKLM-x32\...\Run: [Sound Blaster Play! 2 Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Play! 2\Sound Blaster Play! 2 Control Panel\SBPlay2.exe [872448 2014-02-26] (Creative Technology Ltd)
HKLM-x32\...\Run: [IPAnonymizer] => C:\Program Files (x86)\IP Anonymizer\IP Anonymizer.exe [5177344 2006-01-06] (Privacy-Pro.com)
HKLM-x32\...\Run: [KinoniTask] => C:\Program Files (x86)\Kinoni\Remote Desktop\KinoniTask.exe [118416 2016-07-04] ()
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [uTorrent] => D:\Utorrent\utorrent.exe [416168 2015-02-22] (BitTorrent, Inc.)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [Epson Stylus SX110] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [com.squirrel.splice.Splice] => C:\Users\Asusak\AppData\Local\splice\app-3.0.137060\Splice.exe [57137552 2017-08-07] (Splice)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Asusak\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2125384 2018-09-25] (Gaijin Entertainment)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [loopMIDI] => C:\Program Files (x86)\Tobias Erichsen\loopMIDI\loopMIDI.exe [5479576 2015-08-02] (Tobias Erichsen)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32973712 2018-07-27] (Epic Games, Inc.)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [GobblerTray] => C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe [1520664 2017-06-09] (Media Gobbler, Inc)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\MountPoints2: F - "F:\setup.exe"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [804352 2018-04-12] (Microsoft Corporation)
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\System32\vorbis.acm [1470976 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
HKLM\...\Drivers32: [MSVideo8] => C:\Windows\System32\VfWWDM32.dll [67072 2018-04-12] (Microsoft Corporation)
HKLM\...\Drivers32-x32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software)
HKLM\...\Drivers32-x32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
ShellExecuteHooks: No Name - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - -> No File
Startup: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DK.bat [2018-09-11] ()
Startup: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\flstudio.exe [2016-07-28] ()
Startup: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2018-02-15]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Asusak\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\w10memchk.exe [2016-07-28] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{8217119e-efdd-49f5-9736-b007f56829f6}: [DhcpNameServer] 172.18.12.1
Tcpip\..\Interfaces\{def6b6f8-31ba-4ba4-88db-f15f2d359cd3}: [DhcpNameServer] 172.18.11.1
Tcpip\..\Interfaces\{e33a08a8-e52a-4a64-8cbd-4dff852b0eb0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e33a08a8-e52a-4a64-8cbd-4dff852b0eb0}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://hao.360.cn/?installer
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://hao.360.cn/?installer
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-31] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-31] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-04] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-04] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: eapvml5e.default
FF ProfilePath: C:\Users\Asusak\AppData\Roaming\Mozilla\Firefox\Profiles\eapvml5e.default [2018-12-02]
FF Extension: (Hoxx VPN Proxy) - C:\Users\Asusak\AppData\Roaming\Mozilla\Firefox\Profiles\eapvml5e.default\Extensions\@hoxx-vpn.xpi [2018-01-30]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Asusak\AppData\Roaming\Mozilla\Firefox\Profiles\eapvml5e.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2017-10-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll [2018-12-06] ()
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-31] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll [2018-12-06] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-04] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> teoma.com/?gct=hp
CHR DefaultSearchURL: Default -> hxxps://www.teoma.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://teoma.com
CHR DefaultSuggestURL: Default -> hxxp://www.teoma.com/ss?type=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default [2018-12-25]
CHR Extension: (Prezentace) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (Jaxx Blockchain Wallet) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ancbofgphhmhcchnaognahmjfajaecmo [2018-07-18]
CHR Extension: (Dokumenty) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Disk Google) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-23]
CHR Extension: (YouTube) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-23]
CHR Extension: (LoopDaLoop) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\clhambhgmoihmhbfjmmaciggnfcfkflo [2016-07-30]
CHR Extension: (Adblock na Youtube™) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2018-09-15]
CHR Extension: (Tampermonkey) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-12-22]
CHR Extension: (ZenMate VPN - Best Cyber Security & Unblock) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2018-10-21]
CHR Extension: (Tabulky) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2018-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2018-12-22]
CHR Extension: (MyJSCript) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2018-12-22]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-12-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (OnionLink .onion plugin) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgdmopepkimcegejhkbhancahpppfbbj [2017-07-23]
CHR Extension: (Gmail) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-23]
CHR Extension: (Chrome Media Router) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-15]
CHR Profile: C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-11-09]
CHR Profile: C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-09]

Opera:
=======
OPR Extension: (Tampermonkey) - C:\Users\Asusak\AppData\Roaming\Opera Software\Opera Stable\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-12-22]
OPR Extension: (MyJSCript) - C:\Users\Asusak\AppData\Roaming\Opera Software\Opera Stable\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2018-12-22]
OPR Extension: (MyJSCript) - C:\Program Files (x86)\360\360Safe\Utils\npaxlogin.dll []

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7206312 2018-07-17] ()
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe [73048 2018-10-18] (Google Inc.)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2016-05-18] (Creative Labs) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2018-05-22] (EasyAntiCheat Ltd)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1037568 2014-09-18] (Intel Corporation)
R2 gobblerproxy; C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe [15872 2017-06-09] (Media Gobbler, Inc) [File not signed]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2015-01-06] (Intel Corporation)
R2 KinoniRemoteDesktop; C:\Program Files (x86)\Kinoni\Remote Desktop\service.exe [81920 2016-07-04] () [File not signed]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-12] (IObit)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [32384 2016-10-03] (The OpenVPN Project)
S3 PAExec; C:\WINDOWS\PAExec.exe [189112 2016-08-27] (Power Admin LLC)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
R2 Remotr Service; C:\Program Files (x86)\Remotr\RemotrService.exe [207480 2017-02-27] (RemoteMyApp sp. z o.o.)
R2 rtpMIDIService; C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe [3958416 2016-11-19] (Tobias Erichsen)
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-11-04] (Razer Inc)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [37248 2017-09-06] ()
S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [838128 2016-12-15] (Tunngle.net GmbH) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107136 2018-09-21] (Microsoft Corporation)
S4 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-08-27] (Atheros) [File not signed]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [34376 2010-10-12] (Bome Software)
R3 bomemidi; C:\WINDOWS\system32\drivers\bomemidi.sys [30792 2010-10-12] (Bome Software)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [38720 2014-09-18] (Intel Corporation)
R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [38208 2014-09-18] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [216360 2014-09-18] (Intel Corporation)
R2 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [155912 2014-10-22] (BitDefender LLC)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [79528 2014-10-16] (Intel Corporation)
S3 ipMIDI; C:\WINDOWS\system32\drivers\ipmidi.sys [23040 2013-01-31] (nerds.de) [File not signed]
R3 Kinonih; C:\WINDOWS\System32\drivers\kinonih.sys [32256 2016-06-22] (Kinoni)
R3 LoopBeMidi1; C:\WINDOWS\system32\drivers\loopbe1.sys [13824 2011-04-09] (nerds.de)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [58792 2017-03-05] (Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (Visicom Media Inc.)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2015-01-06] (Intel Corporation)
S3 netfitsprocadapter; C:\WINDOWS\System32\drivers\netfitsproc.sys [30480 2016-11-20] (Netfits)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-10-11] (NVIDIA Corporation)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [19936 2010-08-16] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13280 2010-08-16] ()
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-10-08] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
R3 SoundGridMIDI; C:\WINDOWS\system32\drivers\SoundGridMidi.sys [42320 2017-01-29] (Waves Audio Ltd.)
R3 SoundGridMIDI; C:\Windows\SysWOW64\drivers\SoundGridMidi.sys [22016 2017-01-29] (Waves Audio Ltd.) [File not signed]
R2 SoundGridProtocol; C:\WINDOWS\system32\DRIVERS\SoundGridProtocol.sys [113488 2017-01-29] (Waves Audio Ltd.)
R2 SoundGridProtocol; C:\Windows\SysWOW64\DRIVERS\SoundGridProtocol.sys [55296 2017-01-29] (Waves Audio Ltd.) [File not signed]
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2018-06-08] ()
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2018-06-08] ()
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2017-09-06] (The OpenVPN Project)
R3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [48824 2016-04-26] (Tunngle.net GmbH)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2017-04-21] (The OpenVPN Project)
R3 teVirtualMIDI64; C:\WINDOWS\system32\DRIVERS\teVirtualMIDI64.sys [41016 2016-08-31] (Tobias Erichsen)
R3 UHSfiltv; C:\WINDOWS\system32\drivers\UHSfiltv.sys [23552 2013-05-31] (Creative Technology Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2029-11-24 23:07 - 2029-11-24 23:07 - 000000000 ____D C:\Program Files\Common Files\Steinberg
2029-11-24 23:07 - 2016-05-30 18:10 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Steinberg
2018-12-25 11:25 - 2018-12-25 11:26 - 000031411 _____ C:\Users\Asusak\Desktop\FRST.txt
2018-12-25 11:25 - 2018-12-25 11:25 - 002421760 _____ (Farbar) C:\Users\Asusak\Desktop\FRST64.exe
2018-12-25 11:25 - 2018-12-25 11:25 - 000000000 ____D C:\Users\Asusak\Desktop\FRST-OlderVersion
2018-12-25 10:57 - 2018-12-25 10:57 - 000002482 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Asusak
2018-12-25 10:57 - 2018-12-25 10:57 - 000000292 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Asusak.job
2018-12-25 10:23 - 2018-12-25 10:23 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2018-12-25 10:23 - 2018-12-25 10:23 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2018-12-25 10:23 - 2018-12-25 10:23 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2018-12-25 10:23 - 2018-12-25 10:23 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2018-12-25 10:18 - 2018-12-25 10:24 - 000000000 ____D C:\Users\Asusak\Documents\GTA San Andreas User Files
2018-12-25 10:18 - 2018-12-25 10:18 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2018-12-25 10:15 - 2018-12-25 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto San Andreas
2018-12-22 13:39 - 2018-12-22 13:39 - 000003864 _____ C:\WINDOWS\System32\Tasks\{44922045-E36E-5326-98AB-2825BCA326E7}
2018-12-22 13:39 - 2018-12-22 13:39 - 000003748 _____ C:\WINDOWS\System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83}
2018-12-22 13:39 - 2018-12-22 13:39 - 000003486 _____ C:\WINDOWS\System32\Tasks\{62F7E201-15FA-B13F-918B-9117664C4611}
2018-12-22 13:39 - 2018-12-22 13:39 - 000000002 _____ C:\Users\Asusak\AppData\Local\imw.ini
2018-12-21 17:35 - 2018-12-21 17:35 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-12-21 12:14 - 2018-12-14 13:24 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-12-21 12:14 - 2018-12-14 08:29 - 006567472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-21 12:14 - 2018-12-14 08:29 - 001130760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-12-21 12:14 - 2018-12-14 08:25 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-21 12:14 - 2018-12-14 08:23 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-12-21 12:14 - 2018-12-14 08:23 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-12-21 12:14 - 2018-12-14 08:23 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-12-21 12:14 - 2018-12-14 08:23 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-12-21 12:14 - 2018-12-14 08:23 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-12-21 12:14 - 2018-12-14 08:22 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-12-21 12:14 - 2018-12-14 08:22 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-12-21 12:14 - 2018-12-14 08:21 - 001457240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-21 12:14 - 2018-12-14 08:21 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-21 12:14 - 2018-12-14 08:21 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-21 12:14 - 2018-12-14 08:21 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-12-21 12:14 - 2018-12-14 08:21 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-21 12:14 - 2018-12-14 08:13 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-12-21 12:14 - 2018-12-14 08:12 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2018-12-21 12:14 - 2018-12-14 08:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-12-21 12:14 - 2018-12-14 08:07 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-21 12:14 - 2018-12-14 07:55 - 003396608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-21 12:14 - 2018-12-14 07:55 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-21 12:14 - 2018-12-14 07:54 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-12-21 12:14 - 2018-12-14 07:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-12-21 12:14 - 2018-12-14 07:54 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-12-21 12:14 - 2018-12-14 07:53 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-12-21 12:14 - 2018-12-14 07:52 - 002173440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-21 12:14 - 2018-12-14 07:52 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-21 12:14 - 2018-12-14 07:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-21 12:14 - 2018-12-14 07:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-21 12:14 - 2018-12-14 06:34 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2018-12-21 12:12 - 2018-12-21 12:12 - 000003950 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1463663892
2018-12-21 12:11 - 2018-12-21 12:11 - 000003360 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3811162916-2113203268-3777127909-1001
2018-12-21 12:11 - 2018-12-21 12:11 - 000002396 _____ C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-19 22:35 - 2018-12-19 22:35 - 000003530 _____ C:\WINDOWS\System32\Tasks\Asusak
2018-12-17 11:22 - 2018-12-17 11:22 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\.mono
2018-12-17 11:22 - 2018-12-17 11:22 - 000000000 ____D C:\Users\Asusak\AppData\Local\Colossal Order
2018-12-17 11:22 - 2018-12-17 11:22 - 000000000 ____D C:\ProgramData\.mono
2018-12-17 00:02 - 2018-12-17 00:02 - 000000000 ____D C:\Users\Asusak\AppData\LocalLow\MinskWorks
2018-12-16 22:13 - 2018-12-16 22:21 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Voltage
2018-12-16 21:57 - 2018-12-16 21:57 - 000000882 _____ C:\Users\Asusak\Desktop\Voltage Modular.lnk
2018-12-16 21:57 - 2018-12-16 21:57 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Voltage Modular
2018-12-16 21:57 - 2018-12-16 21:57 - 000000000 ____D C:\ProgramData\Voltage
2018-12-13 12:23 - 2018-12-13 14:55 - 000000000 ____D C:\Users\Asusak\Desktop\make analog synth
2018-12-13 11:13 - 2018-12-13 11:13 - 000279076 _____ C:\Users\Asusak\Desktop\zivotopis (1).pdf
2018-12-13 10:48 - 2018-12-13 10:51 - 000000000 ____D C:\Users\Asusak\Desktop\downloadable
2018-12-13 10:33 - 2018-12-08 09:05 - 001209888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-12-13 10:33 - 2018-12-08 09:05 - 000706040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-12-13 10:33 - 2018-12-08 09:05 - 000594224 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-12-13 10:33 - 2018-12-08 08:49 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-12-13 10:33 - 2018-12-08 08:45 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-12-13 10:33 - 2018-12-08 08:36 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-12-13 10:33 - 2018-12-08 08:34 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-13 10:33 - 2018-11-09 03:48 - 003179760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-12-13 10:33 - 2018-11-09 03:48 - 001613288 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-12-13 10:33 - 2018-11-09 03:48 - 000766704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-12-13 10:33 - 2018-11-09 03:17 - 002584576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-12-13 10:33 - 2018-11-09 03:17 - 001069568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-12-13 10:33 - 2018-11-09 03:07 - 002417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-12-13 10:33 - 2018-11-09 03:07 - 001299704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-12-13 10:33 - 2018-11-09 02:46 - 000573504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-12-13 10:32 - 2018-12-08 13:42 - 004527800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-12-13 10:32 - 2018-12-08 13:42 - 001616824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-12-13 10:32 - 2018-12-08 13:41 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-12-13 10:32 - 2018-12-08 13:29 - 013572608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-12-13 10:32 - 2018-12-08 13:28 - 012710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-12-13 10:32 - 2018-12-08 13:25 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-12-13 10:32 - 2018-12-08 13:23 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-12-13 10:32 - 2018-12-08 13:22 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-13 10:32 - 2018-12-08 09:07 - 005625352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-12-13 10:32 - 2018-12-08 09:06 - 001017168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-13 10:32 - 2018-12-08 09:06 - 000777512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-12-13 10:32 - 2018-12-08 09:05 - 007436216 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-12-13 10:32 - 2018-12-08 09:05 - 001935008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-12-13 10:32 - 2018-12-08 09:05 - 000413920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-12-13 10:32 - 2018-12-08 09:05 - 000130312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-12-13 10:32 - 2018-12-08 09:04 - 002590296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2018-12-13 10:32 - 2018-12-08 09:04 - 001188512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-12-13 10:32 - 2018-12-08 09:04 - 001150312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-12-13 10:32 - 2018-12-08 09:04 - 000416024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2018-12-13 10:32 - 2018-12-08 09:04 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-12-13 10:32 - 2018-12-08 08:47 - 000861744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-12-13 10:32 - 2018-12-08 08:47 - 000785760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-12-13 10:32 - 2018-12-08 08:46 - 001397104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2018-12-13 10:32 - 2018-12-08 08:46 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-12-13 10:32 - 2018-12-08 08:46 - 000101192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-12-13 10:32 - 2018-12-08 08:45 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-12-13 10:32 - 2018-12-08 08:45 - 002307240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2018-12-13 10:32 - 2018-12-08 08:45 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-12-13 10:32 - 2018-12-08 08:45 - 001379816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-12-13 10:32 - 2018-12-08 08:42 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-12-13 10:32 - 2018-12-08 08:41 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-12-13 10:32 - 2018-12-08 08:40 - 004710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-12-13 10:32 - 2018-12-08 08:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-12-13 10:32 - 2018-12-08 08:37 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-13 10:32 - 2018-12-08 08:36 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2018-12-13 10:32 - 2018-12-08 08:33 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-12-13 10:32 - 2018-12-08 08:30 - 002966528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-12-13 10:32 - 2018-12-08 08:29 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-12-13 10:32 - 2018-12-08 08:26 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2018-12-13 10:32 - 2018-11-09 07:15 - 021388752 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-12-13 10:32 - 2018-11-09 06:56 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-12-13 10:32 - 2018-11-09 06:55 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-12-13 10:32 - 2018-11-09 06:17 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-12-13 10:32 - 2018-11-09 03:56 - 001213472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-12-13 10:32 - 2018-11-09 03:48 - 000899920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-12-13 10:32 - 2018-11-09 03:47 - 002062392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-12-13 10:32 - 2018-11-09 03:22 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2018-12-13 10:32 - 2018-11-09 03:18 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-12-13 10:32 - 2018-11-09 03:16 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-12-13 10:32 - 2018-11-09 02:46 - 002161008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-12-13 10:32 - 2018-11-09 02:46 - 000721024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-12-13 10:32 - 2018-11-09 02:30 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2018-12-13 10:32 - 2018-11-09 02:26 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-12-13 10:32 - 2018-11-09 02:26 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-12-13 10:32 - 2018-11-09 02:26 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2018-12-13 10:31 - 2018-12-08 13:47 - 001048712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-13 10:31 - 2018-12-08 13:47 - 000645320 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-12-13 10:31 - 2018-12-08 13:46 - 000549760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2018-12-13 10:31 - 2018-12-08 13:42 - 001634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-12-13 10:31 - 2018-12-08 13:41 - 000481880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-12-13 10:31 - 2018-12-08 13:40 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-12-13 10:31 - 2018-12-08 13:39 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2018-12-13 10:31 - 2018-12-08 13:28 - 006586880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-12-13 10:31 - 2018-12-08 13:28 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-13 10:31 - 2018-12-08 13:27 - 005657600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-12-13 10:31 - 2018-12-08 13:25 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-12-13 10:31 - 2018-12-08 13:23 - 003649024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-12-13 10:31 - 2018-12-08 13:23 - 002892288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-12-13 10:31 - 2018-12-08 13:23 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-12-13 10:31 - 2018-12-08 13:23 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-12-13 10:31 - 2018-12-08 13:23 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-12-13 10:31 - 2018-12-08 13:22 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-12-13 10:31 - 2018-12-08 13:22 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-12-13 10:31 - 2018-12-08 09:12 - 000272408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-13 10:31 - 2018-12-08 09:12 - 000269336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-13 10:31 - 2018-12-08 09:12 - 000092688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2018-12-13 10:31 - 2018-12-08 09:07 - 001328632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2018-12-13 10:31 - 2018-12-08 09:07 - 001063416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-12-13 10:31 - 2018-12-08 09:06 - 000709936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-12-13 10:31 - 2018-12-08 09:06 - 000491416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-12-13 10:31 - 2018-12-08 09:06 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-12-13 10:31 - 2018-12-08 09:06 - 000249088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2018-12-13 10:31 - 2018-12-08 09:05 - 002822656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-12-13 10:31 - 2018-12-08 09:05 - 002463384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-12-13 10:31 - 2018-12-08 09:05 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2018-12-13 10:31 - 2018-12-08 09:05 - 000793592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-12-13 10:31 - 2018-12-08 09:05 - 000421176 _____ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll
2018-12-13 10:31 - 2018-12-08 09:05 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-12-13 10:31 - 2018-12-08 09:05 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2018-12-13 10:31 - 2018-12-08 09:04 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 002371296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 001943328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-12-13 10:31 - 2018-12-08 09:04 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000413176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-12-13 10:31 - 2018-12-08 09:04 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000268280 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000158624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2018-12-13 10:31 - 2018-12-08 09:04 - 000058168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2018-12-13 10:31 - 2018-12-08 09:04 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2018-12-13 10:31 - 2018-12-08 08:46 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-12-13 10:31 - 2018-12-08 08:46 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-12-13 10:31 - 2018-12-08 08:46 - 000457056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 004789952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 001620472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 000567256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 000129296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-12-13 10:31 - 2018-12-08 08:42 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-12-13 10:31 - 2018-12-08 08:40 - 004384768 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-12-13 10:31 - 2018-12-08 08:38 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-12-13 10:31 - 2018-12-08 08:38 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-12-13 10:31 - 2018-12-08 08:38 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2018-12-13 10:31 - 2018-12-08 08:38 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-12-13 10:31 - 2018-12-08 08:36 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-12-13 10:31 - 2018-12-08 08:35 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2018-12-13 10:31 - 2018-12-08 08:35 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-12-13 10:31 - 2018-12-08 08:35 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-12-13 10:31 - 2018-12-08 08:35 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 001457152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-12-13 10:31 - 2018-12-08 08:33 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-12-13 10:31 - 2018-12-08 08:32 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-13 10:31 - 2018-12-08 08:30 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-12-13 10:31 - 2018-12-08 08:29 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-12-13 10:31 - 2018-12-08 08:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-12-13 10:31 - 2018-12-08 08:28 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-12-13 10:31 - 2018-12-08 08:28 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2018-12-13 10:31 - 2018-12-08 08:26 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2018-12-13 10:31 - 2018-12-08 08:25 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2018-12-13 10:31 - 2018-12-08 08:25 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-12-13 10:31 - 2018-12-08 08:25 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2018-12-13 10:31 - 2018-12-08 08:25 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2018-12-13 10:31 - 2018-12-08 08:24 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-13 10:31 - 2018-12-08 08:24 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-12-13 10:31 - 2018-11-09 06:59 - 008623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-12-13 10:31 - 2018-11-09 06:58 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2018-12-13 10:31 - 2018-11-09 06:57 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-12-13 10:31 - 2018-11-09 06:57 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2018-12-13 10:31 - 2018-11-09 06:56 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-12-13 10:31 - 2018-11-09 06:56 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2018-12-13 10:31 - 2018-11-09 06:55 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-13 10:31 - 2018-11-09 06:54 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2018-12-13 10:31 - 2018-11-09 06:32 - 020383832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-12-13 10:31 - 2018-11-09 06:20 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-12-13 10:31 - 2018-11-09 06:20 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-12-13 10:31 - 2018-11-09 06:19 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2018-12-13 10:31 - 2018-11-09 06:18 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-12-13 10:31 - 2018-11-09 06:18 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2018-12-13 10:31 - 2018-11-09 03:49 - 000723416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-12-13 10:31 - 2018-11-09 03:49 - 000565048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-12-13 10:31 - 2018-11-09 03:49 - 000368656 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2018-12-13 10:31 - 2018-11-09 03:48 - 002719736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-12-13 10:31 - 2018-11-09 03:48 - 000745472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-12-13 10:31 - 2018-11-09 03:48 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-12-13 10:31 - 2018-11-09 03:47 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-12-13 10:31 - 2018-11-09 03:47 - 002571128 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-12-13 10:31 - 2018-11-09 03:47 - 001285432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-12-13 10:31 - 2018-11-09 03:47 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-12-13 10:31 - 2018-11-09 03:47 - 000537912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-12-13 10:31 - 2018-11-09 03:21 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-12-13 10:31 - 2018-11-09 03:21 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-12-13 10:31 - 2018-11-09 03:20 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-12-13 10:31 - 2018-11-09 03:20 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvctpSvc.dll
2018-12-13 10:31 - 2018-11-09 03:20 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2DP.sys
2018-12-13 10:31 - 2018-11-09 03:19 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-13 10:31 - 2018-11-09 03:18 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-12-13 10:31 - 2018-11-09 03:18 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-12-13 10:31 - 2018-11-09 03:18 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2018-12-13 10:31 - 2018-11-09 03:16 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-12-13 10:31 - 2018-11-09 03:16 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2018-12-13 10:31 - 2018-11-09 03:16 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-12-13 10:31 - 2018-11-09 03:16 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-12-13 10:31 - 2018-11-09 03:15 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-12-13 10:31 - 2018-11-09 03:15 - 000933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-12-13 10:31 - 2018-11-09 03:15 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2018-12-13 10:31 - 2018-11-09 03:15 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-12-13 10:31 - 2018-11-09 02:48 - 000550728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-12-13 10:31 - 2018-11-09 02:47 - 000295224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2018-12-13 10:31 - 2018-11-09 02:46 - 002253184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-12-13 10:31 - 2018-11-09 02:46 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-12-13 10:31 - 2018-11-09 02:46 - 000829960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-12-13 10:31 - 2018-11-09 02:29 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-12-13 10:31 - 2018-11-09 02:29 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-12-13 10:31 - 2018-11-09 02:29 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-12-13 10:31 - 2018-11-09 02:28 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-12-13 10:31 - 2018-11-09 02:25 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2018-12-13 10:31 - 2018-11-09 02:25 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-12-13 10:30 - 2018-12-08 13:29 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-12-13 10:30 - 2018-12-08 13:27 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-12-13 10:30 - 2018-12-08 13:27 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-12-13 10:30 - 2018-12-08 13:27 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-12-13 10:30 - 2018-12-08 08:39 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2018-12-13 10:30 - 2018-12-08 08:38 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2018-12-13 10:30 - 2018-12-08 08:38 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2018-12-13 10:30 - 2018-12-08 08:38 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-12-13 10:30 - 2018-12-08 08:38 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2018-12-13 10:30 - 2018-12-08 08:37 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-13 10:30 - 2018-12-08 08:37 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
2018-12-13 10:30 - 2018-12-08 08:37 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2018-12-13 10:30 - 2018-12-08 08:37 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2018-12-13 10:30 - 2018-12-08 08:36 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-13 10:30 - 2018-12-08 08:36 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2018-12-13 10:30 - 2018-12-08 08:36 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2018-12-13 10:30 - 2018-12-08 08:30 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2018-12-13 10:30 - 2018-12-08 08:29 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2018-12-13 10:30 - 2018-12-08 08:28 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-12-13 10:30 - 2018-12-08 08:28 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-13 10:30 - 2018-12-08 08:27 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2018-12-13 10:30 - 2018-12-08 08:25 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-12-13 10:30 - 2018-12-08 08:24 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-12-13 10:30 - 2018-12-08 08:24 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-12-13 10:30 - 2018-11-09 07:00 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-12-13 10:30 - 2018-11-09 06:22 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-12-13 10:30 - 2018-11-09 03:22 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2018-12-13 10:30 - 2018-11-09 03:21 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-13 10:30 - 2018-11-09 03:21 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2018-12-13 10:30 - 2018-11-09 03:21 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-12-13 10:30 - 2018-11-09 03:20 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2018-12-13 10:30 - 2018-11-09 03:20 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2018-12-13 10:30 - 2018-11-09 03:19 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-12-13 10:30 - 2018-11-09 03:19 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2018-12-13 10:30 - 2018-11-09 03:18 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-12-13 10:30 - 2018-11-09 02:31 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-12-13 10:30 - 2018-11-09 02:31 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-12-13 10:30 - 2018-11-09 02:30 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2018-12-13 10:30 - 2018-11-09 02:29 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2018-12-13 10:30 - 2018-11-09 02:27 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2018-12-13 10:30 - 2018-11-09 02:26 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-12-12 09:54 - 2018-12-21 10:17 - 000000000 ____D C:\Users\Asusak\Desktop\https klic
2018-12-10 12:08 - 2018-12-10 12:08 - 000000016 _____ C:\Users\Asusak\Documents\ggoi.txt
2018-12-06 22:04 - 2018-12-06 22:04 - 000000000 ____D C:\Users\Asusak\AppData\LocalLow\Perun Creative
2018-12-06 12:42 - 2018-12-06 12:42 - 000000000 ____D C:\Users\Asusak\AppData\Local\Imaginando
2018-12-06 12:41 - 2018-12-06 12:41 - 000000000 ____D C:\Users\Asusak\Documents\Imaginando
2018-12-06 12:41 - 2018-12-06 12:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Imaginando
2018-12-06 12:41 - 2018-12-06 12:41 - 000000000 ____D C:\Program Files\Imaginando
2018-12-05 21:44 - 2018-12-05 21:45 - 000000000 ____D C:\Users\Asusak\.musictrans
2018-12-05 21:44 - 2018-12-05 21:44 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicTrans
2018-12-05 21:44 - 2018-12-05 21:44 - 000000000 ____D C:\Users\Asusak\.swt
2018-12-05 21:44 - 2018-12-05 21:44 - 000000000 ____D C:\Program Files\MusicTrans
2018-12-05 20:55 - 2018-12-01 05:01 - 000835688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-12-05 20:55 - 2018-12-01 05:01 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-12-04 21:12 - 2018-12-04 21:11 - 000305290 _____ C:\Users\Asusak\Desktop\zivotopis.pdf
2018-12-04 20:10 - 2018-12-04 20:10 - 002326656 _____ C:\WINDOWS\cadkasdeinst01.exe
2018-12-04 20:10 - 2018-12-04 20:10 - 000001109 _____ C:\Users\Asusak\Desktop\PDF Editor 5.5.lnk
2018-12-04 20:10 - 2018-12-04 20:10 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDF Editor 5.5
2018-12-04 20:10 - 2018-12-04 20:10 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\CAD-KAS
2018-12-04 20:10 - 2018-12-04 20:10 - 000000000 ____D C:\Program Files (x86)\PDF Editor 5
2018-12-02 10:15 - 2018-12-02 10:15 - 000000099 _____ C:\WINDOWS\Reimage.ini
2018-11-30 19:30 - 2018-11-30 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-11-28 18:28 - 2018-11-28 18:28 - 000000000 ____D C:\WINDOWS\Minidump
2018-11-28 18:28 - 2018-11-28 18:28 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Tencent
2018-11-28 18:03 - 2018-11-28 18:03 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portal
2018-11-28 17:58 - 2018-11-28 18:03 - 000000000 ____D C:\Program Files (x86)\Portal
2018-11-25 16:51 - 2018-11-25 16:51 - 000000000 ____D C:\Users\Asusak\ansel

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-25 11:25 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-25 11:25 - 2016-10-13 18:03 - 000000000 ____D C:\FRST
2018-12-25 11:12 - 2016-08-14 09:20 - 000000000 ____D C:\Users\Asusak\Desktop\Programy
2018-12-25 11:11 - 2016-06-11 22:39 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\vlc
2018-12-25 11:09 - 2016-08-14 09:20 - 000000000 ____D C:\Users\Asusak\Desktop\Hry
2018-12-25 11:01 - 2016-11-01 21:01 - 000000000 ____D C:\Games
2018-12-25 10:56 - 2018-04-10 19:55 - 000000000 ___HD C:\Users\Asusak\MicrosoftEdgeBackups
2018-12-25 10:48 - 2016-05-17 21:54 - 000000165 _____ C:\Users\Asusak\AppData\Roaming\sp_data.sys
2018-12-25 10:44 - 2017-05-21 09:00 - 000000000 _____ C:\WINDOWS\system32\RzSurroundVADAudioDeviceManager_log.txt
2018-12-25 10:23 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-12-25 09:54 - 2017-08-08 08:47 - 000000000 ____D C:\torrenty
2018-12-25 09:04 - 2018-07-05 17:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-12-24 12:25 - 2016-11-11 00:08 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-24 11:23 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-12-24 11:23 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-12-22 22:22 - 2017-12-29 13:05 - 000000000 ____D C:\Users\Asusak\AppData\Local\Crossout
2018-12-22 15:35 - 2018-06-03 10:38 - 000000000 ____D C:\ProgramData\Remotr
2018-12-22 14:49 - 2016-10-22 16:30 - 000000000 ____D C:\Users\Asusak\AppData\LocalLow\CodeHorizon
2018-12-21 17:39 - 2018-07-05 18:16 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-21 17:39 - 2018-04-12 16:50 - 000717712 _____ C:\WINDOWS\system32\perfh005.dat
2018-12-21 17:39 - 2018-04-12 16:50 - 000144954 _____ C:\WINDOWS\system32\perfc005.dat
2018-12-21 17:39 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2018-12-21 17:37 - 2016-07-29 08:16 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2018-12-21 17:35 - 2016-05-17 21:52 - 000000000 __SHD C:\Users\Asusak\IntelGraphicsProfiles
2018-12-21 17:33 - 2018-07-05 18:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-21 17:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-12-21 17:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-12-21 17:32 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-12-21 17:31 - 2018-07-05 18:05 - 000000000 ____D C:\Users\Asusak
2018-12-21 12:12 - 2016-05-19 14:17 - 000000000 ____D C:\Program Files (x86)\Opera
2018-12-21 12:11 - 2016-07-28 20:04 - 000000000 ___RD C:\Users\Asusak\OneDrive
2018-12-20 10:10 - 2018-04-01 19:40 - 000000000 ____D C:\Program Files (x86)\BlueStacks
2018-12-19 23:15 - 2017-04-14 17:58 - 000000000 ____D C:\Program Files\Farm Expert 2017
2018-12-19 22:35 - 2017-11-23 16:34 - 000000000 ____D C:\Program Files (x86)\GtkSharp
2018-12-19 22:35 - 2014-10-21 05:29 - 000000000 ____D C:\ProgramData\Package Cache
2018-12-19 22:33 - 2018-04-01 19:39 - 000000000 ____D C:\Users\Asusak\AppData\Local\Bluestacks
2018-12-19 18:14 - 2018-07-05 18:26 - 000003472 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-19 18:14 - 2018-07-05 18:26 - 000003348 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-14 19:50 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-12-14 08:57 - 2016-11-20 19:09 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-14 08:57 - 2016-11-20 19:09 - 000002264 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-12-13 17:41 - 2018-01-03 19:58 - 000000000 ___RD C:\Users\Asusak\3D Objects
2018-12-13 17:41 - 2016-04-27 07:56 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-13 17:39 - 2018-07-05 17:23 - 000423072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-12-13 17:36 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-12-13 17:36 - 2018-04-12 00:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-12-13 17:36 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-12-13 10:51 - 2016-07-29 08:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-12-13 10:45 - 2016-07-29 08:27 - 137260640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-12-13 10:09 - 2018-09-01 15:20 - 000000000 ____D C:\Users\Asusak\Desktop\ja
2018-12-11 16:56 - 2016-11-11 11:40 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\GHISLER
2018-12-10 10:55 - 2017-11-04 10:36 - 000000000 ____D C:\Spintires MudRunner
2018-12-08 17:49 - 2018-09-23 19:43 - 000000000 ____D C:\Users\Asusak\AppData\Local\DK Deploy Service
2018-12-07 11:26 - 2017-09-21 19:30 - 000000000 ____D C:\Program Files\rempl
2018-12-07 11:06 - 2018-02-18 21:13 - 000000000 ____D C:\Users\Asusak\AppData\Local\Packages
2018-12-06 22:24 - 2018-07-05 18:26 - 000004600 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-12-06 22:24 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-12-06 22:24 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-12-06 21:24 - 2018-07-05 18:26 - 000004636 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-12-06 12:43 - 2017-10-21 19:53 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2018-12-05 22:42 - 2017-01-01 13:38 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\obs-studio
2018-12-05 12:07 - 2016-08-27 22:13 - 000000000 ____D C:\Users\Asusak\Documents\BeamNG.drive
2018-12-05 12:00 - 2018-05-26 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossout
2018-12-02 10:34 - 2017-12-22 12:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinerGate
2018-12-02 10:34 - 2017-12-22 12:28 - 000000000 ____D C:\Program Files\MinerGate
2018-11-30 19:30 - 2017-09-17 14:05 - 000000000 ___RD C:\Program Files (x86)\Skype
2018-11-30 19:30 - 2016-05-24 16:46 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Skype
2018-11-30 19:30 - 2014-10-21 05:29 - 000000000 ____D C:\ProgramData\Skype
2018-11-28 18:08 - 2016-11-10 21:28 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-11-25 17:26 - 2017-11-04 10:37 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\SpinTires MudRunner
2018-11-25 14:37 - 2016-11-11 00:13 - 000000000 ____D C:\Users\Asusak\AppData\Local\NVIDIA

==================== Files in the root of some directories =======

2018-04-12 00:34 - 2018-04-12 00:34 - 000060416 ____N (Microsoft Corporation) C:\Program Files (x86)\uuKfAa.exe
2016-11-06 08:51 - 2016-11-06 08:51 - 000677904 _____ () C:\Users\Asusak\AppData\Roaming\878787.dat
2016-12-27 09:38 - 2016-12-27 09:38 - 000000132 _____ () C:\Users\Asusak\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2016-07-26 11:16 - 2016-07-27 10:43 - 000000132 _____ () C:\Users\Asusak\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-11-20 15:07 - 2016-11-20 15:07 - 007299584 _____ () C:\Users\Asusak\AppData\Roaming\agent.dat
2016-11-20 15:07 - 2016-11-20 15:07 - 000140288 _____ () C:\Users\Asusak\AppData\Roaming\Installer.dat
2016-11-20 15:07 - 2016-11-20 15:07 - 000018432 _____ () C:\Users\Asusak\AppData\Roaming\Main.dat
2016-05-29 07:36 - 2018-09-08 12:41 - 000000032 _____ () C:\Users\Asusak\AppData\Roaming\msregsvv.dll
2016-12-02 20:14 - 2016-12-02 20:19 - 001249792 _____ (http://www.ruby-lang.org/) C:\Users\Asusak\AppData\Roaming\msvcr90-ruby191.dll
2016-11-06 08:54 - 2016-11-20 15:14 - 000005664 _____ () C:\Users\Asusak\AppData\Roaming\offline.txt
2016-05-17 21:54 - 2018-12-25 10:48 - 000000165 _____ () C:\Users\Asusak\AppData\Roaming\sp_data.sys
2016-11-06 08:52 - 2016-11-20 18:01 - 000000026 _____ () C:\Users\Asusak\AppData\Roaming\temp.bat
2016-11-06 08:51 - 2016-11-06 08:51 - 000000493 _____ () C:\Users\Asusak\AppData\Roaming\update.bat
2018-04-12 00:34 - 2018-04-12 00:34 - 000060416 ____N (Microsoft Corporation) C:\Users\Asusak\AppData\Local\dOQkCAUY.exe
2018-12-22 13:39 - 2018-12-22 13:39 - 000000002 _____ () C:\Users\Asusak\AppData\Local\imw.ini
2016-05-23 19:31 - 2016-06-02 20:04 - 000007602 _____ () C:\Users\Asusak\AppData\Local\resmon.resmoncfg
2016-07-21 18:27 - 2017-10-27 18:50 - 000000175 _____ () C:\Users\Asusak\AppData\Local\uts.ini

Some files in TEMP:
====================
2018-12-19 22:32 - 2018-03-24 09:43 - 000977440 _____ (BlueStack Systems, Inc.) C:\Users\Asusak\AppData\Local\Temp\BlueStacksClientUninstaller.exe
2018-12-19 22:32 - 2018-03-24 09:43 - 000421368 _____ (CodeTitans) C:\Users\Asusak\AppData\Local\Temp\JSON.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-07-05 17:23

==================== End of FRST.txt ============================

[Rudy]

Teď spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Termiter8]

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2018-12-21.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-25-2018
# Duration: 00:00:07
# OS: Windows 10 Home
# Cleaned: 62
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Drabapythebution
Deleted C:\ProgramData\IObit\Advanced SystemCare V7
Deleted C:\ProgramData\IObit\Advanced SystemCare V8
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare V8
Deleted C:\Users\Asusak\AppData\Roaming\IObit\Advanced SystemCare V8
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Users\Asusak\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\Asusak\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\minergate
Deleted C:\Program Files\minergate
Deleted C:\Users\Asusak\AppData\Local\minergate
Deleted C:\Users\Asusak\AppData\LocalLow\SmartCloudIME
Deleted C:\Users\Asusak\AppData\LocalLow\MiNiNews
Deleted C:\Users\Asusak\AppData\LocalLow\SmartCloudIME.users
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\??????
Deleted C:\Users\Asusak\AppData\Roaming\Kuaizip
Deleted C:\Users\Asusak\AppData\Roaming\Tencent
Deleted C:\Program Files (x86)\SMARTCLOUDINPUT
Deleted C:\Program Files (x86)\Common Files\SMARTCLOUDINPUT

***** [ Files ] *****

Deleted C:\Windows\System32\SCMenu64.dll
Deleted C:\Users\Asusak\Downloads\DriverToolkitInstaller.exe
Deleted C:\TOSTACK
Deleted C:\Users\Asusak\AppData\Roaming\Installer.dat
Deleted C:\Users\Asusak\AppData\Roaming\Main.dat
Deleted C:\Users\Asusak\AppData\Roaming\agent.dat
Deleted C:\Windows\System32\chtbrkg.dll
Deleted C:\Windows\Syswow64\chtbrkg.dll
Deleted C:\Windows\Reimage.ini

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\QiLu Inc.
Deleted HKLM\Software\Wow6432Node\QiLu Inc.
Deleted HKLM\Software\Wow6432Node\{84416237-6490-494D-9AD6-4994DD978971}
Deleted HKLM\Software\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|ENABLESHELLEXECUTEHOOKS
Deleted HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|ENABLESHELLEXECUTEHOOKS
Deleted HKLM\Software\Wow6432Node\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\Quoteex.exe
Deleted HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\Quoteex.exe
Deleted HKCU\SOFTWARE\543459314FE3D928C79ABF314C10F59C
Deleted HKLM\Software\Wow6432Node\543459314FE3D928C79ABF314C10F59C
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\SmartCloudService
Deleted HKLM\Software\SmartCloud
Deleted HKLM\Software\Wow6432Node\SmartCloudInput
Deleted HKLM\Software\SmartCloudInput
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\menuext
Deleted HKCU\Software\dlr
Deleted HKCU\Software\KuaiZip
Deleted HKCU\Software\SNDA
Deleted HKCU\Software\PopWnd
Deleted HKU\S-1-5-18\Software\UpgSvr
Deleted HKCU\Software\UpgSvr
Deleted HKU\.DEFAULT\Software\UpgSvr
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98FD652EB4839214E97B69DD8EEA1D29
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|KuaiZip Shell Extension
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\KzShlobj
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Norassie
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{c0d5287c-e671-43c4-98b1-3a25addf79fa}
Deleted HKLM\Software\Classes\CLSID\{c0d5287c-e671-43c4-98b1-3a25addf79fa}

***** [ Chromium (and derivatives) ] *****

Deleted Teoma Search App

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [6231 octets] - [25/12/2018 23:20:47]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[Termiter8]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24.12.2018
Ran by Asusak (administrator) on PC007 (26-12-2018 12:30:21)
Running from C:\Users\Asusak\Desktop
Loaded Profiles: Asusak (Available Profiles: Asusak)
Platform: Windows 10 Home Version 1803 17134.472 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Media Gobbler, Inc) C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe
(ClanServers Hosting LLC) C:\Program Files (x86)\GameTracker\GSInGameService.exe
() C:\Program Files (x86)\Kinoni\Remote Desktop\service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(RemoteMyApp sp. z o.o.) C:\Program Files (x86)\Remotr\RemotrService.exe
(Tobias Erichsen) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe
(Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
() C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Kinoni) C:\Program Files (x86)\Kinoni\Remote Desktop\WindowsServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Waves Audio Ltd.) C:\Windows\SysWOW64\SGDawNodeService.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Valve Corporation) D:\Steam\Steam.exe
(Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Ableton) D:\Ableton\Live 9 Suite\Program\Ableton Live 9 Suite.exe
() D:\Ableton\Live 9 Suite\Resources\Extensions\Index\Ableton Index.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [Cm106Sound] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [SGDawNodeService] => C:\WINDOWS\SysWOW64\SGDawNodeService.exe [5620736 2017-01-29] (Waves Audio Ltd.)
HKLM-x32\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-04-13] (Razer Inc.)
HKLM-x32\...\Run: [Sound Blaster Play! 2 Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Play! 2\Sound Blaster Play! 2 Control Panel\SBPlay2.exe [872448 2014-02-26] (Creative Technology Ltd)
HKLM-x32\...\Run: [IPAnonymizer] => C:\Program Files (x86)\IP Anonymizer\IP Anonymizer.exe [5177344 2006-01-06] (Privacy-Pro.com)
HKLM-x32\...\Run: [KinoniTask] => C:\Program Files (x86)\Kinoni\Remote Desktop\KinoniTask.exe [118416 2016-07-04] ()
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [uTorrent] => D:\Utorrent\utorrent.exe [416168 2015-02-22] (BitTorrent, Inc.)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [Epson Stylus SX110] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [com.squirrel.splice.Splice] => C:\Users\Asusak\AppData\Local\splice\app-3.0.137060\Splice.exe [57137552 2017-08-07] (Splice)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Asusak\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2125384 2018-09-25] (Gaijin Entertainment)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [loopMIDI] => C:\Program Files (x86)\Tobias Erichsen\loopMIDI\loopMIDI.exe [5479576 2015-08-02] (Tobias Erichsen)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32973712 2018-07-27] (Epic Games, Inc.)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Run: [GobblerTray] => C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe [1520664 2017-06-09] (Media Gobbler, Inc)
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\MountPoints2: F - "F:\setup.exe"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [804352 2018-04-12] (Microsoft Corporation)
HKLM\...\Drivers32: [msacm.vorbis] => C:\WINDOWS\System32\vorbis.acm [1470976 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
HKLM\...\Drivers32: [MSVideo8] => C:\WINDOWS\System32\VfWWDM32.dll [67072 2018-04-12] (Microsoft Corporation)
HKLM\...\Drivers32-x32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software)
HKLM\...\Drivers32-x32: [msacm.vorbis] => C:\WINDOWS\SysWOW64\vorbis.acm [1554944 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
ShellExecuteHooks: No Name - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - -> No File
Startup: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DK.bat [2018-09-11] ()
Startup: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\flstudio.exe [2016-07-28] ()
Startup: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2018-02-15]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Asusak\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\w10memchk.exe [2016-07-28] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{8217119e-efdd-49f5-9736-b007f56829f6}: [DhcpNameServer] 172.18.12.1
Tcpip\..\Interfaces\{def6b6f8-31ba-4ba4-88db-f15f2d359cd3}: [DhcpNameServer] 172.18.11.1
Tcpip\..\Interfaces\{e33a08a8-e52a-4a64-8cbd-4dff852b0eb0}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e33a08a8-e52a-4a64-8cbd-4dff852b0eb0}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-31] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-31] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-04] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-04] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: e0py5mhg.default-1545748141300
FF ProfilePath: C:\Users\Asusak\AppData\Roaming\Mozilla\Firefox\Profiles\e0py5mhg.default-1545748141300 [2018-12-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll [2018-12-06] ()
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-31] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll [2018-12-06] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-04] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default [2018-12-26]
CHR Extension: (Prezentace) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (No Name) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ancbofgphhmhcchnaognahmjfajaecmo [2018-12-25]
CHR Extension: (Dokumenty) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Disk Google) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-23]
CHR Extension: (YouTube) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-23]
CHR Extension: (LoopDaLoop) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\clhambhgmoihmhbfjmmaciggnfcfkflo [2016-07-30]
CHR Extension: (Adblock na Youtube™) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2018-09-15]
CHR Extension: (Tabulky) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2018-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-12-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-23]
CHR Extension: (Chrome Media Router) - C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-15]
CHR Profile: C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-11-09]
CHR Profile: C:\Users\Asusak\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-09]

Opera:
=======
OPR Extension: (Tampermonkey) - C:\Users\Asusak\AppData\Roaming\Opera Software\Opera Stable\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-12-22]
OPR Extension: (MyJSCript) - C:\Users\Asusak\AppData\Roaming\Opera Software\Opera Stable\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2018-12-22]
OPR Extension: (MyJSCript) - C:\Program Files (x86)\360\360Safe\Utils\npaxlogin.dll []

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7206312 2018-07-17] ()
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe [73048 2018-10-18] (Google Inc.)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2016-05-18] (Creative Labs) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2018-05-22] (EasyAntiCheat Ltd)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1037568 2014-09-18] (Intel Corporation)
R2 gobblerproxy; C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe [15872 2017-06-09] (Media Gobbler, Inc) [File not signed]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2015-01-06] (Intel Corporation)
R2 KinoniRemoteDesktop; C:\Program Files (x86)\Kinoni\Remote Desktop\service.exe [81920 2016-07-04] () [File not signed]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2945312 2016-01-12] (IObit)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [32384 2016-10-03] (The OpenVPN Project)
S3 PAExec; C:\WINDOWS\PAExec.exe [189112 2016-08-27] (Power Admin LLC)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
R2 Remotr Service; C:\Program Files (x86)\Remotr\RemotrService.exe [207480 2017-02-27] (RemoteMyApp sp. z o.o.)
R2 rtpMIDIService; C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe [3958416 2016-11-19] (Tobias Erichsen)
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-11-04] (Razer Inc)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [37248 2017-09-06] ()
S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [838128 2016-12-15] (Tunngle.net GmbH) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107136 2018-09-21] (Microsoft Corporation)
S4 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-08-27] (Atheros) [File not signed]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u https://activation.paceap.com/InitiateActivation [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [34376 2010-10-12] (Bome Software)
R3 bomemidi; C:\WINDOWS\system32\drivers\bomemidi.sys [30792 2010-10-12] (Bome Software)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [38720 2014-09-18] (Intel Corporation)
R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [38208 2014-09-18] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [216360 2014-09-18] (Intel Corporation)
R2 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [155912 2014-10-22] (BitDefender LLC)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [79528 2014-10-16] (Intel Corporation)
S3 ipMIDI; C:\WINDOWS\system32\drivers\ipmidi.sys [23040 2013-01-31] (nerds.de) [File not signed]
R3 Kinonih; C:\WINDOWS\System32\drivers\kinonih.sys [32256 2016-06-22] (Kinoni)
R3 LoopBeMidi1; C:\WINDOWS\system32\drivers\loopbe1.sys [13824 2011-04-09] (nerds.de)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [58792 2017-03-05] (Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (Visicom Media Inc.)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2015-01-06] (Intel Corporation)
S3 netfitsprocadapter; C:\WINDOWS\System32\drivers\netfitsproc.sys [30480 2016-11-20] (Netfits)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-10-11] (NVIDIA Corporation)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [19936 2010-08-16] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13280 2010-08-16] ()
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-10-08] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
R3 SoundGridMIDI; C:\WINDOWS\system32\drivers\SoundGridMidi.sys [42320 2017-01-29] (Waves Audio Ltd.)
R3 SoundGridMIDI; C:\Windows\SysWOW64\drivers\SoundGridMidi.sys [22016 2017-01-29] (Waves Audio Ltd.) [File not signed]
R2 SoundGridProtocol; C:\WINDOWS\system32\DRIVERS\SoundGridProtocol.sys [113488 2017-01-29] (Waves Audio Ltd.)
R2 SoundGridProtocol; C:\Windows\SysWOW64\DRIVERS\SoundGridProtocol.sys [55296 2017-01-29] (Waves Audio Ltd.) [File not signed]
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2018-06-08] ()
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2018-06-08] ()
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2017-09-06] (The OpenVPN Project)
R3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [48824 2016-04-26] (Tunngle.net GmbH)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2017-04-21] (The OpenVPN Project)
R3 teVirtualMIDI64; C:\WINDOWS\system32\DRIVERS\teVirtualMIDI64.sys [41016 2016-08-31] (Tobias Erichsen)
R3 UHSfiltv; C:\WINDOWS\system32\drivers\UHSfiltv.sys [23552 2013-05-31] (Creative Technology Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2029-11-24 23:07 - 2029-11-24 23:07 - 000000000 ____D C:\Program Files\Common Files\Steinberg
2029-11-24 23:07 - 2016-05-30 18:10 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Steinberg
2018-12-26 12:30 - 2018-12-26 12:31 - 000026291 _____ C:\Users\Asusak\Desktop\FRST.txt
2018-12-25 23:23 - 2018-12-25 23:23 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-12-25 23:19 - 2018-12-25 23:19 - 007320272 _____ (Malwarebytes) C:\Users\Asusak\Desktop\adwcleaner_7.2.6.0.exe
2018-12-25 16:10 - 2018-12-25 16:10 - 000000000 ____D C:\Program Files (x86)\directx
2018-12-25 15:29 - 2018-12-25 15:29 - 000000000 ____D C:\Users\Asusak\Desktop\Původní data aplikace Firefox
2018-12-25 15:28 - 2018-12-25 15:28 - 000000995 _____ C:\Users\Public\Desktop\Firefox.lnk
2018-12-25 11:25 - 2018-12-25 11:25 - 002421760 _____ (Farbar) C:\Users\Asusak\Desktop\FRST64.exe
2018-12-25 11:25 - 2018-12-25 11:25 - 000000000 ____D C:\Users\Asusak\Desktop\FRST-OlderVersion
2018-12-25 10:57 - 2018-12-25 10:57 - 000002482 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Asusak
2018-12-25 10:57 - 2018-12-25 10:57 - 000000292 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Asusak.job
2018-12-25 10:23 - 2018-12-25 10:23 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2018-12-25 10:23 - 2018-12-25 10:23 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2018-12-25 10:23 - 2018-12-25 10:23 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2018-12-25 10:23 - 2018-12-25 10:23 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2018-12-25 10:23 - 2018-12-25 10:23 - 000005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2018-12-25 10:18 - 2018-12-25 10:24 - 000000000 ____D C:\Users\Asusak\Documents\GTA San Andreas User Files
2018-12-25 10:18 - 2018-12-25 10:18 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2018-12-25 10:15 - 2018-12-25 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto San Andreas
2018-12-22 13:39 - 2018-12-22 13:39 - 000003864 _____ C:\WINDOWS\System32\Tasks\{44922045-E36E-5326-98AB-2825BCA326E7}
2018-12-22 13:39 - 2018-12-22 13:39 - 000003748 _____ C:\WINDOWS\System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83}
2018-12-22 13:39 - 2018-12-22 13:39 - 000003486 _____ C:\WINDOWS\System32\Tasks\{62F7E201-15FA-B13F-918B-9117664C4611}
2018-12-22 13:39 - 2018-12-22 13:39 - 000000002 _____ C:\Users\Asusak\AppData\Local\imw.ini
2018-12-21 12:14 - 2018-12-14 13:24 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-12-21 12:14 - 2018-12-14 08:29 - 006567472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-21 12:14 - 2018-12-14 08:29 - 001130760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-12-21 12:14 - 2018-12-14 08:25 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-21 12:14 - 2018-12-14 08:23 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-12-21 12:14 - 2018-12-14 08:23 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-12-21 12:14 - 2018-12-14 08:23 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-12-21 12:14 - 2018-12-14 08:23 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-12-21 12:14 - 2018-12-14 08:23 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-12-21 12:14 - 2018-12-14 08:22 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-12-21 12:14 - 2018-12-14 08:22 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-12-21 12:14 - 2018-12-14 08:21 - 001457240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-21 12:14 - 2018-12-14 08:21 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-21 12:14 - 2018-12-14 08:21 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-21 12:14 - 2018-12-14 08:21 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-12-21 12:14 - 2018-12-14 08:21 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-21 12:14 - 2018-12-14 08:13 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-12-21 12:14 - 2018-12-14 08:12 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2018-12-21 12:14 - 2018-12-14 08:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-12-21 12:14 - 2018-12-14 08:07 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-21 12:14 - 2018-12-14 07:55 - 003396608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-21 12:14 - 2018-12-14 07:55 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-21 12:14 - 2018-12-14 07:54 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-12-21 12:14 - 2018-12-14 07:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-12-21 12:14 - 2018-12-14 07:54 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-12-21 12:14 - 2018-12-14 07:53 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-12-21 12:14 - 2018-12-14 07:52 - 002173440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-21 12:14 - 2018-12-14 07:52 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-21 12:14 - 2018-12-14 07:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-21 12:14 - 2018-12-14 07:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-21 12:14 - 2018-12-14 06:34 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2018-12-21 12:12 - 2018-12-21 12:12 - 000003950 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1463663892
2018-12-21 12:11 - 2018-12-21 12:11 - 000003360 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3811162916-2113203268-3777127909-1001
2018-12-21 12:11 - 2018-12-21 12:11 - 000002396 _____ C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-19 22:35 - 2018-12-19 22:35 - 000003530 _____ C:\WINDOWS\System32\Tasks\Asusak
2018-12-17 11:22 - 2018-12-17 11:22 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\.mono
2018-12-17 11:22 - 2018-12-17 11:22 - 000000000 ____D C:\Users\Asusak\AppData\Local\Colossal Order
2018-12-17 11:22 - 2018-12-17 11:22 - 000000000 ____D C:\ProgramData\.mono
2018-12-17 00:02 - 2018-12-17 00:02 - 000000000 ____D C:\Users\Asusak\AppData\LocalLow\MinskWorks
2018-12-16 22:13 - 2018-12-16 22:21 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Voltage
2018-12-16 21:57 - 2018-12-16 21:57 - 000000882 _____ C:\Users\Asusak\Desktop\Voltage Modular.lnk
2018-12-16 21:57 - 2018-12-16 21:57 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Voltage Modular
2018-12-16 21:57 - 2018-12-16 21:57 - 000000000 ____D C:\ProgramData\Voltage
2018-12-13 12:23 - 2018-12-13 14:55 - 000000000 ____D C:\Users\Asusak\Desktop\make analog synth
2018-12-13 11:13 - 2018-12-13 11:13 - 000279076 _____ C:\Users\Asusak\Desktop\zivotopis (1).pdf
2018-12-13 10:48 - 2018-12-13 10:51 - 000000000 ____D C:\Users\Asusak\Desktop\downloadable
2018-12-13 10:33 - 2018-12-08 09:05 - 001209888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-12-13 10:33 - 2018-12-08 09:05 - 000706040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-12-13 10:33 - 2018-12-08 09:05 - 000594224 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-12-13 10:33 - 2018-12-08 08:49 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-12-13 10:33 - 2018-12-08 08:45 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-12-13 10:33 - 2018-12-08 08:36 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-12-13 10:33 - 2018-12-08 08:34 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-13 10:33 - 2018-11-09 03:48 - 003179760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-12-13 10:33 - 2018-11-09 03:48 - 001613288 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-12-13 10:33 - 2018-11-09 03:48 - 000766704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-12-13 10:33 - 2018-11-09 03:17 - 002584576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-12-13 10:33 - 2018-11-09 03:17 - 001069568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-12-13 10:33 - 2018-11-09 03:07 - 002417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-12-13 10:33 - 2018-11-09 03:07 - 001299704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-12-13 10:33 - 2018-11-09 02:46 - 000573504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-12-13 10:32 - 2018-12-08 13:42 - 004527800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-12-13 10:32 - 2018-12-08 13:42 - 001616824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-12-13 10:32 - 2018-12-08 13:41 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-12-13 10:32 - 2018-12-08 13:29 - 013572608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-12-13 10:32 - 2018-12-08 13:28 - 012710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-12-13 10:32 - 2018-12-08 13:25 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-12-13 10:32 - 2018-12-08 13:23 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-12-13 10:32 - 2018-12-08 13:22 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-13 10:32 - 2018-12-08 09:07 - 005625352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-12-13 10:32 - 2018-12-08 09:06 - 001017168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-13 10:32 - 2018-12-08 09:06 - 000777512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-12-13 10:32 - 2018-12-08 09:05 - 007436216 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-12-13 10:32 - 2018-12-08 09:05 - 001935008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-12-13 10:32 - 2018-12-08 09:05 - 000413920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-12-13 10:32 - 2018-12-08 09:05 - 000130312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-12-13 10:32 - 2018-12-08 09:04 - 002590296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2018-12-13 10:32 - 2018-12-08 09:04 - 001188512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-12-13 10:32 - 2018-12-08 09:04 - 001150312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-12-13 10:32 - 2018-12-08 09:04 - 000416024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2018-12-13 10:32 - 2018-12-08 09:04 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-12-13 10:32 - 2018-12-08 08:47 - 000861744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-12-13 10:32 - 2018-12-08 08:47 - 000785760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-12-13 10:32 - 2018-12-08 08:46 - 001397104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2018-12-13 10:32 - 2018-12-08 08:46 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-12-13 10:32 - 2018-12-08 08:46 - 000101192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-12-13 10:32 - 2018-12-08 08:45 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-12-13 10:32 - 2018-12-08 08:45 - 002307240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2018-12-13 10:32 - 2018-12-08 08:45 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-12-13 10:32 - 2018-12-08 08:45 - 001379816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-12-13 10:32 - 2018-12-08 08:42 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-12-13 10:32 - 2018-12-08 08:41 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-12-13 10:32 - 2018-12-08 08:40 - 004710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-12-13 10:32 - 2018-12-08 08:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-12-13 10:32 - 2018-12-08 08:37 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-13 10:32 - 2018-12-08 08:36 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2018-12-13 10:32 - 2018-12-08 08:33 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-12-13 10:32 - 2018-12-08 08:30 - 002966528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-12-13 10:32 - 2018-12-08 08:29 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-12-13 10:32 - 2018-12-08 08:26 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2018-12-13 10:32 - 2018-11-09 07:15 - 021388752 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-12-13 10:32 - 2018-11-09 06:56 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-12-13 10:32 - 2018-11-09 06:55 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-12-13 10:32 - 2018-11-09 06:17 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-12-13 10:32 - 2018-11-09 03:56 - 001213472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-12-13 10:32 - 2018-11-09 03:48 - 000899920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-12-13 10:32 - 2018-11-09 03:47 - 002062392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-12-13 10:32 - 2018-11-09 03:22 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2018-12-13 10:32 - 2018-11-09 03:18 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-12-13 10:32 - 2018-11-09 03:16 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-12-13 10:32 - 2018-11-09 02:46 - 002161008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-12-13 10:32 - 2018-11-09 02:46 - 000721024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-12-13 10:32 - 2018-11-09 02:30 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2018-12-13 10:32 - 2018-11-09 02:26 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-12-13 10:32 - 2018-11-09 02:26 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-12-13 10:32 - 2018-11-09 02:26 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2018-12-13 10:31 - 2018-12-08 13:47 - 001048712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-13 10:31 - 2018-12-08 13:47 - 000645320 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-12-13 10:31 - 2018-12-08 13:46 - 000549760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2018-12-13 10:31 - 2018-12-08 13:42 - 001634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-12-13 10:31 - 2018-12-08 13:41 - 000481880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-12-13 10:31 - 2018-12-08 13:40 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-12-13 10:31 - 2018-12-08 13:39 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2018-12-13 10:31 - 2018-12-08 13:28 - 006586880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-12-13 10:31 - 2018-12-08 13:28 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-13 10:31 - 2018-12-08 13:27 - 005657600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-12-13 10:31 - 2018-12-08 13:25 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-12-13 10:31 - 2018-12-08 13:23 - 003649024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-12-13 10:31 - 2018-12-08 13:23 - 002892288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-12-13 10:31 - 2018-12-08 13:23 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-12-13 10:31 - 2018-12-08 13:23 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-12-13 10:31 - 2018-12-08 13:23 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-12-13 10:31 - 2018-12-08 13:22 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-12-13 10:31 - 2018-12-08 13:22 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-12-13 10:31 - 2018-12-08 09:12 - 000272408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-13 10:31 - 2018-12-08 09:12 - 000269336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-13 10:31 - 2018-12-08 09:12 - 000092688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2018-12-13 10:31 - 2018-12-08 09:07 - 001328632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2018-12-13 10:31 - 2018-12-08 09:07 - 001063416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-12-13 10:31 - 2018-12-08 09:06 - 000709936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-12-13 10:31 - 2018-12-08 09:06 - 000491416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-12-13 10:31 - 2018-12-08 09:06 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-12-13 10:31 - 2018-12-08 09:06 - 000249088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2018-12-13 10:31 - 2018-12-08 09:05 - 002822656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-12-13 10:31 - 2018-12-08 09:05 - 002463384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-12-13 10:31 - 2018-12-08 09:05 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2018-12-13 10:31 - 2018-12-08 09:05 - 000793592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-12-13 10:31 - 2018-12-08 09:05 - 000421176 _____ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll
2018-12-13 10:31 - 2018-12-08 09:05 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-12-13 10:31 - 2018-12-08 09:05 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2018-12-13 10:31 - 2018-12-08 09:04 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 002371296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 001943328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-12-13 10:31 - 2018-12-08 09:04 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000413176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-12-13 10:31 - 2018-12-08 09:04 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000268280 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000158624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-12-13 10:31 - 2018-12-08 09:04 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2018-12-13 10:31 - 2018-12-08 09:04 - 000058168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2018-12-13 10:31 - 2018-12-08 09:04 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2018-12-13 10:31 - 2018-12-08 08:46 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-12-13 10:31 - 2018-12-08 08:46 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-12-13 10:31 - 2018-12-08 08:46 - 000457056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 004789952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 001620472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 000567256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-12-13 10:31 - 2018-12-08 08:45 - 000129296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-12-13 10:31 - 2018-12-08 08:42 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-12-13 10:31 - 2018-12-08 08:40 - 004384768 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-12-13 10:31 - 2018-12-08 08:38 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-12-13 10:31 - 2018-12-08 08:38 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-12-13 10:31 - 2018-12-08 08:38 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2018-12-13 10:31 - 2018-12-08 08:38 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2018-12-13 10:31 - 2018-12-08 08:37 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-12-13 10:31 - 2018-12-08 08:36 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-12-13 10:31 - 2018-12-08 08:36 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-12-13 10:31 - 2018-12-08 08:35 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2018-12-13 10:31 - 2018-12-08 08:35 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-12-13 10:31 - 2018-12-08 08:35 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-12-13 10:31 - 2018-12-08 08:35 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2018-12-13 10:31 - 2018-12-08 08:34 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 001457152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-12-13 10:31 - 2018-12-08 08:33 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2018-12-13 10:31 - 2018-12-08 08:33 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-12-13 10:31 - 2018-12-08 08:32 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-12-13 10:31 - 2018-12-08 08:32 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-13 10:31 - 2018-12-08 08:30 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-12-13 10:31 - 2018-12-08 08:29 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-12-13 10:31 - 2018-12-08 08:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-12-13 10:31 - 2018-12-08 08:28 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-12-13 10:31 - 2018-12-08 08:28 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-12-13 10:31 - 2018-12-08 08:27 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2018-12-13 10:31 - 2018-12-08 08:26 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2018-12-13 10:31 - 2018-12-08 08:25 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2018-12-13 10:31 - 2018-12-08 08:25 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-12-13 10:31 - 2018-12-08 08:25 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2018-12-13 10:31 - 2018-12-08 08:25 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2018-12-13 10:31 - 2018-12-08 08:24 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-13 10:31 - 2018-12-08 08:24 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-12-13 10:31 - 2018-11-09 06:59 - 008623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-12-13 10:31 - 2018-11-09 06:58 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2018-12-13 10:31 - 2018-11-09 06:57 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-12-13 10:31 - 2018-11-09 06:57 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2018-12-13 10:31 - 2018-11-09 06:56 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-12-13 10:31 - 2018-11-09 06:56 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2018-12-13 10:31 - 2018-11-09 06:55 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-13 10:31 - 2018-11-09 06:54 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2018-12-13 10:31 - 2018-11-09 06:32 - 020383832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-12-13 10:31 - 2018-11-09 06:20 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-12-13 10:31 - 2018-11-09 06:20 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-12-13 10:31 - 2018-11-09 06:19 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2018-12-13 10:31 - 2018-11-09 06:18 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-12-13 10:31 - 2018-11-09 06:18 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2018-12-13 10:31 - 2018-11-09 03:49 - 000723416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-12-13 10:31 - 2018-11-09 03:49 - 000565048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-12-13 10:31 - 2018-11-09 03:49 - 000368656 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2018-12-13 10:31 - 2018-11-09 03:48 - 002719736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-12-13 10:31 - 2018-11-09 03:48 - 000745472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-12-13 10:31 - 2018-11-09 03:48 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-12-13 10:31 - 2018-11-09 03:47 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-12-13 10:31 - 2018-11-09 03:47 - 002571128 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-12-13 10:31 - 2018-11-09 03:47 - 001285432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-12-13 10:31 - 2018-11-09 03:47 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-12-13 10:31 - 2018-11-09 03:47 - 000537912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-12-13 10:31 - 2018-11-09 03:21 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-12-13 10:31 - 2018-11-09 03:21 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-12-13 10:31 - 2018-11-09 03:20 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-12-13 10:31 - 2018-11-09 03:20 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvctpSvc.dll
2018-12-13 10:31 - 2018-11-09 03:20 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2DP.sys
2018-12-13 10:31 - 2018-11-09 03:19 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-13 10:31 - 2018-11-09 03:18 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-12-13 10:31 - 2018-11-09 03:18 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-12-13 10:31 - 2018-11-09 03:18 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2018-12-13 10:31 - 2018-11-09 03:16 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-12-13 10:31 - 2018-11-09 03:16 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2018-12-13 10:31 - 2018-11-09 03:16 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-12-13 10:31 - 2018-11-09 03:16 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-12-13 10:31 - 2018-11-09 03:15 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-12-13 10:31 - 2018-11-09 03:15 - 000933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-12-13 10:31 - 2018-11-09 03:15 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2018-12-13 10:31 - 2018-11-09 03:15 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-12-13 10:31 - 2018-11-09 02:48 - 000550728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-12-13 10:31 - 2018-11-09 02:47 - 000295224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2018-12-13 10:31 - 2018-11-09 02:46 - 002253184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-12-13 10:31 - 2018-11-09 02:46 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-12-13 10:31 - 2018-11-09 02:46 - 000829960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-12-13 10:31 - 2018-11-09 02:29 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-12-13 10:31 - 2018-11-09 02:29 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-12-13 10:31 - 2018-11-09 02:29 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-12-13 10:31 - 2018-11-09 02:28 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-12-13 10:31 - 2018-11-09 02:25 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2018-12-13 10:31 - 2018-11-09 02:25 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-12-13 10:30 - 2018-12-08 13:29 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-12-13 10:30 - 2018-12-08 13:27 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-12-13 10:30 - 2018-12-08 13:27 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-12-13 10:30 - 2018-12-08 13:27 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-12-13 10:30 - 2018-12-08 08:39 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2018-12-13 10:30 - 2018-12-08 08:38 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2018-12-13 10:30 - 2018-12-08 08:38 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2018-12-13 10:30 - 2018-12-08 08:38 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-12-13 10:30 - 2018-12-08 08:38 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2018-12-13 10:30 - 2018-12-08 08:37 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-13 10:30 - 2018-12-08 08:37 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
2018-12-13 10:30 - 2018-12-08 08:37 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2018-12-13 10:30 - 2018-12-08 08:37 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2018-12-13 10:30 - 2018-12-08 08:36 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-13 10:30 - 2018-12-08 08:36 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2018-12-13 10:30 - 2018-12-08 08:36 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2018-12-13 10:30 - 2018-12-08 08:30 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2018-12-13 10:30 - 2018-12-08 08:29 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2018-12-13 10:30 - 2018-12-08 08:28 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-12-13 10:30 - 2018-12-08 08:28 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-13 10:30 - 2018-12-08 08:27 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2018-12-13 10:30 - 2018-12-08 08:25 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-12-13 10:30 - 2018-12-08 08:24 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-12-13 10:30 - 2018-12-08 08:24 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-12-13 10:30 - 2018-11-09 07:00 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-12-13 10:30 - 2018-11-09 06:22 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-12-13 10:30 - 2018-11-09 03:22 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2018-12-13 10:30 - 2018-11-09 03:21 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-13 10:30 - 2018-11-09 03:21 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2018-12-13 10:30 - 2018-11-09 03:21 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-12-13 10:30 - 2018-11-09 03:20 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2018-12-13 10:30 - 2018-11-09 03:20 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2018-12-13 10:30 - 2018-11-09 03:19 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-12-13 10:30 - 2018-11-09 03:19 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2018-12-13 10:30 - 2018-11-09 03:18 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-12-13 10:30 - 2018-11-09 02:31 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-12-13 10:30 - 2018-11-09 02:31 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-12-13 10:30 - 2018-11-09 02:30 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2018-12-13 10:30 - 2018-11-09 02:29 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2018-12-13 10:30 - 2018-11-09 02:27 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2018-12-13 10:30 - 2018-11-09 02:26 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-12-12 09:54 - 2018-12-21 10:17 - 000000000 ____D C:\Users\Asusak\Desktop\https klic
2018-12-10 12:08 - 2018-12-10 12:08 - 000000016 _____ C:\Users\Asusak\Documents\ggoi.txt
2018-12-06 22:04 - 2018-12-06 22:04 - 000000000 ____D C:\Users\Asusak\AppData\LocalLow\Perun Creative
2018-12-06 12:42 - 2018-12-06 12:42 - 000000000 ____D C:\Users\Asusak\AppData\Local\Imaginando
2018-12-06 12:41 - 2018-12-06 12:41 - 000000000 ____D C:\Users\Asusak\Documents\Imaginando
2018-12-06 12:41 - 2018-12-06 12:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Imaginando
2018-12-06 12:41 - 2018-12-06 12:41 - 000000000 ____D C:\Program Files\Imaginando
2018-12-05 21:44 - 2018-12-05 21:45 - 000000000 ____D C:\Users\Asusak\.musictrans
2018-12-05 21:44 - 2018-12-05 21:44 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicTrans
2018-12-05 21:44 - 2018-12-05 21:44 - 000000000 ____D C:\Users\Asusak\.swt
2018-12-05 21:44 - 2018-12-05 21:44 - 000000000 ____D C:\Program Files\MusicTrans
2018-12-05 20:55 - 2018-12-01 05:01 - 000835688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-12-05 20:55 - 2018-12-01 05:01 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-12-04 21:12 - 2018-12-04 21:11 - 000305290 _____ C:\Users\Asusak\Desktop\zivotopis.pdf
2018-12-04 20:10 - 2018-12-04 20:10 - 002326656 _____ C:\WINDOWS\cadkasdeinst01.exe
2018-12-04 20:10 - 2018-12-04 20:10 - 000001109 _____ C:\Users\Asusak\Desktop\PDF Editor 5.5.lnk
2018-12-04 20:10 - 2018-12-04 20:10 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDF Editor 5.5
2018-12-04 20:10 - 2018-12-04 20:10 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\CAD-KAS
2018-12-04 20:10 - 2018-12-04 20:10 - 000000000 ____D C:\Program Files (x86)\PDF Editor 5
2018-11-30 19:30 - 2018-11-30 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-11-28 18:28 - 2018-11-28 18:28 - 000000000 ____D C:\WINDOWS\Minidump
2018-11-28 18:03 - 2018-11-28 18:03 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portal
2018-11-28 17:58 - 2018-11-28 18:03 - 000000000 ____D C:\Program Files (x86)\Portal

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-26 12:30 - 2017-05-21 09:00 - 000000000 _____ C:\WINDOWS\system32\RzSurroundVADAudioDeviceManager_log.txt
2018-12-26 12:30 - 2016-10-13 18:03 - 000000000 ____D C:\FRST
2018-12-26 12:25 - 2016-11-11 00:08 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-26 12:19 - 2016-05-17 21:54 - 000000165 _____ C:\Users\Asusak\AppData\Roaming\sp_data.sys
2018-12-26 12:18 - 2018-07-05 17:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-12-26 10:51 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-25 23:27 - 2016-07-29 08:16 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2018-12-25 23:25 - 2018-06-03 10:38 - 000000000 ____D C:\ProgramData\Remotr
2018-12-25 23:23 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-12-25 23:23 - 2016-05-17 21:52 - 000000000 __SHD C:\Users\Asusak\IntelGraphicsProfiles
2018-12-25 23:22 - 2018-07-05 18:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-25 23:22 - 2017-10-08 10:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-25 23:21 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-12-25 23:21 - 2016-09-18 17:49 - 000000000 ____D C:\Users\Asusak\AppData\LocalLow\IObit
2018-12-25 23:21 - 2016-09-18 17:49 - 000000000 ____D C:\ProgramData\IObit
2018-12-25 23:20 - 2016-10-13 18:53 - 000000000 ____D C:\AdwCleaner
2018-12-25 22:54 - 2017-10-08 10:56 - 000000000 ____D C:\Users\Asusak\AppData\LocalLow\Mozilla
2018-12-25 16:15 - 2015-03-21 08:55 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-12-25 15:29 - 2017-10-08 10:54 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-12-25 15:28 - 2017-10-08 10:54 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-12-25 15:07 - 2018-04-10 19:55 - 000000000 ___HD C:\Users\Asusak\MicrosoftEdgeBackups
2018-12-25 15:06 - 2018-07-06 19:09 - 000000000 ____D C:\Users\Asusak\AppData\Local\PlaceholderTileLogoFolder
2018-12-25 12:30 - 2018-07-05 18:46 - 000000000 ____D C:\ProgramData\Packages
2018-12-25 12:30 - 2018-02-18 21:13 - 000000000 ____D C:\Users\Asusak\AppData\Local\Packages
2018-12-25 12:29 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-12-25 11:12 - 2016-08-14 09:20 - 000000000 ____D C:\Users\Asusak\Desktop\Programy
2018-12-25 11:11 - 2016-06-11 22:39 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\vlc
2018-12-25 11:09 - 2016-08-14 09:20 - 000000000 ____D C:\Users\Asusak\Desktop\Hry
2018-12-25 11:01 - 2016-11-01 21:01 - 000000000 ____D C:\Games
2018-12-25 10:23 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-12-25 09:54 - 2017-08-08 08:47 - 000000000 ____D C:\torrenty
2018-12-22 22:22 - 2017-12-29 13:05 - 000000000 ____D C:\Users\Asusak\AppData\Local\Crossout
2018-12-22 14:49 - 2016-10-22 16:30 - 000000000 ____D C:\Users\Asusak\AppData\LocalLow\CodeHorizon
2018-12-21 17:39 - 2018-07-05 18:16 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-21 17:39 - 2018-04-12 16:50 - 000717712 _____ C:\WINDOWS\system32\perfh005.dat
2018-12-21 17:39 - 2018-04-12 16:50 - 000144954 _____ C:\WINDOWS\system32\perfc005.dat
2018-12-21 17:39 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2018-12-21 17:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-12-21 17:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-12-21 17:31 - 2018-07-05 18:05 - 000000000 ____D C:\Users\Asusak
2018-12-21 12:12 - 2016-05-19 14:17 - 000000000 ____D C:\Program Files (x86)\Opera
2018-12-21 12:11 - 2016-07-28 20:04 - 000000000 ___RD C:\Users\Asusak\OneDrive
2018-12-20 10:10 - 2018-04-01 19:40 - 000000000 ____D C:\Program Files (x86)\BlueStacks
2018-12-19 23:15 - 2017-04-14 17:58 - 000000000 ____D C:\Program Files\Farm Expert 2017
2018-12-19 22:35 - 2017-11-23 16:34 - 000000000 ____D C:\Program Files (x86)\GtkSharp
2018-12-19 22:35 - 2014-10-21 05:29 - 000000000 ____D C:\ProgramData\Package Cache
2018-12-19 22:33 - 2018-04-01 19:39 - 000000000 ____D C:\Users\Asusak\AppData\Local\Bluestacks
2018-12-19 18:14 - 2018-07-05 18:26 - 000003472 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-19 18:14 - 2018-07-05 18:26 - 000003348 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-14 19:50 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-12-14 08:57 - 2016-11-20 19:09 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-14 08:57 - 2016-11-20 19:09 - 000002264 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-12-13 17:41 - 2018-01-03 19:58 - 000000000 ___RD C:\Users\Asusak\3D Objects
2018-12-13 17:41 - 2016-04-27 07:56 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-13 17:39 - 2018-07-05 17:23 - 000423072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-12-13 17:36 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-12-13 17:36 - 2018-04-12 00:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-12-13 17:36 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-12-13 10:51 - 2016-07-29 08:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-12-13 10:45 - 2016-07-29 08:27 - 137260640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-12-13 10:09 - 2018-09-01 15:20 - 000000000 ____D C:\Users\Asusak\Desktop\ja
2018-12-11 16:56 - 2016-11-11 11:40 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\GHISLER
2018-12-10 10:55 - 2017-11-04 10:36 - 000000000 ____D C:\Spintires MudRunner
2018-12-08 17:49 - 2018-09-23 19:43 - 000000000 ____D C:\Users\Asusak\AppData\Local\DK Deploy Service
2018-12-07 11:26 - 2017-09-21 19:30 - 000000000 ____D C:\Program Files\rempl
2018-12-06 22:24 - 2018-07-05 18:26 - 000004600 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-12-06 22:24 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-12-06 22:24 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-12-06 21:24 - 2018-07-05 18:26 - 000004636 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-12-06 12:43 - 2017-10-21 19:53 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2018-12-05 22:42 - 2017-01-01 13:38 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\obs-studio
2018-12-05 12:07 - 2016-08-27 22:13 - 000000000 ____D C:\Users\Asusak\Documents\BeamNG.drive
2018-12-05 12:00 - 2018-05-26 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossout
2018-11-30 19:30 - 2017-09-17 14:05 - 000000000 ___RD C:\Program Files (x86)\Skype
2018-11-30 19:30 - 2016-05-24 16:46 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Skype
2018-11-30 19:30 - 2014-10-21 05:29 - 000000000 ____D C:\ProgramData\Skype
2018-11-28 18:08 - 2016-11-10 21:28 - 000000000 ____D C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

==================== Files in the root of some directories =======

2018-04-12 00:34 - 2018-04-12 00:34 - 000060416 ____N (Microsoft Corporation) C:\Program Files (x86)\uuKfAa.exe
2016-11-06 08:51 - 2016-11-06 08:51 - 000677904 _____ () C:\Users\Asusak\AppData\Roaming\878787.dat
2016-12-27 09:38 - 2016-12-27 09:38 - 000000132 _____ () C:\Users\Asusak\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2016-07-26 11:16 - 2016-07-27 10:43 - 000000132 _____ () C:\Users\Asusak\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-05-29 07:36 - 2018-09-08 12:41 - 000000032 _____ () C:\Users\Asusak\AppData\Roaming\msregsvv.dll
2016-12-02 20:14 - 2016-12-02 20:19 - 001249792 _____ (http://www.ruby-lang.org/) C:\Users\Asusak\AppData\Roaming\msvcr90-ruby191.dll
2016-11-06 08:54 - 2016-11-20 15:14 - 000005664 _____ () C:\Users\Asusak\AppData\Roaming\offline.txt
2016-05-17 21:54 - 2018-12-26 12:19 - 000000165 _____ () C:\Users\Asusak\AppData\Roaming\sp_data.sys
2016-11-06 08:52 - 2016-11-20 18:01 - 000000026 _____ () C:\Users\Asusak\AppData\Roaming\temp.bat
2016-11-06 08:51 - 2016-11-06 08:51 - 000000493 _____ () C:\Users\Asusak\AppData\Roaming\update.bat
2018-04-12 00:34 - 2018-04-12 00:34 - 000060416 ____N (Microsoft Corporation) C:\Users\Asusak\AppData\Local\dOQkCAUY.exe
2018-12-22 13:39 - 2018-12-22 13:39 - 000000002 _____ () C:\Users\Asusak\AppData\Local\imw.ini
2016-05-23 19:31 - 2016-06-02 20:04 - 000007602 _____ () C:\Users\Asusak\AppData\Local\resmon.resmoncfg
2016-07-21 18:27 - 2017-10-27 18:50 - 000000175 _____ () C:\Users\Asusak\AppData\Local\uts.ini

Some files in TEMP:
====================
2018-12-19 22:32 - 2018-03-24 09:43 - 000977440 _____ (BlueStack Systems, Inc.) C:\Users\Asusak\AppData\Local\Temp\BlueStacksClientUninstaller.exe
2018-12-19 22:32 - 2018-03-24 09:43 - 000421368 _____ (CodeTitans) C:\Users\Asusak\AppData\Local\Temp\JSON.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-07-05 17:23

==================== End of FRST.txt ============================

[Termiter8]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24.12.2018
Ran by Asusak (26-12-2018 12:31:51)
Running from C:\Users\Asusak\Desktop
Windows 10 Home Version 1803 17134.472 (X64) (2018-07-05 17:27:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3811162916-2113203268-3777127909-500 - Administrator - Disabled)
Asusak (S-1-5-21-3811162916-2113203268-3777127909-1001 - Administrator - Enabled) => C:\Users\Asusak
DefaultAccount (S-1-5-21-3811162916-2113203268-3777127909-503 - Limited - Disabled)
Guest (S-1-5-21-3811162916-2113203268-3777127909-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3811162916-2113203268-3777127909-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aalto VST version 1.3.2 (HKLM-x32\...\{F497817C-ED52-4C60-9C99-93C219254E4A}_is1) (Version: 1.3.2 - Madrona Labs, LLC)
AAS - Ultra Analog VA-2 (HKLM-x32\...\Ultra Analog VA-2) (Version: - Applied Acoustics Systems)
Ableton Live 9 Suite (HKLM\...\{77D0571D-D8A9-4FA0-9DE4-5D8489FB0C9E}) (Version: 9.0.0.0 - Ableton)
ABLPro 1.5.0 (HKLM-x32\...\AudioRealism Bass Line Pro_is1) (Version: - AudioRealism)
Actual Booster 3.2 (HKLM-x32\...\Actual Booster) (Version: 3.2 - Loonies Software)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc)
AF210M version 2.4.3 (HKLM\...\AF210M_is1) (Version: 2.4.3 - OverToneDSP)
Aktualizace NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)
Antares Autotune Evo VST RTAS v6.0.9 (HKLM-x32\...\Antares Autotune Evo VST RTAS_is1) (Version: - )
Apowersoft Online Launcher verze 1.6.1 (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.6.1 - APOWERSOFT LIMITED)
ARIA Engine v1.8.2.2 (HKLM\...\ARIA Engine_is1) (Version: v1.8.2.2 - Plogue Art et Technologie, Inc)
ArtsAcoustic Reverb (x64) 1.6.0.15 (HKLM-x32\...\ArtsAcoustic Reverb (x64)) (Version: 1.6.0.15 - ArtsAcoustic Vertrieb GbR)
Arturia V Collection 5 (HKLM-x32\...\Arturia V Collection 5) (Version: 5.0.2 - Arturia)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.8 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.05.0001 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.1 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0037 - ASUS)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.46 - ICEpower a/s)
Avidemux 2.6 - 64 bits (HKLM-x32\...\Avidemux 2.6 - 64 bits (64-bit)) (Version: 2.6.21.170501 - )
Balíček ovladače systému Windows - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS)
Bark of Dog version 1.2.1 (HKLM\...\Bark of Dog_is1) (Version: 1.2.1 - )
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bome's Virtual MIDI Port 1.0.0.11 (HKLM-x32\...\BMIDI_Driver1.0.0.11_is1) (Version: - Bome Software GmbH & Co. KG)
Cableguys VolumeShaper 4.0 (HKLM\...\VolumeShaper_is1) (Version: 4.0 - Cableguys)
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
ControllerPC (HKLM-x32\...\{2E372CE0-ABC8-4A27-B89A-73BD3D00C601}) (Version: 2.18 - MoboAlien)
Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6) (Version: - )
Counter-Strike Global Offensive WaRzOnE (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\CSGO) (Version: - CS WaRzOnE)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Crossout Launcher 1.0.3.71 (HKLM-x32\...\CrossOutLauncher_is1) (Version: - )
CS-80V2 2.0 (HKLM-x32\...\CS-80V2_is1) (Version: - Arturia)
Custom Shop version 1.7.0 (HKLM-x32\...\{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Version: 1.7.0 - IK Multimedia)
D16 Group PunchBOX (HKLM\...\PunchBOX_is1) (Version: 1.0.2 - D16 Group)
Deckadance 2 (HKLM-x32\...\Deckadance 2) (Version: 2.0 - Image-Line)
Devastor 2 (64bit) (HKLM\...\{EF3788FA-CDA8-402F-921F-CC561ED6C3F4}) (Version: 2.1.3.0 - D16 Group Audio Software)
Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.)
Drumaxx (HKLM-x32\...\Drumaxx) (Version: - Image-Line)
DX10 (HKLM-x32\...\DX10) (Version: - Image-Line)
Edison (HKLM-x32\...\Edison) (Version: - Image-Line)
Electrum (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Electrum) (Version: 2.8.2 - Electrum Technologies GmbH)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: - Steinberg Media Technologies GmbH)
Epic Games Launcher (HKLM-x32\...\{8FEB5B5F-0777-4E9D-8705-06F0A2295544}) (Version: 1.1.143.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX110 Series Printer Uninstall (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
FabFilter Total Bundle (HKLM-x32\...\FabFilter Total Bundle) (Version: 2016.02.02 - FabFilter)
FakeApp 2.0.0 (only current user) (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\17ab8a6d-449e-53a3-8c9d-271eaaf676f4) (Version: 2.0.0 - deepfakeapp)
Farm Expert 2017 (HKLM\...\ZmFybWV4cGVydDIwMTc_is1) (Version: 1 - )
FC70 version 2.3.2 (HKLM\...\FC70_is1) (Version: 2.3.2 - OverToneDSP)
First AIR Instruments (HKLM\...\{71F15787-675A-41AA-98E2-4403383ECF11}) (Version: 12.0.0.615 - AIR Music Technology)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Foxit PhantomPDF (HKLM-x32\...\{FC76E6BB-7CBB-4CD6-8178-3BCADC0526C3}) (Version: 6.0.62.801 - Foxit Corporation)
FXpansion DCAM Synth Squad (HKLM-x32\...\FXpansion DCAM Synth Squad) (Version: 1.2.0.20 - FXpansion Audio UK Ltd)
FXpansion Geist2 (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\FXpansion Geist2) (Version: 2.0.6.5 - FXpansion Audio UK Ltd)
FXpansion Tremor (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\FXpansion Tremor) (Version: 1.0.3.0 - FXpansion Audio UK Ltd)
Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.4 - IObit)
GameTracker Lite (HKLM-x32\...\GameTracker Lite) (Version: - ClanServers Hosting LLC.)
GMedia Music impOSCar VSTi v1.0.0.1 (HKLM-x32\...\GMedia Music impOSCar VSTi v1.0.0.1) (Version: - )
Gobbler (HKLM\...\{49C3123D-9497-434D-A988-A9B389B1E189}) (Version: 2.2.2.263 - Media Gobbler, Inc.) Hidden
Gobbler (HKLM-x32\...\{1a80729d-d49d-4d81-9991-b785c110295b}) (Version: 2.2.2.263 - Media Gobbler, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Grand Theft Auto San Andreas verze 1.01 (HKLM-x32\...\Grand Theft Auto San Andreas_is1) (Version: 1.01 - Rockstar Games)
Groove Machine (HKLM-x32\...\Groove Machine) (Version: - Image-Line)
Hardcore (HKLM-x32\...\Hardcore) (Version: - Image-Line bvba)
Hatsune Miku English Vocaloid3 Library (HKLM-x32\...\Hatsune Miku English Vocaloid3 Library_is1) (Version: Vocaloid3 Library - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Hitman Absolution Professional Edition version 1.0.447.0 (HKLM-x32\...\Hitman Absolution Professional Edition_is1) (Version: 1.0.447.0 - Mr DJ)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.1.0.001 - HTC Corporation)
Chrome Remote Desktop Host (HKLM-x32\...\{F51A03C4-2DD0-43B0-900F-EAD1C45DC542}) (Version: 71.0.3578.15 - Google Inc.)
IK Multimedia Authorization Manager version 1.0.15 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.15 - IK Multimedia)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
IL DrumSynth Live (HKLM-x32\...\IL DrumSynth Live) (Version: - Image-Line)
IL Gross Beat (HKLM-x32\...\IL Gross Beat) (Version: - Image-Line)
IL Harmless (HKLM-x32\...\IL Harmless) (Version: - Image-Line)
IL Harmor (HKLM-x32\...\IL Harmor) (Version: - Image-Line)
IL Juice Pack (HKLM-x32\...\IL Juice Pack) (Version: - Image-Line)
IL MiniHost (HKLM-x32\...\IL MiniHost) (Version: - Image-Line)
IL Ogun (HKLM-x32\...\IL Ogun) (Version: - Image-Line)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
IL Slicex (HKLM-x32\...\IL Slicex) (Version: - Image-Line)
IL Vocodex (HKLM-x32\...\IL Vocodex) (Version: - Image-Line)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) C++ Redistributables on IA-32 (HKLM-x32\...\{644B16B7-3B5D-4316-965C-03E49D749C40}) (Version: 17.0.210 - Intel Corporation)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{CD4D85AB-8C3B-4876-A063-96D8E4090353}) (Version: 17.0.210 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.0.10100.71 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{f5d71765-7cd1-4e68-998f-5b379e725da3}) (Version: 10.0.22 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.38.1036 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
InzertMan 1.0 (HKLM-x32\...\InzertMan_is1) (Version: - )
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.2.5.129 - IObit)
IP Anonymizer 3.1 (HKLM-x32\...\IP Anonymizer_is1) (Version: - Privacy-Pro.com)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.28 - Irfan Skiljan)
iZotope Ozone 4 (HKLM-x32\...\iZotope Ozone 4_is1) (Version: 4.00 - iZotope, Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java SE Development Kit 8 Update 101 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180101}) (Version: 8.0.1010.13 - Oracle Corporation)
JBridge (HKLM-x32\...\JBridge) (Version: - JBridge)
Jupiter-8V2 2.5.0 (HKLM-x32\...\jupiter8v25_is1) (Version: 2.5.0 - Arturia)
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Kingo ROOT version 1.5.5.3207 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.5.5.3207 - Kingosoft Technology Ltd.)
Kinoni Streamer 1.51 (HKLM-x32\...\Kinoni Remote Desktop) (Version: 1.51 - Kinoni)
KORG Legacy Collection - LegacyCell (HKLM\...\{4F3D8320-002D-4A0E-A45B-38EAFB2494CA}) (Version: 1.3.0 - KORG Inc.)
KORG Legacy Collection - M1 (HKLM\...\{AA1D88F2-E75B-4FC3-80C6-9E041D7F4B00}) (Version: 1.7.0 - KORG Inc.)
KORG Legacy Collection - MDE-X (HKLM\...\{F4D6C510-369F-4AB5-9CCF-4B29E4CB075F}) (Version: 1.3.0 - KORG Inc.)
KORG Legacy Collection - MonoPoly (HKLM\...\{DA31AE51-AB45-4368-9F4E-6AF05176AEE3}) (Version: 1.1.0 - KORG Inc.)
KORG Legacy Collection - MS-20 (HKLM\...\{D9163B30-035A-45E8-A7FB-FC3D700DA159}) (Version: 1.3.0 - KORG Inc.)
KORG Legacy Collection - Polysix (HKLM\...\{D3AD748F-85C6-423D-B95F-268A0E1460A7}) (Version: 1.3.0 - KORG Inc.)
KORG Legacy Collection - WAVESTATION (HKLM\...\{6C2C56CC-9075-491D-9B29-55147B67B892}) (Version: 1.7.0 - KORG Inc.)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Left 4 Dead 2 verze 2.1.4.6 (HKLM\...\{F30ECD7F-0336-48C8-B484-94F58B9F38AD}_is1) (Version: 2.1.4.6 - Strogino CS Portal)
Lemur v5.3.2 (HKLM-x32\...\Lemur_is1) (Version: - )
LoopBe1 - Internal MIDI Port (HKLM-x32\...\LoopBe1) (Version: - )
loopMIDI (HKLM-x32\...\{55c0d955-4cee-452c-b393-d4c020a967d7}) (Version: 1.0.13.24 - Tobias Erichsen)
loopMIDI (HKLM-x32\...\{9E69C6CD-820A-44A9-9A0A-B7A56AD62A1E}) (Version: 1.0.13.24 - Tobias Erichsen) Hidden
loopMIDIBlockLegacy (HKLM-x32\...\{AEAF7978-3204-451D-8593-BC53EBDDA31D}) (Version: 9.9.9.9 - Tobias Erichsen) Hidden
Lurssen Mastering Console version 1.0.1 (HKLM\...\{9F525466-89DA-4B7B-BD8C-BBFDC4432DFB}_is1) (Version: 1.0.1 - IK Multimedia)
LuSH-101 1.1.3 (64bit) (HKLM\...\{38666E88-8DD7-4223-8DCF-1EB25D53A48B}) (Version: 1.1.3.0 - D16 Group Audio Software)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Max 7 (64-bit) (HKLM\...\{AA88051E-EDA9-4120-8538-0C3361CDBDED}) (Version: 7.2.0 - Cycling '74)
Maximus (HKLM-x32\...\Maximus) (Version: - Image-Line)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
MeldaProduction Audio Plugins 10 (HKLM-x32\...\MeldaProduction Audio Plugins 10) (Version: - MeldaProduction)
Melodyne Runtime 4.1 (x64) (HKLM\...\{53EE2829-E9DB-4913-B3EA-96F10F84E98B}) (Version: 1.0.1 - Celemony Software GmbH)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - )
Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft OneDrive (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\OneDriveSetup.exe) (Version: 18.222.1104.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{58b3beca-b999-4f6f-a48c-81681136a620}) (Version: 14.10.25017.0 - Microsoft Corporation)
miniBit version 1.1.5 (HKLM-x32\...\{78851715-A6C8-40C9-A861-2A492F845A26}_is1) (Version: 1.1.5 - AudioThing)
Minimal ADB and Fastboot version 1.4.2 (HKLM-x32\...\{1901BAF7-7E78-4041-BC88-D0EE5DD1DFD9}_is1) (Version: 1.4.2 - Sam Rodberg)
MiniTool Partition Wizard Home Edition 5.2 (HKLM-x32\...\{12FEC00C-027C-4A34-9AAB-562EDA43DC18}_is1) (Version: - MiniTool Solution Ltd.)
Mixed in Key (HKLM-x32\...\{4FF0FB67-BEF8-4DD0-BBA0-75EA9DA2B383}) (Version: 1.0.181.0 - Mixed In Key LLC) Hidden
Mixed In Key 2.5 (HKLM-x32\...\Mixed In Key) (Version: 2.5 - )
Mixed In Key 4 (HKLM-x32\...\Mixed In Key 4) (Version: 4.0.1 - )
Mixed In Key 7 (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{4d05cb39-3d9c-4e75-930c-a99591564f91}) (Version: 7.0.181.0 - Mixed In Key LLC)
Morphine (HKLM-x32\...\Morphine) (Version: - Image-Line bvba)
Mozilla Firefox 64.0 (x64 cs) (HKLM\...\Mozilla Firefox 64.0 (x64 cs)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
MultiBit HD 0.3.0 (HKLM\...\6925-4794-5772-4956) (Version: 0.3.0 - Bitcoin Solutions Ltd)
MusicTrans (64 bit) 1.0.7 (HKLM\...\{7586879B-F675-49B8-9610-02D9BF3569AB}) (Version: 1.0.7 - Franco Catrin)
Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: 5.3.0.1510 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.7.2.189 - Native Instruments)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.5.0.409 - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: - Native Instruments)
Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version: - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.1.0.31 - Native Instruments)
Native Instruments Reaktor 6 Bundle (HKLM-x32\...\Native Instruments Reaktor 6 Bundle) (Version: 6.0.0.0 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
Native Instruments Supercharger GT (HKLM-x32\...\Native Instruments Supercharger GT) (Version: 1.1.2.446 - Native Instruments)
Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.7.1.854 - Native Instruments)
Native Instruments VC 160 FX (HKLM-x32\...\Native Instruments VC 160 FX) (Version: - Native Instruments)
Nicky Romero Kickstart 1.0.6 (HKLM\...\Kickstart_is1) (Version: 1.0.6 - Nicky Romero)
nrg-A version 1.0 (HKLM-x32\...\nrg-A_is1) (Version: - Synthepolis)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.57 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.0 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenIV (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\OpenIV) (Version: 2.9.1.926 - .black/OpenIV Team)
OpenVPN 2.3.12-I602 (HKLM-x32\...\OpenVPN) (Version: 2.3.12-I602 - )
Opera Stable 57.0.3098.106 (HKLM-x32\...\Opera 57.0.3098.106) (Version: 57.0.3098.106 - Opera Software)
Ovládací panel NVIDIA 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.57 - NVIDIA Corporation) Hidden
Ozone Imager (HKLM-x32\...\Ozone Imager) (Version: 1.00 - iZotope, Inc.)
PACE License Support Win64 (HKLM\...\{DF91FC8F-0D43-415b-BB5D-22533FC1CC1A}) (Version: 2.6.0.1134 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{DF91FC8F-0D43-415b-BB5D-22533FC1CC1A}) (Version: 2.6.0.1134 - PACE Anti-Piracy, Inc.)
PDF Editor 5 (HKLM-x32\...\PDF Editor 5) (Version: - )
Plug and Mix V.I.P. bundle 3.0.3 (Repack) (HKLM\...\Plug and Mix V.I.P. bundle_is1) (Version: - )
PoiZone (HKLM-x32\...\PoiZone) (Version: - Image-Line)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation)
Portal (HKLM-x32\...\Portal) (Version: - )
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.5 - Power Software Ltd)
PreSonus Studio One 3 x64 (HKLM\...\PreSonus Studio One 3) (Version: 3.0.2.34331 - PreSonus Audio Electronics)
PROMARS(64bit) (HKLM\...\{5A583C6E-A8CD-4BC5-910A-0347E9F15ACE}) (Version: 1.00.0000 - Roland Corporation)
Prophet-V2 2.5.3 (HKLM-x32\...\prophetv2_5_is1) (Version: 2.5.3 - Arturia)
PSOFT Void v1.52 (remove only) (HKLM-x32\...\Void) (Version: - )
PSP VintageWarmer2 2.5.2 64bit (HKLM-x32\...\PSP VintageWarmer2 2.5.2 64bit) (Version: 2.5.2 64bit - PSPaudioware.com)
PTC-2A version 2.4.0 (HKLM\...\PTC-2A_is1) (Version: 2.4.0 - OverToneDSP)
Pure Data 0.47-1 (HKLM-x32\...\Pure Data) (Version: 0.47-1 - Miller Puckette)
Quake III Arena (HKLM-x32\...\Quake III Arena) (Version: - )
Quake III Arena Point Release 1.32 (HKLM-x32\...\Quake III Arena Point Release 1.32) (Version: - )
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.330 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.17.413 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7432 - Realtek Semiconductor Corp.)
Reference 4 AAX plugin for ProTools 10 (HKLM-x32\...\{C3575656-4575-419C-B2A9-EA3E887F3AA8}) (Version: 4.1.4.6 - Sonarworks)
Reference 4 AAX plugin for ProTools 11/12 (HKLM\...\{189BFF27-3275-4DCC-8633-48FCC4F5C58A}) (Version: 4.1.4.6 - Sonarworks)
Reference 4 VST plugin (32-bit) (HKLM-x32\...\{5C6DECB8-FB6E-4832-A4A1-DD7152EBEBD4}) (Version: 4.1.4.6 - Sonarworks)
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
reFX Vanguard VSTi (HKLM-x32\...\reFX Vanguard_is1) (Version: - )
Remote Desktop assistant (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\b948d155e8353e01) (Version: 1.0.0.102 - Remote Desktop assistant)
Remotr version 1.3.1438 (HKLM-x32\...\Remotr_is1) (Version: 1.3.1438 - RemoteMyApp sp. z o.o.)
Repro-1 (HKLM\...\Repro-1_is1) (Version: 1.0.5332 - Team V.R)
Resident Evil 7 Biohazard (HKLM-x32\...\{1ECBF8F3-7079-44CA-AD32-B2AECBCF636F}_is1) (Version: - Capcom)
Reveal Sound Spire (HKLM-x32\...\Reveal Sound Spire) (Version: 1.1.8 - Reveal Sound)
Reverberate LE 1.007 (HKLM-x32\...\Reverberate LE) (Version: 1.007 - LiquidSonics)
rgc:audio z3ta+ 1.5 (x64) (HKLM\...\z3ta+_x64_is1) (Version: 1.5 - Cakewalk Music Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
rtpMIDI (HKLM-x32\...\{11db5383-f3c3-46ed-98c2-a3e51d672eb0}) (Version: 1.1.8.240 - Tobias Erichsen)
rtpMIDI (HKLM-x32\...\{4679F64B-170C-42C3-94A4-DD934F47FCF4}) (Version: 1.1.8.240 - Tobias Erichsen) Hidden
rtpMIDIBlockLegacy (HKLM-x32\...\{FD937297-84C3-41A5-B5DF-1FAEEE669D68}) (Version: 9.9.9.9 - Tobias Erichsen) Hidden
Sawer (HKLM-x32\...\Sawer) (Version: - Image-Line)
Scan to PDF (HKLM-x32\...\Scan to PDF) (Version: 2.50 - Softi Software)
SecondLifeViewer (HKLM-x32\...\SecondLifeViewer) (Version: 5.0.7.328060 - Linden Research, Inc.)
SH-101(64bit) (HKLM\...\{EA4F90DF-8AA4-47D8-A787-3A224B70FC67}) (Version: 1.04.0000 - Roland Corporation)
Shaun White Snowboarding, âĺđńč˙ 1.0.0.0 (HKLM-x32\...\Shaun White Snowboarding_is1) (Version: 1.0.0.0 - RePack by SEYTER)
ShaunWhiteSnowboarding (HKLM-x32\...\{2E52FB79-7F60-4AD7-B946-5ED18B4F274E}) (Version: 1.01 - Ubisoft)
SimSynth (HKLM-x32\...\SimSynth) (Version: - Image-Line)
SketchUp 2017 (HKLM\...\{E59BD84C-169B-4F3F-AC5D-85127CF67051}) (Version: 17.2.2555 - Trimble, Inc.)
Skydur 3.0.2.3706 (HKLM-x32\...\{BC73BE80-0E4E-4C3E-82F0-852F4E0212B4}_is1) (Version: - Skydur)
Skype verze 8.34 (HKLM-x32\...\Skype_is1) (Version: 8.34 - Skype Technologies S.A.)
Slate Digital FG-X Mastering Processor VST RTAS v1.1.2 (HKLM-x32\...\Slate Digital FG-X Mastering Processor_is1) (Version: - )
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
Sonic Academy KICK 2 (HKLM-x32\...\Sonic Academy KICK 2) (Version: 1.0.2 - Sonic Academy)
SonicProjects OP-X PRO-II (HKLM\...\OP-X PRO-II_is1) (Version: 1.2.5 - Team V.R)
Sound Blaster Play! 2 (HKLM-x32\...\{937A1473-498B-4E84-B643-4E453C02311B}) (Version: 1.00.03 - Creative Technology Limited)
Sound Blaster Play! 2 Extras (HKLM-x32\...\{DBAE4081-D97A-48C7-8698-CD5CE616C005}) (Version: 1.0 - Creative Technology Limited)
Spintires (HKLM-x32\...\Spintires_is1) (Version: - )
Spintires: MudRunner (HKLM\...\DARKSiDERS - Spintires: MudRunner) (Version: - DARKSiDERS)
SPL Analog Code Bundle v1.1 (HKLM-x32\...\SPL Analog Code Bundle_is1) (Version: - )
Splice (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\Splice) (Version: 3.0.137060 - Distributed Creation, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Dark Planet 64bit (HKLM\...\{52B15329-EA8D-4088-AE8F-BD831D187290}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 1.6.1 - Steinberg Media Technologies GmbH)
Steinberg Instrument Set Dark Planet (HKLM-x32\...\{7E95B088-EF08-4093-85E1-B0689BDAB35C}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg VST Classics 1 64bit (HKLM\...\{AA322103-FC2B-4D86-BA6C-67D4DDB4209C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Sugar Bytes Factory 1.0.1 (HKLM\...\Factory_is1) (Version: 1.0.1 - Sugar Bytes)
Sugar Bytes WOW2 2.1.0 (HKLM\...\WOW2_is1) (Version: 2.1.0 - Sugar Bytes)
Sylenth1 v2.21 (HKLM\...\Sylenth1_is1) (Version: - )
Sytrus (HKLM-x32\...\Sytrus) (Version: - Image-Line)
TAL-U-NO-LX-V2 (64bit) (HKLM\...\{CB606353-173F-416C-B65F-BDD18F97432C}) (Version: 1.3.7 - TAL - Togu Audio Line)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
teVirtualMIDI64 (HKLM\...\{3158659B-4AD6-4311-85C0-B79DD98F441E}) (Version: 1.2.11.41 - Tobias Erichsen) Hidden
The Glue (HKLM\...\The Glue_is1) (Version: 1.2.8 - )
TKLINK version 1.1.2 (HKLM-x32\...\{9A742C66-C29E-4D20-AACA-634A65C20FC1}_is1) (Version: 1.1.2 - Imaginando)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
TouchDAW thru (HKLM\...\{E0A793E0-38FE-4FE5-BD43-29A4B981A20F}) (Version: 1.4.0 - humatic)
TouchOSC Bridge version 1.3.1 (HKLM-x32\...\TouchOSC Bridge_is1) (Version: 1.3.1 - )
Toxic Biohazard (HKLM-x32\...\Toxic Biohazard) (Version: - Image-Line bvba)
T-RackS CS version 4.9.0 (HKLM\...\{E931EBCC-55F9-4D67-BA0E-D57C4A893A44}_is1) (Version: 4.9.0 - IK Multimedia)
TunnelBear (HKLM-x32\...\{8092fbe5-9e59-4729-a5de-5bb6a64873cc}) (Version: 3.0.37.12 - TunnelBear)
TunnelBear (HKLM-x32\...\{ABC9BE61-B890-4100-BCA4-5AC3BF1F3CB5}) (Version: 3.0.37.12 - TunnelBear) Hidden
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH)
UBRIDGE version 1.1.4 (HKLM\...\{0DB5EAF1-37C4-4025-BF01-11A26128A18B}_is1) (Version: 1.1.4 - Imaginando)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{DE45508F-369E-4476-8F19-088F4933340E}) (Version: 1.8.0.0 - Microsoft Corporation) Hidden
Uraniom (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{e757881f-5208-409d-89b5-21d980f1091d}) (Version: 0.3.1 - Uraniom)
USB Multi-Channel Audio Device (HKLM-x32\...\Generic USB 106 Sound) (Version: - )
UVI Thorus (HKLM-x32\...\UVI Thorus) (Version: 1.0.0 - UVI)
UVI Workstation x64 2.6.0 (HKLM\...\UVI Workstation x64_is1) (Version: 2.6.0 - UVI)
VAZ Modular 3.2.5 (HKLM-x32\...\VAZ Modular) (Version: 3.2.5 - Martin Fay)
VCV Rack (HKLM\...\VCV Rack) (Version: - VCV)
Vember Audio SURGE (HKLM-x32\...\Vember Audio SURGE) (Version: - )
Video Rotator V1.0 (HKLM-x32\...\Video Rotator_is1) (Version: - VideoRotator.com)
VirtualDJ 8 (HKLM-x32\...\{F7A68F9D-BBF0-48FF-B138-2EFB5165638C}) (Version: 8.0.2048.0 - Atomix Productions)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vocaloid4 4.3.0 Free Edition (HKLM-x32\...\Vocaloid4 4.3.0 Free Edition_is1) (Version: Vocaloid4 4.3.0 Free Edition - )
Voltage Modular (HKLM\...\Voltage Modular) (Version: 1.1.1 - Cherry Audio)
Vortex Cloud Gaming (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{403584bd-c0ed-467a-bd84-a4390efc0fd2}) (Version: 1.0.0 - RemoteMyApp Sp. z o.o.)
Voxengo SPAN (HKLM\...\Voxengo SPAN_is1) (Version: 2.10 - Voxengo)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Waldorf Largo (HKLM-x32\...\Waldorf Largo) (Version: - )
War Thunder Launcher 1.0.3.123 (HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Waves Complete (HKLM\...\Complete_is1) (Version: 2017.08.09 - Waves)
Waves SoundGrid Drivers 9.7.99.175 (HKLM\...\Waves SoundGrid Drivers_is1) (Version: - Waves Audio Ltd.)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Xfer Records LFOTool v1.29 Beta 6 x64 (HKLM\...\Xfer Records LFOTool v1.29 Beta 6 x64_is1) (Version: - )
Yousician Launcher version 1.0 (HKLM-x32\...\{EF45EAE9-523E-47C3-8634-A81923B11DD5}_is1) (Version: 1.0 - Yousician)
Zynaptiq ADAPTIVERB (HKLM-x32\...\Zynaptiq ADAPTIVERB) (Version: 1.0.1 - Zynaptiq)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [KuaiZipShlExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> No File
ContextMenuHandlers1: [ContextMenuExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> No File
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2013-12-18] (Foxit Corporation)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2015-11-12] (IObit)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers3: [GB3ContextMenu] -> {3A488FE8-9916-4F36-BDFF-3DED559142E5} => C:\Program Files (x86)\IObit\Game Booster 3\GBV3ContextMenu.dll [2011-11-29] (IObit)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2015-11-12] (IObit)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-30] (Intel Corporation)
ContextMenuHandlers5: [menuext] -> {c0d5287c-e671-43c4-98b1-3a25addf79fa} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-04] (NVIDIA Corporation)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2015-11-12] (IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {010A1473-FBDE-46FC-9042-9A8DDB079170} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2016-09-18] ()
Task: {113D0C5A-8F31-49ED-9168-770E2116470A} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-06-11] (ASUSTek Computer Inc.)
Task: {1A063044-3892-4D47-833A-467F9598AB84} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {1ACBEB39-7271-423D-BE64-69A4831CB76A} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-11-05] (ASUS)
Task: {1EB68A30-BEA2-40DD-ACD8-659AED4A9142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {1F63FCA9-AABE-4F12-9C34-8E22C0F0A3FD} - System32\Tasks\Uninstaller_SkipUac_Asusak => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-01-18] (IObit)
Task: {283ED9CF-D0F5-4A55-924A-FE820EF5639B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {39F0FFB3-2AC1-423B-A90C-0BB6E04967C2} - System32\Tasks\Asusak => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Asusak /t REG_SZ /d "cmd.exe /c start www.dipladoks.org"
Task: {45BEE1EF-7256-42C6-A32C-280003F17F03} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation)
Task: {47487E8A-2233-425B-B5CA-89ED8134B067} - System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83} => C:\Users\Asusak\AppData\Local\dOQkCAUY.exe [2018-04-12] (Microsoft Corporation) <==== ATTENTION
Task: {48198F90-D9A9-4A6F-B054-0016ECF5E1A7} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-12-17] (ASUSTek Computer Inc.)
Task: {51C223EC-DDAA-4537-8506-55301D5500D3} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-01-23] (Realtek Semiconductor)
Task: {57346884-B72D-45C6-9135-C3D37D98B17A} - System32\Tasks\Client Monitor => C:\ProgramData\Client\client.exe <==== ATTENTION
Task: {57A9089E-635D-4BD0-9A49-27E05DB29725} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)
Task: {5F6C3D1E-BD3D-474B-A93B-8877E0877134} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6DA30928-130F-473E-8776-AD799C09F6DD} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-09-02] (ASUSTek Computer Inc.)
Task: {703C4CC1-6BE8-4E95-BC68-840312E51342} - System32\Tasks\{44922045-E36E-5326-98AB-2825BCA326E7} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://coxemi.com/cl/?guid=h8e4ofk9v3jo7a2e6utuevb082dfkb9r&prid=1&pid=4_1408_0
Task: {8F0847E9-5A61-46BD-85C8-BBAED8024787} - System32\Tasks\{62F7E201-15FA-B13F-918B-9117664C4611} => "msiexec.exe" -i hxxps://freamares.com/ktyn4crbbn28.pmi -q
Task: {922E3F32-52AE-41F0-801C-473B47C0AF60} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {9FCEB3A5-8EDB-402A-8799-933AD2BE350C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation)
Task: {A1D6EF0B-03A2-4869-B10B-AE1EBC4BA6ED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {A4D035C2-1EF0-49D5-A249-177FAA947FA0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation)
Task: {A932C9D5-AAC4-4086-818F-285165EE5044} - System32\Tasks\Opera scheduled Autoupdate 1463663892 => C:\Program Files (x86)\Opera\launcher.exe [2018-12-19] (Opera Software)
Task: {AB6243F8-7417-4E90-A3E4-0B1ABB6BA333} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3811162916-2113203268-3777127909-1001 => C:\Users\Asusak\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited)
Task: {B2E70C38-CAD9-44CE-975D-B5BE38EA2226} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {B8EB94EE-64B3-4B29-A00C-B74788CF4B38} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-06] (Adobe Systems Incorporated)
Task: {E0FF76A1-95F3-4788-859E-BE26462B3B77} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E4105C67-7724-476B-AAB1-BBD5EC15F662} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek)
Task: {E84E6CD0-1FE0-4A04-BCA4-F4362A19314D} - System32\Tasks\Update\Computer Helper => C:\Users\Asusak\AppData\Roaming\repair.exe <==== ATTENTION
Task: {F22F0420-BC66-458B-B372-4EFDD0EF730A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {FA69637A-EC6B-4662-881A-A07276F77B61} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-19] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Asusak.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
Shortcut: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameTracker Lite\Visit GameTracker Website.lnk -> hxxp://www.gametracker.com

ShortcutWithArgument: C:\Users\Asusak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vzdálená plocha Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp

==================== Loaded Modules (Whitelisted) ==============

2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000444416 _____ () c:\windows\system32\SSDM.dll
2016-07-04 12:27 - 2016-07-04 12:27 - 000081920 _____ () C:\Program Files (x86)\Kinoni\Remote Desktop\service.exe
2016-11-11 00:09 - 2017-10-11 02:05 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-07-21 18:31 - 2012-12-07 16:26 - 000167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2016-09-24 23:20 - 2016-09-24 23:21 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-09-06 15:48 - 2017-09-06 15:48 - 000037248 _____ () C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
2017-09-29 19:28 - 2017-12-04 19:32 - 000133704 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-10-18 22:51 - 2017-10-18 22:51 - 000598528 _____ () C:\Users\Asusak\AppData\Local\MEGAsync\ShellExtX64.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-13 10:31 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2016-11-30 20:57 - 2016-11-30 20:57 - 000401888 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-12-21 12:14 - 2018-12-14 07:50 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-04 18:48 - 2018-10-04 18:49 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 010927616 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 002916864 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\skypert.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 000688128 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-12-14 20:26 - 2018-12-14 20:26 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-12-11 16:24 - 2018-12-11 16:24 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-12-11 16:24 - 2018-12-11 16:24 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll
2017-12-01 18:52 - 2017-12-01 18:53 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-30 19:34 - 2018-11-30 19:34 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-11 16:24 - 2018-12-11 16:24 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-12-11 16:24 - 2018-12-11 16:24 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-12-01 12:08 - 2018-10-30 19:06 - 001057056 _____ () D:\Steam\bin\cef\cef.win7x64\SDL2.dll
2018-11-25 16:20 - 2018-09-23 01:00 - 102804768 _____ () D:\Steam\bin\cef\cef.win7x64\libcef.dll
2018-11-25 16:20 - 2018-09-23 01:00 - 004866336 _____ () D:\Steam\bin\cef\cef.win7x64\libglesv2.dll
2018-11-25 16:20 - 2018-09-23 01:00 - 000116000 _____ () D:\Steam\bin\cef\cef.win7x64\libegl.dll
2018-11-18 15:02 - 2018-11-18 15:04 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-18 15:02 - 2018-11-18 15:03 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-04 14:32 - 2017-10-04 14:34 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-10 14:30 - 2018-11-10 14:31 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-11-10 14:30 - 2018-11-10 14:31 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-11-10 14:30 - 2018-11-10 14:31 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-21 17:28 - 2018-08-21 17:29 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-21 17:28 - 2018-08-21 17:29 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-03-30 12:24 - 2018-03-30 12:25 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-11-18 15:02 - 2018-11-18 15:04 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-10 14:30 - 2018-11-10 14:31 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-11-18 15:01 - 2018-11-18 15:02 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-09-01 14:34 - 2018-09-01 14:39 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 19:44 - 2018-07-27 19:44 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2015-01-17 10:27 - 2015-01-17 10:27 - 034734392 _____ () C:\Program Files (x86)\Image-Line\Shared\dsp_ipp_x64.dll
2016-04-20 10:58 - 2016-04-20 10:58 - 001611584 _____ () C:\Program Files (x86)\Image-Line\Shared\QuickFontCache_x64.dll
2014-12-02 20:32 - 2014-12-02 20:32 - 000607032 _____ () C:\Program Files (x86)\Image-Line\Shared\freetype_x64.dll
2016-01-23 01:59 - 2016-01-23 01:59 - 012088264 _____ () D:\Ableton\Live 9 Suite\Resources\Extensions\Index\Ableton Index.exe
2014-11-05 13:44 - 2014-11-05 13:44 - 000037424 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2014-11-05 13:44 - 2014-11-05 13:44 - 000124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-06-11 06:02 - 2015-06-11 06:02 - 000120632 _____ () c:\program files (x86)\image-line\fl studio asio\ilwasapi2asio.dll
2015-03-21 09:07 - 2007-11-29 07:41 - 000086016 _____ () c:\program files (x86)\realtek\audio\asio\rthdasio.dll
2016-11-11 00:09 - 2017-10-11 02:05 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-01-06 16:40 - 2015-01-06 16:40 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\Users\Public\AppData:CSM [468]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2017-10-24 14:40 - 000001372 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 idb.iobit.com
127.0.0.1 asc55.iobit.com
127.0.0.1 is360.iobit.com
127.0.0.1 asc.iobit.com
127.0.0.1 pf.iobit.com
127.0.0.1 98.129.229.186
127.0.0.1 www.iana.org
127.0.0.1 iana.org# ::1 localhost
127.0.0.1 www.iobit.com
127.0.0.1 www.asc55.iobit.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
127.0.0.1 www.r2rdownload.com
127.0.0.1 www.elephantafiles.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: NIHardwareService => 2
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamNetworkSvc => 3
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: rtpMIDIService => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TunngleService => 3
MSCONFIG\Services: wuauserv => 3
MSCONFIG\Services: ZAtheros Bt and Wlan Coex Agent => 2
HKLM\...\StartupApproved\StartupFolder: => "ipMIDI Trial Monitor.lnk"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "IPAnonymizer"
HKLM\...\StartupApproved\Run32: => "Sound Blaster Play! 2 Control Panel"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "KinoniTask"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\StartupFolder: => "flstudio.exe"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\StartupFolder: => "w10memchk.exe"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\StartupFolder: => "Splice for Windows.lnk"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "loopMIDI"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "Epson Stylus SX110"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "com.squirrel.splice.Splice"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "MinerGateGui"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\StartupApproved\Run: => "GobblerTray"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{55F128B1-379F-4766-94FA-63DA5790F83C}] => (Allow) D:\Steam\steamapps\common\Spintires MudRunner\MudRunner.exe (Focus Home Interactive)
FirewallRules: [{1E7CEA37-A7E1-48D4-8C42-7853FE4AE227}] => (Allow) D:\Steam\steamapps\common\Spintires MudRunner\MudRunner.exe (Focus Home Interactive)
FirewallRules: [{E3BD196D-55A3-4AA4-B01F-8437F4A3683B}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{E75B7AFF-60AE-4A80-B665-D24E4E2B6B4F}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{5571FDB9-733A-431D-B20A-080E08FA323B}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{90A4D40B-1772-453D-BCE0-D489CE42A9BB}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{D382D748-30AD-40DB-ADEB-3ACE8AC56C3D}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{62CF6C1C-AA0D-4298-90CA-E5ED1ED73499}] => (Allow) C:\Program Files (x86)\MoboAlien\ControllerPC\controllerpc.exe (Mobo Alien)
FirewallRules: [{9D122CAC-7620-4C5A-996C-625292798D60}] => (Allow) C:\Program Files (x86)\Kinoni\Remote Desktop\windowsserver.exe (Kinoni)
FirewallRules: [{DD2AF2E2-F6F9-4906-9FC4-4B2A4E51FC1D}] => (Allow) C:\Program Files (x86)\Kinoni\Remote Desktop\windowsserver.exe (Kinoni)
FirewallRules: [{3F8969F7-7695-41E5-874C-273C406C6DC6}] => (Allow) C:\Program Files (x86)\Kinoni\Remote Desktop\windowsserver.exe (Kinoni)
FirewallRules: [{50D34543-7DE9-41D9-9561-8A8641EFBD43}] => (Allow) C:\Program Files (x86)\Kinoni\Remote Desktop\windowsserver.exe (Kinoni)
FirewallRules: [{B10928E5-A080-4277-A0C0-5DEEB535EE56}] => (Allow) C:\Program Files (x86)\Remotr\RemotrServer.exe (RemoteMyApp sp. z o.o.)
FirewallRules: [{ADC9D44F-50EA-4F2B-B645-13DAADEE6CA8}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [UDP Query User{65F2CC0B-DF44-4144-9971-EFA1D2C773F7}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Block) D:\steam\steamapps\common\h1z1\h1z1.exe No File
FirewallRules: [TCP Query User{083F209C-B8B9-4371-9E01-996213A73FDF}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Block) D:\steam\steamapps\common\h1z1\h1z1.exe No File
FirewallRules: [{9521150F-BCB2-43F2-9C0C-4FFDABCB45DA}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations)
FirewallRules: [{CCF55BD0-685E-4069-BD7D-0514E685527C}] => (Allow) D:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations)
FirewallRules: [UDP Query User{4A1931C7-DE27-4FFC-8331-2A2A64B4D4E8}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro)
FirewallRules: [TCP Query User{8EEDA7A7-5E87-4C25-8D8E-1DDF8F2D04A1}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro)
FirewallRules: [UDP Query User{41AB8E37-270D-4123-92A2-FB4F342FB9AB}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Block) C:\program files (x86)\secondlifeviewer\slvoice.exe (Vivox Inc.)
FirewallRules: [TCP Query User{2C220930-38A2-4508-BB95-6BA9DC94D2F6}C:\program files (x86)\secondlifeviewer\slvoice.exe] => (Block) C:\program files (x86)\secondlifeviewer\slvoice.exe (Vivox Inc.)
FirewallRules: [UDP Query User{F5227F5D-95F5-4087-8373-4FE65222CD17}C:\users\asusak\desktop\hry\quake iii arena (complete)\quake3.exe] => (Allow) C:\users\asusak\desktop\hry\quake iii arena (complete)\quake3.exe ()
FirewallRules: [TCP Query User{96EEE8BD-7569-4CEC-B71C-1219BF7925FE}C:\users\asusak\desktop\hry\quake iii arena (complete)\quake3.exe] => (Allow) C:\users\asusak\desktop\hry\quake iii arena (complete)\quake3.exe ()
FirewallRules: [{B6E701CA-E9B0-4B56-8FA5-B3A9DF66E007}] => (Allow) D:\Steam\steamapps\common\Spintires\SpinTires.exe (Oovee Ltd.)
FirewallRules: [{3015EC4C-6C85-4ABA-A109-7882275BDCAD}] => (Allow) D:\Steam\steamapps\common\Spintires\SpinTires.exe (Oovee Ltd.)
FirewallRules: [{46355903-F6A2-40E8-8BE6-1591BE037C5F}] => (Block) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{2C23C391-4165-4F5A-ACAD-428F6B14BE54}C:\users\asusak\desktop\hry\scrap mechanic\release\scrapmechanic.exe] => (Block) C:\users\asusak\desktop\hry\scrap mechanic\release\scrapmechanic.exe ()
FirewallRules: [TCP Query User{2652E561-77C9-48C6-81FD-F58213B0C950}C:\users\asusak\desktop\hry\scrap mechanic\release\scrapmechanic.exe] => (Block) C:\users\asusak\desktop\hry\scrap mechanic\release\scrapmechanic.exe ()
FirewallRules: [{C82A784A-703B-4883-A5E9-F45A380BBE08}] => (Allow) D:\Steam\steamapps\common\Call of Duty 4\iw3mp.exe ()
FirewallRules: [{ACDB89B6-5A41-4FA1-B9CE-91E68D037887}] => (Allow) D:\Steam\steamapps\common\Call of Duty 4\iw3mp.exe ()
FirewallRules: [{0BC6CE71-220E-4D53-960A-132D03040199}] => (Allow) D:\Steam\steamapps\common\Call of Duty 4\iw3sp.exe ()
FirewallRules: [{4E781279-CFC0-472F-8288-0D953A354595}] => (Allow) D:\Steam\steamapps\common\Call of Duty 4\iw3sp.exe ()
FirewallRules: [{1CFF2C39-BAF5-44EA-8097-01C757D87BC5}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Corporation)
FirewallRules: [UDP Query User{BE4EB428-ED69-462E-A2B1-B6A73C9B5280}C:\program files (x86)\shaun white snowboarding\shaunwhitesnowboardinggame.exe] => (Block) C:\program files (x86)\shaun white snowboarding\shaunwhitesnowboardinggame.exe ()
FirewallRules: [TCP Query User{86526B79-0046-4FF9-A3F8-0EF2A111F45A}C:\program files (x86)\shaun white snowboarding\shaunwhitesnowboardinggame.exe] => (Block) C:\program files (x86)\shaun white snowboarding\shaunwhitesnowboardinggame.exe ()
FirewallRules: [{D0A099DA-981B-45D4-8C7F-C82B5146B698}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboarding.exe (Ubisoft)
FirewallRules: [{02A0C55C-90D1-4423-9683-4F65CBC2DDFA}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboarding.exe (Ubisoft)
FirewallRules: [{B4F5991E-A739-475D-94CC-1970BD1A897C}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboardingGame.exe ()
FirewallRules: [{243A0BDD-BBBB-4306-8451-C42667D4C922}] => (Allow) C:\Program Files (x86)\Ubisoft\Shaun White Snowboarding\ShaunWhiteSnowboardingGame.exe ()
FirewallRules: [UDP Query User{F49D1431-3735-4FC2-9130-856D7F781C63}C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe] => (Allow) C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe ()
FirewallRules: [TCP Query User{AF434905-50DB-4570-9586-AF39200B0B80}C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe] => (Allow) C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe ()
FirewallRules: [UDP Query User{33DBF441-02AB-41DA-9D4B-FF100C418D7D}C:\games\counter-strike global offensive\csgo.exe] => (Block) C:\games\counter-strike global offensive\csgo.exe ()
FirewallRules: [TCP Query User{96625BCB-0F6E-437D-9822-2BA9C7E72725}C:\games\counter-strike global offensive\csgo.exe] => (Block) C:\games\counter-strike global offensive\csgo.exe ()
FirewallRules: [UDP Query User{63CFB9F7-CA4B-4214-821F-FC540E58055D}C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe] => (Allow) C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe ()
FirewallRules: [TCP Query User{B19EDD45-FD62-425D-829F-1D482D5BF694}C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe] => (Allow) C:\program files\strogino cs portal\left 4 dead 2\left4dead2.exe ()
FirewallRules: [UDP Query User{56E4E4F7-E370-4BD0-98C3-1627362F2590}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve)
FirewallRules: [TCP Query User{228E0366-2763-411C-BF53-FE83372C36D9}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Block) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve)
FirewallRules: [{D85A89E0-8F55-470B-85B7-E6BFA9CC871D}] => (Allow) C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe ()
FirewallRules: [{FCC277CB-D483-4265-A48F-D6D10E9266C2}] => (Allow) C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe ()
FirewallRules: [{9520C0A4-F6C8-4582-AF15-E8D9CB1A8BE0}] => (Allow) C:\SteamLibrary\steamapps\common\Quake Live\quakelive_steam.exe (id Software Inc.)
FirewallRules: [{6B8C1D50-B7E6-4557-92C7-793E8003E0D0}] => (Allow) C:\SteamLibrary\steamapps\common\Quake Live\quakelive_steam.exe (id Software Inc.)
FirewallRules: [{DF5E2000-AF76-4EB2-80F4-DA6468B29C5F}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ED91FFB2-112F-411F-8903-B3D52383BEA3}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [UDP Query User{A67C6CFB-B024-4B01-A994-48AF901226E6}C:\program files (x86)\quake iii arena\quake3.exe] => (Allow) C:\program files (x86)\quake iii arena\quake3.exe ()
FirewallRules: [TCP Query User{28A419DE-34FE-4A59-AD0F-BCE1F8DC8552}C:\program files (x86)\quake iii arena\quake3.exe] => (Allow) C:\program files (x86)\quake iii arena\quake3.exe ()
FirewallRules: [UDP Query User{3FEE8B43-1539-4082-84D6-2BBB204F8350}F:\quake3\quake3.exe] => (Allow) F:\quake3\quake3.exe No File
FirewallRules: [TCP Query User{0C697DBD-66E1-4700-B5E7-E667D77A4732}F:\quake3\quake3.exe] => (Allow) F:\quake3\quake3.exe No File
FirewallRules: [{C016B818-C283-423E-912D-524C67B0598C}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe (Tunngle.net GmbH)
FirewallRules: [{40303AAF-FE4D-4673-BCE5-CC6A7E28E9CE}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe (Tunngle.net GmbH)
FirewallRules: [{90B700CB-3865-4DBB-BCE1-FAEC80DDB3A2}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
FirewallRules: [{BBA30A42-0033-4C67-B518-9F9897E9566E}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH)
FirewallRules: [UDP Query User{B7A24AEC-8AE4-4358-8E9D-469BBB030695}C:\program files\cycling '74\max 7\max.exe] => (Block) C:\program files\cycling '74\max 7\max.exe (Cycling '74)
FirewallRules: [TCP Query User{B368DCA0-4093-469C-83C1-CC899DEA149B}C:\program files\cycling '74\max 7\max.exe] => (Block) C:\program files\cycling '74\max 7\max.exe (Cycling '74)
FirewallRules: [{144418B4-7AEC-49CC-A942-3E5C7C8261C8}] => (Allow) C:\Users\Asusak\AppData\Local\Temp\{50FA9D67-5F4B-45d5-B0D5-6F22FDCAAEC5}\utils\Down.exe No File
FirewallRules: [{EC8ED146-D0EA-478D-947F-B4DF2B372A41}] => (Allow) C:\Users\Asusak\AppData\Local\Temp\{50FA9D67-5F4B-45d5-B0D5-6F22FDCAAEC5}\utils\Down.exe No File
FirewallRules: [{FDF66EFA-E117-4222-BD54-44F3166DD621}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{A84B868C-569A-48BD-9665-7B735F8BC511}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{974ADA87-031A-4911-B6D6-211A92C4BC06}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation)
FirewallRules: [{129C9FAC-5EA0-4722-8E1E-E53BFD551DD2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation)
FirewallRules: [UDP Query User{3CBD4FFF-5E2E-49D2-A62C-607DCD3345FC}C:\program files\presonus\studio one 3\studio one.exe] => (Block) C:\program files\presonus\studio one 3\studio one.exe (PreSonus)
FirewallRules: [TCP Query User{D8A3C58B-9927-408B-AE6E-7CC54A3B8801}C:\program files\presonus\studio one 3\studio one.exe] => (Block) C:\program files\presonus\studio one 3\studio one.exe (PreSonus)
FirewallRules: [{DAF5295E-9C3D-4354-8FB4-7EFF6DD32705}] => (Allow) D:\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{5AC7F9F2-769C-4D66-963D-2EB6ACF2F8A0}] => (Allow) D:\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{B9D17711-F510-4242-BF0B-BF657E779C84}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [UDP Query User{31F458F4-6A89-4AC7-B8B3-F6F9F905A9BF}C:\program files\humatic\touchdaw thru\touchdaw thru.exe] => (Allow) C:\program files\humatic\touchdaw thru\touchdaw thru.exe (humatic)
FirewallRules: [TCP Query User{5E763A6A-BA8B-4A91-9AF4-3F2148FF4A73}C:\program files\humatic\touchdaw thru\touchdaw thru.exe] => (Allow) C:\program files\humatic\touchdaw thru\touchdaw thru.exe (humatic)
FirewallRules: [UDP Query User{2B43482C-87CE-44D3-9CFD-93E758234565}C:\program files (x86)\pd\bin\pd.exe] => (Allow) C:\program files (x86)\pd\bin\pd.exe ()
FirewallRules: [TCP Query User{262CAF9D-D0AA-4E13-91F3-1618E96C5183}C:\program files (x86)\pd\bin\pd.exe] => (Allow) C:\program files (x86)\pd\bin\pd.exe ()
FirewallRules: [UDP Query User{F40BDC9E-DC53-430A-8CE8-727C9875A226}C:\program files (x86)\pd\bin\pd.exe] => (Block) C:\program files (x86)\pd\bin\pd.exe ()
FirewallRules: [TCP Query User{156D9AF7-070C-499A-96AF-4480B6347201}C:\program files (x86)\pd\bin\pd.exe] => (Block) C:\program files (x86)\pd\bin\pd.exe ()
FirewallRules: [UDP Query User{0A45F2D4-94EC-4330-BC24-249BCE3B703F}D:\ableton\live 9 suite\program\ableton live 9 suite.exe] => (Block) D:\ableton\live 9 suite\program\ableton live 9 suite.exe (Ableton)
FirewallRules: [TCP Query User{59BC64E6-F008-426A-A251-E72146C7AA0A}D:\ableton\live 9 suite\program\ableton live 9 suite.exe] => (Block) D:\ableton\live 9 suite\program\ableton live 9 suite.exe (Ableton)
FirewallRules: [UDP Query User{63BF673A-2D35-49A1-855B-1834C534D90D}C:\program files (x86)\touchosc bridge\touchosc bridge.exe] => (Allow) C:\program files (x86)\touchosc bridge\touchosc bridge.exe (hexler.net)
FirewallRules: [TCP Query User{241845BE-0E8D-4ABB-AABC-4EA89F81C684}C:\program files (x86)\touchosc bridge\touchosc bridge.exe] => (Allow) C:\program files (x86)\touchosc bridge\touchosc bridge.exe (hexler.net)
FirewallRules: [UDP Query User{4CCAD716-1979-4F52-95A6-0267D81927FB}D:\utorrent\utorrent.exe] => (Block) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [TCP Query User{449F0C8A-7B96-4EA7-9864-D753FC8585A9}D:\utorrent\utorrent.exe] => (Block) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{37BA0463-3FB8-4509-A6E9-1A623942E2AF}C:\program files (x86)\liine\lemur editor.exe] => (Allow) C:\program files (x86)\liine\lemur editor.exe (Liine)
FirewallRules: [TCP Query User{129AF8D8-E19A-4342-9FA3-CDA11D381902}C:\program files (x86)\liine\lemur editor.exe] => (Allow) C:\program files (x86)\liine\lemur editor.exe (Liine)
FirewallRules: [UDP Query User{9F708BEB-C639-4B7E-9161-59BB1D2A69C8}C:\program files (x86)\liine\lemur daemon.exe] => (Allow) C:\program files (x86)\liine\lemur daemon.exe (Liine)
FirewallRules: [TCP Query User{3B4FBCCC-ACEE-438C-857F-E52104574834}C:\program files (x86)\liine\lemur daemon.exe] => (Allow) C:\program files (x86)\liine\lemur daemon.exe (Liine)
FirewallRules: [UDP Query User{44280A29-0AE8-467E-AF17-405B67A12A7C}D:\ableton\live 9 suite\program\ableton live 9 suite.exe] => (Block) D:\ableton\live 9 suite\program\ableton live 9 suite.exe (Ableton)
FirewallRules: [TCP Query User{F34A290A-3612-4CA4-8321-44B5F707EE12}D:\ableton\live 9 suite\program\ableton live 9 suite.exe] => (Block) D:\ableton\live 9 suite\program\ableton live 9 suite.exe (Ableton)
FirewallRules: [UDP Query User{EE927489-E6C2-4AA5-A6F3-E36955812021}C:\program files\multibit hd\multibit-hd.exe] => (Allow) C:\program files\multibit hd\multibit-hd.exe ()
FirewallRules: [TCP Query User{84F7AC9A-F2AD-42EF-840C-5A4A5E35C0FD}C:\program files\multibit hd\multibit-hd.exe] => (Allow) C:\program files\multibit hd\multibit-hd.exe ()
FirewallRules: [{9FF28AA5-8828-48D9-A89B-9DEDF7C73A7D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe No File
FirewallRules: [TCP Query User{55222994-AD40-41BD-9E92-83E867008F40}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [UDP Query User{6ED6BDD6-1B8E-4478-8F49-321F43BA8930}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{A880DA38-5E8E-4902-8F5A-E53C9022723A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (ESN Social Software AB)
FirewallRules: [{C3229E7F-174D-42A8-BBFD-896CF6B90E32}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (ESN Social Software AB)
FirewallRules: [TCP Query User{A00E91A5-2D01-40E1-9B8D-128DEC72237F}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [UDP Query User{FA6709DF-EEB5-42C4-9AFA-D9FB6AE46748}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [TCP Query User{427CDF16-431E-450C-85B1-97AD967E4897}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [UDP Query User{97BABDFD-F08A-43C8-8C01-8595FC68C6DA}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [{9EF540C2-CD45-4458-B5C0-169789F7362B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{B69AD844-51C0-4B64-A176-59BCE5FBF724}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{3086B444-3550-4FA7-A04C-9C8E7839827D}] => (Allow) LPort=3389
FirewallRules: [{C167C532-97EA-4D1E-8A07-DC733E43FB1F}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve)
FirewallRules: [{33C9690F-0709-4C2A-9345-9CAA4A6AAD6B}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve)
FirewallRules: [{452BAE0E-7160-45B3-AA39-9F6657BD6D9E}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe ()
FirewallRules: [{A881FB83-3EFC-4DE8-A12A-E61FD30AA580}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe ()
FirewallRules: [TCP Query User{4CA42B4B-1E2F-46FE-926E-E468C3589989}C:\users\asusak\appdata\local\crossout\launcher.exe] => (Allow) C:\users\asusak\appdata\local\crossout\launcher.exe (Gaijin Entertainment Corp.)
FirewallRules: [UDP Query User{7630C678-35FA-4FD5-B638-848A3EE5DF79}C:\users\asusak\appdata\local\crossout\launcher.exe] => (Allow) C:\users\asusak\appdata\local\crossout\launcher.exe (Gaijin Entertainment Corp.)
FirewallRules: [TCP Query User{FE8BCDD5-64C2-4B24-9772-D5BA8396D307}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro)
FirewallRules: [UDP Query User{AEFB1695-1366-47E4-BEE0-E675EC9CE6F0}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro)
FirewallRules: [TCP Query User{57B926B6-3D2F-4F59-A2FA-C2F9B74349EB}C:\users\asusak\appdata\local\crossout\launcher.exe] => (Block) C:\users\asusak\appdata\local\crossout\launcher.exe (Gaijin Entertainment Corp.)
FirewallRules: [UDP Query User{7446444B-CF88-475C-B6BD-D54AE91C2D26}C:\users\asusak\appdata\local\crossout\launcher.exe] => (Block) C:\users\asusak\appdata\local\crossout\launcher.exe (Gaijin Entertainment Corp.)
FirewallRules: [TCP Query User{6B30713F-8F1D-40AF-9B3D-AA43BAB9321F}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [UDP Query User{147CAB32-E685-4914-BE7B-B96B994C7BAE}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [{47B6378D-A43F-4867-9438-B93F18085634}] => (Allow) C:\Program Files (x86)\Mr DJ\Hitman Absolution Professional Edition\HMA.exe ()
FirewallRules: [{43AABC95-1EBF-477A-9227-61ABB6C86014}] => (Allow) C:\Program Files (x86)\Mr DJ\Hitman Absolution Professional Edition\HMA.exe ()
FirewallRules: [{8C5C3797-41E0-469C-ABF8-1E02E2FA4D5C}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{EF290CC6-32E6-45CF-B6C3-E8E861D4C97B}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\71.0.3578.15\remoting_host.exe (Google Inc.)
FirewallRules: [{F1AE770E-A3BC-4FCC-924F-D552B5DD6B83}] => (Allow) D:\Samply\Midi\Modern Talking\LiquidSky.exe ()
FirewallRules: [{537FC566-16EC-4389-9390-81C58309B2ED}] => (Allow) D:\Samply\Midi\Modern Talking\LiquidSky.exe ()
FirewallRules: [TCP Query User{3833E1D6-2F44-4D85-833C-7C8B173818E4}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe (Gaijin Entertainment)
FirewallRules: [UDP Query User{53900CFD-0405-442B-AD87-8423D318159F}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe (Gaijin Entertainment)
FirewallRules: [TCP Query User{ACFCB4A2-E6AC-4ECB-940C-35424A1D756B}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe (Gaijin Entertainment)
FirewallRules: [UDP Query User{F1A806BD-377D-49B5-8084-45F359065F06}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe (Gaijin Entertainment)
FirewallRules: [TCP Query User{9121CA33-83C8-4CE0-82A2-66AA3A54EF52}D:\warthunder\launcher.exe] => (Block) D:\warthunder\launcher.exe (Gaijin Entertainment)
FirewallRules: [UDP Query User{68AD4666-C136-4BB3-87E9-5CC21872378E}D:\warthunder\launcher.exe] => (Block) D:\warthunder\launcher.exe (Gaijin Entertainment)
FirewallRules: [{0C5F6456-1632-439A-AAC1-8037B7DF5A58}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{F7BFAB74-91BD-4DB2-A0BF-AC8DBC17C08E}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [TCP Query User{88BA3C59-9BF5-41A9-97C4-F338C6ED49FF}D:\warthunder\win64\aces.exe] => (Block) D:\warthunder\win64\aces.exe (Gaijin Entertainment)
FirewallRules: [UDP Query User{58D7D81E-C948-4870-BBCD-1D79C79FF414}D:\warthunder\win64\aces.exe] => (Block) D:\warthunder\win64\aces.exe (Gaijin Entertainment)
FirewallRules: [{BC2687AA-102F-4222-BF43-ED9BC7D113DF}] => (Allow) C:\Program Files (x86)\Opera\56.0.3051.116\opera.exe (Opera Software)
FirewallRules: [{C1539D26-2338-48B8-A1AE-D771478E39F4}] => (Allow) D:\Steam\steamapps\common\Ring of Elysium\SLauncher.exe ()
FirewallRules: [{AF950DDD-63DA-4D29-8F7B-D879E9DDACDE}] => (Allow) D:\Steam\steamapps\common\Ring of Elysium\SLauncher.exe ()
FirewallRules: [{88755C90-D801-4AA7-8590-F9B3EBDCDAAD}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{30BF2996-02EC-4A86-8F52-1A3899040E79}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [TCP Query User{3C0223D3-FA0E-4276-9405-975206BC7539}C:\program files\imaginando\ubridge\ubridge.exe] => (Block) C:\program files\imaginando\ubridge\ubridge.exe (Imaginando Lda)
FirewallRules: [UDP Query User{65FD3A87-198F-44B7-B083-0A1FAF0F3DE4}C:\program files\imaginando\ubridge\ubridge.exe] => (Block) C:\program files\imaginando\ubridge\ubridge.exe (Imaginando Lda)
FirewallRules: [TCP Query User{0169E600-4DAC-48DB-B171-0841BA6938DA}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH)
FirewallRules: [UDP Query User{0DA64B91-BEAB-4D92-87B2-D042C68C792B}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH)
FirewallRules: [{527D9117-2DA2-4730-B05E-7165543796CF}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{CBFD6A0D-1362-4F60-B876-9A0036ED0689}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{5481886A-8EDD-4F89-8EA7-30D028DC44C4}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{49ADE428-6E20-43FA-81C8-C82B66A28AE8}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{1ECC57A9-4775-4EC5-ABBE-70F3F80F16C7}] => (Allow) C:\Program Files (x86)\Opera\57.0.3098.106\opera.exe (Opera Software)
FirewallRules: [{E204EA21-DBFC-4CF2-8484-59C17822D04C}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)
FirewallRules: [{454FF971-E8CE-41FD-9534-9B30CDD571EE}] => (Allow) C:\WINDOWS\SysWOW64\msiexec.exe (Microsoft Corporation)
FirewallRules: [{63DB8207-74E6-4380-95D1-45C925A74BBB}] => (Allow) C:\Program Files (x86)\uuKfAa.exe (Microsoft Corporation)
FirewallRules: [{AA114EF9-2CA6-4465-BB3A-986FAD0BE25B}] => (Allow) C:\Users\Asusak\AppData\Local\dOQkCAUY.exe (Microsoft Corporation)
FirewallRules: [{46FF9CA0-ADE4-4760-9582-2541F124877C}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe (Microsoft Corporation)
FirewallRules: [{9064DD44-8711-4121-AF71-380EBECDE8D4}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{1345023F-51F9-4AEC-8C38-39ABA3C94A86}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{652D7081-B7DE-4E6C-867D-C82ACF19796A}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{BE29681D-5DB3-4595-A9BB-457D517FCD03}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{B2762D5C-9BEB-4058-B01F-F7B3BD42889B}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{4CADEF35-C8A8-4CCA-8894-83BA258CB3EE}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software)
FirewallRules: [{43BA3B88-96A2-4D31-94EC-0E9249721000}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{05537CA1-36FC-4361-AA03-1CB608D46FB9}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software)
FirewallRules: [{41EEFE54-5647-4CE8-AC45-D080D54619A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{219475A9-26D6-46EE-8FCC-FCDFC37C27C5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{F3C338B6-3D2E-4225-BDD6-4003AB04243B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{BAB8D570-A242-4D5F-A6FF-C920525E638D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{0F6C0F58-4334-4AD5-BBCD-8391DC4597F4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{C735B7F0-8CDD-4551-BB91-2212BCD8BA48}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{5ABF4680-E345-4726-A251-9E0C77C8780B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{C6D58FD3-E707-4AEF-B605-DD02B1E28909}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{AEBC7C5B-C510-4871-A9AF-895177A1C08D}] => (Allow) C:\Program Files (x86)\Tobias Erichsen\rtpMIDI\rtpMIDISvc.exe (Tobias Erichsen)

==================== Restore Points =========================

16-12-2018 22:54:04 Instalační služba modulů systému Windows
21-12-2018 12:13:15 Windows Update
25-12-2018 10:21:59 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/26/2018 10:42:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: hl2.exe, verze: 0.0.0.0, časové razítko: 0x58ab8cd8
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x2d80
Čas spuštění chybující aplikace: 0x01d49cfc393994bb
Cesta k chybující aplikaci: C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: cf5937f8-106b-46b4-b6a8-0957d4bc5931
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/25/2018 11:24:46 PM) (Source: SGDawNodeService) (EventID: 0) (User: )
Description: Event-ID 0

Error: (12/25/2018 12:24:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: hl2.exe, verze: 0.0.0.0, časové razítko: 0x58ab8cd8
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x830
Čas spuštění chybující aplikace: 0x01d49c40650ae422
Cesta k chybující aplikaci: C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: ccc80b80-b0f2-4a67-a61d-94c00a724dec
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/25/2018 10:56:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Microsoft.Photos.exe verze 2018.18091.17210.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 204c

Čas spuštění: 01d4994b47ad2b33

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

ID hlášení: ad70d005-585a-43e5-96d0-23a1404f827a

Úplný název balíčku s chybou: Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe

ID aplikace související s balíčkem s chybou: App

Error: (12/25/2018 10:21:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17134.285, časové razítko: 0x40f0d4bd
Kód výjimky: 0xc000041d
Posun chyby: 0x000063d7
ID chybujícího procesu: 0x3424
Čas spuštění chybující aplikace: 0x01d49c2d636b6c4f
Cesta k chybující aplikaci: D:\Utorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: a7dfa058-7902-4137-ac7c-967e0bd5b31b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/24/2018 01:34:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: hl2.exe, verze: 0.0.0.0, časové razítko: 0x58ab8cd8
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x1888
Čas spuštění chybující aplikace: 0x01d49b83cdc6b989
Cesta k chybující aplikaci: C:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 6a8dace8-0485-484f-8954-7f5176e2fe71
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/23/2018 11:58:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AsusTPCenter.exe, verze: 1.0.0.84, časové razítko: 0x55d1cd50
Název chybujícího modulu: ntdll.dll, verze: 10.0.17134.471, časové razítko: 0x7e614c22
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004a921
ID chybujícího procesu: 0x2c48
Čas spuštění chybující aplikace: 0x01d49a271c6e4660
Cesta k chybující aplikaci: C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 1688dd9f-7a78-4fe1-b37d-87485e7bade8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/23/2018 11:53:08 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro D:\VstPlugins\Waves\Applications\GTRSolo 3.5.exe se nezdařilo. Chyba v souboru manifestu nebo zásady D:\VstPlugins\Waves\Applications\WavesQtLibs_5.6.0_Win32_Release\WavesQtLibs_5.6.0_Win32_Release.MANIFEST na řádku 8.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je WavesQtLibs_5.6.0_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definice je WavesQtLibs_5.6.0_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.


System errors:
=============
Error: (12/26/2018 12:22:01 PM) (Source: DCOM) (EventID: 10016) (User: PC007)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli PC007\Asusak (SID: S-1-5-21-3811162916-2113203268-3777127909-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/26/2018 10:19:59 AM) (Source: DCOM) (EventID: 10016) (User: PC007)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli PC007\Asusak (SID: S-1-5-21-3811162916-2113203268-3777127909-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/26/2018 10:19:17 AM) (Source: DCOM) (EventID: 10016) (User: PC007)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli PC007\Asusak (SID: S-1-5-21-3811162916-2113203268-3777127909-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/26/2018 09:20:56 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/26/2018 09:18:06 AM) (Source: DCOM) (EventID: 10016) (User: PC007)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli PC007\Asusak (SID: S-1-5-21-3811162916-2113203268-3777127909-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/25/2018 11:36:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/25/2018 11:32:25 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/25/2018 11:28:01 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 25%
Total physical RAM: 12190.83 MB
Available physical RAM: 9024.13 MB
Total Virtual: 12958.83 MB
Available Virtual: 9842.77 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:53.74 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:542.8 GB) (Free:26.02 GB) NTFS

\\?\Volume{d6bb299d-4214-431f-8c5a-57b02649a910}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.56 GB) NTFS
\\?\Volume{e2c8489b-f9aa-4ab7-be8a-680d4beded92}\ (Restore) (Fixed) (Total:15.01 GB) (Free:3.78 GB) NTFS
\\?\Volume{198493b4-b8b0-4540-9e7e-1062d6d213f0}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 068DB06F)

Partition: GPT.

==================== End of Addition.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ContextMenuHandlers1: [KuaiZipShlExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> No File
ContextMenuHandlers1: [ContextMenuExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [menuext] -> {c0d5287c-e671-43c4-98b1-3a25addf79fa} => -> No File
Task: {1EB68A30-BEA2-40DD-ACD8-659AED4A9142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {47487E8A-2233-425B-B5CA-89ED8134B067} - System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83} => C:\Users\Asusak\AppData\Local\dOQkCAUY.exe [2018-04-12] (Microsoft Corporation) <==== ATTENTION
Task: {57346884-B72D-45C6-9135-C3D37D98B17A} - System32\Tasks\Client Monitor => C:\ProgramData\Client\client.exe <==== ATTENTION
Task: {A1D6EF0B-03A2-4869-B10B-AE1EBC4BA6ED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {E0FF76A1-95F3-4788-859E-BE26462B3B77} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E84E6CD0-1FE0-4A04-BCA4-F4362A19314D} - System32\Tasks\Update\Computer Helper => C:\Users\Asusak\AppData\Roaming\repair.exe <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\Users\Public\AppData:CSM [468]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470]
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
FirewallRules: [{ADC9D44F-50EA-4F2B-B645-13DAADEE6CA8}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [{DF5E2000-AF76-4EB2-80F4-DA6468B29C5F}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ED91FFB2-112F-411F-8903-B3D52383BEA3}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [UDP Query User{3FEE8B43-1539-4082-84D6-2BBB204F8350}F:\quake3\quake3.exe] => (Allow) F:\quake3\quake3.exe No File
FirewallRules: [TCP Query User{0C697DBD-66E1-4700-B5E7-E667D77A4732}F:\quake3\quake3.exe] => (Allow) F:\quake3\quake3.exe No File
FirewallRules: [{9FF28AA5-8828-48D9-A89B-9DEDF7C73A7D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\MountPoints2: F - "F:\setup.exe"
ShellExecuteHooks: No Name - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - -> No File
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
C:\WINDOWS\System32\Tasks\{44922045-E36E-5326-98AB-2825BCA326E7}
c:\WINDOWS\System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83}
C:\WINDOWS\System32\Tasks\{62F7E201-15FA-B13F-918B-9117664C4611}
C:\Users\Asusak\AppData\Local\imw.ini
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Asusak\AppData\Roaming\878787.dat
C:\Users\Asusak\AppData\Local\dOQkCAUY.exe
C:\Users\Asusak\AppData\Local

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Termiter8]

Fix result of Farbar Recovery Scan Tool (x64) Version: 24.12.2018
Ran by Asusak (26-12-2018 13:34:49) Run:1
Running from C:\Users\Asusak\Desktop
Loaded Profiles: Asusak (Available Profiles: Asusak)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [KuaiZipShlExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> No File
ContextMenuHandlers1: [ContextMenuExt] -> {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [menuext] -> {c0d5287c-e671-43c4-98b1-3a25addf79fa} => -> No File
Task: {1EB68A30-BEA2-40DD-ACD8-659AED4A9142} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {47487E8A-2233-425B-B5CA-89ED8134B067} - System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83} => C:\Users\Asusak\AppData\Local\dOQkCAUY.exe [2018-04-12] (Microsoft Corporation) <==== ATTENTION
Task: {57346884-B72D-45C6-9135-C3D37D98B17A} - System32\Tasks\Client Monitor => C:\ProgramData\Client\client.exe <==== ATTENTION
Task: {A1D6EF0B-03A2-4869-B10B-AE1EBC4BA6ED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {E0FF76A1-95F3-4788-859E-BE26462B3B77} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E84E6CD0-1FE0-4A04-BCA4-F4362A19314D} - System32\Tasks\Update\Computer Helper => C:\Users\Asusak\AppData\Roaming\repair.exe <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\Users\Public\AppData:CSM [468]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470]
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
FirewallRules: [{ADC9D44F-50EA-4F2B-B645-13DAADEE6CA8}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [{DF5E2000-AF76-4EB2-80F4-DA6468B29C5F}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ED91FFB2-112F-411F-8903-B3D52383BEA3}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [UDP Query User{3FEE8B43-1539-4082-84D6-2BBB204F8350}F:\quake3\quake3.exe] => (Allow) F:\quake3\quake3.exe No File
FirewallRules: [TCP Query User{0C697DBD-66E1-4700-B5E7-E667D77A4732}F:\quake3\quake3.exe] => (Allow) F:\quake3\quake3.exe No File
FirewallRules: [{9FF28AA5-8828-48D9-A89B-9DEDF7C73A7D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\...\MountPoints2: F - "F:\setup.exe"
ShellExecuteHooks: No Name - {87CC2AE2-A5BD-11E6-B178-64006A5CFC23} - -> No File
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
C:\WINDOWS\System32\Tasks\{44922045-E36E-5326-98AB-2825BCA326E7}
c:\WINDOWS\System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83}
C:\WINDOWS\System32\Tasks\{62F7E201-15FA-B13F-918B-9117664C4611}
C:\Users\Asusak\AppData\Local\imw.ini
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Asusak\AppData\Roaming\878787.dat
C:\Users\Asusak\AppData\Local\dOQkCAUY.exe
C:\Users\Asusak\AppData\Local

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\KuaiZipShlExt => removed successfully
HKLM\Software\Classes\CLSID\{6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ContextMenuExt => removed successfully
HKLM\Software\Classes\CLSID\{6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\menuext => removed successfully
HKLM\Software\Classes\CLSID\{c0d5287c-e671-43c4-98b1-3a25addf79fa} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1EB68A30-BEA2-40DD-ACD8-659AED4A9142}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EB68A30-BEA2-40DD-ACD8-659AED4A9142}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{47487E8A-2233-425B-B5CA-89ED8134B067}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47487E8A-2233-425B-B5CA-89ED8134B067}" => removed successfully
C:\WINDOWS\System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{57346884-B72D-45C6-9135-C3D37D98B17A}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57346884-B72D-45C6-9135-C3D37D98B17A}" => removed successfully
C:\WINDOWS\System32\Tasks\Client Monitor => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Client Monitor" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A1D6EF0B-03A2-4869-B10B-AE1EBC4BA6ED}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1D6EF0B-03A2-4869-B10B-AE1EBC4BA6ED}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0FF76A1-95F3-4788-859E-BE26462B3B77}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0FF76A1-95F3-4788-859E-BE26462B3B77}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E84E6CD0-1FE0-4A04-BCA4-F4362A19314D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E84E6CD0-1FE0-4A04-BCA4-F4362A19314D}" => removed successfully
C:\WINDOWS\System32\Tasks\Update\Computer Helper => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Update\Computer Helper" => removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`28hfm" ADS removed successfully
C:\Users\Public\AppData => ":CSM" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\Software\Classes\regfile => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ADC9D44F-50EA-4F2B-B645-13DAADEE6CA8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DF5E2000-AF76-4EB2-80F4-DA6468B29C5F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ED91FFB2-112F-411F-8903-B3D52383BEA3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3FEE8B43-1539-4082-84D6-2BBB204F8350}F:\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0C697DBD-66E1-4700-B5E7-E667D77A4732}F:\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9FF28AA5-8828-48D9-A89B-9DEDF7C73A7D}" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-3811162916-2113203268-3777127909-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{87CC2AE2-A5BD-11E6-B178-64006A5CFC23}" => removed successfully
HKLM\Software\Classes\CLSID\{87CC2AE2-A5BD-11E6-B178-64006A5CFC23} => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
C:\WINDOWS\System32\Tasks\{44922045-E36E-5326-98AB-2825BCA326E7} => moved successfully
"c:\WINDOWS\System32\Tasks\{E0BF47E4-9BF8-E418-FAC1-17A59AAF9F83}" => not found
C:\WINDOWS\System32\Tasks\{62F7E201-15FA-B13F-918B-9117664C4611} => moved successfully
C:\Users\Asusak\AppData\Local\imw.ini => moved successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Asusak\AppData\Roaming\878787.dat => moved successfully
C:\Users\Asusak\AppData\Local\dOQkCAUY.exe => moved successfully
"C:\Users\Asusak\AppData\Local" => Warning: FRST is scripted not to move this directory.

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 229386529 B
Java, Flash, Steam htmlcache => 121729448 B
Windows/system/drivers => 805013 B
Edge => 4608 B
Chrome => 761567996 B
Firefox => 50423183 B
Opera => 2186976 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 14434 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
Asusak => 619591025 B

RecycleBin => 182687 B
EmptyTemp: => 1.7 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 13:35:43 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Termiter8]

Zatím v pořádku, zítra napíšu, zda se něco objeví přez večer (ta vyskakovací reklama) mockrát děkuji !!!

[Rudy]

Zatím není zač!